$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e362e302f32332d3234203d3e2039383038.roa File: 3232332e3136302e362e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: vmTaDhOLRydyvIIT5dZxG1NkteORTC9xoHUIkNuL7ks= Subject key identifier: 34:34:E4:61:2D:36:7D:85:EC:6B:20:00:88:71:BF:25:47:9B:A1:29 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 1D3225C66A05B7C6A010A28E05A22E87609229FF Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e362e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 9808 IP address blocks: 223.160.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:32:25:c6:6a:05:b7:c6:a0:10:a2:8e:05:a2:2e:87:60:92:29:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=3434E4612D367D85EC6B20008871BF25479BA129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:dd:98:64:a6:54:59:28:96:1f:04:76:53:0f: 8e:45:96:0b:b3:67:43:13:84:c8:f3:09:90:2c:d8: 31:f6:47:9b:48:27:52:22:e0:a6:5d:1f:d7:05:dd: 87:0d:be:63:c9:ee:08:77:f0:2e:6c:d1:7a:88:52: de:56:98:3e:ea:8c:0c:72:12:a2:17:b2:db:a8:bc: f0:8e:44:c0:60:9b:0c:73:72:91:a8:87:18:b0:a8: 79:5d:9c:1c:36:00:89:3e:56:bd:6e:e1:bd:07:f0: 73:b9:97:cc:c2:1f:51:a5:0a:be:0d:20:42:1f:cb: 78:35:2d:1d:03:6b:80:35:8f:9f:7e:45:58:2a:a4: be:3c:b6:31:dd:49:b5:c0:c8:f4:2c:82:38:a3:d1: 5c:85:ee:e6:1d:d0:5a:a7:7e:0a:dd:2a:81:bb:09: 4a:95:60:62:dc:25:88:2c:98:21:0f:d7:8f:ea:ed: 96:a8:a2:a7:65:cc:78:93:1a:01:25:96:c4:20:88: d5:77:c0:df:a6:f5:fa:d9:fc:ce:3e:8c:77:12:33: 27:c4:b0:27:eb:e4:25:10:bb:8d:a2:a8:97:1b:cb: 58:fd:c9:78:6c:95:e1:94:82:2d:b0:14:66:8f:c6: 20:a0:28:07:a0:77:23:19:25:da:8b:4f:ec:2e:2a: eb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:34:E4:61:2D:36:7D:85:EC:6B:20:00:88:71:BF:25:47:9B:A1:29 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e362e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.6.0/23 Signature Algorithm: sha256WithRSAEncryption 49:73:5c:a0:21:3e:3e:d6:91:fc:33:ca:39:f5:ee:47:a1:43: e8:be:24:14:03:39:3d:24:3a:d2:ba:6c:cb:eb:55:55:e0:00: c7:38:89:ca:5b:04:8d:09:22:b5:a0:be:76:0c:52:bb:d9:3f: f3:53:68:51:fe:5b:81:b7:e9:aa:87:e2:f3:23:24:79:28:ca: 50:59:07:3e:26:c3:08:38:c7:43:30:d9:f2:60:51:a8:27:de: e4:74:38:40:b1:56:29:79:66:9b:e9:fa:0a:83:20:eb:e9:56: 95:09:72:bf:f4:2e:48:23:31:11:15:ff:c4:2a:18:63:89:6c: e4:2b:0e:b2:a6:54:c7:43:88:bc:36:37:af:e4:0e:9e:6e:f3: 9c:e6:0d:62:34:55:72:9e:3e:5b:dd:26:aa:6d:62:fe:33:3e: 07:95:e1:bd:56:00:d4:cc:2b:a9:b3:c0:73:00:a9:31:07:2f: 20:0e:c3:5a:6c:70:7a:6c:51:72:e7:a5:ea:67:9a:c1:c2:06: 7a:77:17:8d:91:ff:67:eb:78:4d:39:24:3e:09:1f:e4:5b:04: ce:f1:fc:f8:da:4b:91:30:4b:c4:83:3d:f6:e1:be:91:84:f5: cc:97:b9:8e:2f:76:87:5e:53:e8:2a:c9:a2:69:ae:3c:59:2c: e1:2a:9d:8a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUHTIlxmoFt8agEKKOBaIuh2CSKf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKDM0MzRFNDYxMkQzNjdEODVFQzZCMjAwMDg4NzFCRjI1NDc5QkExMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu3ZhkplRZKJYfBHZTD45Flguz Z0MThMjzCZAs2DH2R5tIJ1Ii4KZdH9cF3YcNvmPJ7gh38C5s0XqIUt5WmD7qjAxy EqIXstuovPCORMBgmwxzcpGohxiwqHldnBw2AIk+Vr1u4b0H8HO5l8zCH1GlCr4N IEIfy3g1LR0Da4A1j59+RVgqpL48tjHdSbXAyPQsgjij0VyF7uYd0FqnfgrdKoG7 CUqVYGLcJYgsmCEP14/q7ZaooqdlzHiTGgEllsQgiNV3wN+m9frZ/M4+jHcSMyfE sCfr5CUQu42iqJcby1j9yXhsleGUgi2wFGaPxiCgKAegdyMZJdqLT+wuKuspAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUNDTkYS02fYXsayAAiHG/JUeboSkwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyNzg2NTYxLzAvMzIzMjMzMmUzMTM2 MzAyZTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHfoAYwDQYJKoZIhvcNAQELBQADggEBAElzXKAhPj7Wkfwzyjn17kehQ+i+JBQD OT0kOtK6bMvrVVXgAMc4icpbBI0JIrWgvnYMUrvZP/NTaFH+W4G36aqH4vMjJHko ylBZBz4mwwg4x0Mw2fJgUagn3uR0OECxVil5Zpvp+gqDIOvpVpUJcr/0LkgjMREV /8QqGGOJbOQrDrKmVMdDiLw2N6/kDp5u85zmDWI0VXKePlvdJqptYv4zPgeV4b1W ANTMK6mzwHMAqTEHLyAOw1pscHpsUXLnpepnmsHCBnp3F42R/2freE05JD4JH+Rb BM7x/PjaS5EwS8SDPfbhvpGE9cyXuY4vdodeU+gqyaJprjxZLOEqnYo= -----END CERTIFICATE-----Generated at Fri May 29 23:01:20 2026 by rpki-client