$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3135302e3234322e35322e302f32322d3234203d3e2037363431.roa File: 3135302e3234322e35322e302f32322d3234203d3e2037363431.roa (raw, json) Hash identifier: ekBBdVVkv1lC9q3Q/mlU26UCQ36ldfJsXhBU/Su+9F4= Subject key identifier: 06:D6:D6:BC:63:8A:D1:75:EB:C4:1A:F5:19:38:C2:15:26:59:D0:83 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 66CBA793C2286FFB2A9619F220DA4EB1B3436661 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3135302e3234322e35322e302f32322d3234203d3e2037363431.roa Signing time: Wed 27 May 2026 07:34:56 +0000 ROA not before: Wed 27 May 2026 07:29:56 +0000 ROA not after: Wed 26 May 2027 07:34:56 +0000 asID: 7641 IP address blocks: 150.242.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:cb:a7:93:c2:28:6f:fb:2a:96:19:f2:20:da:4e:b1:b3:43:66:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:56 2026 GMT Not After : May 26 07:34:56 2027 GMT Subject: CN=06D6D6BC638AD175EBC41AF51938C2152659D083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:19:58:4d:15:14:44:94:0e:5e:cd:8b:1d: 2d:bd:57:7b:7a:63:40:0d:7d:86:64:e3:66:f0:a8: 55:23:54:ad:f2:56:ae:c5:3f:fd:e4:3f:de:0d:58: 56:de:8e:a5:c1:8c:46:1a:31:29:a7:9e:9b:74:64: c9:5c:50:3a:83:7f:9c:3c:f3:63:b5:be:63:59:7d: 76:c0:f4:b0:7f:a3:ea:4d:13:10:cd:9c:29:aa:6c: 91:d8:92:64:81:5c:1d:eb:b4:32:04:5a:f3:67:dc: 7f:fb:2d:0b:d2:ae:dd:86:89:46:c7:89:17:dd:34: af:73:0f:d7:04:71:b7:4b:67:95:f8:27:18:9b:e3: a3:4a:5d:8a:41:c9:72:04:b6:af:5d:c2:e1:87:3b: 9c:56:93:b7:89:7b:d4:02:12:79:c3:f4:de:c1:ac: 0b:0a:f1:54:73:0f:75:92:ac:4e:22:a2:31:bb:ef: f8:05:8f:1d:46:5c:ba:5d:11:ee:59:97:02:76:27: 3b:6c:a4:b4:59:60:ec:d4:ea:a9:b6:1d:d3:51:e5: 79:2a:e7:1f:1a:9c:78:8f:65:38:54:5e:63:ca:ff: e3:63:e3:d5:5e:36:a9:ca:55:bf:82:de:c0:cf:3f: 8a:20:d8:b6:52:ee:a2:8c:e3:7e:4e:1a:51:45:3f: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D6:D6:BC:63:8A:D1:75:EB:C4:1A:F5:19:38:C2:15:26:59:D0:83 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3135302e3234322e35322e302f32322d3234203d3e2037363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.242.52.0/22 Signature Algorithm: sha256WithRSAEncryption 27:82:d1:c8:3f:50:4a:0f:4b:94:1c:a6:5d:99:63:14:4b:e4: 20:13:7c:78:46:26:19:4b:ca:21:48:3d:f8:09:b1:39:e5:a5: 3f:ae:aa:50:2a:c3:d1:4c:68:f3:70:7e:e3:9d:58:a2:7e:ba: 7c:ee:8c:08:98:61:08:23:7b:f4:39:1e:c0:cb:7c:30:4f:2c: 0a:91:63:3c:0f:6a:f9:19:7c:bd:9e:ed:18:37:ec:c3:62:a1: b9:ce:25:9b:5f:2a:a1:a0:75:22:d2:ce:1b:de:e8:5d:85:9d: 6e:b0:53:3a:b6:5c:51:da:7c:73:e9:cf:d1:98:96:a4:20:12: 51:3d:39:b4:a0:21:fd:9d:c7:29:26:5c:7d:18:cc:cb:1e:51: 2e:7a:29:27:72:4f:1e:a7:a5:00:a8:f5:c9:b8:97:b0:1c:c7: 20:57:12:ee:3d:6d:e5:67:73:5b:2b:e5:6b:10:a6:12:88:8b: 62:9c:b7:eb:d8:79:00:a9:08:c3:dc:5f:c2:97:ae:6a:90:70: d3:24:2f:1d:05:37:48:ae:dd:75:1d:7c:bc:bc:78:bc:df:81: 60:a6:3b:d5:b0:80:2c:5f:95:d4:24:9e:12:e8:34:01:18:cb: 5b:f7:f2:2a:1d:aa:96:70:18:63:fa:f1:bb:35:e4:4c:97:75: 9c:84:9f:7e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUZsunk8Iob/sqlhnyINpOsbNDZmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTZaFw0yNzA1MjYwNzM0NTZaMDMxMTAvBgNV BAMTKDA2RDZENkJDNjM4QUQxNzVFQkM0MUFGNTE5MzhDMjE1MjY1OUQwODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAEBlYTRUURJQOXs2LHS29V3t6 Y0ANfYZk42bwqFUjVK3yVq7FP/3kP94NWFbejqXBjEYaMSmnnpt0ZMlcUDqDf5w8 82O1vmNZfXbA9LB/o+pNExDNnCmqbJHYkmSBXB3rtDIEWvNn3H/7LQvSrt2GiUbH iRfdNK9zD9cEcbdLZ5X4Jxib46NKXYpByXIEtq9dwuGHO5xWk7eJe9QCEnnD9N7B rAsK8VRzD3WSrE4iojG77/gFjx1GXLpdEe5ZlwJ2JztspLRZYOzU6qm2HdNR5Xkq 5x8anHiPZThUXmPK/+Nj49VeNqnKVb+C3sDPP4og2LZS7qKM435OGlFFPxc5AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUBtbWvGOK0XXrxBr1GTjCFSZZ0IMwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyNzg2NTYxLzAvMzEzNTMwMmUzMjM0 MzIyZTM1MzIyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNzM2MzQzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEApbyNDANBgkqhkiG9w0BAQsFAAOCAQEAJ4LRyD9QSg9LlBymXZljFEvkIBN8 eEYmGUvKIUg9+AmxOeWlP66qUCrD0Uxo83B+451Yon66fO6MCJhhCCN79DkewMt8 ME8sCpFjPA9q+Rl8vZ7tGDfsw2Khuc4lm18qoaB1ItLOG97oXYWdbrBTOrZcUdp8 c+nP0ZiWpCASUT05tKAh/Z3HKSZcfRjMyx5RLnopJ3JPHqelAKj1ybiXsBzHIFcS 7j1t5WdzWyvlaxCmEoiLYpy369h5AKkIw9xfwpeuapBw0yQvHQU3SK7ddR18vLx4 vN+BYKY71bCALF+V1CSeEug0ARjLW/fyKh2qlnAYY/rxuzXkTJd1nISffg== -----END CERTIFICATE-----Generated at Sat May 30 00:46:04 2026 by rpki-client