$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3136382e302f32312d3234203d3e2039383038.roa File: 3232332e3136302e3136382e302f32312d3234203d3e2039383038.roa (raw, json) Hash identifier: gnGge40VPtBj9AuE7kOn1IiYfqDHqzKoGDGDnerzmTo= Subject key identifier: 6B:34:52:BE:52:3A:91:CC:86:EB:65:D2:FE:4C:92:20:1D:91:5B:05 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 22FC3BF8B9652DFEE0D1CE91E6C866E1BA9997FF Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3136382e302f32312d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:58 +0000 ROA not before: Wed 27 May 2026 07:29:58 +0000 ROA not after: Wed 26 May 2027 07:34:58 +0000 asID: 9808 IP address blocks: 223.160.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:fc:3b:f8:b9:65:2d:fe:e0:d1:ce:91:e6:c8:66:e1:ba:99:97:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:58 2026 GMT Not After : May 26 07:34:58 2027 GMT Subject: CN=6B3452BE523A91CC86EB65D2FE4C92201D915B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:57:95:62:16:0c:b4:6d:f7:db:76:77:16: 40:41:93:20:73:96:e4:52:bd:cc:90:c0:46:98:bb: ab:fe:e6:cb:d0:e7:86:33:e8:d2:51:a7:a4:72:82: d6:c4:17:dc:46:18:ef:07:de:38:98:4c:c1:e5:54: cd:19:46:bf:82:08:6f:ac:b9:63:e1:53:5c:32:7e: e8:06:1b:92:9b:1a:92:39:0d:91:20:d8:f3:20:80: 2d:ea:53:8f:3d:65:8c:d9:ee:c8:bd:76:28:e9:88: de:fe:2f:ab:2f:d1:5d:8f:c6:50:6c:64:a0:9a:7b: a9:36:09:b2:07:78:ee:70:43:68:d5:62:bb:cb:54: b4:5b:3e:cd:65:72:6e:3e:2e:b3:33:ad:bb:3d:b4: 8a:e1:86:c3:0f:96:33:e5:67:0f:bf:40:38:1c:25: 7e:a6:97:85:70:41:fb:31:3d:85:91:8b:8e:a8:ff: 96:0f:32:72:b1:19:8a:d3:4d:df:4a:c0:23:07:91: b0:d1:2f:f1:c3:b7:c1:ba:d2:62:95:c8:5c:5b:80: 90:b8:ca:35:0d:7e:f4:c2:0d:94:19:b7:a9:c8:bb: 64:63:f2:e9:74:c2:ed:d9:b1:4a:e7:a4:a8:70:b2: 5f:56:4e:fe:a5:80:0f:e6:ff:c0:7e:a8:fe:15:44: 74:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:34:52:BE:52:3A:91:CC:86:EB:65:D2:FE:4C:92:20:1D:91:5B:05 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3136382e302f32312d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.168.0/21 Signature Algorithm: sha256WithRSAEncryption b7:80:71:bb:da:ac:cb:18:63:b4:c5:50:18:68:a6:d8:44:1b: 90:74:f8:eb:de:c3:77:59:e2:00:f0:f0:ab:0a:7d:31:39:f2: 74:c4:a4:3c:ce:2d:fd:35:d3:d7:1f:82:54:1a:cb:af:40:32: 0d:21:fb:d1:94:a3:3f:89:ab:1c:de:1f:d1:53:1a:ce:bb:07: 61:bf:d1:5e:95:62:57:a8:b9:6e:10:87:56:16:1b:a0:23:fa: a9:21:4f:0c:be:d1:91:8e:05:d1:43:7d:5b:4b:66:6e:df:51: 9f:03:3a:cd:bd:2e:84:e7:54:c6:01:37:80:e1:ef:eb:94:a6: ec:6b:bb:9c:cc:84:5e:ea:62:28:53:f8:7c:c9:f1:72:ea:c0: 3a:a4:f4:56:86:15:4f:a2:f0:65:fd:a6:fb:b6:2e:94:54:cd: e8:c1:95:0f:ff:cb:99:e7:af:cf:e7:1b:b2:7f:d7:75:ce:bf: 3c:b4:75:eb:93:4b:23:6f:0b:3e:b2:f8:30:74:15:61:e4:91: e6:f4:46:04:35:1c:06:81:a3:94:fb:ae:7c:ab:52:fc:49:3b: a6:ac:3f:83:d8:63:b6:c3:72:7d:9b:c7:3a:99:de:ee:81:29: e5:8f:5a:e5:37:73:00:e8:08:43:ae:12:84:5e:77:69:9f:2c: b5:a7:60:db -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUIvw7+LllLf7g0c6R5shm4bqZl/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NThaFw0yNzA1MjYwNzM0NThaMDMxMTAvBgNV BAMTKDZCMzQ1MkJFNTIzQTkxQ0M4NkVCNjVEMkZFNEM5MjIwMUQ5MTVCMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2vVeVYhYMtG3323Z3FkBBkyBz luRSvcyQwEaYu6v+5svQ54Yz6NJRp6RygtbEF9xGGO8H3jiYTMHlVM0ZRr+CCG+s uWPhU1wyfugGG5KbGpI5DZEg2PMggC3qU489ZYzZ7si9dijpiN7+L6sv0V2PxlBs ZKCae6k2CbIHeO5wQ2jVYrvLVLRbPs1lcm4+LrMzrbs9tIrhhsMPljPlZw+/QDgc JX6ml4VwQfsxPYWRi46o/5YPMnKxGYrTTd9KwCMHkbDRL/HDt8G60mKVyFxbgJC4 yjUNfvTCDZQZt6nIu2Rj8ul0wu3ZsUrnpKhwsl9WTv6lgA/m/8B+qP4VRHRbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUazRSvlI6kcyG62XS/kySIB2RWwUwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMwMmUzMTM2MzgyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA9+gqDANBgkqhkiG9w0BAQsFAAOCAQEAt4Bxu9qsyxhjtMVQGGim2EQb kHT4697Dd1niAPDwqwp9MTnydMSkPM4t/TXT1x+CVBrLr0AyDSH70ZSjP4mrHN4f 0VMazrsHYb/RXpViV6i5bhCHVhYboCP6qSFPDL7RkY4F0UN9W0tmbt9RnwM6zb0u hOdUxgE3gOHv65Sm7Gu7nMyEXupiKFP4fMnxcurAOqT0VoYVT6LwZf2m+7YulFTN 6MGVD//Lmeevz+cbsn/Xdc6/PLR165NLI28LPrL4MHQVYeSR5vRGBDUcBoGjlPuu fKtS/Ek7pqw/g9hjtsNyfZvHOpne7oEp5Y9a5TdzAOgIQ64ShF53aZ8stadg2w== -----END CERTIFICATE-----Generated at Sat May 30 00:03:11 2026 by rpki-client