$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3235322e302f32332d3234203d3e203234343434.roa File: 3232332e3136312e3235322e302f32332d3234203d3e203234343434.roa (raw, json) Hash identifier: af+4p4Xk6QrWnxkxzq1I1GO0kvlkGij8QDaYzRIGjAI= Subject key identifier: E4:15:97:1B:3E:C2:18:61:44:23:12:8A:E1:93:78:4E:0D:0A:2F:A8 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 604271CC2CD0F0D179A936939834ACEEF24062A9 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3235322e302f32332d3234203d3e203234343434.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 24444 IP address blocks: 223.161.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:42:71:cc:2c:d0:f0:d1:79:a9:36:93:98:34:ac:ee:f2:40:62:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=E415971B3EC218614423128AE193784E0D0A2FA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:98:22:45:8e:0c:7e:fc:fa:e1:54:d9:5e:ba: e7:d0:2c:07:08:5a:eb:02:e5:72:42:22:46:db:24: f1:27:a9:fa:f4:e9:93:ea:47:11:8f:a5:f4:aa:4c: 14:34:ce:01:99:d8:97:f6:66:b9:d3:fd:95:02:43: 8d:da:85:81:4f:fd:41:36:13:7e:77:ff:ee:03:db: b1:c3:f0:40:2a:b5:b5:e1:bc:c6:3c:ee:9c:09:20: 37:74:60:b5:64:8d:6f:d3:10:77:e2:69:b1:52:77: 33:de:84:e0:e8:37:6f:78:e7:d3:ca:3c:ad:71:2b: 22:d3:79:cf:d8:c7:00:12:a6:ff:06:23:30:b8:d0: 39:b3:2d:75:03:09:f3:df:2a:91:a2:9a:43:d2:f7: 8d:76:55:d9:a4:1b:46:ce:1c:28:ea:c7:e9:1b:91: 01:e8:01:6d:06:26:42:9d:bb:92:c7:54:97:46:21: 7f:db:9e:ab:8c:26:6e:b5:81:a0:59:dc:5c:7b:73: 33:00:a2:f8:55:62:05:25:a3:28:f0:21:31:40:b1: 55:de:b1:6c:88:e3:41:4c:7a:40:df:8e:59:16:00: a4:2a:60:ed:27:eb:5d:54:80:3a:47:59:79:5c:a0: ce:11:b4:56:6b:19:ee:b1:fa:dd:00:97:42:64:66: ff:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:15:97:1B:3E:C2:18:61:44:23:12:8A:E1:93:78:4E:0D:0A:2F:A8 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3235322e302f32332d3234203d3e203234343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.252.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:c9:9e:d3:83:c0:93:7e:f7:59:af:6c:17:91:21:ff:a3:71: f2:98:3e:91:af:25:d4:d4:2d:e7:48:c3:fa:07:c8:f4:0d:c6: 53:82:8d:f6:59:1d:9c:1d:97:6f:55:c9:ff:2e:19:ae:37:48: f5:29:56:2c:44:77:d3:43:04:1d:52:34:4a:a8:24:ae:c7:52: 47:f9:13:62:9a:ce:e5:67:49:c9:08:0a:5f:3b:a4:c7:eb:74: e5:f4:a8:dc:8f:f4:5e:07:49:d8:c3:d5:bd:bf:04:21:bd:40: c0:70:91:ac:73:37:06:4d:3c:a3:b6:40:86:e0:99:ea:47:b5: 71:f5:00:54:d8:e0:e6:13:43:23:7c:43:ff:ee:77:90:a6:03: 46:88:64:e6:bf:4d:ba:ab:24:ce:8e:34:d2:0f:a9:43:89:b5: 67:88:0a:a9:bb:2e:24:f9:04:bb:8a:87:10:54:04:d8:6d:16: f7:a2:d3:34:7a:98:0f:93:78:90:c2:e1:ae:3f:2c:45:66:80: 60:c6:06:0f:ba:b0:89:04:47:81:5a:7d:87:22:af:63:a7:c5: 39:db:4b:a2:e5:55:2a:b2:87:98:33:11:c0:a6:87:e2:94:e8: ca:f0:e6:f6:77:5f:7b:52:5f:3b:1d:73:e2:e0:d2:cc:ab:1b: 32:03:f3:7e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUYEJxzCzQ8NF5qTaTmDSs7vJAYqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKEU0MTU5NzFCM0VDMjE4NjE0NDIzMTI4QUUxOTM3ODRFMEQwQTJGQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDamCJFjgx+/PrhVNleuufQLAcI WusC5XJCIkbbJPEnqfr06ZPqRxGPpfSqTBQ0zgGZ2Jf2ZrnT/ZUCQ43ahYFP/UE2 E353/+4D27HD8EAqtbXhvMY87pwJIDd0YLVkjW/TEHfiabFSdzPehODoN29459PK PK1xKyLTec/YxwASpv8GIzC40DmzLXUDCfPfKpGimkPS9412VdmkG0bOHCjqx+kb kQHoAW0GJkKdu5LHVJdGIX/bnquMJm61gaBZ3Fx7czMAovhVYgUloyjwITFAsVXe sWyI40FMekDfjlkWAKQqYO0n611UgDpHWXlcoM4RtFZrGe6x+t0Al0JkZv+rAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU5BWXGz7CGGFEIxKK4ZN4Tg0KL6gwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMTJlMzIzNTMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzNDM0MzQzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAd+h/DANBgkqhkiG9w0BAQsFAAOCAQEAfcme04PAk373Wa9sF5Eh /6Nx8pg+ka8l1NQt50jD+gfI9A3GU4KN9lkdnB2Xb1XJ/y4ZrjdI9SlWLER300ME HVI0SqgkrsdSR/kTYprO5WdJyQgKXzukx+t05fSo3I/0XgdJ2MPVvb8EIb1AwHCR rHM3Bk08o7ZAhuCZ6ke1cfUAVNjg5hNDI3xD/+53kKYDRohk5r9Nuqskzo400g+p Q4m1Z4gKqbsuJPkEu4qHEFQE2G0W96LTNHqYD5N4kMLhrj8sRWaAYMYGD7qwiQRH gVp9hyKvY6fFOdtLouVVKrKHmDMRwKaH4pToyvDm9ndfe1JfOx1z4uDSzKsbMgPz fg== -----END CERTIFICATE-----Generated at Sat May 30 01:00:14 2026 by rpki-client