$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e32302e302f32322d3234203d3e203536303430.roa File: 3232332e3136302e32302e302f32322d3234203d3e203536303430.roa (raw, json) Hash identifier: hgqTzpf5qeGL/p0HI74aIW/Ykewz94+hG2moEDfL7aU= Subject key identifier: 83:3E:DC:77:A9:09:BA:E4:06:36:F2:58:87:8B:5B:19:80:D1:5A:6E Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 3D88C9B046CE996654312BD0569FD0BBCBC4E6EE Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e32302e302f32322d3234203d3e203536303430.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 56040 IP address blocks: 223.160.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:88:c9:b0:46:ce:99:66:54:31:2b:d0:56:9f:d0:bb:cb:c4:e6:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=833EDC77A909BAE40636F258878B5B1980D15A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:49:6d:e6:77:8d:c9:17:b2:f7:79:f5:86: 25:c1:25:4a:a7:dc:d1:72:3c:23:b3:02:cf:09:a9: a3:27:1f:1c:0b:f2:94:5e:86:6d:1f:dd:8a:c4:ab: f6:b8:fc:e2:91:1a:10:5e:0c:11:bb:23:11:99:13: a2:92:c6:73:5a:23:a5:f7:ac:ff:bf:31:88:a3:52: 60:6a:c5:97:e9:cb:80:d6:dd:5b:44:60:7b:f5:40: cf:34:d2:4a:7e:34:d5:83:d6:07:9b:c3:97:f6:77: 23:a3:b4:ee:ab:87:84:13:d9:2a:39:b9:b5:1b:3e: 64:f0:a2:56:cf:20:75:0e:bf:a2:6b:5e:dc:06:fe: 64:df:af:c6:c3:6f:30:1f:3a:4b:11:ea:1d:d2:65: 58:89:09:87:3e:85:da:b6:04:f4:7a:94:1b:cb:e7: db:72:dd:9e:c7:39:d7:46:cf:e6:9a:36:d7:41:d3: 4f:c4:6c:79:50:92:fe:cd:ad:3b:17:b1:ea:fa:31: aa:7f:ef:6b:3a:26:e3:71:e4:1b:a9:b4:7e:42:ad: 43:ee:18:df:1f:60:3c:8a:30:d7:7c:5a:ad:12:b2: ed:61:5e:47:66:fe:1b:76:1b:c0:ce:37:68:22:34: da:60:a9:32:6f:d6:3f:4f:ea:da:37:81:16:ab:a0: 5c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3E:DC:77:A9:09:BA:E4:06:36:F2:58:87:8B:5B:19:80:D1:5A:6E X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e32302e302f32322d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.20.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:7d:3c:b5:3d:81:5d:c4:5e:40:10:1f:b2:61:d9:81:c9:af: 24:d8:bb:b5:e7:3d:7c:ce:8f:60:7d:24:14:03:a3:f1:04:4b: 92:02:47:0f:a0:1d:54:a6:16:71:50:7a:25:ea:e1:9f:a2:da: 24:c8:1a:57:a0:5b:44:5b:58:51:39:c7:69:c4:c0:2a:f8:86: d4:91:02:76:5c:ef:5c:57:b4:bb:a2:55:4a:c6:c0:de:fa:c2: 44:6c:74:e9:67:60:2a:53:4e:88:b6:97:df:0d:59:61:74:a9: 11:5a:7f:12:ef:cb:cb:e3:9e:b7:62:48:4d:05:c5:b5:38:dd: 38:91:aa:e8:70:c3:cb:03:f1:c5:ea:d8:36:ec:81:23:7e:cc: c6:e0:ee:d9:eb:eb:75:2e:41:fe:ca:9b:02:aa:a1:fe:d4:34: b6:f2:4e:49:4c:fa:62:ea:e9:ba:d7:7b:f0:9a:4d:d8:26:64: 82:04:ea:bc:b6:63:4e:47:de:59:25:c3:7f:80:c0:dc:fb:9a: 07:31:d6:67:63:30:cf:78:19:e8:e3:18:31:db:7d:59:7f:92: ae:c1:37:83:40:bb:8b:1e:c8:08:7b:94:ab:a5:df:82:1e:6e: f5:39:75:e8:68:91:8d:d3:4d:0d:06:01:6f:dd:89:85:d9:56: df:17:47:e5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPYjJsEbOmWZUMSvQVp/Qu8vE5u4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKDgzM0VEQzc3QTkwOUJBRTQwNjM2RjI1ODg3OEI1QjE5ODBEMTVBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYfklt5neNyRey93n1hiXBJUqn 3NFyPCOzAs8JqaMnHxwL8pRehm0f3YrEq/a4/OKRGhBeDBG7IxGZE6KSxnNaI6X3 rP+/MYijUmBqxZfpy4DW3VtEYHv1QM800kp+NNWD1gebw5f2dyOjtO6rh4QT2So5 ubUbPmTwolbPIHUOv6JrXtwG/mTfr8bDbzAfOksR6h3SZViJCYc+hdq2BPR6lBvL 59ty3Z7HOddGz+aaNtdB00/EbHlQkv7NrTsXser6Map/72s6JuNx5BuptH5CrUPu GN8fYDyKMNd8Wq0Ssu1hXkdm/ht2G8DON2giNNpgqTJv1j9P6to3gRaroFw/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUgz7cd6kJuuQGNvJYh4tbGYDRWm4wHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMwMmUzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAt+gFDANBgkqhkiG9w0BAQsFAAOCAQEADH08tT2BXcReQBAfsmHZgcmv JNi7tec9fM6PYH0kFAOj8QRLkgJHD6AdVKYWcVB6Jerhn6LaJMgaV6BbRFtYUTnH acTAKviG1JECdlzvXFe0u6JVSsbA3vrCRGx06WdgKlNOiLaX3w1ZYXSpEVp/Eu/L y+Oet2JITQXFtTjdOJGq6HDDywPxxerYNuyBI37MxuDu2evrdS5B/sqbAqqh/tQ0 tvJOSUz6Yurputd78JpN2CZkggTqvLZjTkfeWSXDf4DA3PuaBzHWZ2Mwz3gZ6OMY Mdt9WX+SrsE3g0C7ix7ICHuUq6Xfgh5u9Tl16GiRjdNNDQYBb92JhdlW3xdH5Q== -----END CERTIFICATE-----Generated at Fri May 29 23:00:56 2026 by rpki-client