$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234362e302f32332d3234203d3e203536303437.roa File: 3232332e3136312e3234362e302f32332d3234203d3e203536303437.roa (raw, json) Hash identifier: PKoHUYcdqld/6d9wwO2Sjwqw+o/ww/Z5HABrTOULn6M= Subject key identifier: 32:86:D4:CA:8E:C4:36:29:D4:50:B0:2D:68:87:C0:CF:DA:C6:1D:71 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 407C402C83E31B59123644D39E983C51CAFBE5F5 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234362e302f32332d3234203d3e203536303437.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 56047 IP address blocks: 223.161.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:7c:40:2c:83:e3:1b:59:12:36:44:d3:9e:98:3c:51:ca:fb:e5:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=3286D4CA8EC43629D450B02D6887C0CFDAC61D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:b2:77:77:3a:0e:be:e7:9e:23:3b:1c:15: fb:3f:75:99:35:33:e8:c2:07:7d:c6:bc:7c:68:66: bc:d2:17:48:92:1c:d3:b8:42:dc:5f:2d:b8:ad:24: 91:72:ec:ca:0a:4c:3a:b1:af:54:d7:ad:02:53:ed: 78:79:04:77:cd:b7:c6:7d:11:06:eb:96:f8:bc:92: 3a:2c:6f:fc:19:cf:d8:d7:2a:5f:eb:34:07:88:aa: 2a:c5:d9:76:9a:b2:c0:cc:c5:9d:62:50:17:8f:f4: e4:3c:5f:fe:1f:ee:9f:72:c8:41:a4:56:13:6a:21: 5d:4c:a4:11:a1:5b:54:46:f7:bc:8e:58:4f:f4:2d: f0:aa:44:99:3e:1d:21:1d:ac:8f:84:15:14:79:f4: b1:4e:bf:4a:ad:5f:49:94:ee:ec:4b:09:0d:c1:f5: f3:86:90:ad:79:7f:b1:3d:07:6b:f3:f1:5e:f9:28: 8c:3d:5c:ba:7f:2d:14:61:a2:9c:9e:49:7b:3c:cf: 0a:6e:55:28:d2:05:8b:f3:32:19:1d:ee:2c:30:8e: 2a:41:bb:4d:87:2e:5f:27:3b:e6:d3:24:21:2b:d3: df:da:8b:52:62:a5:78:c4:76:c2:ea:85:35:c8:ff: 5f:37:25:d2:f1:97:08:80:6a:3e:a0:80:9b:dd:b0: 9b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:86:D4:CA:8E:C4:36:29:D4:50:B0:2D:68:87:C0:CF:DA:C6:1D:71 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234362e302f32332d3234203d3e203536303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.246.0/23 Signature Algorithm: sha256WithRSAEncryption 39:72:e0:14:31:fe:69:27:f8:96:67:7a:25:c6:5f:28:ec:f3: c1:fb:19:6e:5b:c5:18:4a:65:6f:d0:72:02:6c:e1:2a:a2:3f: 15:be:86:ed:08:73:b0:50:22:08:1b:a3:41:38:11:cc:58:06: 56:fc:34:df:a0:ea:6d:bf:1c:1d:f9:25:7b:ce:58:1e:3d:91: 99:36:b5:0b:3f:83:0d:d5:9d:92:c9:47:ad:7d:ef:f0:a3:b5: 0d:e6:94:13:f0:8b:6a:33:d1:ae:7a:cf:da:00:0e:14:e9:2c: a5:22:65:57:fa:ee:f6:01:f1:46:87:2a:80:1a:9c:2b:9e:11: 91:c3:c2:29:be:75:1d:a8:94:18:73:52:89:10:32:3e:54:db: cf:26:73:3a:7e:d1:ad:23:54:86:0f:8d:e0:20:aa:35:01:76: 2e:dc:71:e5:b0:91:15:7e:4d:07:ef:7a:8d:f6:a2:8e:29:58: 42:98:b4:e8:f4:d8:60:6c:fc:33:ef:52:49:d5:e3:d7:4d:c7: cd:b3:da:b2:e7:b0:da:33:64:1c:76:26:80:d7:d7:a5:1e:62: 7d:a8:62:51:72:e5:3f:a2:86:b8:d7:8c:6e:37:1e:d2:75:df: 20:66:d8:8e:a5:a7:37:0a:0c:d3:2e:e4:07:0d:03:ee:62:d5: ea:43:32:91 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQHxALIPjG1kSNkTTnpg8Ucr75fUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKDMyODZENENBOEVDNDM2MjlENDUwQjAyRDY4ODdDMENGREFDNjFENzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGF7J3dzoOvueeIzscFfs/dZk1 M+jCB33GvHxoZrzSF0iSHNO4QtxfLbitJJFy7MoKTDqxr1TXrQJT7Xh5BHfNt8Z9 EQbrlvi8kjosb/wZz9jXKl/rNAeIqirF2XaassDMxZ1iUBeP9OQ8X/4f7p9yyEGk VhNqIV1MpBGhW1RG97yOWE/0LfCqRJk+HSEdrI+EFRR59LFOv0qtX0mU7uxLCQ3B 9fOGkK15f7E9B2vz8V75KIw9XLp/LRRhopyeSXs8zwpuVSjSBYvzMhkd7iwwjipB u02HLl8nO+bTJCEr09/ai1JipXjEdsLqhTXI/183JdLxlwiAaj6ggJvdsJuDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUMobUyo7ENinUULAtaIfAz9rGHXEwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMTJlMzIzNDM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAd+h9jANBgkqhkiG9w0BAQsFAAOCAQEAOXLgFDH+aSf4lmd6JcZf KOzzwfsZblvFGEplb9ByAmzhKqI/Fb6G7QhzsFAiCBujQTgRzFgGVvw036Dqbb8c Hfkle85YHj2RmTa1Cz+DDdWdkslHrX3v8KO1DeaUE/CLajPRrnrP2gAOFOkspSJl V/ru9gHxRocqgBqcK54RkcPCKb51HaiUGHNSiRAyPlTbzyZzOn7RrSNUhg+N4CCq NQF2Ltxx5bCRFX5NB+96jfaijilYQpi06PTYYGz8M+9SSdXj103HzbPasuew2jNk HHYmgNfXpR5ifahiUXLlP6KGuNeMbjce0nXfIGbYjqWnNwoM0y7kBw0D7mLV6kMy kQ== -----END CERTIFICATE-----Generated at Sat May 30 00:02:35 2026 by rpki-client