$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106453099125407763/0/323430363a363130303a353030303a3a2f33362d3336203d3e203234313339.roa File: 323430363a363130303a353030303a3a2f33362d3336203d3e203234313339.roa (raw, json) Hash identifier: C6d2tt/JHqFwEp+CIe1fj6fwP2wy1hhZYhEeSVUzUjk= Subject key identifier: 3E:5B:A3:D7:1D:87:EE:C2:65:FA:8B:82:2D:F2:E5:08:0E:D6:75:4C Certificate issuer: /CN=AA39AE9FC417219D4A84D7759F82869F86905204 Certificate serial: 4FE6B38EEA30D25000EA3E836CAE3319D2020D5A Authority key identifier: AA:39:AE:9F:C4:17:21:9D:4A:84:D7:75:9F:82:86:9F:86:90:52:04 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AA39AE9FC417219D4A84D7759F82869F86905204.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106453099125407763/0/323430363a363130303a353030303a3a2f33362d3336203d3e203234313339.roa Signing time: Tue 12 May 2026 07:24:50 +0000 ROA not before: Tue 12 May 2026 07:19:50 +0000 ROA not after: Tue 11 May 2027 07:24:50 +0000 asID: 24139 IP address blocks: 2406:6100:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106453099125407763/0/AA39AE9FC417219D4A84D7759F82869F86905204.crl rsync://rpki-rps.cnnic.cn/repo/A1106453099125407763/0/AA39AE9FC417219D4A84D7759F82869F86905204.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AA39AE9FC417219D4A84D7759F82869F86905204.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e6:b3:8e:ea:30:d2:50:00:ea:3e:83:6c:ae:33:19:d2:02:0d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA39AE9FC417219D4A84D7759F82869F86905204 Validity Not Before: May 12 07:19:50 2026 GMT Not After : May 11 07:24:50 2027 GMT Subject: CN=3E5BA3D71D87EEC265FA8B822DF2E5080ED6754C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:2e:6f:a1:04:f2:8f:ff:44:42:41:c2:5d: 1d:dd:02:60:8c:0d:65:6f:9a:10:2c:bb:38:e3:48: 5c:00:5e:43:0a:4c:c8:69:ba:3a:1e:7d:3e:0c:9d: 9c:61:cc:ee:21:28:e8:ad:00:b8:bd:ff:ee:9b:93: 19:ac:04:79:1b:42:9a:34:17:35:b2:41:90:ed:55: 84:d0:15:7c:8c:d2:53:4e:08:53:7e:63:b7:3a:f3: 9c:6e:ee:27:99:ce:1e:2e:3e:05:2a:7c:fc:14:d3: a7:a7:ac:be:67:98:f3:28:65:79:ea:9a:6f:51:f5: bf:b9:6f:37:fa:bb:14:08:61:e5:a4:16:93:eb:f6: 5a:63:95:a5:c5:e2:5a:4a:a2:8a:22:87:82:ab:0e: c1:f3:01:7b:bb:51:cf:bf:a5:ff:5b:69:5b:ae:3a: 90:16:3d:79:a2:5c:39:b2:6d:6a:05:55:af:78:9b: 13:b7:70:a0:e3:0b:3e:50:e2:a8:c1:db:e1:7d:8e: 97:d4:0c:fa:de:e1:a6:13:76:1e:c8:44:4f:54:ef: 39:41:3d:6b:9d:1c:f0:9d:ca:b7:59:88:79:70:a2: 91:2d:2e:5c:9f:71:27:76:20:62:7d:5b:47:d6:57: cd:c1:b9:99:95:37:54:a1:65:64:de:11:bb:d4:d9: 0a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5B:A3:D7:1D:87:EE:C2:65:FA:8B:82:2D:F2:E5:08:0E:D6:75:4C X509v3 Authority Key Identifier: keyid:AA:39:AE:9F:C4:17:21:9D:4A:84:D7:75:9F:82:86:9F:86:90:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106453099125407763/0/AA39AE9FC417219D4A84D7759F82869F86905204.