$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3235342e302f32332d3234203d3e2039383038.roa File: 3232332e3136312e3235342e302f32332d3234203d3e2039383038.roa (raw, json) Hash identifier: ftYKf6fYWEwhKsuHRYJ16PZKUU/2xvfuBs4cZk6PWzQ= Subject key identifier: 85:4A:90:61:8B:20:2B:13:E5:39:9D:65:70:A4:9B:80:48:25:68:DB Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 2774B95E520F150DAA249CADCEF57383C36EC2BA Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3235342e302f32332d3234203d3e2039383038.roa Signing time: Wed 27 May 2026 07:34:52 +0000 ROA not before: Wed 27 May 2026 07:29:52 +0000 ROA not after: Wed 26 May 2027 07:34:52 +0000 asID: 9808 IP address blocks: 223.161.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:74:b9:5e:52:0f:15:0d:aa:24:9c:ad:ce:f5:73:83:c3:6e:c2:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:52 2026 GMT Not After : May 26 07:34:52 2027 GMT Subject: CN=854A90618B202B13E5399D6570A49B80482568DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:eb:7e:de:98:35:fe:9d:1b:7d:22:0d:86:9c: 74:c5:3f:87:ec:a8:bc:c5:02:02:d5:4d:15:16:1c: 1f:38:32:9a:bd:60:3a:d9:49:54:d2:b0:c9:fd:83: 47:ad:84:2c:8e:a9:d6:0d:13:c6:ef:29:13:a7:e5: 5b:45:40:1c:50:bb:98:93:68:d2:18:df:50:38:2e: 09:8c:a2:44:37:69:49:db:1e:a3:f4:5e:17:8a:92: c9:ac:56:29:2e:a8:6e:79:cc:5e:5d:91:e4:45:2f: 86:33:e4:f8:c3:97:bd:17:17:51:85:fe:31:d6:1a: 0f:32:77:48:23:ed:6f:6e:8a:36:1d:80:5f:e3:ac: 16:6f:62:b3:ff:01:60:f3:11:54:0c:10:25:67:af: 30:2e:b1:c7:60:cf:e1:21:b7:f6:dd:20:21:be:3b: 7d:e4:35:70:1f:78:5b:b9:f2:07:35:9d:5d:b4:28: e6:28:60:ce:b3:99:1a:27:10:7c:e0:41:92:5f:d7: d1:7b:f8:60:88:33:c2:33:3f:85:35:8a:50:cf:35: b6:20:9f:29:1e:71:9f:eb:55:a8:7a:be:35:f9:4f: ad:2d:e1:dc:60:3e:29:6b:85:08:7b:a5:e0:17:7c: 21:d1:77:4c:c4:55:0a:d3:9a:a3:d7:ae:4d:8e:9f: f0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4A:90:61:8B:20:2B:13:E5:39:9D:65:70:A4:9B:80:48:25:68:DB X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136312e3235342e302f32332d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.161.254.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:e3:16:33:66:39:53:86:9d:fa:73:3e:27:e4:17:a7:57:e4: 72:08:75:02:97:42:0a:2c:b3:5f:af:51:e3:75:b8:f0:63:10: 27:1b:49:ce:3d:6a:11:ac:a2:e2:e7:c1:37:0b:2b:0d:dc:c9: 78:31:0d:05:e9:14:e9:99:5e:36:52:e0:19:22:9f:f4:02:eb: 87:7d:c9:e6:bc:bc:de:0f:d5:e7:78:c1:6d:b7:74:d2:b8:8e: ea:96:15:97:5f:68:ad:d5:ce:03:2e:39:61:a5:68:c2:14:2e: b3:1d:36:94:8f:d2:a8:a4:fd:3d:9b:98:b6:34:18:d9:24:6c: f7:46:93:17:8d:f0:b1:40:55:4e:2b:68:8b:9e:af:b5:ec:07: 13:8b:22:fc:4e:57:05:d3:65:72:08:fe:1a:d4:12:75:f2:b1: 21:e4:fc:11:a7:ba:b2:59:ae:2f:01:b1:32:9e:ae:52:e0:a7: d3:1e:47:b7:ae:c4:c8:97:f6:c8:4c:c1:0e:10:c2:57:d7:0c: d6:7e:b4:46:d3:2f:05:30:78:23:3f:83:b8:b3:40:a1:d8:2c: ae:58:84:f3:05:00:74:11:27:14:85:21:90:21:cc:f5:a7:cf: 19:12:3f:ef:75:fc:8e:cc:de:df:13:ea:a8:20:0b:d3:3e:20: 9c:af:2d:3d -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJ3S5XlIPFQ2qJJytzvVzg8NuwrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTJaFw0yNzA1MjYwNzM0NTJaMDMxMTAvBgNV BAMTKDg1NEE5MDYxOEIyMDJCMTNFNTM5OUQ2NTcwQTQ5QjgwNDgyNTY4REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi637emDX+nRt9Ig2GnHTFP4fs qLzFAgLVTRUWHB84Mpq9YDrZSVTSsMn9g0ethCyOqdYNE8bvKROn5VtFQBxQu5iT aNIY31A4LgmMokQ3aUnbHqP0XheKksmsVikuqG55zF5dkeRFL4Yz5PjDl70XF1GF /jHWGg8yd0gj7W9uijYdgF/jrBZvYrP/AWDzEVQMECVnrzAuscdgz+Eht/bdICG+ O33kNXAfeFu58gc1nV20KOYoYM6zmRonEHzgQZJf19F7+GCIM8IzP4U1ilDPNbYg nykecZ/rVah6vjX5T60t4dxgPilrhQh7peAXfCHRd0zEVQrTmqPXrk2On/A3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUhUqQYYsgKxPlOZ1lcKSbgEglaNswHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjc4NjU2MS8wLzMyMzIzMzJlMzEz NjMxMmUzMjM1MzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd+h/jANBgkqhkiG9w0BAQsFAAOCAQEALuMWM2Y5U4ad+nM+J+QXp1fk cgh1ApdCCiyzX69R43W48GMQJxtJzj1qEayi4ufBNwsrDdzJeDENBekU6ZleNlLg GSKf9ALrh33J5ry83g/V53jBbbd00riO6pYVl19ordXOAy45YaVowhQusx02lI/S qKT9PZuYtjQY2SRs90aTF43wsUBVTitoi56vtewHE4si/E5XBdNlcgj+GtQSdfKx IeT8Eae6slmuLwGxMp6uUuCn0x5Ht67EyJf2yEzBDhDCV9cM1n60RtMvBTB4Iz+D uLNAodgsrliE8wUAdBEnFIUhkCHM9afPGRI/73X8jsze3xPqqCAL0z4gnK8tPQ== -----END CERTIFICATE-----Generated at Sat May 30 00:02:40 2026 by rpki-client