$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3139362e302f32332d3234203d3e203536303438.roa File: 3232332e3136312e3139362e302f32332d3234203d3e203536303438.roa (raw, json) Hash identifier: b+xxNL9eWlt6070iKupAqTWU0E/0q//JRaWuPMUq2l0= Subject key identifier: B8:EA:01:B1:4B:33:83:84:31:0D:AC:F2:8D:76:C5:5F:EB:FE:89:9C Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 6E7836C556A52D29F20FAFF085497467D1046950 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3139362e302f32332d3234203d3e203536303438.roa Signing time: Wed 27 May 2026 07:34:58 +0000 ROA not before: Wed 27 May 2026 07:29:58 +0000 ROA not after: Wed 26 May 2027 07:34:58 +0000 asID: 56048 IP address blocks: 223.161.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:78:36:c5:56:a5:2d:29:f2:0f:af:f0:85:49:74:67:d1:04:69:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:58 2026 GMT Not After : May 26 07:34:58 2027 GMT Subject: CN=B8EA01B14B338384310DACF28D76C55FEBFE899C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:fa:75:21:e9:d1:d2:41:66:d9:a2:fd:4c: 1a:e4:e2:76:3d:c6:4f:75:9a:ba:64:b9:55:71:3d: b2:ca:44:2f:fa:00:07:ad:8c:08:5e:46:f6:4e:f1: a0:93:61:56:98:6d:8b:2e:7c:fe:41:eb:f8:39:b9: 92:6e:7c:ba:41:0d:ba:ca:d3:e7:a0:f1:65:76:31: c9:7a:e4:d0:ab:d9:a8:57:e9:c1:b4:b4:c4:cb:0e: 06:ff:79:e3:89:8c:af:3a:86:d9:e3:2c:65:78:87: ba:d1:f1:57:c4:2a:2c:4d:99:ec:3d:03:36:4a:1f: ca:5e:30:0f:d5:2e:f7:39:07:18:fc:fa:d0:30:86: 93:36:50:53:6b:69:75:e2:a4:6d:21:e4:95:39:15: 30:05:f0:47:06:65:d5:dc:80:73:aa:9f:da:5e:f7: f1:61:0c:2d:8c:bd:37:40:51:0e:2a:02:ce:22:b7: 8f:c3:1e:d2:a1:ca:7a:50:5d:2b:7f:7d:7b:69:61: 9f:77:12:08:85:59:56:85:92:21:61:6e:9a:93:00: 50:57:5c:31:d6:f1:4a:e1:cb:ac:09:2a:62:ce:ba: 92:f1:ee:87:9d:62:d6:22:79:1f:41:b3:45:31:4e: f9:f0:5f:d3:8f:e7:d2:9f:ab:da:33:f7:59:ae:ee: db:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EA:01:B1:4B:33:83:84:31:0D:AC:F2:8D:76:C5:5F:EB:FE:89:9C X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3139362e302f32332d3234203d3e203536303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.196.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:dc:f5:4f:22:82:70:95:09:36:e7:99:ef:e0:41:45:52:5b: 30:83:49:a5:ba:42:c3:f3:83:f4:cb:01:ca:ee:65:c4:da:b9: e2:2a:a6:69:b7:0a:97:70:e8:7f:78:96:67:79:a3:7c:94:db: 75:f7:63:73:48:ec:bc:74:70:a1:19:b6:81:80:47:85:6b:04: f2:4d:19:00:91:ea:f2:96:bf:e8:12:20:52:f0:d4:5d:bf:f3: db:fb:4e:74:25:15:e3:92:4f:98:43:a6:2d:29:83:61:27:49: 7d:e7:f6:9b:23:ea:98:2a:0c:18:91:fe:59:a8:ed:b2:c1:b1: 40:9e:0e:87:ae:a0:71:3e:5c:7d:8f:50:c8:49:ba:0c:5b:ac: 12:27:74:78:aa:f1:7d:a9:9e:bd:f9:52:31:26:ee:6f:ee:90: 59:f5:06:03:84:79:64:e5:fb:d0:7e:6b:14:3a:ce:b1:72:f4: 4d:d1:d0:12:59:30:8a:48:76:6d:0e:19:27:7f:4c:66:4f:e2: db:b4:ae:a6:d6:55:33:08:c9:08:1c:d1:14:15:49:09:56:0f: 73:b3:0d:78:30:f2:a2:87:30:cd:6f:d9:38:d5:f4:58:a1:a8: 11:88:71:0c:aa:ff:f6:63:bb:76:73:eb:03:c4:db:26:a6:f2: 5a:79:bf:ab -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbng2xValLSnyD6/whUl0Z9EEaVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NThaFw0yNzA1MjYwNzM0NThaMDMxMTAvBgNV BAMTKEI4RUEwMUIxNEIzMzgzODQzMTBEQUNGMjhENzZDNTVGRUJGRTg5OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIo/p1IenR0kFm2aL9TBrk4nY9 xk91mrpkuVVxPbLKRC/6AAetjAheRvZO8aCTYVaYbYsufP5B6/g5uZJufLpBDbrK 0+eg8WV2Mcl65NCr2ahX6cG0tMTLDgb/eeOJjK86htnjLGV4h7rR8VfEKixNmew9 AzZKH8peMA/VLvc5Bxj8+tAwhpM2UFNraXXipG0h5JU5FTAF8EcGZdXcgHOqn9pe 9/FhDC2MvTdAUQ4qAs4it4/DHtKhynpQXSt/fXtpYZ93EgiFWVaFkiFhbpqTAFBX XDHW8Urhy6wJKmLOupLx7oedYtYieR9Bs0UxTvnwX9OP59Kfq9oz91mu7ttDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUuOoBsUszg4QxDazyjXbFX+v+iZwwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMTJlMzEzOTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAd+hxDANBgkqhkiG9w0BAQsFAAOCAQEATdz1TyKCcJUJNueZ7+BB RVJbMINJpbpCw/OD9MsByu5lxNq54iqmabcKl3Dof3iWZ3mjfJTbdfdjc0jsvHRw oRm2gYBHhWsE8k0ZAJHq8pa/6BIgUvDUXb/z2/tOdCUV45JPmEOmLSmDYSdJfef2 myPqmCoMGJH+WajtssGxQJ4Oh66gcT5cfY9QyEm6DFusEid0eKrxfamevflSMSbu b+6QWfUGA4R5ZOX70H5rFDrOsXL0TdHQElkwikh2bQ4ZJ39MZk/i27SuptZVMwjJ CBzRFBVJCVYPc7MNeDDyoocwzW/ZONX0WKGoEYhxDKr/9mO7dnPrA8TbJqbyWnm/ qw== -----END CERTIFICATE-----Generated at Sat May 30 00:02:58 2026 by rpki-client