$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136322e302e302f31352d3234203d3e2037363431.roa File: 3232332e3136322e302e302f31352d3234203d3e2037363431.roa (raw, json) Hash identifier: 0KiB0BCLw0B6BRkM4uJGcVzOt7hZ8frSy6hogNIwgMs= Subject key identifier: 80:89:BF:39:DE:87:90:AF:64:2D:CA:FA:A4:C7:A4:0B:AF:E2:8D:A3 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 7899BA76C3E97EE3F4B76E11C1469646002E579A Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136322e302e302f31352d3234203d3e2037363431.roa Signing time: Wed 27 May 2026 07:34:54 +0000 ROA not before: Wed 27 May 2026 07:29:54 +0000 ROA not after: Wed 26 May 2027 07:34:54 +0000 asID: 7641 IP address blocks: 223.162.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:99:ba:76:c3:e9:7e:e3:f4:b7:6e:11:c1:46:96:46:00:2e:57:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:54 2026 GMT Not After : May 26 07:34:54 2027 GMT Subject: CN=8089BF39DE8790AF642DCAFAA4C7A40BAFE28DA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:87:00:b2:3a:d0:12:a9:91:04:15:c4:83:63: 81:20:94:ad:b8:39:0a:c9:8e:6e:78:a9:b0:f0:7a: 8c:fa:00:18:af:dd:f2:dc:a9:87:b5:ba:ae:e5:36: 68:8d:ac:e3:d0:e2:8c:68:59:6d:49:11:41:1e:54: d8:c4:9e:8b:6d:27:01:e5:ba:2e:58:3d:f5:38:4d: 0c:2e:fb:fb:39:20:e2:c3:f0:e8:8c:45:a6:1c:1b: 86:07:fd:ce:7e:88:3d:9f:91:3f:67:36:d8:34:42: d6:54:ba:51:26:d2:9d:d7:4a:ac:7c:10:f0:8f:c1: a8:19:b1:e2:e8:e2:0f:23:1d:ea:95:d3:44:74:54: 8c:8e:1a:c5:a4:09:a4:6d:23:30:4e:10:cc:d5:ae: 11:c4:76:41:5e:c3:9e:d1:c8:0a:e6:23:5d:f9:84: ea:f6:cc:a3:ee:be:8c:4c:24:20:86:ea:12:ad:82: 60:aa:4e:35:2e:62:3e:23:54:cd:4e:da:4a:6f:51: 69:23:7b:41:09:17:e2:42:d3:95:3c:cb:d9:89:16: bb:76:13:69:1d:f3:e7:6d:da:49:11:b9:cf:2a:aa: 56:39:b7:6d:b6:ba:df:a0:ba:74:92:e8:79:80:58: 21:56:9e:3e:85:99:aa:db:26:01:d5:1c:9f:3a:4b: ff:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:89:BF:39:DE:87:90:AF:64:2D:CA:FA:A4:C7:A4:0B:AF:E2:8D:A3 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136322e302e302f31352d3234203d3e2037363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.162.0.0/15 Signature Algorithm: sha256WithRSAEncryption 63:e1:74:82:3b:17:2e:8e:3f:36:4d:e4:ed:88:d0:0e:5b:34: a2:22:87:04:a8:2e:99:88:db:8d:4f:ac:f6:ca:ae:c3:14:bf: 8e:10:d0:ee:47:be:ae:a3:c5:fe:1a:b3:67:01:46:7e:a9:5b: 64:62:13:08:41:16:fc:b2:7f:94:dd:4b:31:33:d9:0f:d0:91: 4f:38:96:9c:bd:c4:62:f9:4c:a4:04:a7:38:58:ab:9c:ae:e4: 0b:eb:7d:ad:e9:72:08:b8:5d:90:f3:36:32:4c:b3:cb:a3:19: c1:bb:20:79:b3:ee:f4:93:ea:00:0a:38:0a:9c:09:79:bf:7a: 46:3a:df:65:0b:f5:ba:2b:98:50:be:2d:d2:6e:d2:78:0c:b2: 46:2c:59:c7:fa:65:55:07:ae:8d:16:8f:dd:5b:30:15:db:07: 51:7e:90:6c:ad:b4:87:32:47:34:4d:ac:d5:57:90:4e:2f:5c: 75:cd:ac:31:66:5e:6e:56:59:27:67:a8:0f:8e:6e:99:fb:7b: a9:58:97:63:b3:f6:c3:3a:33:f6:0d:42:ec:5b:da:3c:10:d7: c9:31:5d:29:ef:91:68:c5:2d:87:5d:83:ae:48:44:01:bb:e3: e8:7d:f0:9a:12:c5:d8:f5:88:10:76:71:59:9b:d1:a7:de:4c: 07:1b:3f:4a -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUeJm6dsPpfuP0t24RwUaWRgAuV5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTRaFw0yNzA1MjYwNzM0NTRaMDMxMTAvBgNV BAMTKDgwODlCRjM5REU4NzkwQUY2NDJEQ0FGQUE0QzdBNDBCQUZFMjhEQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIhwCyOtASqZEEFcSDY4EglK24 OQrJjm54qbDweoz6ABiv3fLcqYe1uq7lNmiNrOPQ4oxoWW1JEUEeVNjEnottJwHl ui5YPfU4TQwu+/s5IOLD8OiMRaYcG4YH/c5+iD2fkT9nNtg0QtZUulEm0p3XSqx8 EPCPwagZseLo4g8jHeqV00R0VIyOGsWkCaRtIzBOEMzVrhHEdkFew57RyArmI135 hOr2zKPuvoxMJCCG6hKtgmCqTjUuYj4jVM1O2kpvUWkje0EJF+JC05U8y9mJFrt2 E2kd8+dt2kkRuc8qqlY5t222ut+gunSS6HmAWCFWnj6FmarbJgHVHJ86S/8PAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUgIm/Od6HkK9kLcr6pMekC6/ijaMwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyNzg2NTYxLzAvMzIzMjMzMmUzMTM2 MzIyZTMwMmUzMDJmMzEzNTJkMzIzNDIwM2QzZTIwMzczNjM0MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwHfojANBgkqhkiG9w0BAQsFAAOCAQEAY+F0gjsXLo4/Nk3k7YjQDls0oiKHBKgu mYjbjU+s9squwxS/jhDQ7ke+rqPF/hqzZwFGfqlbZGITCEEW/LJ/lN1LMTPZD9CR TziWnL3EYvlMpASnOFirnK7kC+t9relyCLhdkPM2Mkyzy6MZwbsgebPu9JPqAAo4 CpwJeb96RjrfZQv1uiuYUL4t0m7SeAyyRixZx/plVQeujRaP3VswFdsHUX6QbK20 hzJHNE2s1VeQTi9cdc2sMWZeblZZJ2eoD45umft7qViXY7P2wzoz9g1C7FvaPBDX yTFdKe+RaMUth12DrkhEAbvj6H3wmhLF2PWIEHZxWZvRp95MBxs/Sg== -----END CERTIFICATE-----Generated at Sat May 30 00:53:26 2026 by rpki-client