$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/323430333a623430303a343030303a3a2f33362d3336203d3e203130323132.roa File: 323430333a623430303a343030303a3a2f33362d3336203d3e203130323132.roa (raw, json) Hash identifier: 69B5yXUncbgeaTzlAPPSzJW7QoiwFG3UcrevNNwd0VY= Subject key identifier: 02:06:7F:41:8B:53:00:6E:D6:D5:9E:4F:4A:7E:EF:EA:78:E2:E0:C8 Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 5D87BA2543F15B8C1B15942DF3996D912D08CE91 Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/323430333a623430303a343030303a3a2f33362d3336203d3e203130323132.roa Signing time: Tue 28 Apr 2026 01:16:43 +0000 ROA not before: Tue 28 Apr 2026 01:11:43 +0000 ROA not after: Tue 27 Apr 2027 01:16:43 +0000 asID: 10212 IP address blocks: 2403:b400:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:87:ba:25:43:f1:5b:8c:1b:15:94:2d:f3:99:6d:91:2d:08:ce:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 28 01:11:43 2026 GMT Not After : Apr 27 01:16:43 2027 GMT Subject: CN=02067F418B53006ED6D59E4F4A7EEFEA78E2E0C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:24:9a:06:e8:6e:80:d7:8e:01:ac:1c:9c: 3f:85:0f:5f:66:1f:28:c5:6b:f0:e8:3f:d2:7b:65: 8b:66:f5:31:53:ba:62:33:1a:62:c3:11:38:86:41: 26:00:ef:18:fc:96:58:01:00:ef:a8:41:e8:95:6b: 92:d6:8b:4c:aa:85:5e:90:b3:83:ab:74:4d:fa:bd: 7c:47:c4:25:b0:01:d9:22:1d:11:a7:48:77:d8:e0: e7:ee:f1:69:56:3b:4b:95:97:0b:cc:f8:5f:1b:9c: 41:07:aa:09:d9:0f:4b:38:0d:ed:37:f8:f0:6d:ca: eb:40:b7:33:94:e9:8a:fe:07:ba:bc:81:ae:64:01: b5:11:45:c4:52:a7:14:9d:a2:9f:65:f7:cc:7b:e5: 07:1f:17:54:6a:20:f5:47:b1:0c:db:4f:93:b1:85: 3b:f9:01:d7:e1:26:4c:4d:eb:f3:66:cc:00:d4:50: 68:a4:d7:9f:c7:e9:a8:01:46:77:19:af:85:1b:ad: 63:23:88:a9:da:7c:9f:70:67:7b:b9:c1:ac:82:eb: 8f:3f:23:a8:02:0c:6b:f1:47:ac:35:25:dd:d8:0d: 12:a2:09:1b:ae:6f:30:f9:85:81:2b:81:33:ef:b2: 71:eb:16:27:bd:94:cc:ca:98:5d:b7:46:e7:2b:12: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:06:7F:41:8B:53:00:6E:D6:D5:9E:4F:4A:7E:EF:EA:78:E2:E0:C8 X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/323430333a623430303a343030303a3a2f33362d3336203d3e203130323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b400:4000::/36 Signature Algorithm: sha256WithRSAEncryption 92:f6:80:0b:01:18:b3:de:a0:dc:0c:d2:51:cf:ae:52:f4:8a: 70:65:2a:bd:24:2f:29:df:35:08:9a:89:80:82:96:cf:67:fa: 92:80:71:fc:e7:f6:23:15:7f:1d:d0:69:aa:17:cf:a1:4e:7b: 8e:2a:2e:ed:cf:08:88:cf:b7:b6:e8:4d:4a:0e:f7:77:1d:57: 46:18:15:e6:2f:3d:90:c1:2e:6d:e8:89:56:92:fc:4c:b9:1d: 3f:bb:db:65:6b:e2:44:6f:f7:6f:b0:c5:5e:9f:4c:16:fa:31: 1e:5f:e3:07:53:2d:cd:79:ae:27:92:4a:7c:f6:58:ca:28:2b: 16:ed:6a:a0:ae:51:5b:a6:dd:14:af:71:fe:ed:a9:2f:d8:6a: 91:c2:4e:be:14:eb:e6:64:8e:03:f0:de:c3:bb:ea:7c:78:c8: 7b:40:2f:69:2b:29:c2:d5:4d:e4:39:e4:a0:09:05:b4:27:fe: 62:13:d7:8e:df:12:d3:58:55:65:ac:af:3e:6e:b7:2f:af:01: 97:47:e7:4d:f8:ab:69:9b:de:23:ff:3c:c9:e3:82:36:6a:92: d5:e2:19:31:8e:53:c2:fb:9b:c0:a8:11:5d:2a:90:ac:8e:40: 73:1b:3b:b4:44:67:0a:83:3d:5f:b5:58:b8:22:b4:22:c8:63: 13:4a:7d:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUXYe6JUPxW4wbFZQt85ltkS0IzpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjgwMTExNDNaFw0yNzA0MjcwMTE2NDNaMDMxMTAvBgNV BAMTKDAyMDY3RjQxOEI1MzAwNkVENkQ1OUU0RjRBN0VFRkVBNzhFMkUwQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQgCSaBuhugNeOAawcnD+FD19m HyjFa/DoP9J7ZYtm9TFTumIzGmLDETiGQSYA7xj8llgBAO+oQeiVa5LWi0yqhV6Q s4OrdE36vXxHxCWwAdkiHRGnSHfY4Ofu8WlWO0uVlwvM+F8bnEEHqgnZD0s4De03 +PBtyutAtzOU6Yr+B7q8ga5kAbURRcRSpxSdop9l98x75QcfF1RqIPVHsQzbT5Ox hTv5AdfhJkxN6/NmzADUUGik15/H6agBRncZr4UbrWMjiKnafJ9wZ3u5wayC648/ I6gCDGvxR6w1Jd3YDRKiCRuubzD5hYErgTPvsnHrFie9lMzKmF23RucrEsTtAgMB AAGjggIgMIICHDAdBgNVHQ4EFgQUAgZ/QYtTAG7W1Z5PSn7v6nji4MgwHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzNDMwMzMz YTYyMzQzMDMwM2EzNDMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMxMzAz MjMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgQkA7QAQDANBgkqhkiG9w0BAQsFAAOCAQEAkvaACwEY s96g3AzSUc+uUvSKcGUqvSQvKd81CJqJgIKWz2f6koBx/Of2IxV/HdBpqhfPoU57 jiou7c8IiM+3tuhNSg73dx1XRhgV5i89kMEubeiJVpL8TLkdP7vbZWviRG/3b7DF Xp9MFvoxHl/jB1MtzXmuJ5JKfPZYyigrFu1qoK5RW6bdFK9x/u2pL9hqkcJOvhTr 5mSOA/Dew7vqfHjIe0AvaSspwtVN5DnkoAkFtCf+YhPXjt8S01hVZayvPm63L68B l0fnTfiraZveI/88yeOCNmqS1eIZMY5TwvubwKgRXSqQrI5Acxs7tERnCoM9X7VY uCK0IshjE0p9LQ== -----END CERTIFICATE-----Generated at Wed May 13 17:49:26 2026 by rpki-client