$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099919334379094017/0/323430363a636163303a3230303a3a2f34302d3430203d3e20313337373438.roa File: 323430363a636163303a3230303a3a2f34302d3430203d3e20313337373438.roa (raw, json) Hash identifier: x2XSJIwCKDpp3rwcXVq5g4z1/eZ8OIbDQxrdTRlIM0k= Subject key identifier: 01:5A:0E:AA:A8:D4:EA:35:E9:78:E6:87:B3:A3:97:8D:A6:CF:AC:1F Certificate issuer: /CN=5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF Certificate serial: 5E2D30952BDE307E4C356255ACBE42431CF706F8 Authority key identifier: 5D:2D:CB:B6:D8:24:01:B5:E0:E5:80:25:42:BB:53:E5:61:C1:F8:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099919334379094017/0/323430363a636163303a3230303a3a2f34302d3430203d3e20313337373438.roa Signing time: Fri 24 Apr 2026 04:51:34 +0000 ROA not before: Fri 24 Apr 2026 04:46:34 +0000 ROA not after: Fri 23 Apr 2027 04:51:34 +0000 asID: 137748 IP address blocks: 2406:cac0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099919334379094017/0/5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF.crl rsync://rpki-rps.cnnic.cn/repo/A1099919334379094017/0/5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:2d:30:95:2b:de:30:7e:4c:35:62:55:ac:be:42:43:1c:f7:06:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF Validity Not Before: Apr 24 04:46:34 2026 GMT Not After : Apr 23 04:51:34 2027 GMT Subject: CN=015A0EAAA8D4EA35E978E687B3A3978DA6CFAC1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1e:77:91:0e:ce:84:ea:49:de:90:c0:a2:a8: 8f:32:78:b8:4f:5a:9a:06:63:fc:44:ad:09:ee:6a: 65:a8:32:65:8e:34:12:5f:00:ac:5a:40:2f:6d:7c: a2:1a:50:a8:ca:50:af:ea:66:3a:51:30:28:1b:f4: 0f:29:00:9a:51:e9:36:c1:a5:ea:af:4b:37:88:4f: 1a:41:5d:47:59:2a:4c:17:cc:ad:20:a9:55:53:1d: 98:f6:54:b6:77:b4:b0:d0:47:c1:43:9c:cd:29:11: dd:1a:eb:11:64:5e:30:78:4e:2f:fb:5b:16:0a:d3: 5a:06:16:0c:d2:96:8f:6c:83:73:c9:88:e0:36:e9: 73:54:bb:81:a0:2e:b3:1a:b5:ea:48:10:e8:69:31: c2:22:ff:15:e2:16:7e:04:79:57:e9:6c:e1:ec:d7: 29:62:1b:54:ab:db:e4:2f:4c:a2:48:db:02:0b:3f: 55:ae:33:53:79:90:0b:ef:0b:5c:96:73:c3:7e:b0: ef:5d:26:3b:18:c7:7b:d8:18:62:f2:51:ad:5b:72: f4:08:e5:ad:0c:76:9e:5b:91:37:8c:18:dd:dc:4e: 9f:0d:82:c3:c4:7f:47:e3:d1:bf:92:45:05:65:30: 4d:b0:44:b3:10:46:3e:61:92:a1:b3:a6:f5:47:ef: 33:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5A:0E:AA:A8:D4:EA:35:E9:78:E6:87:B3:A3:97:8D:A6:CF:AC:1F X509v3 Authority Key Identifier: keyid:5D:2D:CB:B6:D8:24:01:B5:E0:E5:80:25:42:BB:53:E5:61:C1:F8:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099919334379094017/0/5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5D2DCBB6D82401B5E0E5802542BB53E561C1F8EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099919334379094017/0/323430363a636163303a3230303a3a2f34302d3430203d3e20313337373438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:cac0:200::/40 