$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3136362e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3136362e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: 9Z4kdweuYJ3DHKf2eunk1WcQ7pKR8J8kJ1sQYoXx39Y= Subject key identifier: 61:B9:42:39:64:5B:CA:54:9E:D0:7D:84:B1:37:E4:17:D4:0A:98:B0 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 39F05E54D83F516C2D2DD3AB4EE8880462D899ED Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3136362e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:17 +0000 ROA not before: Fri 24 Apr 2026 06:56:17 +0000 ROA not after: Fri 23 Apr 2027 07:01:17 +0000 asID: 38019 IP address blocks: 139.220.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f0:5e:54:d8:3f:51:6c:2d:2d:d3:ab:4e:e8:88:04:62:d8:99:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:17 2026 GMT Not After : Apr 23 07:01:17 2027 GMT Subject: CN=61B94239645BCA549ED07D84B137E417D40A98B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7a:20:a6:d6:69:25:39:70:01:3a:10:4d:b8: 29:76:51:8e:68:24:55:cd:9e:f1:0a:65:5c:61:b5: 29:f8:71:9a:b8:f0:ed:59:fc:98:bc:c3:23:46:ef: 49:c1:b8:65:b8:4d:ee:85:d1:e6:47:46:f9:1e:60: a5:33:23:cb:8b:1f:59:d4:de:33:6c:0c:e5:13:ee: 39:4f:8d:d4:ed:94:65:c2:fc:3a:1a:69:83:36:98: 99:11:70:e6:1f:53:6a:83:d9:43:4e:51:1a:92:a6: cb:27:7e:47:7b:78:35:a2:35:39:87:a8:6f:29:0d: 08:39:88:5a:a5:57:b0:7e:e2:b4:b3:58:ff:2c:ad: 49:39:e0:61:02:86:e9:0f:02:ad:0c:47:30:df:54: 15:c7:ef:30:4f:cb:3c:84:88:fb:5a:7a:13:0e:19: cf:41:3a:83:bc:26:27:4d:84:e1:a5:d5:d8:e9:0e: fd:6a:a2:18:da:b0:6e:8c:70:74:23:d3:5c:88:f7: 04:cc:5e:7f:e2:e1:b1:0a:cf:20:4e:85:d3:10:59: 1a:12:8b:4f:fb:4b:8e:b7:4e:fe:d8:2f:63:b1:80: f7:fa:29:af:43:1c:7e:1b:f9:3b:d0:14:17:cc:ad: c4:06:bd:72:05:2a:b3:f9:a4:12:7f:cc:3e:4f:1e: be:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B9:42:39:64:5B:CA:54:9E:D0:7D:84:B1:37:E4:17:D4:0A:98:B0 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3136362e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.166.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:a7:65:58:1c:ff:db:c9:84:96:96:c8:48:0b:b1:0a:2a:11: 00:f7:8b:e0:45:dc:94:bd:a7:51:d5:47:3a:42:80:16:a5:06: fa:29:8b:e9:61:b0:78:61:6d:59:1c:86:cb:21:72:e5:ed:a8: 57:9b:8c:0d:b5:ff:55:fc:b8:a9:08:9a:2f:f6:69:38:b5:d2: a2:16:29:e2:70:45:f6:d8:52:69:5a:cd:cf:74:d8:99:cd:30: 0c:d7:aa:f7:51:48:d4:6b:fa:ce:14:31:cf:b9:66:9e:94:f0: 25:58:61:82:7a:70:15:96:31:36:49:16:c7:d6:c1:0f:19:cf: d6:e0:7c:bc:d8:ae:44:46:d4:91:16:10:39:d8:5e:ff:cf:bc: 52:c3:ae:89:54:61:24:3f:a4:7b:10:8b:92:94:71:14:a9:91: 7c:f9:55:15:6d:88:5c:da:8e:41:db:af:bd:9b:0f:f1:de:59: dd:f1:b7:7a:ac:45:c5:86:aa:5b:4c:38:d0:ce:ad:0e:f8:29: 52:62:07:77:1f:0d:9c:4d:b3:2e:12:05:07:66:41:ec:89:96: b6:72:d1:de:68:44:a2:fd:54:99:ed:2d:35:79:9a:87:15:d3: 26:59:0b:b6:0b:7c:95:9c:01:7f:cc:f6:06:35:d6:1d:79:cd: 77:27:c6:66 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUOfBeVNg/UWwtLdOrTuiIBGLYme0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTdaFw0yNzA0MjMwNzAxMTdaMDMxMTAvBgNV BAMTKDYxQjk0MjM5NjQ1QkNBNTQ5RUQwN0Q4NEIxMzdFNDE3RDQwQTk4QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVeiCm1mklOXABOhBNuCl2UY5o JFXNnvEKZVxhtSn4cZq48O1Z/Ji8wyNG70nBuGW4Te6F0eZHRvkeYKUzI8uLH1nU 3jNsDOUT7jlPjdTtlGXC/DoaaYM2mJkRcOYfU2qD2UNOURqSpssnfkd7eDWiNTmH qG8pDQg5iFqlV7B+4rSzWP8srUk54GEChukPAq0MRzDfVBXH7zBPyzyEiPtaehMO Gc9BOoO8JidNhOGl1djpDv1qohjasG6McHQj01yI9wTMXn/i4bEKzyBOhdMQWRoS i0/7S463Tv7YL2OxgPf6Ka9DHH4b+TvQFBfMrcQGvXIFKrP5pBJ/zD5PHr6zAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUYblCOWRbylSe0H2EsTfkF9QKmLAwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNjM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcpjANBgkqhkiG9w0BAQsFAAOCAQEAW6dlWBz/28mElpbISAux CioRAPeL4EXclL2nUdVHOkKAFqUG+imL6WGweGFtWRyGyyFy5e2oV5uMDbX/Vfy4 qQiaL/ZpOLXSohYp4nBF9thSaVrNz3TYmc0wDNeq91FI1Gv6zhQxz7lmnpTwJVhh gnpwFZYxNkkWx9bBDxnP1uB8vNiuREbUkRYQOdhe/8+8UsOuiVRhJD+kexCLkpRx FKmRfPlVFW2IXNqOQduvvZsP8d5Z3fG3eqxFxYaqW0w40M6tDvgpUmIHdx8NnE2z LhIFB2ZB7ImWtnLR3mhEov1Ume0tNXmahxXTJlkLtgt8lZwBf8z2BjXWHXnNdyfG Zg== -----END CERTIFICATE-----Generated at Wed May 13 13:43:02 2026 by rpki-client