$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3231362e302f32322d3234203d3e203536303435.roa File: 3232332e3136302e3231362e302f32322d3234203d3e203536303435.roa (raw, json) Hash identifier: GREWXH8+K0k1gqMRkt5E/sGwVQj9ud2pTKLRsy1n1Ew= Subject key identifier: ED:51:34:8E:10:9A:06:93:35:08:B0:9F:43:AE:67:B3:07:7D:80:81 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 1FAD2EF8BD198E60D3DA185C171B03C57D2DB547 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3231362e302f32322d3234203d3e203536303435.roa Signing time: Wed 27 May 2026 07:34:52 +0000 ROA not before: Wed 27 May 2026 07:29:52 +0000 ROA not after: Wed 26 May 2027 07:34:52 +0000 asID: 56045 IP address blocks: 223.160.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ad:2e:f8:bd:19:8e:60:d3:da:18:5c:17:1b:03:c5:7d:2d:b5:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:52 2026 GMT Not After : May 26 07:34:52 2027 GMT Subject: CN=ED51348E109A06933508B09F43AE67B3077D8081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:aa:35:18:c1:17:44:f6:63:83:6f:da:fd:4d: 30:3a:f9:6a:03:dc:56:e7:07:72:ed:89:31:08:03: 98:e3:4f:b4:e8:26:c9:6a:ac:d2:c4:27:67:32:21: 62:a2:da:e2:11:b4:b1:dd:e3:ea:0b:27:12:f2:a2: db:2e:2b:b5:fd:fb:1a:2c:14:4b:78:75:df:51:4e: 1c:14:47:b9:2b:75:57:e2:e3:b3:86:d2:d8:59:86: 3a:6b:d1:53:2e:1a:8f:d2:61:fa:ce:2d:4e:41:e6: 70:55:23:8d:a3:10:f6:68:b8:61:92:3e:a1:61:f8: 62:99:c9:69:ca:cf:87:f1:63:9c:82:f9:4e:45:2e: 4e:07:e5:73:91:d9:a7:03:c1:6c:e5:1b:3b:e0:84: 77:b8:01:5e:d8:64:98:09:92:73:b9:5b:d8:96:b9: 5b:1c:ca:17:8e:d0:c9:ea:ad:e2:c2:f7:5e:dd:d5: d0:ef:79:62:eb:a3:8c:d2:6e:46:e0:14:3e:83:47: 98:d8:59:ca:75:d4:12:20:52:ad:69:42:8f:d3:aa: 46:d1:07:de:05:7e:c3:f9:8e:a7:4e:57:c8:fe:a9: d1:51:23:11:61:07:5b:1d:9b:73:a5:6f:1a:2c:96: 8b:35:d8:8c:8d:33:bf:ef:8f:9b:ac:85:9b:a8:78: fd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:51:34:8E:10:9A:06:93:35:08:B0:9F:43:AE:67:B3:07:7D:80:81 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3231362e302f32322d3234203d3e203536303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.216.0/22 Signature Algorithm: sha256WithRSAEncryption 08:26:a1:74:d0:54:16:8c:9a:1e:f3:2d:1c:38:15:00:3f:46: fb:d5:fb:88:ad:8f:9c:fa:14:91:90:7f:28:f4:89:59:53:e3: 57:a8:0d:67:b9:5f:cb:d8:59:60:ad:6f:73:2c:27:70:cd:3d: 14:d8:bd:20:b2:81:b3:be:cb:1c:87:c5:79:fb:69:04:03:04: 6c:c6:c4:05:a6:38:cf:b2:e9:2c:39:11:aa:c0:0a:38:b7:0c: c8:6c:81:84:64:d6:87:89:ab:85:db:0a:76:aa:35:e1:75:51: 18:97:5c:f6:f7:57:1c:ca:dc:86:17:04:9a:53:ba:a0:b0:19: 56:b9:ab:3f:40:f7:e9:d2:e8:b4:e9:31:75:0d:f3:8b:b9:d0: bc:53:b5:ac:62:f0:99:2d:48:07:d4:5d:7c:71:90:39:f2:d4: c9:36:95:fc:fa:31:bf:12:6b:eb:11:e7:8f:f9:63:94:8b:6a: cb:02:79:6b:16:d8:24:b7:c4:ad:fd:99:2f:77:a0:26:46:7d: 72:e2:a1:a7:c4:29:e1:b5:73:f5:e4:44:8d:e0:a0:35:c7:af: 34:13:25:94:9d:23:3b:a6:cf:99:1f:1d:c0:f1:4d:84:39:e1: b1:c8:16:b9:b6:b6:35:13:53:c4:9b:b7:1b:81:3c:1f:9a:b7: c2:7f:58:8c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUH60u+L0ZjmDT2hhcFxsDxX0ttUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTJaFw0yNzA1MjYwNzM0NTJaMDMxMTAvBgNV BAMTKEVENTEzNDhFMTA5QTA2OTMzNTA4QjA5RjQzQUU2N0IzMDc3RDgwODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRqjUYwRdE9mODb9r9TTA6+WoD 3FbnB3LtiTEIA5jjT7ToJslqrNLEJ2cyIWKi2uIRtLHd4+oLJxLyotsuK7X9+xos FEt4dd9RThwUR7krdVfi47OG0thZhjpr0VMuGo/SYfrOLU5B5nBVI42jEPZouGGS PqFh+GKZyWnKz4fxY5yC+U5FLk4H5XOR2acDwWzlGzvghHe4AV7YZJgJknO5W9iW uVscyheO0MnqreLC917d1dDveWLro4zSbkbgFD6DR5jYWcp11BIgUq1pQo/TqkbR B94FfsP5jqdOV8j+qdFRIxFhB1sdm3Olbxoslos12IyNM7/vj5ushZuoeP3lAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU7VE0jhCaBpM1CLCfQ65nswd9gIEwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMDJlMzIzMTM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAt+g2DANBgkqhkiG9w0BAQsFAAOCAQEACCahdNBUFoyaHvMtHDgV AD9G+9X7iK2PnPoUkZB/KPSJWVPjV6gNZ7lfy9hZYK1vcywncM09FNi9ILKBs77L HIfFeftpBAMEbMbEBaY4z7LpLDkRqsAKOLcMyGyBhGTWh4mrhdsKdqo14XVRGJdc 9vdXHMrchhcEmlO6oLAZVrmrP0D36dLotOkxdQ3zi7nQvFO1rGLwmS1IB9RdfHGQ OfLUyTaV/PoxvxJr6xHnj/ljlItqywJ5axbYJLfErf2ZL3egJkZ9cuKhp8Qp4bVz 9eREjeCgNcevNBMllJ0jO6bPmR8dwPFNhDnhscgWuba2NRNTxJu3G4E8H5q3wn9Y jA== -----END CERTIFICATE-----Generated at Fri May 29 23:00:39 2026 by rpki-client