$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106398388187824147/0/323430323a616663303a3a2f33322d3332203d3e2034363131.roa File: 323430323a616663303a3a2f33322d3332203d3e2034363131.roa (raw, json) Hash identifier: f3GHixVb1HwjhyVU8K4swaXzIGI0Hioddav5kM0XXUw= Subject key identifier: BD:62:1E:5C:4D:56:3D:D1:00:95:A5:CB:8E:4C:14:85:0D:A7:42:81 Certificate issuer: /CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Certificate serial: 3D00378871EAAD45134B59F93BF378BD4FDEB47E Authority key identifier: 4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/323430323a616663303a3a2f33322d3332203d3e2034363131.roa Signing time: Tue 12 May 2026 02:03:23 +0000 ROA not before: Tue 12 May 2026 01:58:23 +0000 ROA not after: Tue 11 May 2027 02:03:23 +0000 asID: 4611 IP address blocks: 2402:afc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:00:37:88:71:ea:ad:45:13:4b:59:f9:3b:f3:78:bd:4f:de:b4:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Validity Not Before: May 12 01:58:23 2026 GMT Not After : May 11 02:03:23 2027 GMT Subject: CN=BD621E5C4D563DD10095A5CB8E4C14850DA74281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:68:d2:e7:9a:79:09:1a:1f:00:18:92:eb: 6f:90:7d:85:61:bf:8b:ae:e9:5b:a2:77:6b:b2:90: 59:09:b7:52:57:21:79:59:71:14:5a:5a:a4:b9:8c: 57:c3:eb:c0:b2:f6:ac:35:b1:e5:93:6a:8a:57:3d: 24:6f:1b:09:b1:53:97:d3:33:d7:be:b5:86:49:62: bb:ae:3d:cf:49:08:90:5a:ea:dc:12:6a:94:ba:76: e9:98:6c:16:e2:ce:f7:e8:1c:5e:2a:0e:30:cd:16: d5:4b:1e:ff:81:aa:02:e7:38:f3:c8:b8:22:62:0d: 69:db:02:3f:2f:ba:50:2b:43:c9:7f:84:25:a6:f5: c3:36:1c:fc:44:64:61:0f:b1:6a:48:2c:a1:66:23: a0:73:2e:42:02:7b:f1:b6:d2:e9:a8:de:0d:b1:76: 7a:1a:da:f9:04:89:cd:56:7a:3c:30:14:a0:9f:3e: f3:06:78:ad:29:a1:fb:ab:31:5a:dd:d4:39:7b:fb: 5f:20:5c:41:16:cc:9a:9b:97:6e:6e:f1:c4:1e:01: 22:67:10:c8:ae:53:7d:54:3d:56:93:b3:f3:a9:e0: 6e:f2:06:2b:19:7e:dd:e8:c0:8b:27:ca:5b:c4:9b: 6b:1a:79:e9:db:7e:2d:a2:2c:74:9e:e2:8a:66:fd: cc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:62:1E:5C:4D:56:3D:D1:00:95:A5:CB:8E:4C:14:85:0D:A7:42:81 X509v3 Authority Key Identifier: keyid:4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/323430323a616663303a3a2f33322d3332203d3e2034363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:afc0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:20:b8:ad:aa:03:f9:61:b9:31:73:0a:ff:fa:68:a2:34:de: 60:86:fe:4f:39:fa:5e:02:34:5d:8f:66:22:3d:cf:ec:c0:b0: 8d:ae:eb:4a:36:ad:94:4f:0b:b9:5b:38:23:74:8b:03:6e:07: 05:e3:c3:e8:67:cf:ed:57:7d:17:9a:48:f2:ba:5c:5c:df:55: 2d:31:cb:bf:f4:a5:bb:0c:58:be:b6:b4:9f:9c:03:8d:41:a5: d9:ff:82:94:eb:8f:f9:9f:b0:30:f0:68:14:cc:2d:73:9c:c4: 0a:07:4d:33:a5:da:a5:3f:6c:71:e1:c1:91:3a:5f:7b:8b:b2: b2:86:c7:a2:91:40:12:ea:db:f7:c6:81:16:31:d5:41:7c:8b: da:0e:4d:7d:0b:e9:1d:15:8c:a8:26:28:ed:f5:b8:46:74:c8: c1:74:ab:7b:45:67:d7:e2:4d:18:7c:b6:65:a3:ef:9d:a7:a7: eb:0a:5e:ca:66:d6:73:28:d0:e8:19:1a:49:01:9a:99:9f:86: fd:9e:ea:d9:39:8f:d3:98:a0:68:83:da:f4:45:16:d3:75:e9: ec:13:78:46:43:65:5a:23:13:09:5a:c5:f1:1e:d0:67:c9:51: 39:4d:1e:73:39:ef:4a:b9:74:10:81:95:ca:08:05:a2:cd:2a: 77:10:96:78 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUPQA3iHHqrUUTS1n5O/N4vU/etH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJD QUREMEFGQjAeFw0yNjA1MTIwMTU4MjNaFw0yNzA1MTEwMjAzMjNaMDMxMTAvBgNV BAMTKEJENjIxRTVDNEQ1NjNERDEwMDk1QTVDQjhFNEMxNDg1MERBNzQyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuk2jS55p5CRofABiS62+QfYVh v4uu6Vuid2uykFkJt1JXIXlZcRRaWqS5jFfD68Cy9qw1seWTaopXPSRvGwmxU5fT M9e+tYZJYruuPc9JCJBa6twSapS6dumYbBbizvfoHF4qDjDNFtVLHv+BqgLnOPPI uCJiDWnbAj8vulArQ8l/hCWm9cM2HPxEZGEPsWpILKFmI6BzLkICe/G20umo3g2x dnoa2vkEic1WejwwFKCfPvMGeK0pofurMVrd1Dl7+18gXEEWzJqbl25u8cQeASJn EMiuU31UPVaTs/Op4G7yBisZft3owIsnylvEm2saeenbfi2iLHSe4opm/cxnAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUvWIeXE1WPdEAlaXLjkwUhQ2nQoEwHwYDVR0j BBgwFoAUSvXdk5jrwz6gyuBB1/Uu4srdCvswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjM5ODM4ODE4NzgyNDE0Ny8wLzRBRjVERDkzOThFQkMzM0VBMENBRTA0MUQ3RjUy RUUyQ0FERDBBRkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJDQUREMEFGQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2Mzk4Mzg4MTg3ODI0MTQ3LzAvMzIzNDMwMzIzYTYx NjY2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzQzNjMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAq/AMA0GCSqGSIb3DQEBCwUAA4IBAQBtILitqgP5Ybkxcwr/+miiNN5ghv5P OfpeAjRdj2YiPc/swLCNrutKNq2UTwu5WzgjdIsDbgcF48PoZ8/tV30Xmkjyulxc 31UtMcu/9KW7DFi+trSfnAONQaXZ/4KU64/5n7Aw8GgUzC1znMQKB00zpdqlP2xx 4cGROl97i7KyhseikUAS6tv3xoEWMdVBfIvaDk19C+kdFYyoJijt9bhGdMjBdKt7 RWfX4k0YfLZlo++dp6frCl7KZtZzKNDoGRpJAZqZn4b9nurZOY/TmKBog9r0RRbT densE3hGQ2VaIxMJWsXxHtBnyVE5TR5zOe9KuXQQgZXKCAWizSp3EJZ4 -----END CERTIFICATE-----Generated at Wed May 13 21:32:16 2026 by rpki-client