$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133342e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3133342e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: 8bZ1TlGAyH/P9apl1TrESXqVp5KThL7F3UVXAoOR4ko= Subject key identifier: 94:AA:72:13:69:50:B6:07:D7:05:FD:7C:E8:58:0F:F2:A4:CC:D3:49 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 73EE76AAFD6C2F05EE2E601292FBC0290687ABDC Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133342e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:34 +0000 ROA not before: Fri 24 Apr 2026 06:58:34 +0000 ROA not after: Fri 23 Apr 2027 07:03:34 +0000 asID: 38019 IP address blocks: 139.220.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ee:76:aa:fd:6c:2f:05:ee:2e:60:12:92:fb:c0:29:06:87:ab:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:34 2026 GMT Not After : Apr 23 07:03:34 2027 GMT Subject: CN=94AA72136950B607D705FD7CE8580FF2A4CCD349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:51:83:d6:d2:17:90:58:f0:59:cd:67:5c:44: 51:ad:f7:44:bd:d1:68:62:48:28:9b:81:44:2a:55: ba:8c:44:05:d9:34:cd:1b:26:36:23:ef:45:3d:1d: 0b:10:25:41:5b:5d:27:12:4f:a6:e5:05:44:8a:14: fa:be:1c:84:fd:30:3d:0c:6f:c5:ac:b1:d0:11:d0: 8a:7f:30:ad:2b:69:79:aa:59:03:a7:d9:8a:a4:27: 38:48:35:35:34:c2:34:39:14:9d:32:7b:16:28:20: 92:67:06:e7:5c:a0:c3:95:c2:89:ac:a6:d9:53:80: db:b1:8e:fe:ea:50:1c:80:31:2d:d2:e7:69:8b:89: c6:67:25:a8:1e:00:b8:01:a6:de:e8:29:df:7e:a9: e4:5c:d1:b5:77:03:8c:fb:af:ad:3b:41:46:e1:af: 14:96:80:6b:8f:91:fa:49:41:c4:a9:fa:74:1b:d1: c0:82:63:36:26:d2:eb:b4:4d:32:37:9c:a3:f5:35: ac:d7:41:86:f2:a1:eb:67:5a:d6:c7:31:92:8c:58: dc:1b:ab:c5:10:a9:1a:a9:d9:e3:3f:42:9d:5f:50: b7:3e:56:30:37:4d:70:93:26:f4:36:ce:cb:1a:57: 74:ef:7f:25:fb:97:88:5b:e0:b0:27:ad:57:da:30: a9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AA:72:13:69:50:B6:07:D7:05:FD:7C:E8:58:0F:F2:A4:CC:D3:49 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133342e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.134.0/23 Signature Algorithm: sha256WithRSAEncryption 66:63:50:72:c0:55:76:b5:e0:e4:a3:bb:c6:be:58:b5:9a:17: ee:4b:3f:35:91:a3:e7:5e:b9:4a:da:05:82:25:bf:27:44:a5: 6d:19:1e:ce:85:f8:ae:f2:32:2a:a7:8c:cf:86:f9:8e:c2:4a: 52:29:86:10:a7:f1:85:fc:ca:73:cf:c9:e0:7e:f9:ac:9c:ad: 87:01:9b:8c:f2:11:75:b2:fe:f2:ea:47:d7:4a:7c:da:2e:d5: 8b:62:8b:56:93:fd:56:ab:7e:c7:ee:f7:31:5f:81:73:9e:a1: d9:98:96:b8:e3:f1:90:e6:15:e0:4b:0c:1a:f6:b6:b2:33:82: 6e:15:25:6f:50:54:3c:96:3d:b8:e1:4f:cd:8c:7e:e7:0b:60: 1b:8c:7a:d8:bc:18:38:29:38:14:42:b3:f5:fb:98:0d:08:a4: 95:0b:57:88:ba:e3:0a:19:55:81:cf:cf:46:67:d0:58:1e:dd: af:7b:64:9b:30:01:d8:87:e5:70:72:89:eb:31:e5:ca:29:9c: e8:13:ed:28:0d:fe:55:0c:b0:00:4b:3d:b9:33:df:3e:b9:b8: ca:98:74:82:df:53:fe:de:47:cb:38:f7:22:dd:31:aa:8d:63: 78:d4:c5:de:28:19:2a:d3:75:df:d1:fc:10:b3:9d:b3:ac:f2: b8:46:34:0e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUc+52qv1sLwXuLmASkvvAKQaHq9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzRaFw0yNzA0MjMwNzAzMzRaMDMxMTAvBgNV BAMTKDk0QUE3MjEzNjk1MEI2MDdENzA1RkQ3Q0U4NTgwRkYyQTRDQ0QzNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClUYPW0heQWPBZzWdcRFGt90S9 0WhiSCibgUQqVbqMRAXZNM0bJjYj70U9HQsQJUFbXScST6blBUSKFPq+HIT9MD0M b8WssdAR0Ip/MK0raXmqWQOn2YqkJzhINTU0wjQ5FJ0yexYoIJJnBudcoMOVwoms ptlTgNuxjv7qUByAMS3S52mLicZnJageALgBpt7oKd9+qeRc0bV3A4z7r607QUbh rxSWgGuPkfpJQcSp+nQb0cCCYzYm0uu0TTI3nKP1NazXQYbyoetnWtbHMZKMWNwb q8UQqRqp2eM/Qp1fULc+VjA3TXCTJvQ2zssaV3TvfyX7l4hb4LAnrVfaMKlHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUlKpyE2lQtgfXBf186FgP8qTM00kwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzMzM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvchjANBgkqhkiG9w0BAQsFAAOCAQEAZmNQcsBVdrXg5KO7xr5Y tZoX7ks/NZGj5165StoFgiW/J0SlbRkezoX4rvIyKqeMz4b5jsJKUimGEKfxhfzK c8/J4H75rJythwGbjPIRdbL+8upH10p82i7Vi2KLVpP9Vqt+x+73MV+Bc56h2ZiW uOPxkOYV4EsMGva2sjOCbhUlb1BUPJY9uOFPzYx+5wtgG4x62LwYOCk4FEKz9fuY DQiklQtXiLrjChlVgc/PRmfQWB7dr3tkmzAB2IflcHKJ6zHlyimc6BPtKA3+VQyw AEs9uTPfPrm4yph0gt9T/t5Hyzj3It0xqo1jeNTF3igZKtN139H8ELOds6zyuEY0 Dg== -----END CERTIFICATE-----Generated at Wed May 13 12:40:10 2026 by rpki-client