$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234382e302f32332d3234203d3e2039383038.roa File: 3232332e3136312e3234382e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: DEgNAV9fTo/flqxyW0QP8DKxC67l/Zag9o1vQq40iWI= Subject key identifier: 92:14:F5:09:A0:7F:42:60:9E:B1:E1:CE:FA:84:93:AA:EA:A5:96:22 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 4E0331537BA2F4A05E9F3E87AE06DFB82CE07B44 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234382e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:57 +0000 ROA not before: Wed 27 May 2026 07:29:57 +0000 ROA not after: Wed 26 May 2027 07:34:57 +0000 asID: 9808 IP address blocks: 223.161.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:03:31:53:7b:a2:f4:a0:5e:9f:3e:87:ae:06:df:b8:2c:e0:7b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:57 2026 GMT Not After : May 26 07:34:57 2027 GMT Subject: CN=9214F509A07F42609EB1E1CEFA8493AAEAA59622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:20:e3:72:92:9f:fa:ea:c6:35:b9:ff:06:65: 4f:0b:fd:8e:61:fa:b7:c5:a0:b8:1b:6f:ac:5a:bd: 14:d7:e2:79:ba:81:e9:5c:1f:bf:40:71:21:3e:a5: 56:03:c2:38:1d:ec:f9:6c:85:1f:7e:36:ce:0d:2d: b6:20:b3:4b:39:27:73:bc:1e:5e:6d:5c:47:0e:6c: ac:26:0d:0c:e6:06:3d:f5:a7:68:b9:62:8a:34:9c: d0:a3:0e:91:17:b5:fb:ed:42:c7:0e:65:81:de:f6: 06:f9:1d:95:1b:8c:ac:ca:e9:0b:ad:4b:d3:47:7d: 0e:ef:2e:86:4e:5d:1d:45:db:30:36:46:88:a7:be: 53:7c:a5:69:ea:d4:1b:5b:3f:ff:ec:b2:2c:13:e7: 67:6f:7b:56:6a:90:c1:11:23:8c:ed:7a:4c:f2:33: db:b5:df:d7:03:56:bc:0c:52:4c:a7:12:51:73:05: 78:f9:d8:cf:c2:bd:10:8f:9b:d8:d6:95:e0:3a:1f: 00:43:57:d2:fb:e1:46:36:46:02:40:8d:27:e3:27: 0e:28:fd:80:7d:76:c4:7b:71:05:d1:e8:53:c5:b0: 7c:c2:f1:88:4a:28:e4:14:03:39:e1:fc:ac:73:5c: e8:1c:d3:2c:f4:ab:94:df:a7:e1:b8:3a:63:6c:ef: ef:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:14:F5:09:A0:7F:42:60:9E:B1:E1:CE:FA:84:93:AA:EA:A5:96:22 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3234382e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.248.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:b8:0d:e7:c7:e0:9e:7a:cd:4b:85:c2:9f:b4:f2:e8:be:c4: eb:0c:58:aa:77:9e:e5:8f:d1:d5:38:c0:4a:0f:a3:31:db:fd: 95:52:d2:60:c5:82:c8:64:ef:6c:06:d3:c6:07:b3:e5:4b:6c: d6:d3:e1:2a:a5:d4:9a:db:f6:ed:6d:c0:5d:70:5d:57:ff:65: 15:9d:ac:7d:af:e6:18:fe:49:ff:a2:1e:07:c1:05:11:e0:97: 73:e8:db:46:b6:49:1b:85:fc:f2:f0:be:4a:1a:24:c7:bf:4d: 69:a2:6f:41:69:14:1a:03:6a:e9:12:b8:3e:f4:42:f0:61:6c: 5e:7e:a3:c3:46:43:4c:85:02:bf:19:cc:38:81:e8:18:1e:8f: 61:c1:a3:50:83:0e:40:1b:33:a8:db:0a:75:e8:7e:59:1c:c8: fb:b5:87:7d:56:b6:1c:e1:6e:a6:13:cd:cd:df:f1:7a:c8:c9: b8:6f:c6:39:19:b5:5f:12:f1:60:a4:44:58:4e:18:d7:62:80: e7:40:fa:50:91:ed:dd:94:ce:1f:04:53:d3:d2:de:ee:4c:6f: 94:67:89:84:e7:bd:9a:36:bf:cd:fb:4d:f8:6c:16:d7:81:8a: 44:2c:66:84:37:f8:8e:3d:68:9f:ed:a2:73:ec:eb:d4:af:4b: 27:02:32:d5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUTgMxU3ui9KBenz6HrgbfuCzge0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTdaFw0yNzA1MjYwNzM0NTdaMDMxMTAvBgNV BAMTKDkyMTRGNTA5QTA3RjQyNjA5RUIxRTFDRUZBODQ5M0FBRUFBNTk2MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5IONykp/66sY1uf8GZU8L/Y5h +rfFoLgbb6xavRTX4nm6gelcH79AcSE+pVYDwjgd7PlshR9+Ns4NLbYgs0s5J3O8 Hl5tXEcObKwmDQzmBj31p2i5Yoo0nNCjDpEXtfvtQscOZYHe9gb5HZUbjKzK6Qut S9NHfQ7vLoZOXR1F2zA2RoinvlN8pWnq1BtbP//ssiwT52dve1ZqkMERI4ztekzy M9u139cDVrwMUkynElFzBXj52M/CvRCPm9jWleA6HwBDV9L74UY2RgJAjSfjJw4o /YB9dsR7cQXR6FPFsHzC8YhKKOQUAznh/KxzXOgc0yz0q5Tfp+G4OmNs7++TAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUkhT1CaB/QmCeseHO+oSTquqlliIwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMxMmUzMjM0MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd+h+DANBgkqhkiG9w0BAQsFAAOCAQEAirgN58fgnnrNS4XCn7Ty6L7E 6wxYqnee5Y/R1TjASg+jMdv9lVLSYMWCyGTvbAbTxgez5Uts1tPhKqXUmtv27W3A XXBdV/9lFZ2sfa/mGP5J/6IeB8EFEeCXc+jbRrZJG4X88vC+Shokx79NaaJvQWkU GgNq6RK4PvRC8GFsXn6jw0ZDTIUCvxnMOIHoGB6PYcGjUIMOQBszqNsKdeh+WRzI +7WHfVa2HOFuphPNzd/xesjJuG/GORm1XxLxYKREWE4Y12KA50D6UJHt3ZTOHwRT 09Le7kxvlGeJhOe9mja/zftN+GwW14GKRCxmhDf4jj1on+2ic+zr1K9LJwIy1Q== -----END CERTIFICATE-----Generated at Sat May 30 00:02:34 2026 by rpki-client