$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3134322e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3134322e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: uKJRo8D3r/Hloi5kq8ZhGwOCXUovfnl3rOQTY4kJCcQ= Subject key identifier: 5D:17:67:6E:1F:41:01:11:E5:4D:ED:7B:52:94:56:4E:F8:2E:DE:2F Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 1010842EB3CA3634B3384B22C9FAD94F61E1F5C8 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3134322e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:18 +0000 ROA not before: Fri 24 Apr 2026 06:56:18 +0000 ROA not after: Fri 23 Apr 2027 07:01:18 +0000 asID: 38019 IP address blocks: 139.220.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:10:84:2e:b3:ca:36:34:b3:38:4b:22:c9:fa:d9:4f:61:e1:f5:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:18 2026 GMT Not After : Apr 23 07:01:18 2027 GMT Subject: CN=5D17676E1F410111E54DED7B5294564EF82EDE2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:60:cd:ff:12:f0:e1:81:1d:ac:e2:81:02:10: 0c:f6:45:1e:cb:5a:c7:2d:80:4c:ce:e9:2f:f2:19: d6:f2:29:26:29:72:07:d6:5e:43:69:1d:93:bd:53: 87:6a:5c:22:78:34:3d:60:15:97:93:00:10:d8:97: e4:16:d5:4f:14:a7:fb:34:dc:8b:a8:1f:23:b6:9e: b3:f3:4a:46:f1:43:0f:44:69:45:23:a0:f1:cf:6f: ce:f0:1e:27:4d:f0:d2:06:58:93:de:71:01:67:0f: bf:65:78:fa:63:b1:cb:b1:62:36:9c:a7:23:c6:31: 56:67:b1:3f:63:59:22:e2:1e:f7:6e:66:e1:8a:62: f7:2b:f7:68:89:7d:de:ca:d3:43:07:20:54:4c:f5: 58:31:62:76:fc:9b:ea:f2:c5:91:b4:c7:c0:ad:bd: 2b:08:53:2c:3f:45:c3:d7:e3:f5:2d:96:cf:2d:80: 8a:84:53:3b:dc:4f:79:88:82:3e:a7:96:a6:97:c6: fe:0d:41:ec:55:9a:35:b8:fd:6b:e0:c0:c9:da:c6: 76:d9:92:f6:b9:1a:a3:3f:40:7b:4b:af:ad:08:fc: 2a:c9:00:f2:a5:ec:9e:db:60:a8:44:04:04:56:e0: 9d:46:11:da:e0:5a:f7:52:dd:73:47:51:2e:74:76: 58:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:17:67:6E:1F:41:01:11:E5:4D:ED:7B:52:94:56:4E:F8:2E:DE:2F X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3134322e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.142.0/23 Signature Algorithm: sha256WithRSAEncryption a6:2d:1f:7f:69:ee:d4:c2:74:91:c0:e8:91:85:54:f1:38:57: 38:04:4b:d9:3b:22:fd:c2:06:ec:9d:6b:ad:90:36:c4:83:a7: b8:80:81:05:e4:da:4f:22:f4:19:f8:09:5c:54:a5:eb:e9:b9: df:f0:09:49:8f:1e:e7:7c:55:da:95:23:d0:53:4d:c6:57:d2: d4:17:10:96:58:a6:83:4e:bf:78:d4:f3:c4:bf:87:fa:8d:5e: bb:59:3f:63:d4:74:87:5e:62:d8:e5:42:7f:99:70:69:8b:6a: fc:63:b7:0f:1b:29:49:a8:fe:cc:f9:2c:32:85:2e:19:e0:7c: 48:a6:af:3f:14:47:bf:97:4c:b3:d0:9f:d7:60:b9:fb:6c:09: c4:81:a2:f0:cc:43:d4:b3:5c:7f:5a:30:a1:bb:2c:83:d0:88: d0:f2:89:b3:47:91:45:53:2f:b3:41:60:d8:90:f9:bf:08:be: 8d:c5:2d:ed:76:82:2a:fc:01:df:18:73:0e:48:1b:3f:86:7c: 0b:87:c8:aa:8f:ce:b6:85:93:19:12:a5:fa:21:15:24:f0:b7: 11:6c:bc:dd:ef:27:53:06:e5:42:16:6d:10:88:12:68:96:c4: 23:c3:6b:d7:cd:de:fc:56:ff:19:cc:86:ae:bf:ac:69:d7:60: 63:3f:d6:80 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUEBCELrPKNjSzOEsiyfrZT2Hh9cgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MThaFw0yNzA0MjMwNzAxMThaMDMxMTAvBgNV BAMTKDVEMTc2NzZFMUY0MTAxMTFFNTRERUQ3QjUyOTQ1NjRFRjgyRURFMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrYM3/EvDhgR2s4oECEAz2RR7L WsctgEzO6S/yGdbyKSYpcgfWXkNpHZO9U4dqXCJ4ND1gFZeTABDYl+QW1U8Up/s0 3IuoHyO2nrPzSkbxQw9EaUUjoPHPb87wHidN8NIGWJPecQFnD79lePpjscuxYjac pyPGMVZnsT9jWSLiHvduZuGKYvcr92iJfd7K00MHIFRM9VgxYnb8m+ryxZG0x8Ct vSsIUyw/RcPX4/Utls8tgIqEUzvcT3mIgj6nlqaXxv4NQexVmjW4/WvgwMnaxnbZ kva5GqM/QHtLr60I/CrJAPKl7J7bYKhEBARW4J1GEdrgWvdS3XNHUS50dlhxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUXRdnbh9BARHlTe17UpRWTvgu3i8wHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNDMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcjjANBgkqhkiG9w0BAQsFAAOCAQEApi0ff2nu1MJ0kcDokYVU 8ThXOARL2Tsi/cIG7J1rrZA2xIOnuICBBeTaTyL0GfgJXFSl6+m53/AJSY8e53xV 2pUj0FNNxlfS1BcQllimg06/eNTzxL+H+o1eu1k/Y9R0h15i2OVCf5lwaYtq/GO3 DxspSaj+zPksMoUuGeB8SKavPxRHv5dMs9Cf12C5+2wJxIGi8MxD1LNcf1owobss g9CI0PKJs0eRRVMvs0Fg2JD5vwi+jcUt7XaCKvwB3xhzDkgbP4Z8C4fIqo/OtoWT GRKl+iEVJPC3EWy83e8nUwblQhZtEIgSaJbEI8Nr183e/Fb/GcyGrr+saddgYz/W gA== -----END CERTIFICATE-----Generated at Wed May 13 14:53:09 2026 by rpki-client