$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133362e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3133362e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: LaDGY4SsaJ3/vIMzNzLjrwIHN87i9QkN3vMbMP7oB38= Subject key identifier: DF:FB:ED:30:35:3A:B6:01:D5:6B:65:A1:EA:69:DB:80:BD:3C:C2:0D Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 29A14AC47D2D11B866F601030E5F931A5FED22AC Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133362e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:17 +0000 ROA not before: Fri 24 Apr 2026 06:56:17 +0000 ROA not after: Fri 23 Apr 2027 07:01:17 +0000 asID: 38019 IP address blocks: 139.220.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a1:4a:c4:7d:2d:11:b8:66:f6:01:03:0e:5f:93:1a:5f:ed:22:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:17 2026 GMT Not After : Apr 23 07:01:17 2027 GMT Subject: CN=DFFBED30353AB601D56B65A1EA69DB80BD3CC20D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bf:8c:60:5b:13:3b:c3:fc:d4:2f:73:c8:77: 5e:38:9d:ed:1f:e3:df:5f:08:17:20:3b:9c:7d:fe: 85:09:d8:6f:e8:c1:c8:c7:67:88:5c:54:7e:9d:ef: 24:a3:9b:1b:86:da:03:63:2c:66:e4:63:13:6e:db: 07:ca:24:c2:88:1b:f0:86:82:74:36:0d:ef:dd:3a: 90:58:54:41:16:a5:33:f8:dd:9d:ac:f3:23:0a:5f: 6b:7c:24:07:73:aa:28:53:60:d5:9b:40:35:1e:99: 71:c5:77:5c:1e:8e:dc:fa:ba:22:2d:55:17:58:72: 42:4b:45:bb:67:a4:94:42:33:2f:ae:82:62:4a:9c: 93:e0:0f:d0:49:93:e5:57:50:c2:c6:3f:a7:83:32: e8:41:a5:3b:84:19:c4:3a:9b:9c:ea:8c:b6:cc:a9: a7:83:83:56:c5:bd:3c:51:22:23:6b:95:a3:d6:68: af:de:b5:02:b0:2d:cb:4f:95:e0:d4:8d:c2:4b:e5: 36:65:41:57:f6:05:92:06:90:4b:12:2a:0f:7b:62: d5:3d:f9:1b:13:5b:a6:19:10:2e:3a:06:05:34:f8: e3:c8:54:ef:40:bb:2d:42:c5:9e:2a:18:a1:00:67: 89:dd:1b:bd:d8:52:66:2a:e0:5e:e4:01:80:2a:e5: 5e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FB:ED:30:35:3A:B6:01:D5:6B:65:A1:EA:69:DB:80:BD:3C:C2:0D X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133362e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.136.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:d6:70:1c:9c:d5:84:d3:a6:db:56:2b:58:17:0b:93:e2:88: a4:57:03:73:0b:e5:9e:08:71:ae:b2:86:1c:f2:19:2c:ef:3b: 5f:b0:55:ee:7a:e6:28:a9:27:e3:8d:be:9f:86:a0:8b:75:7f: c1:6e:8a:d0:5d:cd:7f:ae:96:01:60:f0:b2:e5:61:f2:09:bc: 1f:d6:83:ab:b3:f1:24:2f:48:e3:81:d7:c8:6d:2d:6f:4a:1d: 86:4f:68:2a:01:28:94:20:e9:21:e8:71:7c:ac:64:40:c2:c8: 05:38:e6:6c:ac:0c:5a:c3:08:37:f9:86:5e:7a:9c:29:5d:92: ee:c5:df:34:75:1e:2e:cd:ef:46:9c:bc:95:3c:78:55:1f:ad: c5:82:40:a3:04:46:c7:44:69:dc:b3:1e:73:39:75:7f:1e:a2: b1:d6:a7:d3:cd:2d:97:80:b1:dd:a9:b9:ba:83:9d:23:00:a6: d0:93:08:e2:27:76:d9:2c:1c:47:cd:f3:c5:84:3f:68:0b:fe: de:42:96:f7:c4:b0:7d:32:50:04:08:4e:c2:bf:f8:6b:2b:51: 85:e2:29:51:81:94:96:80:12:71:6a:91:ba:d9:45:8f:6a:fa: 06:f2:8c:c8:58:2f:41:18:f3:27:a4:51:ca:f1:5b:f8:22:80: b9:12:cd:3d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKaFKxH0tEbhm9gEDDl+TGl/tIqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTdaFw0yNzA0MjMwNzAxMTdaMDMxMTAvBgNV BAMTKERGRkJFRDMwMzUzQUI2MDFENTZCNjVBMUVBNjlEQjgwQkQzQ0MyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzv4xgWxM7w/zUL3PId144ne0f 499fCBcgO5x9/oUJ2G/owcjHZ4hcVH6d7ySjmxuG2gNjLGbkYxNu2wfKJMKIG/CG gnQ2De/dOpBYVEEWpTP43Z2s8yMKX2t8JAdzqihTYNWbQDUemXHFd1wejtz6uiIt VRdYckJLRbtnpJRCMy+ugmJKnJPgD9BJk+VXUMLGP6eDMuhBpTuEGcQ6m5zqjLbM qaeDg1bFvTxRIiNrlaPWaK/etQKwLctPleDUjcJL5TZlQVf2BZIGkEsSKg97YtU9 +RsTW6YZEC46BgU0+OPIVO9Auy1CxZ4qGKEAZ4ndG73YUmYq4F7kAYAq5V5lAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU3/vtMDU6tgHVa2Wh6mnbgL08wg0wHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzMzM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvciDANBgkqhkiG9w0BAQsFAAOCAQEAGtZwHJzVhNOm21YrWBcL k+KIpFcDcwvlnghxrrKGHPIZLO87X7BV7nrmKKkn442+n4agi3V/wW6K0F3Nf66W AWDwsuVh8gm8H9aDq7PxJC9I44HXyG0tb0odhk9oKgEolCDpIehxfKxkQMLIBTjm bKwMWsMIN/mGXnqcKV2S7sXfNHUeLs3vRpy8lTx4VR+txYJAowRGx0Rp3LMeczl1 fx6isdan080tl4Cx3am5uoOdIwCm0JMI4id22SwcR83zxYQ/aAv+3kKW98SwfTJQ BAhOwr/4aytRheIpUYGUloAScWqRutlFj2r6BvKMyFgvQRjzJ6RRyvFb+CKAuRLN PQ== -----END CERTIFICATE-----Generated at Wed May 13 13:08:13 2026 by rpki-client