$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636663303a3a2f33322d3332203d3e2030.roa File: 323430303a636663303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: gdZWjHE2hFSIRnaMC3Pbi5lXIwGt0QeYKmkVI2Osa5M= Subject key identifier: 27:B0:CE:9A:8C:F5:0D:3D:7E:D7:EF:B2:6E:EC:76:AD:24:87:06:C6 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 7E2FF1FB7B7BA806A065EB6C02BB392437865222 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636663303a3a2f33322d3332203d3e2030.roa Signing time: Thu 23 Apr 2026 07:51:44 +0000 ROA not before: Thu 23 Apr 2026 07:46:44 +0000 ROA not after: Thu 22 Apr 2027 07:51:44 +0000 asID: 0 IP address blocks: 2400:cfc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2f:f1:fb:7b:7b:a8:06:a0:65:eb:6c:02:bb:39:24:37:86:52:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:46:44 2026 GMT Not After : Apr 22 07:51:44 2027 GMT Subject: CN=27B0CE9A8CF50D3D7ED7EFB26EEC76AD248706C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a0:06:09:29:5c:77:ad:3d:df:81:cf:33:15: 0a:76:59:46:1b:64:3a:36:ca:62:b6:10:28:c4:a1: c0:73:b0:66:99:34:00:5a:8a:11:f2:fb:3b:b2:40: 98:2b:5e:74:df:a5:80:6e:32:08:61:fb:48:3c:af: b7:45:75:f0:2c:cf:8b:be:7e:5a:15:47:7b:b2:8b: 7a:19:8c:e6:3c:0f:00:5e:03:1f:42:99:36:bb:1b: 2a:78:d5:db:da:59:06:dd:68:02:47:98:f3:56:77: 58:2f:f7:d6:60:81:b3:28:60:3a:8c:b1:a2:12:5f: 86:50:5e:9a:6d:9f:d4:10:92:cd:1a:a3:f6:37:71: 5b:16:60:00:aa:84:be:f7:ce:fb:ca:06:05:97:2e: 56:ac:8b:58:1d:59:5c:ab:08:e7:a5:e0:19:72:07: e0:66:b0:92:bc:8e:66:87:32:ee:8d:f6:c9:9d:df: bd:88:69:c5:90:19:3c:51:de:45:89:aa:88:db:26: 78:e3:1c:66:4a:a6:0e:66:f0:68:ca:fc:80:c7:fe: c1:aa:9f:6d:eb:1b:69:81:e8:ea:6a:8b:aa:bf:7c: 8a:e9:39:f5:e2:91:65:8c:38:99:eb:ea:08:d2:a7: fd:d2:a2:02:84:5e:a0:1c:ae:23:0c:6a:45:c4:d3: 85:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B0:CE:9A:8C:F5:0D:3D:7E:D7:EF:B2:6E:EC:76:AD:24:87:06:C6 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636663303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cfc0::/32 Signature Algorithm: sha256WithRSAEncryption aa:29:8f:75:d3:43:8d:65:cb:05:b5:f1:f3:91:be:82:24:9c: 7f:af:c5:88:10:16:49:e4:4c:b5:4e:92:14:01:ea:8d:a9:67: aa:3e:80:ca:ad:33:4a:c5:be:5a:a9:f2:93:b6:60:59:fa:f3: 85:78:c1:63:5e:59:15:cc:99:7b:a4:5b:08:d8:87:4f:8e:c3: ff:ed:a6:9a:a1:08:fa:3f:03:57:af:97:ec:f7:34:28:34:d3: 62:03:ff:d7:a0:dd:e6:96:ac:33:2d:27:11:96:de:84:16:b5: 9f:2c:72:ec:c6:d2:82:1f:49:61:b8:09:d1:45:ff:1a:99:07: 72:0e:47:a5:7a:07:a5:47:3e:1c:29:89:77:36:4f:56:32:4c: e1:e5:87:dc:9a:3e:02:c8:9b:2c:08:84:20:03:dd:74:06:7a: ff:79:c6:e2:d6:e4:09:d7:6d:cf:07:ae:32:c1:cc:ab:67:2d: dd:79:f3:ee:9f:4d:98:ce:fe:af:5f:6d:7d:cf:dd:b9:5f:69: 35:f5:95:1b:c6:ee:10:b3:7a:df:9c:b1:26:bd:5d:24:38:65: a5:4e:19:26:aa:16:1d:e7:e2:bd:53:c1:e6:cd:9d:8c:fb:7b: 58:38:d7:84:b6:ab:d2:a1:d0:72:9f:ba:c0:d7:8e:be:6e:8b: d3:50:e7:c8 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUfi/x+3t7qAagZetsArs5JDeGUiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ2NDRaFw0yNzA0MjIwNzUxNDRaMDMxMTAvBgNV BAMTKDI3QjBDRTlBOENGNTBEM0Q3RUQ3RUZCMjZFRUM3NkFEMjQ4NzA2QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVoAYJKVx3rT3fgc8zFQp2WUYb ZDo2ymK2ECjEocBzsGaZNABaihHy+zuyQJgrXnTfpYBuMghh+0g8r7dFdfAsz4u+ floVR3uyi3oZjOY8DwBeAx9CmTa7Gyp41dvaWQbdaAJHmPNWd1gv99ZggbMoYDqM saISX4ZQXpptn9QQks0ao/Y3cVsWYACqhL73zvvKBgWXLlasi1gdWVyrCOel4Bly B+BmsJK8jmaHMu6N9smd372IacWQGTxR3kWJqojbJnjjHGZKpg5m8GjK/IDH/sGq n23rG2mB6Opqi6q/fIrpOfXikWWMOJnr6gjSp/3SogKEXqAcriMMakXE04VJAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUJ7DOmoz1DT1+1++ybux2rSSHBsYwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzIzNDMwMzAzYTYz NjY2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAM/A MA0GCSqGSIb3DQEBCwUAA4IBAQCqKY9100ONZcsFtfHzkb6CJJx/r8WIEBZJ5Ey1 TpIUAeqNqWeqPoDKrTNKxb5aqfKTtmBZ+vOFeMFjXlkVzJl7pFsI2IdPjsP/7aaa oQj6PwNXr5fs9zQoNNNiA//XoN3mlqwzLScRlt6EFrWfLHLsxtKCH0lhuAnRRf8a mQdyDkelegelRz4cKYl3Nk9WMkzh5Yfcmj4CyJssCIQgA910Bnr/ecbi1uQJ123P B64ywcyrZy3defPun02Yzv6vX219z925X2k19ZUbxu4Qs3rfnLEmvV0kOGWlThkm qhYd5+K9U8HmzZ2M+3tYONeEtqvSodByn7rA146+bovTUOfI -----END CERTIFICATE-----Generated at Wed May 13 13:03:11 2026 by rpki-client