$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3139322e302f32312d3234203d3e2039383038.roa File: 3232332e3136302e3139322e302f32312d3234203d3e2039383038.roa (raw, json) Hash identifier: kO4FMkWssmGACJWC7lLrhPQL2XpXHDNPvl+KPQ+Srtw= Subject key identifier: CC:B1:BD:81:DB:91:3B:27:92:8D:02:A4:76:A9:34:F4:9B:C7:2C:BA Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 4AB750ABB472F35A3ED4A0D618B2835FE75724A7 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3139322e302f32312d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:57 +0000 ROA not before: Wed 27 May 2026 07:29:57 +0000 ROA not after: Wed 26 May 2027 07:34:57 +0000 asID: 9808 IP address blocks: 223.160.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b7:50:ab:b4:72:f3:5a:3e:d4:a0:d6:18:b2:83:5f:e7:57:24:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:57 2026 GMT Not After : May 26 07:34:57 2027 GMT Subject: CN=CCB1BD81DB913B27928D02A476A934F49BC72CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7f:42:7a:49:ed:9b:bf:1f:2e:39:3b:40:55: 64:ab:b8:dc:36:3f:78:1e:14:48:26:d5:5c:28:f6: 32:20:f7:a8:c0:5d:31:17:a0:e0:50:7f:a0:76:a2: 75:28:b4:89:be:f7:f4:9c:bd:e0:a3:fb:0b:f9:38: ef:82:39:58:44:a3:3f:dd:55:0e:42:f2:86:04:ee: 9e:31:b6:53:54:ab:6a:a8:58:64:2a:b1:9f:d1:bb: 29:a8:97:d9:e4:e7:5a:ea:ea:66:b0:b2:68:b7:14: 52:6f:ab:d5:9b:22:99:dd:e2:28:c0:6c:3f:ca:e6: c2:95:bf:72:fc:79:87:cc:e2:f3:e8:52:92:42:b7: a9:ff:4f:06:7e:4a:f4:31:02:17:e8:78:68:5a:a5: d8:87:ff:7f:04:60:33:7b:1f:0b:77:28:a3:15:01: 9c:ab:5f:a4:96:c0:d5:51:1f:67:16:15:45:26:af: a1:63:28:2f:43:f4:0e:24:a5:0e:76:58:9c:e1:8a: b2:52:0e:6d:f2:0d:da:ca:a9:1f:00:b1:8c:b6:28: 1d:0f:90:b8:9f:0d:41:5b:0b:7f:c1:a8:d8:71:54: 46:f8:7d:2b:b1:92:5f:40:b2:21:06:0f:78:6b:4f: e4:9a:d2:73:e3:79:82:4f:ef:57:5c:69:1f:5a:26: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B1:BD:81:DB:91:3B:27:92:8D:02:A4:76:A9:34:F4:9B:C7:2C:BA X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3139322e302f32312d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.192.0/21 Signature Algorithm: sha256WithRSAEncryption 63:c7:e3:f9:8c:4f:05:a1:6c:75:ee:9b:c4:86:44:59:05:28: 92:04:c3:5b:ff:2f:10:fb:ec:aa:75:53:ee:fa:c1:e6:f9:09: cc:ea:4d:3c:02:f1:33:60:23:e4:76:4c:c7:4b:51:08:d5:4e: 0d:96:33:d6:05:79:cb:66:79:d5:cb:74:5f:1b:92:55:0e:bd: 73:38:42:5d:84:4d:f2:bf:9d:50:ff:59:d4:02:a3:06:1f:97: 0f:df:94:e4:10:c4:ab:7e:f2:3a:b8:63:c1:01:9e:ab:13:6b: 3a:ae:d3:91:8b:28:7f:c3:16:81:8c:41:0d:6a:b7:5f:d9:0a: 04:81:79:71:e5:0e:49:98:8d:9c:1c:71:1e:23:ad:8c:6a:33: f1:fe:04:1c:bc:f0:de:da:5c:02:9e:97:8d:a4:1e:cc:e6:a5: 2d:fa:f9:5a:9a:52:a9:2c:4e:12:83:d6:81:18:98:fb:0e:4b: 39:be:99:aa:d6:b2:fa:4d:70:34:bb:7e:2d:b7:d7:26:c3:47: b0:08:cb:50:b9:7c:e9:7d:34:93:d5:3d:95:73:95:94:5f:f5: 88:4d:83:0c:4d:1f:b3:69:45:1a:78:8d:52:d4:f2:37:1d:a5: 73:6f:c4:4b:78:ba:33:61:d8:2e:d4:09:1a:77:32:08:8e:f8: 99:4e:dc:57 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSrdQq7Ry81o+1KDWGLKDX+dXJKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTdaFw0yNzA1MjYwNzM0NTdaMDMxMTAvBgNV BAMTKENDQjFCRDgxREI5MTNCMjc5MjhEMDJBNDc2QTkzNEY0OUJDNzJDQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBf0J6Se2bvx8uOTtAVWSruNw2 P3geFEgm1Vwo9jIg96jAXTEXoOBQf6B2onUotIm+9/ScveCj+wv5OO+COVhEoz/d VQ5C8oYE7p4xtlNUq2qoWGQqsZ/Ruymol9nk51rq6mawsmi3FFJvq9WbIpnd4ijA bD/K5sKVv3L8eYfM4vPoUpJCt6n/TwZ+SvQxAhfoeGhapdiH/38EYDN7Hwt3KKMV AZyrX6SWwNVRH2cWFUUmr6FjKC9D9A4kpQ52WJzhirJSDm3yDdrKqR8AsYy2KB0P kLifDUFbC3/BqNhxVEb4fSuxkl9AsiEGD3hrT+Sa0nPjeYJP71dcaR9aJvw1AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzLG9gduROyeSjQKkdqk09JvHLLowHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMwMmUzMTM5MzIyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA9+gwDANBgkqhkiG9w0BAQsFAAOCAQEAY8fj+YxPBaFsde6bxIZEWQUo kgTDW/8vEPvsqnVT7vrB5vkJzOpNPALxM2Aj5HZMx0tRCNVODZYz1gV5y2Z51ct0 XxuSVQ69czhCXYRN8r+dUP9Z1AKjBh+XD9+U5BDEq37yOrhjwQGeqxNrOq7TkYso f8MWgYxBDWq3X9kKBIF5ceUOSZiNnBxxHiOtjGoz8f4EHLzw3tpcAp6XjaQezOal Lfr5WppSqSxOEoPWgRiY+w5LOb6Zqtay+k1wNLt+LbfXJsNHsAjLULl86X00k9U9 lXOVlF/1iE2DDE0fs2lFGniNUtTyNx2lc2/ES3i6M2HYLtQJGncyCI74mU7cVw== -----END CERTIFICATE-----Generated at Sat May 30 00:03:00 2026 by rpki-client