$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636263303a3a2f33322d3332203d3e2030.roa File: 323430303a636263303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: arWhg/3OjB0jqti6XKS1YfGjxi24Q+KMIo9j23uj1GA= Subject key identifier: BB:7A:7A:49:B1:83:EC:D4:3B:49:37:28:CD:29:B1:A6:DF:41:86:75 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 1B2FC312704E92D5117B25BA608E930FC8927E14 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636263303a3a2f33322d3332203d3e2030.roa Signing time: Thu 23 Apr 2026 07:51:44 +0000 ROA not before: Thu 23 Apr 2026 07:46:44 +0000 ROA not after: Thu 22 Apr 2027 07:51:44 +0000 asID: 0 IP address blocks: 2400:cbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2f:c3:12:70:4e:92:d5:11:7b:25:ba:60:8e:93:0f:c8:92:7e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:46:44 2026 GMT Not After : Apr 22 07:51:44 2027 GMT Subject: CN=BB7A7A49B183ECD43B493728CD29B1A6DF418675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7e:de:b6:9b:83:14:9f:15:9d:b5:d4:3d:f6: b1:78:0d:4e:64:b0:61:63:de:12:0d:03:96:e0:78: f4:02:99:c8:7a:17:7b:cf:e1:49:8e:c9:bd:ae:6d: 25:40:b8:9c:0e:75:27:d0:01:e0:a1:4b:20:91:7b: e2:56:dc:21:19:96:0c:64:72:ee:d0:50:79:f7:c0: f3:9e:e0:ba:ec:7e:0f:cc:ab:00:70:a8:4e:81:f4: e0:a2:57:6a:4b:e3:56:45:93:44:e2:f2:74:05:c9: 48:14:f3:f5:69:a1:5f:50:bd:ef:a4:5b:4a:f1:61: 3b:0f:61:e2:e0:eb:0c:e2:dd:d1:97:25:19:ef:4a: e2:51:55:ac:ce:6e:f6:d4:45:aa:90:c7:5a:4a:63: de:79:03:c9:d4:72:2a:8c:43:77:df:47:aa:d1:fc: e7:fe:5b:e6:3b:2b:a0:51:cb:ba:e0:64:cc:d2:b8: 21:ff:52:6c:95:45:70:68:7c:5c:f2:ae:82:51:8e: b3:0b:95:8d:e4:1a:78:5c:7f:39:e3:fc:4d:05:21: 38:49:b5:48:c7:1f:42:f2:06:28:1b:70:4e:17:a2: 2b:2a:98:1c:32:bd:da:7f:c0:c5:d8:72:ff:ea:8a: 81:09:9a:cb:dc:e1:77:7f:15:ae:e7:87:40:30:02: aa:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7A:7A:49:B1:83:EC:D4:3B:49:37:28:CD:29:B1:A6:DF:41:86:75 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636263303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption 28:79:bc:0a:36:13:e0:70:32:b5:41:f5:15:8a:39:6c:77:76: ad:f8:6d:19:c1:72:ef:5d:41:8a:ca:61:28:c9:02:86:8d:c9: 1f:47:92:42:ff:ca:59:74:f4:68:f9:15:80:02:3e:d4:17:72: a7:3d:40:b8:3b:12:99:fa:12:c0:e8:23:4d:b1:e4:46:66:ee: ad:b9:7d:f9:42:2c:4c:85:e4:29:1b:95:20:f2:22:0d:dc:22: 6c:4b:d4:c6:5d:6e:9f:09:af:97:be:02:ee:7c:a5:89:51:c1: 09:a3:5a:72:70:0d:ed:ee:04:44:19:09:9d:22:31:0d:ab:57: ab:c0:5c:4d:d5:20:42:51:dd:3e:6f:0a:34:d4:3c:1b:76:2e: 9c:85:b4:4f:16:40:2b:57:25:56:e0:5e:2a:eb:31:2b:69:c8: ea:29:bb:b1:57:bb:2b:d7:0e:51:33:55:e8:87:64:2c:5f:ad: 74:da:f8:8f:a8:fe:4f:57:07:ba:e5:a9:55:57:b5:1f:e8:23: ac:a8:05:72:aa:ee:dd:86:e0:3b:52:eb:f5:68:2b:49:66:8b: 3b:92:ac:f0:79:21:ae:d4:99:20:ce:1f:d8:b2:87:ad:74:5a: cb:80:4c:f8:b5:f9:1d:f4:f7:fe:bb:21:e0:7b:e6:dc:7d:e8: 82:67:9a:5e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUGy/DEnBOktUReyW6YI6TD8iSfhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ2NDRaFw0yNzA0MjIwNzUxNDRaMDMxMTAvBgNV BAMTKEJCN0E3QTQ5QjE4M0VDRDQzQjQ5MzcyOENEMjlCMUE2REY0MTg2NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChft62m4MUnxWdtdQ99rF4DU5k sGFj3hINA5bgePQCmch6F3vP4UmOyb2ubSVAuJwOdSfQAeChSyCRe+JW3CEZlgxk cu7QUHn3wPOe4Lrsfg/MqwBwqE6B9OCiV2pL41ZFk0Ti8nQFyUgU8/VpoV9Qve+k W0rxYTsPYeLg6wzi3dGXJRnvSuJRVazObvbURaqQx1pKY955A8nUciqMQ3ffR6rR /Of+W+Y7K6BRy7rgZMzSuCH/UmyVRXBofFzyroJRjrMLlY3kGnhcfznj/E0FIThJ tUjHH0LyBigbcE4XoisqmBwyvdp/wMXYcv/qioEJmsvc4Xd/Fa7nh0AwAqr5AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUu3p6SbGD7NQ7STcozSmxpt9BhnUwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzIzNDMwMzAzYTYz NjI2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAMvA MA0GCSqGSIb3DQEBCwUAA4IBAQAoebwKNhPgcDK1QfUVijlsd3at+G0ZwXLvXUGK ymEoyQKGjckfR5JC/8pZdPRo+RWAAj7UF3KnPUC4OxKZ+hLA6CNNseRGZu6tuX35 QixMheQpG5Ug8iIN3CJsS9TGXW6fCa+XvgLufKWJUcEJo1pycA3t7gREGQmdIjEN q1erwFxN1SBCUd0+bwo01Dwbdi6chbRPFkArVyVW4F4q6zEracjqKbuxV7sr1w5R M1Xoh2QsX6102viPqP5PVwe65alVV7Uf6COsqAVyqu7dhuA7Uuv1aCtJZos7kqzw eSGu1Jkgzh/YsoetdFrLgEz4tfkd9Pf+uyHge+bcfeiCZ5pe -----END CERTIFICATE-----Generated at Wed May 13 12:42:54 2026 by rpki-client