$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3230302e302f32322d3234203d3e2039383038.roa File: 3232332e3136302e3230302e302f32322d3234203d3e2039383038.roa (raw, json) Hash identifier: Yekfcy0K04USSCOuN/cxaQ9OFtkkW9li43Xdwuc+bUY= Subject key identifier: A3:B6:72:85:01:94:BF:83:31:02:FD:1B:12:EE:A8:C7:7D:3A:08:92 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 68148D129377882AEDBC8E972ABA48D7A5AD6CD6 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3230302e302f32322d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:53 +0000 ROA not before: Wed 27 May 2026 07:29:53 +0000 ROA not after: Wed 26 May 2027 07:34:53 +0000 asID: 9808 IP address blocks: 223.160.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:14:8d:12:93:77:88:2a:ed:bc:8e:97:2a:ba:48:d7:a5:ad:6c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:53 2026 GMT Not After : May 26 07:34:53 2027 GMT Subject: CN=A3B672850194BF833102FD1B12EEA8C77D3A0892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:73:6f:54:ad:1e:e1:18:e8:16:75:66:57:6d: d5:0d:6a:b5:e9:6b:ec:e6:8b:15:8b:84:ce:67:49: eb:4b:cb:72:47:b0:4c:f4:5e:c9:22:c7:3e:dc:45: e6:9e:80:66:af:a6:30:9b:f1:ef:6d:21:a2:f8:d8: d3:1e:f1:db:ac:78:3d:d7:d7:ec:55:53:2d:b9:1d: 7a:88:35:a6:bd:ae:4f:ad:3d:f8:bc:55:53:ae:f4: 88:99:93:61:68:00:3b:b2:57:df:9c:15:68:37:2d: e0:36:96:e9:e5:8e:99:f7:12:7f:9a:19:cd:42:fd: bc:1e:e2:bd:8b:e9:12:85:61:03:50:59:8c:ee:a3: e6:f0:39:5f:48:40:d3:93:ec:f9:25:ad:7a:d7:c5: 84:11:85:d5:82:ee:b2:a1:3e:b2:a3:b7:ae:f5:f3: 66:38:50:ab:87:a7:d9:e2:fd:9b:da:29:eb:d4:5d: 1e:b2:3f:5e:03:ea:cd:0a:a3:0a:78:18:61:94:8a: 9e:ee:35:a4:e0:5b:a7:20:31:86:1c:ba:40:a5:27: 25:8b:88:cb:e8:0a:ad:50:58:39:13:78:a6:41:7f: a9:de:7f:f6:bf:7f:40:b2:b1:87:99:1e:34:03:62: 3f:66:73:19:14:51:fe:c3:68:04:9b:be:15:a5:db: d4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B6:72:85:01:94:BF:83:31:02:FD:1B:12:EE:A8:C7:7D:3A:08:92 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3230302e302f32322d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.200.0/22 Signature Algorithm: sha256WithRSAEncryption 77:5a:b2:73:9a:99:4d:0d:4a:81:b8:3c:c7:c7:58:43:15:4c: b1:0c:4c:c5:48:01:d5:a0:61:9c:9e:61:0e:66:c6:13:ae:c4: 88:47:ce:6e:0a:c8:bb:88:7d:5e:ea:52:d1:92:bd:1e:f6:67: 5a:52:86:7e:4a:5c:11:cf:95:c9:5a:8b:49:e1:31:e0:0e:1d: 76:9f:0b:ff:70:0c:a6:8d:42:e2:a8:b8:cb:88:48:05:cf:42: 30:62:c7:b8:9e:03:d6:5f:e7:61:60:90:af:fd:4f:93:35:a0: 19:bc:0f:fb:41:38:a4:de:06:79:77:f5:a0:6f:1c:64:1a:f7: 19:ee:cf:11:4e:b9:54:62:18:ab:a3:32:58:f8:4e:4d:59:57: 89:63:13:c4:2d:c5:d7:ec:94:2d:25:78:f5:df:80:91:d5:08: 77:24:ed:74:82:87:46:c9:54:16:37:89:9a:29:91:34:88:37: 88:f7:1b:f3:79:c8:0b:46:e5:a3:22:4e:4d:ff:21:17:17:02: 4e:17:32:53:d6:ec:bf:1a:fc:d4:c5:9e:e3:3a:49:ab:11:cb: 49:67:95:0e:b2:1e:30:61:c4:61:ee:cc:e8:e5:cb:34:da:65: 0b:7e:f4:66:e9:8c:c7:b6:5f:02:04:44:53:95:84:ff:20:d3: 18:89:52:7b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUaBSNEpN3iCrtvI6XKrpI16WtbNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTNaFw0yNzA1MjYwNzM0NTNaMDMxMTAvBgNV BAMTKEEzQjY3Mjg1MDE5NEJGODMzMTAyRkQxQjEyRUVBOEM3N0QzQTA4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrc29UrR7hGOgWdWZXbdUNarXp a+zmixWLhM5nSetLy3JHsEz0Xskixz7cReaegGavpjCb8e9tIaL42NMe8duseD3X 1+xVUy25HXqINaa9rk+tPfi8VVOu9IiZk2FoADuyV9+cFWg3LeA2lunljpn3En+a Gc1C/bwe4r2L6RKFYQNQWYzuo+bwOV9IQNOT7PklrXrXxYQRhdWC7rKhPrKjt671 82Y4UKuHp9ni/ZvaKevUXR6yP14D6s0Kowp4GGGUip7uNaTgW6cgMYYcukClJyWL iMvoCq1QWDkTeKZBf6nef/a/f0CysYeZHjQDYj9mcxkUUf7DaASbvhWl29TvAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUo7ZyhQGUv4MxAv0bEu6ox306CJIwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMwMmUzMjMwMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAt+gyDANBgkqhkiG9w0BAQsFAAOCAQEAd1qyc5qZTQ1Kgbg8x8dYQxVM sQxMxUgB1aBhnJ5hDmbGE67EiEfObgrIu4h9XupS0ZK9HvZnWlKGfkpcEc+VyVqL SeEx4A4ddp8L/3AMpo1C4qi4y4hIBc9CMGLHuJ4D1l/nYWCQr/1PkzWgGbwP+0E4 pN4GeXf1oG8cZBr3Ge7PEU65VGIYq6MyWPhOTVlXiWMTxC3F1+yULSV49d+AkdUI dyTtdIKHRslUFjeJmimRNIg3iPcb83nIC0bloyJOTf8hFxcCThcyU9bsvxr81MWe 4zpJqxHLSWeVDrIeMGHEYe7M6OXLNNplC370ZumMx7ZfAgREU5WE/yDTGIlSew== -----END CERTIFICATE-----Generated at Fri May 29 23:00:11 2026 by rpki-client