$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3232302e302f32332d3234203d3e203536303431.roa File: 3232332e3136312e3232302e302f32332d3234203d3e203536303431.roa (raw, json) Hash identifier: stx+/l0CIHC2hNRpATlo9s8P0ZHu3RiWWT+9r0fzjTc= Subject key identifier: F9:39:19:30:FC:1C:68:85:21:7D:0B:13:57:38:F3:0F:16:D3:59:53 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 69A2AC20AA774C11A9FE19D02CCCDE28B21B3D52 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3232302e302f32332d3234203d3e203536303431.roa Signing time: Wed 27 May 2026 07:34:58 +0000 ROA not before: Wed 27 May 2026 07:29:58 +0000 ROA not after: Wed 26 May 2027 07:34:58 +0000 asID: 56041 IP address blocks: 223.161.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:a2:ac:20:aa:77:4c:11:a9:fe:19:d0:2c:cc:de:28:b2:1b:3d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:58 2026 GMT Not After : May 26 07:34:58 2027 GMT Subject: CN=F9391930FC1C6885217D0B135738F30F16D35953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a1:20:56:87:6b:07:91:54:55:10:5c:8f:26: b9:68:48:81:a2:59:ff:dd:1e:cc:15:29:6e:d5:9d: 5f:4d:88:08:65:bd:1b:cb:58:8a:4a:64:72:80:eb: 82:8d:36:f6:82:0f:aa:c4:ed:de:69:86:97:02:f0: eb:a2:29:bd:fc:6c:44:58:ab:b5:35:27:99:42:e2: 87:f2:74:d5:2d:0a:9f:53:e7:c8:5a:e7:58:63:e7: 19:13:e7:a3:c4:eb:88:bd:84:00:96:02:c6:47:5e: 2f:8f:31:76:13:d5:1a:33:d4:32:2a:c2:93:99:96: 75:2f:bd:71:b8:d3:ef:e3:6d:79:62:d4:8e:25:6a: 70:cf:da:7d:4f:45:e5:8f:cb:bf:a2:ba:54:58:58: ab:c2:69:a0:dd:76:ec:54:63:11:04:d0:57:2d:e9: 19:e6:0c:29:36:76:eb:41:7f:9b:ee:be:ac:26:12: 77:62:bd:f4:18:51:bd:03:a8:11:a8:51:6d:ce:c8: 96:c8:e9:cd:e4:81:ab:71:ba:68:17:86:25:87:91: e3:af:b9:d3:76:09:07:cd:15:86:75:6e:25:d0:d2: ed:1a:5f:50:84:c3:50:48:2a:96:fe:32:26:d4:24: 37:59:23:b3:e1:82:23:68:81:9e:ed:69:cc:b1:1c: 92:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:39:19:30:FC:1C:68:85:21:7D:0B:13:57:38:F3:0F:16:D3:59:53 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3232302e302f32332d3234203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.220.0/23 Signature Algorithm: sha256WithRSAEncryption 77:2c:c2:58:a3:79:eb:06:75:a9:d3:38:59:e6:32:e0:50:51: 09:26:05:f2:d1:da:0c:46:e3:54:5a:84:66:5c:7d:17:21:b6: d0:19:58:35:91:78:ac:31:a1:37:73:db:74:7e:38:b6:c1:13: 5f:47:b2:08:65:7b:12:92:83:71:11:1a:25:a0:09:8f:b3:58: 68:bc:b1:a8:fb:4e:1e:54:e3:f8:6a:e0:6f:b8:66:9a:0a:0a: 5c:ed:3d:1e:71:36:f1:25:67:65:7b:77:a0:a9:09:83:f0:c0: 90:f7:75:df:35:cf:33:1e:e4:18:6a:7b:1e:e3:f5:7e:b4:4f: b2:0c:d9:0a:e6:80:ed:93:bc:b3:5e:1e:dd:18:e3:e5:8b:a0: cd:c8:5c:90:84:95:d5:6e:7b:11:7c:10:7c:4d:79:7e:73:78: af:54:0f:06:39:90:d5:e9:88:42:a2:c4:22:1a:c0:58:2a:fa: f8:82:f3:54:a4:75:ad:43:ae:fc:fb:72:7b:f0:72:7d:5a:e4: 07:0e:6f:9b:71:6f:73:e5:97:7e:aa:e3:17:e8:7a:a7:6e:6b: 12:75:cc:e4:17:52:39:62:82:86:94:94:13:13:01:0c:1d:6b: eb:0e:e7:55:8e:6f:a1:10:5a:ae:77:4d:29:5e:22:07:2b:f3: 9e:01:f0:b0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUaaKsIKp3TBGp/hnQLMzeKLIbPVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NThaFw0yNzA1MjYwNzM0NThaMDMxMTAvBgNV BAMTKEY5MzkxOTMwRkMxQzY4ODUyMTdEMEIxMzU3MzhGMzBGMTZEMzU5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChoSBWh2sHkVRVEFyPJrloSIGi Wf/dHswVKW7VnV9NiAhlvRvLWIpKZHKA64KNNvaCD6rE7d5phpcC8OuiKb38bERY q7U1J5lC4ofydNUtCp9T58ha51hj5xkT56PE64i9hACWAsZHXi+PMXYT1Roz1DIq wpOZlnUvvXG40+/jbXli1I4lanDP2n1PReWPy7+iulRYWKvCaaDdduxUYxEE0Fct 6RnmDCk2dutBf5vuvqwmEndivfQYUb0DqBGoUW3OyJbI6c3kgatxumgXhiWHkeOv udN2CQfNFYZ1biXQ0u0aX1CEw1BIKpb+MibUJDdZI7PhgiNogZ7tacyxHJKxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU+TkZMPwcaIUhfQsTVzjzDxbTWVMwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMTJlMzIzMjMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAd+h3DANBgkqhkiG9w0BAQsFAAOCAQEAdyzCWKN56wZ1qdM4WeYy 4FBRCSYF8tHaDEbjVFqEZlx9FyG20BlYNZF4rDGhN3PbdH44tsETX0eyCGV7EpKD cREaJaAJj7NYaLyxqPtOHlTj+Grgb7hmmgoKXO09HnE28SVnZXt3oKkJg/DAkPd1 3zXPMx7kGGp7HuP1frRPsgzZCuaA7ZO8s14e3Rjj5YugzchckISV1W57EXwQfE15 fnN4r1QPBjmQ1emIQqLEIhrAWCr6+ILzVKR1rUOu/Ptye/ByfVrkBw5vm3Fvc+WX fqrjF+h6p25rEnXM5BdSOWKChpSUExMBDB1r6w7nVY5voRBarndNKV4iByvzngHw sA== -----END CERTIFICATE-----Generated at Fri May 29 23:00:59 2026 by rpki-client