$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e31322e302f32332d3234203d3e2039383038.roa File: 3232332e3136302e31322e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: XSp5llFx1JWjjX/XFdL9qctvToAQ8i44+oF3swZPUb0= Subject key identifier: F7:BD:E0:4C:95:C6:BA:C2:44:68:6F:47:E0:9E:5D:48:12:3A:55:33 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 2A85E80ACDB21E5C3396E3E8B5CA9BE31ABBBF4C Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e31322e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:53 +0000 ROA not before: Wed 27 May 2026 07:29:53 +0000 ROA not after: Wed 26 May 2027 07:34:53 +0000 asID: 9808 IP address blocks: 223.160.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:85:e8:0a:cd:b2:1e:5c:33:96:e3:e8:b5:ca:9b:e3:1a:bb:bf:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:53 2026 GMT Not After : May 26 07:34:53 2027 GMT Subject: CN=F7BDE04C95C6BAC244686F47E09E5D48123A5533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ea:f6:96:66:56:f5:95:ac:9b:f2:35:fe:a9: 3d:63:3a:6b:bb:f5:5e:c0:c0:39:14:b2:b0:0c:cb: 06:15:62:fc:7f:fd:52:26:75:5b:4e:45:5b:9c:5e: 2d:c0:8f:22:72:aa:72:4f:db:c5:eb:da:30:cc:22: ec:11:76:d0:1e:f7:7f:7b:26:29:63:8b:1f:47:96: dd:6d:ba:80:1e:97:b4:eb:d6:43:6a:68:e6:1c:46: ca:6d:09:85:3b:a9:43:40:55:26:8e:f1:a9:06:2d: d9:d4:8c:70:14:03:ae:9b:52:58:ce:26:ef:d3:9c: a2:72:13:39:51:b8:28:e5:29:49:30:57:0f:bf:40: e5:6f:2e:33:d8:c5:a4:d3:4b:01:2e:42:97:0a:28: 26:d3:17:ec:2a:ea:7a:15:68:f4:7c:5e:1a:a3:45: fb:06:29:9a:26:57:01:a2:17:20:2a:1f:78:76:61: de:68:d4:98:fa:d4:e8:0f:ff:40:27:7b:89:35:f1: 49:94:fb:9e:2b:75:e4:e9:0c:62:62:b0:a3:6f:9f: b1:ba:09:02:8c:bd:cc:27:58:c3:57:23:19:1d:3d: b9:2e:5b:7c:c4:f4:ac:7f:b4:0b:52:50:b0:6f:ce: 59:c6:3d:1c:ac:3e:40:1d:a9:78:f9:c4:11:92:8d: e8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BD:E0:4C:95:C6:BA:C2:44:68:6F:47:E0:9E:5D:48:12:3A:55:33 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e31322e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.12.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:6e:6a:6f:60:29:8d:dd:bb:dd:fc:9e:29:09:5b:2a:ea:c2: 9f:f3:68:33:02:dd:9a:dc:c5:b3:73:c9:f3:f7:2c:be:2c:36: 47:03:12:67:90:f1:2b:f2:83:34:7f:d6:bc:26:90:3c:16:12: 26:d8:f9:86:b9:77:6b:b4:9d:8a:9e:6b:73:5a:e1:15:e3:68: e7:90:c8:a5:a5:50:5b:4a:3f:58:fc:d9:1b:a6:23:40:3e:04: 46:b4:ab:ae:dc:04:d7:9a:35:de:4f:8e:02:4f:bd:bd:22:4e: e9:55:60:70:b6:67:6c:3f:6c:1c:65:34:f5:d3:8f:00:a5:99: 62:90:16:be:76:31:5a:6a:b2:37:da:08:a9:05:9d:25:da:a9: fd:ee:b4:e4:a1:b8:ef:d5:e1:e5:15:73:31:49:fe:60:f8:82: 1d:15:43:5b:55:e7:90:43:c9:e3:44:a8:cf:3c:4a:8c:08:ce: 0e:5a:c3:d6:71:fa:50:69:d1:14:02:cd:77:3f:8f:c4:59:cc: 05:e9:24:b3:9f:68:56:e2:d4:32:a7:7d:73:17:e7:88:49:a7: c6:64:c5:63:ce:19:dd:c5:3a:f6:9d:73:6e:16:e7:2d:7e:00: eb:f6:37:f2:ae:c3:d8:80:53:1d:60:76:a9:3a:6f:6e:fa:34: 1d:18:98:87 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUKoXoCs2yHlwzluPotcqb4xq7v0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTNaFw0yNzA1MjYwNzM0NTNaMDMxMTAvBgNV BAMTKEY3QkRFMDRDOTVDNkJBQzI0NDY4NkY0N0UwOUU1RDQ4MTIzQTU1MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx6vaWZlb1layb8jX+qT1jOmu7 9V7AwDkUsrAMywYVYvx//VImdVtORVucXi3AjyJyqnJP28Xr2jDMIuwRdtAe9397 Jiljix9Hlt1tuoAel7Tr1kNqaOYcRsptCYU7qUNAVSaO8akGLdnUjHAUA66bUljO Ju/TnKJyEzlRuCjlKUkwVw+/QOVvLjPYxaTTSwEuQpcKKCbTF+wq6noVaPR8Xhqj RfsGKZomVwGiFyAqH3h2Yd5o1Jj61OgP/0Ane4k18UmU+54rdeTpDGJisKNvn7G6 CQKMvcwnWMNXIxkdPbkuW3zE9Kx/tAtSULBvzlnGPRysPkAdqXj5xBGSjejzAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU973gTJXGusJEaG9H4J5dSBI6VTMwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyNzg2NTYxLzAvMzIzMjMzMmUzMTM2 MzAyZTMxMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAd+gDDANBgkqhkiG9w0BAQsFAAOCAQEAnW5qb2Apjd273fyeKQlbKurCn/No MwLdmtzFs3PJ8/csviw2RwMSZ5DxK/KDNH/WvCaQPBYSJtj5hrl3a7Sdip5rc1rh FeNo55DIpaVQW0o/WPzZG6YjQD4ERrSrrtwE15o13k+OAk+9vSJO6VVgcLZnbD9s HGU09dOPAKWZYpAWvnYxWmqyN9oIqQWdJdqp/e605KG479Xh5RVzMUn+YPiCHRVD W1XnkEPJ40SozzxKjAjODlrD1nH6UGnRFALNdz+PxFnMBekks59oVuLUMqd9cxfn iEmnxmTFY84Z3cU69p1zbhbnLX4A6/Y38q7D2IBTHWB2qTpvbvo0HRiYhw== -----END CERTIFICATE-----Generated at Fri May 29 23:00:57 2026 by rpki-client