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AA39AE9FC417219D4A84D7759F82869F86905204.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106453099125407763/0/323430363a363130303a353030303a3a2f33362d3336203d3e203234313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6100:5000::/36 Signature Algorithm: sha256WithRSAEncryption 40:ad:ab:02:75:d6:87:fc:8a:41:8e:6c:bf:38:8b:bb:37:5e: 07:8f:8f:e0:83:c7:49:4a:47:ea:f1:02:1c:3c:8b:51:f0:1d: 76:ab:ad:74:45:15:37:f7:d7:e4:3b:9f:2b:15:8a:c1:f2:f4: 00:50:25:9f:86:43:0f:04:8f:fb:40:f4:c6:ba:63:15:44:23: 09:a6:b8:62:3f:ec:fb:3b:f4:ef:1c:5f:62:77:9a:cb:d7:5e: ad:f0:65:cd:d2:cb:12:5b:63:f9:28:63:3c:84:cd:87:55:4c: 3c:2d:25:c1:91:1b:06:4b:2b:35:86:10:93:f5:38:00:f6:1f: 6a:7d:3e:0e:25:3c:f2:a5:ff:b3:c5:5c:00:b8:66:ec:f9:e5: 7d:f1:89:25:98:0d:72:a6:5d:d7:ec:3a:0c:b7:35:6e:b3:84: 04:3c:f6:71:80:cd:6e:92:8b:2a:59:bf:cb:bd:46:d1:b1:55: 8a:a4:8a:0d:b3:7c:bf:fe:a9:2b:6e:13:9a:8e:07:6a:35:ca: 31:12:b4:74:eb:61:a0:68:bc:26:86:6c:de:aa:f4:2b:0f:a8: cf:be:e7:b7:02:2a:79:2f:98:57:31:85:6a:6e:e8:27:d6:f3: 8e:e0:be:eb:6c:9d:be:a2:bb:f6:dd:17:ac:1b:00:a1:99:36: f6:a8:ca:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUT+azjuow0lAA6j6DbK4zGdICDVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzOUFFOUZDNDE3MjE5RDRBODRENzc1OUY4Mjg2OUY4 NjkwNTIwNDAeFw0yNjA1MTIwNzE5NTBaFw0yNzA1MTEwNzI0NTBaMDMxMTAvBgNV BAMTKDNFNUJBM0Q3MUQ4N0VFQzI2NUZBOEI4MjJERjJFNTA4MEVENjc1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxrC5voQTyj/9EQkHCXR3dAmCM DWVvmhAsuzjjSFwAXkMKTMhpujoefT4MnZxhzO4hKOitALi9/+6bkxmsBHkbQpo0 FzWyQZDtVYTQFXyM0lNOCFN+Y7c685xu7ieZzh4uPgUqfPwU06enrL5nmPMoZXnq mm9R9b+5bzf6uxQIYeWkFpPr9lpjlaXF4lpKoooih4KrDsHzAXu7Uc+/pf9baVuu OpAWPXmiXDmybWoFVa94mxO3cKDjCz5Q4qjB2+F9jpfUDPre4aYTdh7IRE9U7zlB PWudHPCdyrdZiHlwopEtLlyfcSd2IGJ9W0fWV83BuZmVN1ShZWTeEbvU2Qo5AgMB AAGjggIgMIICHDAdBgNVHQ4EFgQUPluj1x2H7sJl+ouCLfLlCA7WdUwwHwYDVR0j BBgwFoAUqjmun8QXIZ1KhNd1n4KGn4aQUgQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjQ1MzA5OTEyNTQwNzc2My8wL0FBMzlBRTlGQzQxNzIxOUQ0QTg0RDc3NTlGODI4 NjlGODY5MDUyMDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUEzOUFFOUZDNDE3MjE5RDRBODRENzc1OUY4Mjg2OUY4NjkwNTIwNC5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA2NDUzMDk5MTI1NDA3NzYzLzAvMzIzNDMwMzYz YTM2MzEzMDMwM2EzNTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMyMzQz MTMzMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgQkBmEAUDANBgkqhkiG9w0BAQsFAAOCAQEAQK2rAnXW h/yKQY5svziLuzdeB4+P4IPHSUpH6vECHDyLUfAddqutdEUVN/fX5DufKxWKwfL0 AFAln4ZDDwSP+0D0xrpjFUQjCaa4Yj/s+zv07xxfYneay9derfBlzdLLEltj+Shj PITNh1VMPC0lwZEbBksrNYYQk/U4APYfan0+DiU88qX/s8VcALhm7PnlffGJJZgN cqZd1+w6DLc1brOEBDz2cYDNbpKLKlm/y71G0bFViqSKDbN8v/6pK24Tmo4HajXK MRK0dOthoGi8JoZs3qr0Kw+oz77ntwIqeS+YVzGFam7oJ9bzjuC+62ydvqK79t0X rBsAoZk29qjKdw== -----END CERTIFICATE-----Generated at Wed May 13 18:54:39 2026 by rpki-client