$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3133342e302f32332d3234203d3e203338303139.roa File: 3232332e3136302e3133342e302f32332d3234203d3e203338303139.roa (raw, json) Hash identifier: ONQ86xjjG9eOm72pc3waGejRtCd/s8ZgZZvCnMImCBk= Subject key identifier: 7F:1B:FD:E0:BD:A0:7C:43:DF:56:50:B3:43:B3:1D:3F:8D:E1:82:A0 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 3855C476D7B56D54BC4F4197A68359E3B1869414 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3133342e302f32332d3234203d3e203338303139.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 38019 IP address blocks: 223.160.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:55:c4:76:d7:b5:6d:54:bc:4f:41:97:a6:83:59:e3:b1:86:94:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=7F1BFDE0BDA07C43DF5650B343B31D3F8DE182A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e9:98:cd:5c:07:15:08:b3:b1:2e:8a:02:51: b5:fa:0b:d8:e7:d1:2f:02:30:be:e6:34:9e:fb:10: eb:bd:0d:93:74:ec:fc:5d:71:54:38:30:a7:25:cf: 79:78:47:d5:d0:ed:21:45:87:2b:87:30:47:4e:2b: f4:05:e3:d8:d1:b2:68:24:cf:be:78:df:24:5a:33: 96:6d:7f:76:a2:b5:5b:f9:91:e0:f9:67:49:b2:dd: 13:b7:3a:ce:b8:16:c5:30:13:dc:75:30:93:cf:e3: d9:32:b8:b3:48:a4:71:a7:f2:26:81:fc:67:eb:cb: c2:45:70:87:22:0a:38:4b:1e:b4:f9:ec:26:68:a7: 41:ab:9c:3e:53:42:63:30:b9:88:b2:48:8f:0a:d3: 76:6b:26:7d:af:86:f3:d2:6e:60:07:2d:31:3f:dc: 78:66:a1:5b:79:d8:fd:b2:a8:c8:fe:79:a1:00:0a: e6:7b:de:84:91:ed:b1:4d:ef:11:ac:0c:8d:8c:01: fa:ab:5e:9e:12:00:bc:54:8a:5a:22:62:f3:9d:52: e0:e3:89:0c:f4:5b:af:d7:ae:b3:33:50:19:57:37: 07:74:6e:f6:af:97:9b:81:f2:c9:d6:82:ea:a5:f7: f3:7f:f0:c5:f2:71:60:88:3c:90:98:70:e1:b9:59: 6d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:1B:FD:E0:BD:A0:7C:43:DF:56:50:B3:43:B3:1D:3F:8D:E1:82:A0 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3133342e302f32332d3234203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.134.0/23 Signature Algorithm: sha256WithRSAEncryption 37:fd:c4:0f:3d:3f:44:b7:f7:dc:04:d1:d0:76:6c:ef:2c:cb: a7:9c:0e:45:0d:d4:bc:4b:0b:37:d6:9c:cb:a9:e5:d2:1f:f9: 86:be:49:f8:ee:45:2f:d5:18:ad:72:a0:9f:8c:a8:8b:f7:d7: ad:0d:f0:b8:98:06:a2:f1:33:4f:ef:6a:3d:76:55:c9:c3:7e: 14:4c:34:9a:1e:16:55:b9:29:25:bd:d8:7b:e2:27:75:89:c0: 97:49:51:db:8d:12:ce:48:3d:18:da:98:2a:a8:fe:71:5b:59: 6a:8d:46:7c:ba:47:5c:35:0b:ac:89:91:4d:1c:6b:dc:7f:c9: 6b:2f:c9:a1:7d:18:b0:3c:74:d1:07:6c:4b:b9:8c:b7:91:a3: 9d:18:fb:bb:97:46:57:89:99:08:3b:ef:a7:2d:b8:83:b9:50: 76:61:5a:6e:25:4e:b9:00:6c:55:44:31:23:f8:f8:75:98:05: 04:28:01:e6:ba:48:ac:fc:d4:1f:63:ea:76:58:22:ba:bd:48: 48:69:1d:fd:8f:66:ee:9c:e2:9c:5f:48:89:43:29:5e:08:87: bd:cd:59:29:49:0c:d7:6d:e8:cc:9a:72:03:fa:31:e9:e8:9e: 66:2d:95:84:90:8c:d4:5b:18:9f:67:9a:94:a0:d0:89:70:d0: 68:b4:1f:63 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUOFXEdte1bVS8T0GXpoNZ47GGlBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKDdGMUJGREUwQkRBMDdDNDNERjU2NTBCMzQzQjMxRDNGOERFMTgyQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC76ZjNXAcVCLOxLooCUbX6C9jn 0S8CML7mNJ77EOu9DZN07PxdcVQ4MKclz3l4R9XQ7SFFhyuHMEdOK/QF49jRsmgk z7543yRaM5Ztf3aitVv5keD5Z0my3RO3Os64FsUwE9x1MJPP49kyuLNIpHGn8iaB /Gfry8JFcIciCjhLHrT57CZop0GrnD5TQmMwuYiySI8K03ZrJn2vhvPSbmAHLTE/ 3HhmoVt52P2yqMj+eaEACuZ73oSR7bFN7xGsDI2MAfqrXp4SALxUiloiYvOdUuDj iQz0W6/XrrMzUBlXNwd0bvavl5uB8snWguql9/N/8MXycWCIPJCYcOG5WW2bAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUfxv94L2gfEPfVlCzQ7MdP43hgqAwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMDJlMzEzMzM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAd+ghjANBgkqhkiG9w0BAQsFAAOCAQEAN/3EDz0/RLf33ATR0HZs 7yzLp5wORQ3UvEsLN9acy6nl0h/5hr5J+O5FL9UYrXKgn4yoi/fXrQ3wuJgGovEz T+9qPXZVycN+FEw0mh4WVbkpJb3Ye+IndYnAl0lR240Szkg9GNqYKqj+cVtZao1G fLpHXDULrImRTRxr3H/Jay/JoX0YsDx00QdsS7mMt5GjnRj7u5dGV4mZCDvvpy24 g7lQdmFabiVOuQBsVUQxI/j4dZgFBCgB5rpIrPzUH2Pqdlgiur1ISGkd/Y9m7pzi nF9IiUMpXgiHvc1ZKUkM123ozJpyA/ox6eieZi2VhJCM1FsYn2ealKDQiXDQaLQf Yw== -----END CERTIFICATE-----Generated at Fri May 29 23:01:17 2026 by rpki-client