$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234302e302f32332d3234203d3e203536303435.roa File: 3232332e3136312e3234302e302f32332d3234203d3e203536303435.roa (raw, json) Hash identifier: 2SO2WYCjiRTY/HCpP23ntxN0JPyXx1b3Mm8b896dJYo= Subject key identifier: 03:AB:41:44:34:BB:EF:34:99:D5:57:1F:43:5E:09:FC:42:CE:8E:99 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 736CDF56774DC5007C70246B78CC68C30AB94E38 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234302e302f32332d3234203d3e203536303435.roa Signing time: Wed 27 May 2026 07:34:55 +0000 ROA not before: Wed 27 May 2026 07:29:55 +0000 ROA not after: Wed 26 May 2027 07:34:55 +0000 asID: 56045 IP address blocks: 223.161.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:6c:df:56:77:4d:c5:00:7c:70:24:6b:78:cc:68:c3:0a:b9:4e:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:55 2026 GMT Not After : May 26 07:34:55 2027 GMT Subject: CN=03AB414434BBEF3499D5571F435E09FC42CE8E99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5f:be:1b:66:98:0a:1a:5c:99:41:b2:3b:f6: 54:2b:2b:62:22:e6:36:ca:b8:09:41:09:e2:fd:32: 49:a8:f2:69:c9:2e:b5:f3:0f:ef:f0:e3:07:49:3c: 36:29:13:6a:ac:c3:61:76:91:da:d0:16:64:8e:cb: 4b:46:53:4a:04:77:33:9c:b9:40:14:b9:7a:31:3a: 6c:20:c4:df:d5:1d:39:7c:ff:5b:08:4d:a3:1a:e3: 3e:21:35:e2:3e:dd:87:72:15:9a:61:15:34:cd:66: 50:de:f8:d7:37:39:c4:38:ec:0f:28:a3:c0:93:c8: af:e5:34:28:cb:2c:92:b2:c0:d1:5c:93:0e:56:be: b8:63:72:28:d2:49:f3:d6:4e:6f:48:10:e1:d4:0b: 9b:ad:ef:6e:c9:f5:7e:8f:a6:35:08:16:21:6c:fa: cd:f2:55:71:8a:14:5d:3a:c2:94:17:81:9e:07:9a: cb:f4:4f:9e:a1:90:96:8f:8b:97:9e:8a:10:43:17: 36:f7:bb:b2:8e:1e:b4:0b:8e:c0:79:8e:a7:20:fa: 90:55:f1:ac:4e:5a:6d:d5:74:08:79:49:94:bd:ed: 54:2b:a0:73:52:cc:8c:bb:e7:2b:f7:68:eb:a7:5e: ba:13:d3:30:83:35:fa:9b:a7:08:90:0d:ba:c8:b0: f1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AB:41:44:34:BB:EF:34:99:D5:57:1F:43:5E:09:FC:42:CE:8E:99 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234302e302f32332d3234203d3e203536303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.240.0/23 Signature Algorithm: sha256WithRSAEncryption 70:37:48:fb:9d:1b:5b:52:f2:0e:77:1f:c1:dd:d5:36:c2:0f: 7a:f2:1e:4d:01:aa:50:f0:da:d3:23:9a:9c:3c:8f:ca:4a:11: 96:26:82:c8:d1:db:d7:a8:04:af:1c:c8:6d:be:fe:34:9c:a6: 66:3f:a0:50:c3:1d:d8:9e:20:e0:22:f6:80:48:6e:ba:06:8a: a9:4a:23:b5:61:b1:b6:87:b7:aa:b7:22:c6:ed:73:e5:4b:76: 07:30:a2:ec:21:ec:e0:90:3f:d9:3c:35:08:fe:9f:be:d3:3c: c7:13:ef:4b:1b:e7:0b:e4:25:1f:44:02:f9:43:1f:09:45:72: 8d:3f:be:67:10:13:9a:b4:d0:84:b0:09:9c:9b:3e:05:4f:0c: 7f:93:07:2b:2c:24:fa:3d:0e:12:20:df:fe:a1:16:ba:ec:b7: 54:ab:50:90:0a:9b:6b:3f:56:84:9c:54:8c:bb:7a:cd:7a:55: 88:d9:f3:a3:bd:90:db:12:02:b9:2d:29:b2:42:59:65:af:69: 21:98:e1:74:da:fb:df:4a:09:d3:81:b9:66:1c:96:13:84:49: 8e:d1:e0:08:c5:0a:de:9e:5c:78:18:d4:db:14:e2:d7:09:49: 4c:87:1f:8b:c9:15:b5:9c:25:4b:8a:14:1a:b8:19:c4:6e:ed: 47:56:44:e8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUc2zfVndNxQB8cCRreMxowwq5TjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTVaFw0yNzA1MjYwNzM0NTVaMDMxMTAvBgNV BAMTKDAzQUI0MTQ0MzRCQkVGMzQ5OUQ1NTcxRjQzNUUwOUZDNDJDRThFOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbX74bZpgKGlyZQbI79lQrK2Ii 5jbKuAlBCeL9Mkmo8mnJLrXzD+/w4wdJPDYpE2qsw2F2kdrQFmSOy0tGU0oEdzOc uUAUuXoxOmwgxN/VHTl8/1sITaMa4z4hNeI+3YdyFZphFTTNZlDe+Nc3OcQ47A8o o8CTyK/lNCjLLJKywNFckw5WvrhjcijSSfPWTm9IEOHUC5ut727J9X6PpjUIFiFs +s3yVXGKFF06wpQXgZ4Hmsv0T56hkJaPi5eeihBDFzb3u7KOHrQLjsB5jqcg+pBV 8axOWm3VdAh5SZS97VQroHNSzIy75yv3aOunXroT0zCDNfqbpwiQDbrIsPG1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUA6tBRDS77zSZ1VcfQ14J/ELOjpkwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMTJlMzIzNDMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAd+h8DANBgkqhkiG9w0BAQsFAAOCAQEAcDdI+50bW1LyDncfwd3V NsIPevIeTQGqUPDa0yOanDyPykoRliaCyNHb16gErxzIbb7+NJymZj+gUMMd2J4g 4CL2gEhuugaKqUojtWGxtoe3qrcixu1z5Ut2BzCi7CHs4JA/2Tw1CP6fvtM8xxPv SxvnC+QlH0QC+UMfCUVyjT++ZxATmrTQhLAJnJs+BU8Mf5MHKywk+j0OEiDf/qEW uuy3VKtQkAqbaz9WhJxUjLt6zXpViNnzo72Q2xICuS0pskJZZa9pIZjhdNr730oJ 04G5ZhyWE4RJjtHgCMUK3p5ceBjU2xTi1wlJTIcfi8kVtZwlS4oUGrgZxG7tR1ZE 6A== -----END CERTIFICATE-----Generated at Sat May 30 00:02:38 2026 by rpki-client