$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3134322e302f32332d3234203d3e2039383038.roa File: 3232332e3136302e3134322e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: gMJnIIfkkJi7zOcg3KQZVR0QOBpYHzWlI0HJNdEX6FY= Subject key identifier: 29:C7:04:9D:14:1C:16:3A:1F:A9:63:3E:62:81:2A:A8:3A:5E:41:D0 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 4D5DFD19F24F7F7528C2964992BBF70FEC372D63 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3134322e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:57 +0000 ROA not before: Wed 27 May 2026 07:29:57 +0000 ROA not after: Wed 26 May 2027 07:34:57 +0000 asID: 9808 IP address blocks: 223.160.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:5d:fd:19:f2:4f:7f:75:28:c2:96:49:92:bb:f7:0f:ec:37:2d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:57 2026 GMT Not After : May 26 07:34:57 2027 GMT Subject: CN=29C7049D141C163A1FA9633E62812AA83A5E41D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:70:7c:89:27:82:29:8e:5e:b0:0b:df:3a:66: 5f:9f:d0:95:f7:e2:51:83:65:04:91:bc:a8:0a:c4: 31:61:d0:f7:cc:3b:7c:c7:4d:2b:bc:c9:aa:f0:34: 4d:76:40:80:9d:6c:02:ab:55:5b:76:c7:09:06:67: a6:29:83:ae:3c:52:79:32:94:d0:89:2b:cf:3c:ab: 7a:80:1d:ac:de:56:c2:1f:16:f8:8a:d4:6f:e6:9b: 47:3c:24:99:b1:0b:5c:ab:55:7c:a5:47:13:d5:95: 3b:1b:23:d8:bc:0f:75:dc:08:8e:cc:bb:46:3a:71: 8b:e9:42:ab:ce:e1:88:ca:6d:2e:9c:ac:5d:47:a2: 31:55:db:b7:ea:e7:67:c3:03:ab:61:a2:2e:b8:85: 77:4c:42:b9:4d:7c:f9:8f:42:97:cc:c4:ff:9d:51: 15:d3:a5:de:31:52:84:6d:d0:19:14:84:77:55:80: 38:dd:f3:81:af:25:25:71:d1:f3:5e:3b:cf:38:46: f0:5d:ac:18:59:70:54:94:a1:fc:2c:fa:2c:12:1d: c4:00:a3:21:2a:10:04:93:9a:2e:cf:82:77:85:16: c7:42:84:6a:8d:33:24:f4:99:f3:33:13:03:0b:b8: 7f:7e:f9:c1:b9:c1:c5:4a:81:13:30:aa:75:e6:46: a3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C7:04:9D:14:1C:16:3A:1F:A9:63:3E:62:81:2A:A8:3A:5E:41:D0 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3134322e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.142.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:f1:6d:ff:f8:40:65:f1:41:ff:99:5d:1f:42:6e:c3:6d:19: 0a:0a:70:91:5e:cf:da:f5:95:7b:7c:2e:f8:3c:26:d7:cb:88: 98:8d:ba:0c:fa:5d:1e:6e:76:08:83:1d:f2:c9:6c:8e:34:7e: 5b:3e:c0:0f:0e:81:d7:37:ca:f6:cf:7d:3c:3e:81:07:d0:6b: 9b:7e:71:32:6d:84:09:bb:49:df:e6:0e:ab:20:90:c3:e2:00: 83:b6:1c:18:77:37:46:a7:0d:b1:51:15:d4:54:5d:a7:77:fe: 5e:b9:4e:25:4e:bf:2c:54:75:32:1e:64:da:87:d6:16:72:e9: 9e:6a:ad:e1:30:2b:28:01:55:fd:82:8b:76:6d:51:c8:be:e3: 04:05:7e:ed:26:91:ae:5b:4a:ca:9d:21:33:e0:c8:09:b4:19: c5:8a:ae:eb:62:fa:29:d0:3c:1c:44:cb:8b:51:69:cb:ad:56: 7b:58:63:57:b9:54:ce:bb:a3:92:3b:dd:7d:5b:00:d2:60:1a: ae:7b:30:31:dd:15:98:87:65:a6:77:2d:8f:f5:8c:d8:d7:60: 38:a1:75:4d:44:00:9a:88:23:17:2a:86:db:e1:fc:1f:5a:77: 96:b3:ea:e0:a8:5d:ea:43:d1:56:77:c8:0d:7f:24:d9:36:30: 82:6b:94:48 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUTV39GfJPf3UowpZJkrv3D+w3LWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTdaFw0yNzA1MjYwNzM0NTdaMDMxMTAvBgNV BAMTKDI5QzcwNDlEMTQxQzE2M0ExRkE5NjMzRTYyODEyQUE4M0E1RTQxRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQcHyJJ4Ipjl6wC986Zl+f0JX3 4lGDZQSRvKgKxDFh0PfMO3zHTSu8yarwNE12QICdbAKrVVt2xwkGZ6Ypg648Unky lNCJK888q3qAHazeVsIfFviK1G/mm0c8JJmxC1yrVXylRxPVlTsbI9i8D3XcCI7M u0Y6cYvpQqvO4YjKbS6crF1HojFV27fq52fDA6thoi64hXdMQrlNfPmPQpfMxP+d URXTpd4xUoRt0BkUhHdVgDjd84GvJSVx0fNeO884RvBdrBhZcFSUofws+iwSHcQA oyEqEASTmi7PgneFFsdChGqNMyT0mfMzEwMLuH9++cG5wcVKgRMwqnXmRqOHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUKccEnRQcFjofqWM+YoEqqDpeQdAwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMwMmUzMTM0MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd+gjjANBgkqhkiG9w0BAQsFAAOCAQEAHPFt//hAZfFB/5ldH0Juw20Z CgpwkV7P2vWVe3wu+Dwm18uImI26DPpdHm52CIMd8slsjjR+Wz7ADw6B1zfK9s99 PD6BB9Brm35xMm2ECbtJ3+YOqyCQw+IAg7YcGHc3RqcNsVEV1FRdp3f+XrlOJU6/ LFR1Mh5k2ofWFnLpnmqt4TArKAFV/YKLdm1RyL7jBAV+7SaRrltKyp0hM+DICbQZ xYqu62L6KdA8HETLi1Fpy61We1hjV7lUzrujkjvdfVsA0mAarnswMd0VmIdlpnct j/WM2NdgOKF1TUQAmogjFyqG2+H8H1p3lrPq4Khd6kPRVnfIDX8k2TYwgmuUSA== -----END CERTIFICATE-----Generated at Sat May 30 00:02:38 2026 by rpki-client