$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3230382e302f32312d3234203d3e203536303431.roa File: 3232332e3136302e3230382e302f32312d3234203d3e203536303431.roa (raw, json) Hash identifier: I8JhyKjg/gs6JX4ei+P/aotSRqtxBBpqrq6vZoEY3I4= Subject key identifier: 46:24:EA:99:FF:C3:2E:06:EF:0A:94:52:B7:A5:6E:AD:DD:84:56:49 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 1BEBCC6716B7F966E4080F161B137C40889A90BC Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3230382e302f32312d3234203d3e203536303431.roa Signing time: Wed 27 May 2026 07:34:55 +0000 ROA not before: Wed 27 May 2026 07:29:55 +0000 ROA not after: Wed 26 May 2027 07:34:55 +0000 asID: 56041 IP address blocks: 223.160.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:eb:cc:67:16:b7:f9:66:e4:08:0f:16:1b:13:7c:40:88:9a:90:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:55 2026 GMT Not After : May 26 07:34:55 2027 GMT Subject: CN=4624EA99FFC32E06EF0A9452B7A56EADDD845649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:a0:e3:51:84:ce:e8:45:50:13:51:59:87: b8:0d:b5:98:4b:e2:f2:3f:33:dd:3f:9c:60:53:80: 87:c3:71:5c:93:fc:90:ab:e1:b3:8d:8d:6d:d1:be: 62:70:a1:70:c0:5b:20:40:8c:d2:0f:cc:bd:11:39: f2:e5:44:dc:4d:a1:47:fc:80:32:87:4e:b7:bb:b1: db:e1:32:8f:60:04:bd:48:97:73:cf:75:3e:34:55: 88:68:42:7b:f5:e6:84:67:59:0a:ab:89:3f:dc:99: ab:cb:18:d0:8c:b5:a6:10:a4:cf:3c:c0:0d:04:2d: 18:a8:c1:ea:23:fd:ff:8c:e4:96:79:76:3d:d6:52: 8d:cc:f1:05:86:a6:06:cb:57:51:b4:47:c3:4a:f4: ed:c4:00:1d:e9:56:4e:eb:7f:43:cd:ed:5b:32:7b: 74:b8:d4:21:61:10:52:9f:e6:eb:6c:79:ba:c9:32: 3b:ba:0d:bf:1e:6f:7a:d4:80:59:7c:34:82:cd:a5: 61:cd:de:96:b0:e7:4c:b4:8c:67:e1:5d:d4:95:b1: 36:b8:95:dd:e0:20:42:eb:5d:02:4d:0c:d2:37:82: 25:97:6b:a2:dc:0a:e9:c8:d6:e5:37:78:a5:da:44: 09:9f:33:8b:94:fd:b3:22:f1:e1:22:66:5d:e3:14: fc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:24:EA:99:FF:C3:2E:06:EF:0A:94:52:B7:A5:6E:AD:DD:84:56:49 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3230382e302f32312d3234203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.208.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:9e:23:e7:69:75:f9:89:8c:de:a1:92:41:7e:a4:ef:a4:7d: 82:27:66:dc:bd:ce:78:67:1f:3d:88:78:c6:8d:f0:a0:20:a8: 29:70:ee:82:8f:67:94:78:68:7d:de:bb:90:17:bc:81:f1:c7: 6e:90:68:39:88:3c:72:8e:59:57:f8:d9:89:bf:9d:22:96:dd: a5:2f:3b:02:bd:b9:54:ec:e4:50:0e:1e:4f:ea:1a:bb:30:79: e9:b3:de:96:fc:11:89:c3:f2:e6:5a:ab:d1:e2:6f:3a:59:31: d5:9b:11:f8:62:47:76:09:ac:2c:30:e7:8a:fa:36:61:6f:da: e9:0f:30:50:e7:03:5c:cb:9e:95:9b:f7:df:ee:9e:fc:3d:ae: 3a:7b:43:21:1d:29:88:a6:4e:c9:58:35:99:5b:ed:48:19:64: 63:f8:bf:aa:2b:de:4b:82:12:48:9e:76:a3:62:39:af:c7:a3: 24:19:d9:8e:14:9a:4b:30:d6:9d:bc:23:22:3e:82:b6:d2:cb: 1c:1c:5a:be:c6:3d:5f:61:6b:db:6e:b1:7f:13:c2:09:d1:0b: fe:cb:48:5d:60:03:68:9d:b3:13:82:3d:7a:d0:5d:e9:a1:ad: f5:fa:69:f7:55:31:cf:f6:b2:87:be:47:ad:ab:16:d5:43:a7: 4a:7e:65:f8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUG+vMZxa3+WbkCA8WGxN8QIiakLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTVaFw0yNzA1MjYwNzM0NTVaMDMxMTAvBgNV BAMTKDQ2MjRFQTk5RkZDMzJFMDZFRjBBOTQ1MkI3QTU2RUFEREQ4NDU2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEv6DjUYTO6EVQE1FZh7gNtZhL 4vI/M90/nGBTgIfDcVyT/JCr4bONjW3RvmJwoXDAWyBAjNIPzL0ROfLlRNxNoUf8 gDKHTre7sdvhMo9gBL1Il3PPdT40VYhoQnv15oRnWQqriT/cmavLGNCMtaYQpM88 wA0ELRioweoj/f+M5JZ5dj3WUo3M8QWGpgbLV1G0R8NK9O3EAB3pVk7rf0PN7Vsy e3S41CFhEFKf5utsebrJMju6Db8eb3rUgFl8NILNpWHN3paw50y0jGfhXdSVsTa4 ld3gIELrXQJNDNI3giWXa6LcCunI1uU3eKXaRAmfM4uU/bMi8eEiZl3jFPx1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQURiTqmf/DLgbvCpRSt6Vurd2EVkkwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMDJlMzIzMDM4MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA9+g0DANBgkqhkiG9w0BAQsFAAOCAQEAX54j52l1+YmM3qGSQX6k 76R9gidm3L3OeGcfPYh4xo3woCCoKXDugo9nlHhofd67kBe8gfHHbpBoOYg8co5Z V/jZib+dIpbdpS87Ar25VOzkUA4eT+oauzB56bPelvwRicPy5lqr0eJvOlkx1ZsR +GJHdgmsLDDnivo2YW/a6Q8wUOcDXMuelZv33+6e/D2uOntDIR0piKZOyVg1mVvt SBlkY/i/qiveS4ISSJ52o2I5r8ejJBnZjhSaSzDWnbwjIj6CttLLHBxavsY9X2Fr 226xfxPCCdEL/stIXWADaJ2zE4I9etBd6aGt9fpp91Uxz/ayh75HrasW1UOnSn5l +A== -----END CERTIFICATE-----Generated at Sat May 30 00:03:00 2026 by rpki-client