Signature Algorithm: sha256WithRSAEncryption 8d:f7:7e:25:0f:d7:12:62:0b:e2:22:fb:8d:62:15:01:c6:6c: 9d:14:dd:7b:98:06:3c:f1:3b:51:cf:00:1d:c7:57:a3:82:a2: b4:22:ea:77:87:b3:51:cf:79:b0:3a:df:68:8c:90:ca:5c:55: 12:24:82:98:4d:ed:7f:e6:a9:e3:2d:1b:f2:28:07:65:6e:b4: 7e:fe:32:ad:6b:b0:21:0f:7f:55:b5:20:f9:4c:9b:2c:2e:a1: 25:1d:41:8c:84:9f:46:46:eb:d9:c8:3e:01:c1:cf:9a:0a:9f: 06:5a:c8:9c:8a:cf:65:24:a7:0f:fc:aa:af:b7:c0:0a:73:26: 83:91:0b:f4:b3:2c:31:c9:0d:8c:76:c0:ae:c0:36:75:8b:a8: ac:6f:50:17:14:21:df:83:40:8e:fb:1f:b6:fa:56:f7:b6:b6: a2:0c:10:1b:7e:22:47:90:77:5c:b2:f9:dd:b6:3b:99:ad:d4: b8:f8:4b:04:98:27:70:b8:63:36:8e:cd:f3:4e:d0:7f:79:aa: c6:c6:eb:df:56:2d:84:ad:b3:49:7e:e4:0f:f3:e2:ca:0b:88: 21:64:a4:2a:e7:01:48:ca:6a:6d:c1:c2:d7:ba:52:a9:87:da: 11:9f:de:04:dc:6a:e7:dd:7b:a4:79:eb:f8:f4:0a:5b:62:7b: d1:f7:7e:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUXi0wlSveMH5MNWJVrL5CQxz3BvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyRENCQjZEODI0MDFCNUUwRTU4MDI1NDJCQjUzRTU2 MUMxRjhFRjAeFw0yNjA0MjQwNDQ2MzRaFw0yNzA0MjMwNDUxMzRaMDMxMTAvBgNV BAMTKDAxNUEwRUFBQThENEVBMzVFOTc4RTY4N0IzQTM5NzhEQTZDRkFDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkHneRDs6E6knekMCiqI8yeLhP WpoGY/xErQnuamWoMmWONBJfAKxaQC9tfKIaUKjKUK/qZjpRMCgb9A8pAJpR6TbB peqvSzeITxpBXUdZKkwXzK0gqVVTHZj2VLZ3tLDQR8FDnM0pEd0a6xFkXjB4Ti/7 WxYK01oGFgzSlo9sg3PJiOA26XNUu4GgLrMatepIEOhpMcIi/xXiFn4EeVfpbOHs 1yliG1Sr2+QvTKJI2wILP1WuM1N5kAvvC1yWc8N+sO9dJjsYx3vYGGLyUa1bcvQI 5a0Mdp5bkTeMGN3cTp8NgsPEf0fj0b+SRQVlME2wRLMQRj5hkqGzpvVH7zPVAgMB AAGjggIgMIICHDAdBgNVHQ4EFgQUAVoOqqjU6jXpeOaHs6OXjabPrB8wHwYDVR0j BBgwFoAUXS3LttgkAbXg5YAlQrtT5WHB+O8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTkxOTMzNDM3OTA5NDAxNy8wLzVEMkRDQkI2RDgyNDAxQjVFMEU1ODAyNTQyQkI1 M0U1NjFDMUY4RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUQyRENCQjZEODI0MDFCNUUwRTU4MDI1NDJCQjUzRTU2MUMxRjhFRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk5OTE5MzM0Mzc5MDk0MDE3LzAvMzIzNDMwMzYz YTYzNjE2MzMwM2EzMjMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTMzMzcz NzM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgAkBsrAAjANBgkqhkiG9w0BAQsFAAOCAQEAjfd+JQ/X EmIL4iL7jWIVAcZsnRTde5gGPPE7Uc8AHcdXo4KitCLqd4ezUc95sDrfaIyQylxV EiSCmE3tf+ap4y0b8igHZW60fv4yrWuwIQ9/VbUg+UybLC6hJR1BjISfRkbr2cg+ AcHPmgqfBlrInIrPZSSnD/yqr7fACnMmg5EL9LMsMckNjHbArsA2dYuorG9QFxQh 34NAjvsftvpW97a2ogwQG34iR5B3XLL53bY7ma3UuPhLBJgncLhjNo7N807Qf3mq xsbr31YthK2zSX7kD/PiyguIIWSkKucBSMpqbcHC17pSqYfaEZ/eBNxq5917pHnr +PQKW2J70fd+kg== -----END CERTIFICATE-----Generated at Wed May 13 20:55:12 2026 by rpki-client