$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3134342e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3134342e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: 6p0wqYFRDrarBmBrUwddkkn8DcYfoRQOXHgr/tVXRC4= Subject key identifier: CC:0D:85:45:81:55:A9:7C:CC:8C:B1:A7:A5:FE:C6:36:94:30:9D:17 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 5EF11E436015BE5496F3C9252B891B3995BC4901 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3134342e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:16 +0000 ROA not before: Fri 24 Apr 2026 06:56:16 +0000 ROA not after: Fri 23 Apr 2027 07:01:16 +0000 asID: 38019 IP address blocks: 139.220.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f1:1e:43:60:15:be:54:96:f3:c9:25:2b:89:1b:39:95:bc:49:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:16 2026 GMT Not After : Apr 23 07:01:16 2027 GMT Subject: CN=CC0D85458155A97CCC8CB1A7A5FEC63694309D17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7a:8c:dc:4d:d6:3e:26:d9:cd:8a:d1:23:1c: f6:6d:f9:96:8a:14:8a:b8:23:2c:1a:cc:f6:fe:65: 5a:aa:56:bf:6d:0e:36:58:25:bc:ff:53:d3:54:00: 63:1a:ab:b3:7f:ea:1f:1c:fe:ff:28:84:c2:76:35: d7:fe:c5:b1:a9:36:1b:88:27:24:70:ac:e3:b7:6f: e5:d0:e4:41:1a:f0:ad:bd:79:82:79:91:ca:c5:21: 9c:95:6e:c2:4e:17:4f:d5:36:62:dc:e7:3a:1d:b7: 39:1c:f0:40:e5:91:c6:d2:d4:76:50:b7:10:4c:84: ba:b0:67:e4:55:ee:1b:51:a6:be:2f:ad:49:d2:78: 13:49:48:74:29:37:0c:43:09:7e:8e:58:95:ed:d1: af:8b:a8:b1:11:82:a3:ce:45:fa:2d:16:ca:33:06: f8:df:9e:5e:ca:bb:e4:75:7d:e6:9a:a5:c0:ea:ab: 4a:72:f2:c8:fe:5b:f4:9f:17:e4:ec:b2:a1:e5:6e: cb:3f:40:2f:2a:c1:0e:a1:45:fb:1f:1e:2d:78:a5: 73:23:9b:7e:de:06:d9:2c:76:c3:4c:cf:cd:48:d9: 33:96:b3:b6:7a:86:ef:0d:a6:84:c4:ac:5e:6a:55: e3:5b:48:9a:7d:ab:39:fb:5a:82:44:3c:33:21:66: dc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0D:85:45:81:55:A9:7C:CC:8C:B1:A7:A5:FE:C6:36:94:30:9D:17 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3134342e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.144.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:56:b5:96:cd:73:d6:1d:e3:34:b0:cf:c6:7e:5f:93:18:ac: 1a:2e:71:e9:1d:f2:fd:17:40:1a:3a:e8:fb:96:08:06:b7:f7: a7:dc:0f:ad:c3:2d:1d:94:4c:df:90:30:26:5c:68:01:a8:eb: 61:b8:c5:29:17:13:92:9b:c5:1c:bd:63:56:49:0c:61:f5:86: 19:f8:d8:c0:71:e9:2e:d6:84:ad:0d:22:c7:db:5b:90:2d:aa: f2:13:02:83:f4:b6:ed:0d:83:b4:81:3e:be:a4:02:ab:6f:f7: 38:a7:d4:d1:26:7f:34:0e:78:33:3f:c0:5e:4f:db:ed:d5:17: 53:fb:32:c1:d8:b7:e9:61:57:89:fd:3e:5b:c1:bb:8b:10:33: 99:ca:a8:6b:f0:12:43:69:cb:42:09:c2:ce:f9:ad:ab:37:28: d7:04:ff:6e:12:64:dc:5f:cf:d7:36:8a:42:66:5a:cd:e0:a8: d0:ff:47:b7:22:be:f4:f1:2e:9c:9c:b6:2f:0c:15:38:57:8b: 76:ff:9a:77:f7:f6:07:0a:2c:e4:a5:92:bc:c0:c3:85:51:33: 9f:4e:b9:72:ab:30:50:f2:06:22:28:76:e8:58:74:b0:46:5d: a3:c2:2b:3e:38:e2:da:61:d1:f2:2b:02:67:14:f1:50:06:52: 16:ed:b1:6c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXvEeQ2AVvlSW88klK4kbOZW8SQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTZaFw0yNzA0MjMwNzAxMTZaMDMxMTAvBgNV BAMTKENDMEQ4NTQ1ODE1NUE5N0NDQzhDQjFBN0E1RkVDNjM2OTQzMDlEMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHeozcTdY+JtnNitEjHPZt+ZaK FIq4IywazPb+ZVqqVr9tDjZYJbz/U9NUAGMaq7N/6h8c/v8ohMJ2Ndf+xbGpNhuI JyRwrOO3b+XQ5EEa8K29eYJ5kcrFIZyVbsJOF0/VNmLc5zodtzkc8EDlkcbS1HZQ txBMhLqwZ+RV7htRpr4vrUnSeBNJSHQpNwxDCX6OWJXt0a+LqLERgqPORfotFsoz Bvjfnl7Ku+R1feaapcDqq0py8sj+W/SfF+TssqHlbss/QC8qwQ6hRfsfHi14pXMj m37eBtksdsNMz81I2TOWs7Z6hu8NpoTErF5qVeNbSJp9qzn7WoJEPDMhZtxLAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUzA2FRYFVqXzMjLGnpf7GNpQwnRcwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNDM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvckDANBgkqhkiG9w0BAQsFAAOCAQEAjla1ls1z1h3jNLDPxn5f kxisGi5x6R3y/RdAGjro+5YIBrf3p9wPrcMtHZRM35AwJlxoAajrYbjFKRcTkpvF HL1jVkkMYfWGGfjYwHHpLtaErQ0ix9tbkC2q8hMCg/S27Q2DtIE+vqQCq2/3OKfU 0SZ/NA54Mz/AXk/b7dUXU/sywdi36WFXif0+W8G7ixAzmcqoa/ASQ2nLQgnCzvmt qzco1wT/bhJk3F/P1zaKQmZazeCo0P9HtyK+9PEunJy2LwwVOFeLdv+ad/f2Bwos 5KWSvMDDhVEzn065cqswUPIGIih26Fh0sEZdo8IrPjji2mHR8isCZxTxUAZSFu2x bA== -----END CERTIFICATE-----Generated at Wed May 13 14:50:06 2026 by rpki-client