$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3232322e302f32332d3234203d3e2039383038.roa File: 3232332e3136312e3232322e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: TbeWznNOez2AR8z4nz8NUD2FPGo+x+Kn9ZjZ0kZuMfo= Subject key identifier: E3:BC:B4:9E:18:8C:AA:E1:C2:78:F1:66:56:59:D9:07:6D:69:48:C3 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 399943CDC2B96E8105103AC53E1B63C4F34456ED Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3232322e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 9808 IP address blocks: 223.161.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:99:43:cd:c2:b9:6e:81:05:10:3a:c5:3e:1b:63:c4:f3:44:56:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=E3BCB49E188CAAE1C278F1665659D9076D6948C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:49:e3:20:54:34:21:57:35:cd:f1:7a:a3: 7f:3e:33:08:34:43:db:86:51:ef:75:07:08:4f:c8: 56:3e:60:3a:7f:cb:ad:08:32:c8:e7:6b:ae:5c:d8: de:6c:6d:8a:7c:6a:1f:e8:77:bb:c1:9d:1c:15:78: ea:91:8f:e1:4d:e1:68:1f:8d:e8:a2:a2:b7:12:a6: c9:a2:55:44:9f:a5:a6:f5:3a:d9:2c:5e:c4:1f:9b: 11:68:e5:a9:b3:ff:c2:2e:e7:9f:85:04:f3:f2:88: ba:40:b8:ce:df:44:e1:ce:e8:de:80:6a:35:88:c7: 9a:7e:66:d2:55:28:4a:b9:01:b4:87:b1:3e:82:48: 5a:a7:fd:bc:df:0a:75:79:07:ed:de:5a:53:b1:a5: 7d:3e:fc:5b:37:2d:42:3b:79:0d:ad:34:46:74:d7: 27:53:a9:7d:45:1c:7f:51:9b:84:a4:88:19:cc:39: a7:5f:de:14:57:e3:d1:82:44:c1:8d:b0:d5:78:9e: a9:72:32:2f:89:d9:0b:e7:ad:e5:2c:cc:09:bc:ec: ee:92:ed:83:bb:b7:b7:9c:86:45:68:90:42:cc:6b: 7f:56:f6:c6:7a:e3:78:82:38:f5:39:eb:d6:b2:03: b7:2d:2f:06:94:73:e0:50:7b:d9:50:ca:18:c4:b1: 6b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BC:B4:9E:18:8C:AA:E1:C2:78:F1:66:56:59:D9:07:6D:69:48:C3 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3232322e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.222.0/23 Signature Algorithm: sha256WithRSAEncryption 90:16:a0:65:81:1d:8d:25:a4:3b:0e:4e:e4:93:17:84:56:36: ef:c9:6f:ef:61:da:78:90:a7:3a:b5:62:a2:d3:9c:85:e0:a4: 86:1a:91:e7:95:0c:08:c7:00:59:9c:52:38:1b:f5:75:bc:1d: 51:73:bc:91:57:2b:fe:81:b4:86:a9:bd:5c:76:88:97:78:43: 39:8c:01:41:b0:40:8c:30:1c:39:92:78:ec:27:51:83:6d:16: d5:99:20:36:5e:7a:eb:c2:16:4b:90:6b:50:d9:5e:f4:8c:ef: 2c:a7:91:83:d4:fa:6a:54:81:14:2a:ef:cc:4e:44:59:fd:65: cc:d6:f5:d1:4c:ba:a5:ca:1f:ea:cf:32:a6:97:a0:8d:d8:14: 4e:35:5f:77:e2:16:75:e6:bc:41:d0:5b:86:13:87:13:07:c1: e1:f7:75:c3:21:6f:bf:94:08:8f:10:d7:98:28:40:a4:47:07: 42:d7:9f:a2:55:86:ea:fb:fe:ab:3a:4d:84:cf:c5:4b:3d:80: 16:fe:fb:75:ac:62:a6:63:aa:bc:d9:a0:ac:05:a8:4e:7b:39: 68:15:c1:11:88:67:de:45:17:0e:ff:89:fb:1f:4b:d8:0b:a9: ef:de:a2:23:55:40:c2:53:cb:9d:96:eb:4c:44:c2:74:01:70: 4e:8d:cb:ba -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOZlDzcK5boEFEDrFPhtjxPNEVu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKEUzQkNCNDlFMTg4Q0FBRTFDMjc4RjE2NjU2NTlEOTA3NkQ2OTQ4QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGWknjIFQ0IVc1zfF6o38+Mwg0 Q9uGUe91BwhPyFY+YDp/y60IMsjna65c2N5sbYp8ah/od7vBnRwVeOqRj+FN4Wgf jeiiorcSpsmiVUSfpab1OtksXsQfmxFo5amz/8Iu55+FBPPyiLpAuM7fROHO6N6A ajWIx5p+ZtJVKEq5AbSHsT6CSFqn/bzfCnV5B+3eWlOxpX0+/Fs3LUI7eQ2tNEZ0 1ydTqX1FHH9Rm4SkiBnMOadf3hRX49GCRMGNsNV4nqlyMi+J2QvnreUszAm87O6S 7YO7t7echkVokELMa39W9sZ643iCOPU569ayA7ctLwaUc+BQe9lQyhjEsWuPAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU47y0nhiMquHCePFmVlnZB21pSMMwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMxMmUzMjMyMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd+h3jANBgkqhkiG9w0BAQsFAAOCAQEAkBagZYEdjSWkOw5O5JMXhFY2 78lv72HaeJCnOrViotOcheCkhhqR55UMCMcAWZxSOBv1dbwdUXO8kVcr/oG0hqm9 XHaIl3hDOYwBQbBAjDAcOZJ47CdRg20W1ZkgNl5668IWS5BrUNle9IzvLKeRg9T6 alSBFCrvzE5EWf1lzNb10Uy6pcof6s8yppegjdgUTjVfd+IWdea8QdBbhhOHEwfB 4fd1wyFvv5QIjxDXmChApEcHQtefolWG6vv+qzpNhM/FSz2AFv77daxipmOqvNmg rAWoTns5aBXBEYhn3kUXDv+J+x9L2Aup796iI1VAwlPLnZbrTETCdAFwTo3Lug== -----END CERTIFICATE-----Generated at Sat May 30 00:02:22 2026 by rpki-client