$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3133382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: 7sRfP8+G2DzXjXlC68986lNFpC0QkSm7uOiXQg5bgxA= Subject key identifier: 3F:38:C3:FC:11:1C:EF:1B:D8:05:90:05:6E:A6:CA:8C:87:5B:88:24 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 4F45A3EBDF40E0243097D84EB24F1D96E3743912 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:33 +0000 ROA not before: Fri 24 Apr 2026 06:58:33 +0000 ROA not after: Fri 23 Apr 2027 07:03:33 +0000 asID: 38019 IP address blocks: 139.220.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:45:a3:eb:df:40:e0:24:30:97:d8:4e:b2:4f:1d:96:e3:74:39:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:33 2026 GMT Not After : Apr 23 07:03:33 2027 GMT Subject: CN=3F38C3FC111CEF1BD80590056EA6CA8C875B8824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f6:84:cb:97:8d:d0:1b:ee:a9:49:1c:ed:76: a3:30:b7:59:ac:d6:d6:7e:01:c9:8a:f1:e3:87:d4: c0:1c:b5:38:aa:12:c4:5d:bb:5e:f5:c9:71:28:86: 5f:b9:13:31:44:35:58:dd:a7:4a:0c:1f:84:70:bf: 26:15:07:ac:72:e9:d5:08:57:8c:99:d1:ad:d2:da: f2:e7:97:aa:7b:35:10:15:22:eb:7a:51:bd:24:16: 4c:8f:f1:21:47:05:31:b6:05:e9:c1:a9:4a:ad:65: a4:ae:be:fb:d9:d0:46:6c:52:da:dd:13:91:6f:07: 48:0c:fc:4d:3c:81:35:5a:dc:91:81:c3:f6:d9:d2: 0a:5e:de:d6:ae:90:7c:c9:1b:70:63:d1:9e:04:0d: 09:d1:ad:56:3d:23:11:e4:26:75:f3:19:e9:32:33: 76:fc:55:5f:93:76:48:70:ae:df:53:4c:65:8b:71: 82:37:88:69:5e:30:65:46:8c:39:1f:ac:47:bf:60: e8:e5:24:30:12:6b:ab:f9:16:3e:e8:fd:e3:18:2e: 2a:87:c8:82:44:9f:0a:d2:68:0d:61:31:ca:87:7b: 87:55:0c:ee:3b:d3:5c:ed:21:5c:c8:a9:37:a3:a8: 99:8c:07:0e:7c:20:23:5a:2b:92:6d:bf:68:4f:97: 4e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:38:C3:FC:11:1C:EF:1B:D8:05:90:05:6E:A6:CA:8C:87:5B:88:24 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3133382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.138.0/23 Signature Algorithm: sha256WithRSAEncryption 04:53:c9:f6:07:19:c8:1b:ec:fb:8e:9c:27:14:05:0e:39:79: 32:17:bb:60:23:5f:35:7c:75:28:ce:e1:3a:71:e1:63:2b:dc: 69:69:b8:56:c6:17:2c:7e:71:61:1e:a7:79:52:43:cb:c6:03: 3d:20:a3:b9:56:a3:9b:82:3e:69:60:ce:ee:34:c1:f3:4a:fa: d0:e1:96:60:b4:74:ea:df:ac:38:01:4c:de:61:19:9c:43:b5: ba:4b:4a:2a:7b:9b:6f:1f:1b:52:81:e7:9a:6c:f9:17:00:87: 7b:61:13:56:f4:a8:e6:6b:f1:62:db:b5:74:87:2a:00:29:d4: a2:9b:3f:a2:81:55:39:97:00:12:a9:37:7f:6e:c6:79:e2:28: 03:4c:54:b7:99:32:89:2a:38:2f:a7:b4:b9:29:5e:09:78:a5: 20:35:81:fb:eb:ea:ec:81:01:ed:ae:c6:65:81:b8:97:bd:80: 4f:e1:a5:fd:a9:c3:82:fe:6d:ea:2e:27:55:70:9f:c7:97:2f: 57:9a:62:c3:0a:95:c4:2d:4a:64:ec:56:63:d8:8e:a9:76:f6: 5c:19:34:cb:fe:b6:b7:99:c5:cc:1d:07:26:98:b1:c4:c5:e3: 90:c2:92:1c:12:f6:f9:3d:98:cf:02:67:8e:9f:65:cf:c6:3a: 87:88:bd:20 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUT0Wj699A4CQwl9hOsk8dluN0ORIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzNaFw0yNzA0MjMwNzAzMzNaMDMxMTAvBgNV BAMTKDNGMzhDM0ZDMTExQ0VGMUJEODA1OTAwNTZFQTZDQThDODc1Qjg4MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC99oTLl43QG+6pSRztdqMwt1ms 1tZ+AcmK8eOH1MActTiqEsRdu171yXEohl+5EzFENVjdp0oMH4RwvyYVB6xy6dUI V4yZ0a3S2vLnl6p7NRAVIut6Ub0kFkyP8SFHBTG2BenBqUqtZaSuvvvZ0EZsUtrd E5FvB0gM/E08gTVa3JGBw/bZ0gpe3taukHzJG3Bj0Z4EDQnRrVY9IxHkJnXzGeky M3b8VV+Tdkhwrt9TTGWLcYI3iGleMGVGjDkfrEe/YOjlJDASa6v5Fj7o/eMYLiqH yIJEnwrSaA1hMcqHe4dVDO4701ztIVzIqTejqJmMBw58ICNaK5Jtv2hPl06ZAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUPzjD/BEc7xvYBZAFbqbKjIdbiCQwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzMzM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcijANBgkqhkiG9w0BAQsFAAOCAQEABFPJ9gcZyBvs+46cJxQF Djl5Mhe7YCNfNXx1KM7hOnHhYyvcaWm4VsYXLH5xYR6neVJDy8YDPSCjuVajm4I+ aWDO7jTB80r60OGWYLR06t+sOAFM3mEZnEO1uktKKnubbx8bUoHnmmz5FwCHe2ET VvSo5mvxYtu1dIcqACnUops/ooFVOZcAEqk3f27GeeIoA0xUt5kyiSo4L6e0uSle CXilIDWB++vq7IEB7a7GZYG4l72AT+Gl/anDgv5t6i4nVXCfx5cvV5piwwqVxC1K ZOxWY9iOqXb2XBk0y/62t5nFzB0HJpixxMXjkMKSHBL2+T2YzwJnjp9lz8Y6h4i9 IA== -----END CERTIFICATE-----Generated at Wed May 13 13:04:41 2026 by rpki-client