$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3232342e302f32312d3234203d3e203536303430.roa File: 3232332e3136302e3232342e302f32312d3234203d3e203536303430.roa (raw, json) Hash identifier: lbdXpNgh8EeVVdlb4FrbfYgaMttsW49p57WljhcA+YA= Subject key identifier: 81:A1:12:3A:4E:19:4E:02:6F:B1:8C:08:5A:7B:E6:A6:AA:90:9F:39 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 249EF181811921CBCF5745672DA666468D286BDF Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3232342e302f32312d3234203d3e203536303430.roa Signing time: Wed 27 May 2026 07:34:55 +0000 ROA not before: Wed 27 May 2026 07:29:55 +0000 ROA not after: Wed 26 May 2027 07:34:55 +0000 asID: 56040 IP address blocks: 223.160.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:9e:f1:81:81:19:21:cb:cf:57:45:67:2d:a6:66:46:8d:28:6b:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:55 2026 GMT Not After : May 26 07:34:55 2027 GMT Subject: CN=81A1123A4E194E026FB18C085A7BE6A6AA909F39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:62:af:de:d0:f9:b5:bd:35:62:25:eb:6e:0c: 49:43:40:96:47:83:f7:a0:bd:65:b0:d9:a9:71:b9: 37:2f:e6:d6:a7:ff:bf:2c:ec:3f:9b:e8:cf:c8:67: 7a:a5:63:90:6d:24:a1:f2:07:51:d8:39:e8:78:d8: 1e:7b:24:6c:0f:df:e5:c1:f7:58:ce:d7:ac:16:53: 73:15:90:f5:60:7f:04:72:8e:63:75:86:e2:a5:cd: 64:7d:fa:a0:a0:5a:8b:67:d9:94:50:af:30:3a:ec: 29:14:b7:41:af:ba:aa:d0:be:33:00:70:58:3f:85: 1e:48:49:6e:30:0b:8d:9e:5c:eb:98:b5:e2:7b:31: 40:04:8d:e8:87:8e:c4:f7:a8:c7:16:ae:69:27:33: d4:b4:14:96:d5:eb:43:d6:19:1f:36:6a:02:57:7b: be:8e:4e:10:d8:ca:f7:d1:4e:99:c8:f7:fb:f7:3c: 69:b7:b0:44:16:3a:6a:11:1e:bd:de:3d:2c:dc:8c: e1:57:d9:da:de:af:c8:b8:64:ca:f2:90:40:0f:aa: 24:7d:3a:e4:4e:a6:af:19:7d:a0:1f:4b:f9:86:ec: 6a:6b:bd:72:9d:97:84:0b:72:b9:b0:10:ac:c5:53: 80:e9:fa:3a:ba:8a:9a:93:18:07:21:af:3e:8f:6b: 95:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A1:12:3A:4E:19:4E:02:6F:B1:8C:08:5A:7B:E6:A6:AA:90:9F:39 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3232342e302f32312d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.224.0/21 Signature Algorithm: sha256WithRSAEncryption b7:01:6e:99:9f:2b:06:ad:2a:31:59:ec:29:52:00:cc:91:19: 4a:f0:c0:3f:68:4c:41:65:7e:64:19:62:f3:50:56:fb:b2:10: 7b:f1:98:4c:b4:bb:12:6c:fd:7d:59:1f:8f:cf:38:5f:68:60: 9f:08:e5:01:7c:bc:57:89:fa:4b:83:53:83:6f:f3:24:ea:8f: 19:29:6b:71:5e:b8:9b:e5:6e:28:76:f2:d5:34:73:79:22:0b: e2:a9:59:74:8d:5a:51:19:11:f6:f0:8d:bb:a2:9b:92:1a:cc: 50:c5:4c:3d:89:5d:0d:9c:b7:c8:6f:94:51:a5:30:fb:12:9c: c6:a6:97:01:ed:80:de:3f:63:5b:a8:9f:3d:03:e2:46:91:b7: fd:dd:67:12:46:b0:86:86:46:62:ed:11:9c:cf:70:64:0d:82: df:58:fe:63:14:83:ca:22:ec:f4:4f:ea:1d:44:ae:a7:2a:05: 0f:da:82:ce:d7:9a:25:6c:59:2e:b6:c6:e0:64:d7:f9:c5:3a: e5:96:17:49:57:27:b2:15:50:e5:91:50:a8:5c:8b:76:b0:64: e5:e3:a8:f4:5d:0e:0a:2b:59:4f:af:80:b8:ab:84:f6:36:ef: dd:9f:98:87:58:f3:82:44:30:c2:3d:06:e0:d3:dd:8a:f7:c1: 4b:45:7a:90 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJJ7xgYEZIcvPV0VnLaZmRo0oa98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTVaFw0yNzA1MjYwNzM0NTVaMDMxMTAvBgNV BAMTKDgxQTExMjNBNEUxOTRFMDI2RkIxOEMwODVBN0JFNkE2QUE5MDlGMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgYq/e0Pm1vTViJetuDElDQJZH g/egvWWw2alxuTcv5tan/78s7D+b6M/IZ3qlY5BtJKHyB1HYOeh42B57JGwP3+XB 91jO16wWU3MVkPVgfwRyjmN1huKlzWR9+qCgWotn2ZRQrzA67CkUt0GvuqrQvjMA cFg/hR5ISW4wC42eXOuYteJ7MUAEjeiHjsT3qMcWrmknM9S0FJbV60PWGR82agJX e76OThDYyvfRTpnI9/v3PGm3sEQWOmoRHr3ePSzcjOFX2drer8i4ZMrykEAPqiR9 OuROpq8ZfaAfS/mG7GprvXKdl4QLcrmwEKzFU4Dp+jq6ipqTGAchrz6Pa5WlAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUgaESOk4ZTgJvsYwIWnvmpqqQnzkwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMDJlMzIzMjM0MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA9+g4DANBgkqhkiG9w0BAQsFAAOCAQEAtwFumZ8rBq0qMVnsKVIA zJEZSvDAP2hMQWV+ZBli81BW+7IQe/GYTLS7Emz9fVkfj884X2hgnwjlAXy8V4n6 S4NTg2/zJOqPGSlrcV64m+VuKHby1TRzeSIL4qlZdI1aURkR9vCNu6KbkhrMUMVM PYldDZy3yG+UUaUw+xKcxqaXAe2A3j9jW6ifPQPiRpG3/d1nEkawhoZGYu0RnM9w ZA2C31j+YxSDyiLs9E/qHUSupyoFD9qCzteaJWxZLrbG4GTX+cU65ZYXSVcnshVQ 5ZFQqFyLdrBk5eOo9F0OCitZT6+AuKuE9jbv3Z+Yh1jzgkQwwj0G4NPdivfBS0V6 kA== -----END CERTIFICATE-----Generated at Sat May 30 00:53:09 2026 by rpki-client