$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3232302e302f32322d3234203d3e2039383038.roa File: 3232332e3136302e3232302e302f32322d3234203d3e2039383038.roa (raw, json) Hash identifier: og35QMtUJIr+7q8eI38MTZLQdu3Q3SZqABkRON1qxNs= Subject key identifier: 28:B8:96:21:B4:97:92:68:3E:92:55:D2:C6:29:59:15:2C:8B:0C:F1 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 1D235145E7586BCC76CF50A683F221496A39D184 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3232302e302f32322d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:53 +0000 ROA not before: Wed 27 May 2026 07:29:53 +0000 ROA not after: Wed 26 May 2027 07:34:53 +0000 asID: 9808 IP address blocks: 223.160.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:23:51:45:e7:58:6b:cc:76:cf:50:a6:83:f2:21:49:6a:39:d1:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:53 2026 GMT Not After : May 26 07:34:53 2027 GMT Subject: CN=28B89621B49792683E9255D2C62959152C8B0CF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3f:69:68:c1:c6:11:af:75:cc:fe:22:1d:68: 00:58:19:ec:08:5b:6a:a2:c5:6d:5b:e8:22:ca:db: dd:3a:ff:dd:c1:f9:75:a4:8d:0d:3d:b8:ec:33:25: 61:f5:3f:a0:93:be:2a:03:c7:ca:26:76:63:93:12: 5a:da:c6:20:cd:45:b6:a3:15:1e:78:0f:e3:8f:24: 2f:15:5c:a3:b2:e5:d7:d0:ea:3c:0b:e5:57:73:04: 77:49:48:82:8b:23:ed:b8:70:5c:7a:34:9e:4a:cf: db:f6:13:ca:f5:6a:65:ab:20:e0:b0:95:aa:56:f9: 58:96:96:ff:a4:a2:31:65:c9:cc:5e:c2:5b:c5:19: e9:a3:6d:c5:bf:37:54:9d:0a:7b:de:ee:22:81:d3: 45:1e:f2:17:40:24:3d:ff:94:d5:16:5a:9d:99:c8: ec:ac:1e:a3:08:0a:a6:88:9a:5d:e1:56:4f:67:ff: 0d:18:47:4e:8a:e2:36:0b:42:1c:66:6c:a8:31:cb: 9f:a3:22:df:af:1b:7b:4c:62:71:37:44:2f:a8:fd: 52:de:87:93:a3:8e:34:50:1f:56:c9:57:d7:3f:b9: d8:52:ce:9f:a8:dc:e6:84:52:d4:1e:2d:ca:c9:88: 20:48:75:01:08:26:ea:d4:07:1e:c6:99:51:26:74: 0e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B8:96:21:B4:97:92:68:3E:92:55:D2:C6:29:59:15:2C:8B:0C:F1 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3232302e302f32322d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.220.0/22 Signature Algorithm: sha256WithRSAEncryption b3:c1:28:43:8f:85:14:ad:42:e9:1f:fd:a4:d3:41:f4:1b:43: ed:8f:0f:a7:1d:c0:f9:dd:ea:4e:7a:d5:32:ff:b6:fb:0e:1f: 16:b5:a0:6d:93:15:71:4f:b2:2f:78:7e:25:9f:35:f0:f3:b6: 8d:72:70:2e:74:f0:e6:72:38:30:94:9e:2c:1c:b7:62:b9:cc: 88:1e:fe:9b:8f:fa:9c:72:8f:0a:24:45:4f:34:7f:4b:7b:ee: 17:5d:9c:cb:2c:84:4a:a0:97:ec:88:e8:58:2a:ea:3c:cb:aa: 9f:65:26:87:81:e3:d8:fc:40:c4:a3:83:1b:0a:a7:c4:0c:68: 2d:8b:a9:e1:5a:e3:7e:f1:3d:c7:76:56:23:22:c8:bf:8a:d1: 29:a9:c2:4c:dd:4b:12:f9:45:3a:83:0a:52:b9:8f:87:a1:43: 1f:2f:c0:90:c7:83:bd:8c:df:d6:9d:83:5d:81:ed:aa:43:a7: 4a:ed:1a:89:5c:c4:d6:7f:95:eb:91:09:ec:53:cf:d4:73:21: 92:ad:e9:51:90:6b:ce:6a:28:75:51:b3:9a:30:81:80:00:d8: 68:71:81:08:48:0f:ba:f7:00:bc:87:32:4f:61:37:b3:67:9d: 80:32:5c:cb:8e:45:4e:d5:34:e4:98:cd:42:6d:0b:27:f1:f7: bd:00:a0:9a -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUHSNRRedYa8x2z1Cmg/IhSWo50YQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTNaFw0yNzA1MjYwNzM0NTNaMDMxMTAvBgNV BAMTKDI4Qjg5NjIxQjQ5NzkyNjgzRTkyNTVEMkM2Mjk1OTE1MkM4QjBDRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1P2lowcYRr3XM/iIdaABYGewI W2qixW1b6CLK2906/93B+XWkjQ09uOwzJWH1P6CTvioDx8omdmOTElraxiDNRbaj FR54D+OPJC8VXKOy5dfQ6jwL5VdzBHdJSIKLI+24cFx6NJ5Kz9v2E8r1amWrIOCw lapW+ViWlv+kojFlycxewlvFGemjbcW/N1SdCnve7iKB00Ue8hdAJD3/lNUWWp2Z yOysHqMICqaIml3hVk9n/w0YR06K4jYLQhxmbKgxy5+jIt+vG3tMYnE3RC+o/VLe h5OjjjRQH1bJV9c/udhSzp+o3OaEUtQeLcrJiCBIdQEIJurUBx7GmVEmdA7jAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUKLiWIbSXkmg+klXSxilZFSyLDPEwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMwMmUzMjMyMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAt+g3DANBgkqhkiG9w0BAQsFAAOCAQEAs8EoQ4+FFK1C6R/9pNNB9BtD 7Y8Ppx3A+d3qTnrVMv+2+w4fFrWgbZMVcU+yL3h+JZ818PO2jXJwLnTw5nI4MJSe LBy3YrnMiB7+m4/6nHKPCiRFTzR/S3vuF12cyyyESqCX7IjoWCrqPMuqn2Umh4Hj 2PxAxKODGwqnxAxoLYup4VrjfvE9x3ZWIyLIv4rRKanCTN1LEvlFOoMKUrmPh6FD Hy/AkMeDvYzf1p2DXYHtqkOnSu0aiVzE1n+V65EJ7FPP1HMhkq3pUZBrzmoodVGz mjCBgADYaHGBCEgPuvcAvIcyT2E3s2edgDJcy45FTtU05JjNQm0LJ/H3vQCgmg== -----END CERTIFICATE-----Generated at Sat May 30 00:02:38 2026 by rpki-client