$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3231362e302f32322d3234203d3e2039383038.roa File: 3232332e3136312e3231362e302f32322d3234203d3e2039383038.roa (raw, json) Hash identifier: o+chU9tGTqmCnZ/XYXiT1q67umcwumw34DvOzQLeSTY= Subject key identifier: 01:54:E5:B1:15:EF:D1:00:C0:C9:B2:15:8A:2B:EF:AF:8B:8F:78:D9 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 54917FF3ACBEF70C9788AF151C1D8452C7B3FDC7 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3231362e302f32322d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:52 +0000 ROA not before: Wed 27 May 2026 07:29:52 +0000 ROA not after: Wed 26 May 2027 07:34:52 +0000 asID: 9808 IP address blocks: 223.161.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:91:7f:f3:ac:be:f7:0c:97:88:af:15:1c:1d:84:52:c7:b3:fd:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:52 2026 GMT Not After : May 26 07:34:52 2027 GMT Subject: CN=0154E5B115EFD100C0C9B2158A2BEFAF8B8F78D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:33:f5:37:4b:9d:14:08:53:d0:7e:b8:19:3d: 86:97:d7:2e:76:86:43:5b:67:6e:ae:b8:ee:4f:b7: a1:1a:7f:d6:0e:cb:f2:de:b6:c3:3a:44:09:89:03: 43:81:b3:0d:e9:f7:26:66:54:99:ef:cf:6b:d6:61: 62:31:ab:62:4a:1d:ff:62:65:a3:54:50:cd:8f:a2: 70:3f:1c:e6:1a:8b:3b:65:2c:f8:21:85:d6:41:ac: 3a:6f:66:b6:0a:3b:71:69:90:71:38:af:5b:91:4a: e7:f1:10:d1:50:69:00:55:0e:a2:5f:ab:ad:e9:3f: 51:2e:e3:fd:4b:f7:04:cc:ef:8c:28:9b:3f:df:47: a3:d2:db:54:e1:5d:79:a4:48:09:d1:09:5c:f1:b1: 16:05:11:d8:0b:67:51:75:b8:9b:d5:05:a6:21:19: f6:7d:23:8c:66:77:18:0e:0b:4d:a1:b1:06:38:21: c3:72:a9:e3:f4:1a:b6:09:5a:a6:c5:bd:18:b6:2c: a9:61:31:1d:5a:d0:8b:57:d1:e1:49:4b:e4:7f:79: 98:c1:ce:fe:dc:10:44:e9:36:4e:27:ac:bf:66:11: 2a:17:e2:b5:70:4b:25:b8:ab:33:aa:da:84:02:8e: 56:b5:65:89:c3:38:86:71:0e:6d:f9:61:d6:ed:f5: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:54:E5:B1:15:EF:D1:00:C0:C9:B2:15:8A:2B:EF:AF:8B:8F:78:D9 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3231362e302f32322d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.216.0/22 Signature Algorithm: sha256WithRSAEncryption 46:e4:33:06:f1:30:23:4f:2c:47:64:e0:5a:2f:6c:86:5b:74: 25:00:71:b5:ea:a5:16:fd:a5:2f:68:00:bf:25:69:f4:e4:42: fa:48:89:63:49:e4:c4:09:44:07:66:98:f5:d2:bb:1f:05:35: 09:66:ab:aa:dd:a0:b1:ac:74:ff:12:75:5a:bd:f6:80:33:92: c7:a0:0b:98:f8:45:e5:10:d5:17:f7:e2:98:7b:9f:37:c8:0f: e6:9b:4e:c8:8c:30:dd:37:52:a0:62:2e:39:22:f9:9a:3e:5f: 8e:ef:fe:5b:7c:a4:67:47:8b:f2:9c:73:98:88:2a:a3:eb:37: 2e:53:f3:7b:b2:ab:95:19:d9:a3:1f:92:7b:21:56:1e:8b:1a: b6:81:32:fc:04:ce:b7:14:46:bd:4f:6a:b5:2e:3e:71:ab:43: 40:92:30:d4:ae:6f:46:a1:ca:73:e3:d6:1e:b7:54:df:67:54: 4f:8f:22:76:3c:14:e5:3d:ef:57:78:b9:2f:d0:d6:0e:58:dd: 36:5a:21:e4:9f:fe:ad:56:f3:d6:19:9f:48:3c:e7:92:04:8f: a7:4f:73:69:d8:57:56:fd:01:37:d1:ab:5e:66:24:51:43:5e: 7c:ca:49:8b:ee:6e:8d:d4:5f:c6:65:ca:34:2a:4d:e7:15:65: 68:e3:e0:44 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVJF/86y+9wyXiK8VHB2EUsez/ccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTJaFw0yNzA1MjYwNzM0NTJaMDMxMTAvBgNV BAMTKDAxNTRFNUIxMTVFRkQxMDBDMEM5QjIxNThBMkJFRkFGOEI4Rjc4RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhM/U3S50UCFPQfrgZPYaX1y52 hkNbZ26uuO5Pt6Eaf9YOy/LetsM6RAmJA0OBsw3p9yZmVJnvz2vWYWIxq2JKHf9i ZaNUUM2PonA/HOYaiztlLPghhdZBrDpvZrYKO3FpkHE4r1uRSufxENFQaQBVDqJf q63pP1Eu4/1L9wTM74womz/fR6PS21ThXXmkSAnRCVzxsRYFEdgLZ1F1uJvVBaYh GfZ9I4xmdxgOC02hsQY4IcNyqeP0GrYJWqbFvRi2LKlhMR1a0ItX0eFJS+R/eZjB zv7cEETpNk4nrL9mESoX4rVwSyW4qzOq2oQCjla1ZYnDOIZxDm35Ydbt9STlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUAVTlsRXv0QDAybIViivvr4uPeNkwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMxMmUzMjMxMzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAt+h2DANBgkqhkiG9w0BAQsFAAOCAQEARuQzBvEwI08sR2TgWi9shlt0 JQBxteqlFv2lL2gAvyVp9ORC+kiJY0nkxAlEB2aY9dK7HwU1CWarqt2gsax0/xJ1 Wr32gDOSx6ALmPhF5RDVF/fimHufN8gP5ptOyIww3TdSoGIuOSL5mj5fju/+W3yk Z0eL8pxzmIgqo+s3LlPze7KrlRnZox+SeyFWHosatoEy/ATOtxRGvU9qtS4+catD QJIw1K5vRqHKc+PWHrdU32dUT48idjwU5T3vV3i5L9DWDljdNloh5J/+rVbz1hmf SDznkgSPp09zadhXVv0BN9GrXmYkUUNefMpJi+5ujdRfxmXKNCpN5xVlaOPgRA== -----END CERTIFICATE-----Generated at Sat May 30 00:46:02 2026 by rpki-client