$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3230362e302f32332d3234203d3e2039383038.roa File: 3232332e3136312e3230362e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: nxLvJu709G93/WGLPQJo2pam9Vn2a1LkbUHhwejyYY4= Subject key identifier: 08:26:7D:1C:AF:0F:05:B2:0C:70:10:D6:1B:3A:DE:4F:BF:7A:2C:44 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 43033A2C05E4D69E3F5F679A2EDDF427C60982E7 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3230362e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:56 +0000 ROA not before: Wed 27 May 2026 07:29:56 +0000 ROA not after: Wed 26 May 2027 07:34:56 +0000 asID: 9808 IP address blocks: 223.161.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:03:3a:2c:05:e4:d6:9e:3f:5f:67:9a:2e:dd:f4:27:c6:09:82:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:56 2026 GMT Not After : May 26 07:34:56 2027 GMT Subject: CN=08267D1CAF0F05B20C7010D61B3ADE4FBF7A2C44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:54:0c:fa:15:3a:96:3c:34:d7:da:3a:ce: 5c:56:fa:6d:d3:5a:16:ee:0e:5a:5e:bb:46:14:a0: 2f:f0:9f:0a:ec:08:d3:07:8a:45:70:f2:f2:cb:0a: 36:ce:fe:6f:42:32:62:5a:34:64:76:7d:79:0e:51: 52:ce:6b:70:87:51:73:38:58:1f:bb:9a:9a:33:06: 19:45:d6:10:a2:ed:89:c4:26:d3:f4:70:f2:b9:1e: 98:b7:94:9c:5a:eb:fd:dd:e1:cb:0a:0a:f8:72:0d: cb:0b:46:95:cb:a2:dd:96:a2:92:c8:6f:3f:e3:1b: 2d:10:bc:76:97:29:42:e4:da:6a:bd:8f:ad:93:de: 03:b8:79:46:08:a5:6a:95:31:1d:32:b7:15:e9:df: e5:0a:85:54:bd:b0:17:3c:70:e1:55:47:0f:22:9b: 27:33:76:74:b5:66:d0:af:3e:7a:68:58:cb:3e:73: c8:93:45:d6:9e:13:12:66:9f:a7:7f:f7:9d:f7:24: c4:86:be:da:56:96:b3:0b:df:2f:29:b0:a0:0a:2a: e5:10:2b:db:cc:95:2e:d8:49:bf:ce:7c:55:36:b9: bc:29:ac:b1:6c:b8:ad:07:dd:db:21:9b:f0:77:28: 35:de:ab:de:27:83:94:4f:cf:21:cc:ab:cd:a1:4c: ae:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:26:7D:1C:AF:0F:05:B2:0C:70:10:D6:1B:3A:DE:4F:BF:7A:2C:44 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3230362e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.206.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:6a:cf:88:2b:4e:48:69:86:62:80:36:71:af:6a:15:19:a5: 68:f8:e8:e8:b4:5d:50:59:35:77:cd:4d:0f:e1:73:4e:71:9b: 6c:2e:04:43:0d:0c:40:cf:b1:f7:2b:ab:e2:22:7e:00:bc:a0: 6c:e5:3e:d5:75:1e:d8:cc:5b:80:43:cf:d3:bf:46:a0:75:bd: 06:8c:54:db:bb:81:06:e2:a3:af:2b:7b:41:71:03:eb:d8:18: 4a:fb:a0:62:51:a5:5c:2d:a0:b9:2f:5b:ee:ed:a9:27:26:2a: e2:a8:c1:b4:6c:89:47:08:b6:8c:e2:a3:32:a0:37:65:7d:fa: 36:da:0b:2a:8f:50:9e:89:6e:17:a9:61:3d:03:14:dc:80:9a: 7b:4c:55:9c:67:25:ef:b1:f9:0b:68:3f:98:4b:ba:32:de:30: bd:72:ed:1f:1d:71:18:a7:f1:c5:2d:76:97:d5:eb:84:fd:ca: 11:d6:ec:21:3c:53:37:d7:8a:b4:04:95:7e:7a:a4:f4:23:a4: 3f:b1:bf:c4:3d:bc:38:d1:93:02:2a:76:ac:23:27:2f:29:f6: ae:1b:46:75:e7:12:34:f6:8f:76:4a:43:ea:07:e1:c8:ca:ff: 1b:4d:ae:9c:cc:49:22:96:d6:46:72:7f:02:0c:5d:00:46:9c: ab:5b:54:06 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQwM6LAXk1p4/X2eaLt30J8YJgucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTZaFw0yNzA1MjYwNzM0NTZaMDMxMTAvBgNV BAMTKDA4MjY3RDFDQUYwRjA1QjIwQzcwMTBENjFCM0FERTRGQkY3QTJDNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2j1QM+hU6ljw019o6zlxW+m3T WhbuDlpeu0YUoC/wnwrsCNMHikVw8vLLCjbO/m9CMmJaNGR2fXkOUVLOa3CHUXM4 WB+7mpozBhlF1hCi7YnEJtP0cPK5Hpi3lJxa6/3d4csKCvhyDcsLRpXLot2WopLI bz/jGy0QvHaXKULk2mq9j62T3gO4eUYIpWqVMR0ytxXp3+UKhVS9sBc8cOFVRw8i myczdnS1ZtCvPnpoWMs+c8iTRdaeExJmn6d/9533JMSGvtpWlrML3y8psKAKKuUQ K9vMlS7YSb/OfFU2ubwprLFsuK0H3dshm/B3KDXeq94ng5RPzyHMq82hTK5jAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUCCZ9HK8PBbIMcBDWGzreT796LEQwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMxMmUzMjMwMzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd+hzjANBgkqhkiG9w0BAQsFAAOCAQEAnmrPiCtOSGmGYoA2ca9qFRml aPjo6LRdUFk1d81ND+FzTnGbbC4EQw0MQM+x9yur4iJ+ALygbOU+1XUe2MxbgEPP 079GoHW9BoxU27uBBuKjryt7QXED69gYSvugYlGlXC2guS9b7u2pJyYq4qjBtGyJ Rwi2jOKjMqA3ZX36NtoLKo9QnoluF6lhPQMU3ICae0xVnGcl77H5C2g/mEu6Mt4w vXLtHx1xGKfxxS12l9XrhP3KEdbsITxTN9eKtASVfnqk9COkP7G/xD28ONGTAip2 rCMnLyn2rhtGdecSNPaPdkpD6gfhyMr/G02unMxJIpbWRnJ/AgxdAEacq1tUBg== -----END CERTIFICATE-----Generated at Fri May 29 23:01:09 2026 by rpki-client