$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3131322e302f32322d3234203d3e203536303437.roa File: 3232332e3136302e3131322e302f32322d3234203d3e203536303437.roa (raw, json) Hash identifier: RpWHTpjj0+FemnI/JevrZHnlmXGzWtEnobnYtwXslTg= Subject key identifier: 34:FF:51:07:DC:FE:4A:FD:F0:C8:7C:D5:A5:13:27:1C:38:E1:08:D1 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 74A54F9462B18F2A1B14D4C09E524D1E3866A71E Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3131322e302f32322d3234203d3e203536303437.roa Signing time: Wed 27 May 2026 07:34:58 +0000 ROA not before: Wed 27 May 2026 07:29:58 +0000 ROA not after: Wed 26 May 2027 07:34:58 +0000 asID: 56047 IP address blocks: 223.160.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a5:4f:94:62:b1:8f:2a:1b:14:d4:c0:9e:52:4d:1e:38:66:a7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:58 2026 GMT Not After : May 26 07:34:58 2027 GMT Subject: CN=34FF5107DCFE4AFDF0C87CD5A513271C38E108D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6a:13:38:fd:ab:6c:5a:89:17:d6:46:80:44: 68:16:0a:ba:38:83:73:cf:ff:1c:13:e3:ba:16:ec: 62:73:58:79:3c:a8:ed:8c:5b:89:6c:6d:90:85:36: af:e7:91:02:77:62:93:86:3c:da:85:8a:da:c0:7c: ca:06:5b:53:4e:99:80:9b:d2:c0:9a:65:a0:0a:32: d3:bd:8b:7e:3e:45:e2:33:fd:ee:31:a8:92:c8:3b: 72:1c:b5:ad:a3:87:62:f8:b3:22:f9:79:42:23:b0: 55:89:ea:0c:49:90:dd:f0:47:b3:3a:e3:12:1a:a8: 97:e4:1c:e8:c9:9d:90:94:e9:3f:33:b4:f1:14:dd: ea:40:93:ca:4b:ca:6e:03:c5:34:59:e7:e8:32:66: 36:1d:76:4c:24:95:a6:d4:d9:80:24:2b:5c:92:2e: 28:12:68:2a:56:e1:b3:99:0e:0b:cf:2f:6e:fa:d6: 2e:07:01:d8:44:be:f9:05:62:7c:5b:2d:b8:ed:db: 37:f3:f3:e1:f0:26:48:f3:13:e4:2c:07:ad:43:0e: d2:f2:c5:de:61:bf:c6:e7:b6:6d:25:5d:6e:b4:67: bb:29:35:76:17:65:24:d7:e2:27:bb:5e:ce:e4:5f: 5a:be:9c:24:9c:48:bc:26:ac:7d:eb:11:90:f7:c4: 4a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FF:51:07:DC:FE:4A:FD:F0:C8:7C:D5:A5:13:27:1C:38:E1:08:D1 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3131322e302f32322d3234203d3e203536303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.112.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:73:f0:a8:da:ff:06:9f:9a:a0:d0:ed:05:a3:87:19:65:4c: a2:18:6a:4e:83:0a:26:03:3f:c3:0d:c5:b9:4a:4a:35:79:b0: 36:ab:83:50:5e:29:34:0f:55:62:8c:4e:b1:e0:2c:74:e5:90: 56:a8:47:ad:ce:8a:85:70:95:0e:ff:32:65:0f:5a:ac:4b:29: 0b:98:33:f8:7f:1e:98:b7:71:89:e5:91:72:4f:da:6f:4b:79: a8:c0:45:eb:cb:6f:31:79:08:89:5a:5f:a9:fb:05:2f:60:7d: 77:0d:e9:3b:dc:ce:7f:14:0c:b1:40:f3:db:33:0c:82:d9:79: a5:8d:ee:d4:d7:c4:1c:9a:ba:9c:22:d3:61:04:ec:68:26:71: 51:f2:90:a9:73:23:6e:bb:95:be:e8:fa:45:ff:cf:85:34:ca: 5f:56:cf:7d:d0:78:dc:36:b7:67:8a:ad:14:4a:ac:82:0b:90: f4:fe:72:10:51:18:bf:e0:e9:dc:ce:e4:76:0a:93:49:3c:63: d0:38:df:93:f9:ee:24:1e:cd:35:b3:e7:e3:f6:d0:08:95:70: ec:1a:94:cb:2c:20:cf:d0:1d:a5:ec:99:a1:5b:de:62:56:8d: b7:e5:bd:70:ea:08:dd:d1:78:f8:af:05:7c:47:c6:c1:48:c3: b9:c1:17:f7 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUdKVPlGKxjyobFNTAnlJNHjhmpx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NThaFw0yNzA1MjYwNzM0NThaMDMxMTAvBgNV BAMTKDM0RkY1MTA3RENGRTRBRkRGMEM4N0NENUE1MTMyNzFDMzhFMTA4RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHahM4/atsWokX1kaARGgWCro4 g3PP/xwT47oW7GJzWHk8qO2MW4lsbZCFNq/nkQJ3YpOGPNqFitrAfMoGW1NOmYCb 0sCaZaAKMtO9i34+ReIz/e4xqJLIO3Icta2jh2L4syL5eUIjsFWJ6gxJkN3wR7M6 4xIaqJfkHOjJnZCU6T8ztPEU3epAk8pLym4DxTRZ5+gyZjYddkwklabU2YAkK1yS LigSaCpW4bOZDgvPL2761i4HAdhEvvkFYnxbLbjt2zfz8+HwJkjzE+QsB61DDtLy xd5hv8bntm0lXW60Z7spNXYXZSTX4ie7Xs7kX1q+nCScSLwmrH3rEZD3xEp1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNP9RB9z+Sv3wyHzVpRMnHDjhCNEwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMDJlMzEzMTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAt+gcDANBgkqhkiG9w0BAQsFAAOCAQEAanPwqNr/Bp+aoNDtBaOH GWVMohhqToMKJgM/ww3FuUpKNXmwNquDUF4pNA9VYoxOseAsdOWQVqhHrc6KhXCV Dv8yZQ9arEspC5gz+H8emLdxieWRck/ab0t5qMBF68tvMXkIiVpfqfsFL2B9dw3p O9zOfxQMsUDz2zMMgtl5pY3u1NfEHJq6nCLTYQTsaCZxUfKQqXMjbruVvuj6Rf/P hTTKX1bPfdB43Da3Z4qtFEqsgguQ9P5yEFEYv+Dp3M7kdgqTSTxj0Djfk/nuJB7N NbPn4/bQCJVw7BqUyywgz9AdpeyZoVveYlaNt+W9cOoI3dF4+K8FfEfGwUjDucEX 9w== -----END CERTIFICATE-----Generated at Fri May 29 23:00:49 2026 by rpki-client