$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3135322e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3135322e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: WupxrYFO02xmNHPkBZtaO7Jh81GG0xc0NEkuuKD+jDE= Subject key identifier: 2A:FE:B3:9E:4E:B9:EB:9C:1A:0F:9D:6C:2C:B6:CA:F8:DE:54:AF:17 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 6F1A7B0D506E11B46F9F99E24003CFF598FEC6F8 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3135322e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:34 +0000 ROA not before: Fri 24 Apr 2026 06:58:34 +0000 ROA not after: Fri 23 Apr 2027 07:03:34 +0000 asID: 38019 IP address blocks: 139.220.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:1a:7b:0d:50:6e:11:b4:6f:9f:99:e2:40:03:cf:f5:98:fe:c6:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:34 2026 GMT Not After : Apr 23 07:03:34 2027 GMT Subject: CN=2AFEB39E4EB9EB9C1A0F9D6C2CB6CAF8DE54AF17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:22:43:34:d5:9d:7d:e0:7b:f9:f6:4d:24:b6: 42:66:b8:60:a0:23:6c:f2:34:00:c2:fd:52:1d:29: 0f:a8:cb:a0:a6:b3:70:d6:06:c4:89:9a:0b:5f:df: 8a:8b:eb:fe:03:69:f9:53:2f:66:17:4e:da:a4:37: b1:73:6d:91:55:fd:ba:eb:f3:bd:58:bf:67:4f:c8: 9a:72:35:c5:dc:3d:ba:41:ad:0f:27:fa:59:19:26: 80:47:be:21:1b:2e:c2:70:76:b7:cf:7f:a4:5f:5a: fe:b8:1b:7e:b4:cb:b6:61:c7:50:fc:59:00:a3:69: fa:c3:e3:b3:cd:04:fa:1f:8d:05:95:71:3e:22:c8: d9:c1:53:fe:bc:51:bf:fb:4f:9c:81:b4:34:c9:bf: 11:13:ab:73:3d:b0:5d:e4:0f:cd:8c:7f:07:9b:f5: 1e:1d:19:9c:d5:f5:81:c7:b9:2e:0c:af:e0:29:bc: 0a:66:8f:5d:6a:7e:9f:8b:27:d9:1c:3d:55:92:d7: 17:19:a9:b5:37:e6:5e:3c:54:ea:18:cc:59:aa:22: 20:57:c5:a1:9a:fd:5c:17:04:83:d8:75:cf:92:25: 31:1e:7b:84:90:7d:59:01:1d:7d:73:0c:b8:47:c1: a7:d3:16:f3:84:9c:de:af:54:4c:6d:c3:c0:d7:c6: 5a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FE:B3:9E:4E:B9:EB:9C:1A:0F:9D:6C:2C:B6:CA:F8:DE:54:AF:17 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3135322e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.152.0/23 Signature Algorithm: sha256WithRSAEncryption 54:cb:f4:c3:45:02:e3:81:ad:b4:8e:c0:e5:5d:3f:c7:aa:fb: 8f:66:24:f1:b1:aa:31:5b:0d:d2:db:b2:05:b3:52:4b:cb:d7: 36:a2:11:8b:b8:84:55:22:cc:80:0e:44:35:49:e4:ca:3c:91: 3a:d0:8e:7d:66:5c:67:2e:3a:15:7f:67:14:12:57:c2:4d:4a: c4:41:ea:e8:c9:eb:04:4d:7f:5f:97:b6:4e:0b:be:52:35:31: 02:ed:37:66:43:92:35:3c:42:2f:43:e8:2b:fc:01:b9:ef:cb: 60:19:a6:1a:be:88:32:05:c4:cc:87:db:04:41:c2:8f:32:9a: b7:f1:c5:f9:e2:79:b4:c4:0e:7f:db:d1:c6:96:a9:e1:1b:86: f3:37:b5:59:59:e7:bc:fb:aa:6e:f5:ee:e3:44:25:63:f5:91: 44:75:a4:ac:1b:87:5c:28:cf:58:58:e3:4c:d2:4a:1b:93:30: ec:e0:f8:b5:3b:db:c4:0f:e1:21:e9:ac:89:c3:b3:c8:1a:6f: 5f:e8:76:84:02:24:7c:f1:72:aa:71:b1:b4:59:e0:08:88:dc: 1c:3a:4e:ea:30:81:27:14:f6:7b:50:e6:fe:86:dd:07:9e:b2: 99:90:d0:f9:49:72:38:30:ec:9f:62:9b:b7:eb:0c:d1:11:db: 1c:a0:36:b6 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbxp7DVBuEbRvn5niQAPP9Zj+xvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzRaFw0yNzA0MjMwNzAzMzRaMDMxMTAvBgNV BAMTKDJBRkVCMzlFNEVCOUVCOUMxQTBGOUQ2QzJDQjZDQUY4REU1NEFGMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeIkM01Z194Hv59k0ktkJmuGCg I2zyNADC/VIdKQ+oy6Cms3DWBsSJmgtf34qL6/4DaflTL2YXTtqkN7FzbZFV/brr 871Yv2dPyJpyNcXcPbpBrQ8n+lkZJoBHviEbLsJwdrfPf6RfWv64G360y7Zhx1D8 WQCjafrD47PNBPofjQWVcT4iyNnBU/68Ub/7T5yBtDTJvxETq3M9sF3kD82Mfweb 9R4dGZzV9YHHuS4Mr+ApvApmj11qfp+LJ9kcPVWS1xcZqbU35l48VOoYzFmqIiBX xaGa/VwXBIPYdc+SJTEee4SQfVkBHX1zDLhHwafTFvOEnN6vVExtw8DXxlpjAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUKv6znk6565waD51sLLbK+N5UrxcwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNTMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcmDANBgkqhkiG9w0BAQsFAAOCAQEAVMv0w0UC44GttI7A5V0/ x6r7j2Yk8bGqMVsN0tuyBbNSS8vXNqIRi7iEVSLMgA5ENUnkyjyROtCOfWZcZy46 FX9nFBJXwk1KxEHq6MnrBE1/X5e2Tgu+UjUxAu03ZkOSNTxCL0PoK/wBue/LYBmm Gr6IMgXEzIfbBEHCjzKat/HF+eJ5tMQOf9vRxpap4RuG8ze1WVnnvPuqbvXu40Ql Y/WRRHWkrBuHXCjPWFjjTNJKG5Mw7OD4tTvbxA/hIemsicOzyBpvX+h2hAIkfPFy qnGxtFngCIjcHDpO6jCBJxT2e1Dm/obdB56ymZDQ+UlyODDsn2Kbt+sM0RHbHKA2 tg== -----END CERTIFICATE-----Generated at Wed May 13 14:10:28 2026 by rpki-client