$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3231302e302f32332d3234203d3e20313334383130.roa File: 3232332e3136312e3231302e302f32332d3234203d3e20313334383130.roa (raw, json) Hash identifier: unTIu3aLFp6KWU37O1YjKdbj51Vhot4d5j9e/stY3lY= Subject key identifier: 61:8E:53:85:0E:D5:85:99:1D:2E:C9:A3:92:DC:FF:56:2F:B2:6B:CC Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 6B1CDB25492DBDB65CC3A5B3A8FE3C1791597456 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3231302e302f32332d3234203d3e20313334383130.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 134810 IP address blocks: 223.161.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:1c:db:25:49:2d:bd:b6:5c:c3:a5:b3:a8:fe:3c:17:91:59:74:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=618E53850ED585991D2EC9A392DCFF562FB26BCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:72:29:ce:20:5e:51:50:2d:18:72:2f:b4:a4: eb:d8:f1:7a:8e:0a:a1:f8:74:72:e8:b6:cf:26:f2: 52:8a:19:4b:7d:e8:0c:fc:0a:e1:35:48:00:f0:1b: 54:fc:e5:c3:f1:9f:01:46:36:87:fa:96:3e:3e:24: 47:99:ea:4c:87:d0:9a:96:7a:25:9e:c0:f2:18:73: 7f:99:d3:d7:22:06:6a:07:44:65:f4:b2:3e:6a:34: a8:96:f2:53:cd:c3:3b:bc:a9:57:9a:2d:12:a3:c1: 49:b2:97:7f:32:65:28:cf:f1:ca:09:ae:71:9f:24: 8a:26:de:d0:c7:e4:1c:39:7b:3c:31:96:26:47:2f: ba:43:10:24:ee:11:de:9e:54:f1:97:87:ee:08:44: 80:80:33:48:61:33:61:1c:b5:9b:81:1a:3f:45:5b: 6f:13:06:e6:ab:07:02:a0:53:2f:4d:28:69:7d:eb: eb:15:89:a6:c1:18:20:01:af:0c:e8:45:e2:71:a9: 5e:2f:01:57:62:b0:a7:ea:18:9a:ac:93:e5:4e:3c: f0:67:31:6f:a9:56:53:be:da:43:a3:f8:64:c4:0e: 78:00:f6:93:1e:3c:4b:80:09:c5:9e:12:46:70:d9: de:6a:bb:2a:7a:fa:09:dc:f2:c9:03:7e:37:50:f8: 42:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8E:53:85:0E:D5:85:99:1D:2E:C9:A3:92:DC:FF:56:2F:B2:6B:CC X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3231302e302f32332d3234203d3e20313334383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.210.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:7f:52:df:52:13:fb:c6:33:66:c7:10:ba:4d:2f:df:00:75: 73:f9:da:35:f8:d4:62:93:c9:b3:c6:57:ff:81:66:16:54:f1: c9:9f:01:a0:77:fc:94:5a:86:c0:d1:1f:9f:eb:20:05:41:31: 8d:01:e3:bd:cb:db:de:a4:cd:6d:53:bd:cd:7a:c1:1f:48:80: bc:b3:39:33:b0:88:6c:67:61:65:76:09:1f:3f:24:e5:6c:b6: 5f:4d:49:a1:4e:0e:21:e2:52:a5:23:14:ad:38:2a:6c:7c:af: 1d:00:18:79:e9:91:61:48:72:c4:70:dd:07:d3:89:65:8e:6a: c9:7d:30:9b:b2:ab:e8:83:9c:b4:01:8d:5c:d7:d9:5c:2e:d6: 1c:1b:c8:e6:f9:49:ee:83:f7:ff:f7:35:98:27:fb:e0:b4:6c: 59:33:d7:a3:9c:27:60:e5:71:4b:8c:b9:b6:7a:9f:c1:88:e8: cb:81:ca:21:e4:ef:5d:36:ea:ef:5c:de:17:32:ff:30:8f:dc: 94:a8:97:37:f3:33:68:7a:3e:0d:95:41:0f:a5:a7:e2:e8:84: 9c:70:b0:fa:22:88:bb:71:a4:dc:90:f9:98:92:6a:8b:ee:2f: 41:79:7d:3b:62:42:4c:88:ec:5a:1a:a3:9c:b8:0e:1c:99:16: c8:ea:78:27 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUaxzbJUktvbZcw6WzqP48F5FZdFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKDYxOEU1Mzg1MEVENTg1OTkxRDJFQzlBMzkyRENGRjU2MkZCMjZCQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpcinOIF5RUC0Yci+0pOvY8XqO CqH4dHLots8m8lKKGUt96Az8CuE1SADwG1T85cPxnwFGNof6lj4+JEeZ6kyH0JqW eiWewPIYc3+Z09ciBmoHRGX0sj5qNKiW8lPNwzu8qVeaLRKjwUmyl38yZSjP8coJ rnGfJIom3tDH5Bw5ezwxliZHL7pDECTuEd6eVPGXh+4IRICAM0hhM2EctZuBGj9F W28TBuarBwKgUy9NKGl96+sViabBGCABrwzoReJxqV4vAVdisKfqGJqsk+VOPPBn MW+pVlO+2kOj+GTEDngA9pMePEuACcWeEkZw2d5quyp6+gnc8skDfjdQ+EI9AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUYY5ThQ7VhZkdLsmjktz/Vi+ya8wwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyNzg2NTYxLzAvMzIzMjMzMmUz MTM2MzEyZTMyMzEzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzNDM4MzEz MC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAd+h0jANBgkqhkiG9w0BAQsFAAOCAQEAT39S31IT+8YzZscQ uk0v3wB1c/naNfjUYpPJs8ZX/4FmFlTxyZ8BoHf8lFqGwNEfn+sgBUExjQHjvcvb 3qTNbVO9zXrBH0iAvLM5M7CIbGdhZXYJHz8k5Wy2X01JoU4OIeJSpSMUrTgqbHyv HQAYeemRYUhyxHDdB9OJZY5qyX0wm7Kr6IOctAGNXNfZXC7WHBvI5vlJ7oP3//c1 mCf74LRsWTPXo5wnYOVxS4y5tnqfwYjoy4HKIeTvXTbq71zeFzL/MI/clKiXN/Mz aHo+DZVBD6Wn4uiEnHCw+iKIu3Gk3JD5mJJqi+4vQXl9O2JCTIjsWhqjnLgOHJkW yOp4Jw== -----END CERTIFICATE-----Generated at Sat May 30 00:02:59 2026 by rpki-client