$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3136382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3136382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: loaG8c711hbNXIJQYyosLiTt+i3jefRgISTDzpss6y0= Subject key identifier: 41:B2:05:19:FA:13:CB:CC:4A:4E:D1:3D:E5:6B:16:86:4E:BB:51:32 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 586C558C653D18A2EEBBECB7FD133B863F026BF4 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3136382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:17 +0000 ROA not before: Fri 24 Apr 2026 06:56:17 +0000 ROA not after: Fri 23 Apr 2027 07:01:17 +0000 asID: 38019 IP address blocks: 139.220.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:6c:55:8c:65:3d:18:a2:ee:bb:ec:b7:fd:13:3b:86:3f:02:6b:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:17 2026 GMT Not After : Apr 23 07:01:17 2027 GMT Subject: CN=41B20519FA13CBCC4A4ED13DE56B16864EBB5132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:93:4e:db:02:1e:d3:1c:de:85:ae:e2:e7:56: c9:20:75:1c:f1:9a:6c:7f:ca:a5:59:04:ea:76:02: 01:a2:98:89:c1:bd:ef:20:d4:fc:b6:f6:1f:9e:90: 29:8b:26:17:f9:9f:56:a7:87:12:71:49:25:3b:e1: 3d:6a:1c:68:d0:60:00:3c:b3:08:c5:32:d2:a7:bf: b5:88:9d:dc:f7:03:31:1e:0c:ef:20:34:f6:db:1d: 9a:0c:95:d1:f6:21:1f:99:2b:d3:e6:aa:0d:ba:b3: 5c:44:3b:3c:db:6c:61:d0:a1:b6:f0:9d:26:91:b6: e8:6a:d6:6a:83:04:9e:7f:44:7d:d9:71:22:9c:f7: a2:ee:39:71:68:71:66:1e:ff:f6:d5:17:46:7f:d9: a1:b6:02:79:27:d0:91:ff:43:1a:4b:0f:62:8e:b4: a8:2d:b2:cd:85:d5:d3:1c:4c:cc:3b:0e:52:72:6a: 30:d9:eb:d3:89:59:e1:af:67:d6:88:6e:5e:a9:dc: 68:4a:1e:2e:81:a9:d5:2e:b9:21:8e:da:3f:f1:b3: 1a:7d:2f:f5:ca:f0:dd:f3:02:47:3e:65:4f:d9:63: 0e:a4:7f:34:6e:15:22:14:4d:83:f3:5d:88:4b:1f: 4e:5c:93:03:ed:05:4b:4a:d0:a9:82:ce:32:9f:80: 2f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B2:05:19:FA:13:CB:CC:4A:4E:D1:3D:E5:6B:16:86:4E:BB:51:32 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3136382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.168.0/23 Signature Algorithm: sha256WithRSAEncryption 77:71:56:d0:4e:24:9a:e0:a3:c1:db:08:1d:92:38:b4:b2:d4: 72:2a:69:fe:00:30:dc:8b:d0:a9:0b:bf:1e:c3:34:ba:85:d1: 7e:58:3b:33:8f:a4:11:f1:36:a5:a0:88:1a:12:d8:69:0c:f7: 01:14:fe:94:5f:18:de:46:df:14:a4:5f:ee:d5:83:b2:27:08: b0:e4:3e:9c:29:d3:fc:29:7d:db:ab:84:63:93:88:8e:25:db: 3e:0c:00:bd:4a:81:b9:d4:74:6e:dd:80:ea:0e:2e:77:af:4c: 43:be:fd:a9:63:3d:0d:df:77:f2:83:a4:2d:27:e2:19:3a:b1: 02:c6:c2:5b:8c:c8:8e:0c:cc:93:b6:1e:75:50:74:4f:ae:8f: df:c5:fd:9d:2e:fd:3f:a6:6e:1a:9e:ed:41:ed:e4:95:f7:34: c1:92:9d:67:75:c0:d1:31:27:fd:26:3b:19:7b:a1:d0:01:9b: b8:71:ed:f3:5c:78:22:32:90:04:b0:7d:65:58:92:5e:b3:3b: ea:c3:1a:5d:d1:b1:4d:72:2a:59:bc:7d:1d:26:c5:bc:17:1e: c2:10:9b:c8:65:22:5e:34:e7:f5:d7:e6:14:58:dc:83:22:b9: 6f:20:87:dc:79:65:3a:21:d5:b6:50:93:74:90:c6:13:54:c1: 49:57:c7:a0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUWGxVjGU9GKLuu+y3/RM7hj8Ca/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTdaFw0yNzA0MjMwNzAxMTdaMDMxMTAvBgNV BAMTKDQxQjIwNTE5RkExM0NCQ0M0QTRFRDEzREU1NkIxNjg2NEVCQjUxMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVk07bAh7THN6FruLnVskgdRzx mmx/yqVZBOp2AgGimInBve8g1Py29h+ekCmLJhf5n1anhxJxSSU74T1qHGjQYAA8 swjFMtKnv7WIndz3AzEeDO8gNPbbHZoMldH2IR+ZK9Pmqg26s1xEOzzbbGHQobbw nSaRtuhq1mqDBJ5/RH3ZcSKc96LuOXFocWYe//bVF0Z/2aG2Ankn0JH/QxpLD2KO tKgtss2F1dMcTMw7DlJyajDZ69OJWeGvZ9aIbl6p3GhKHi6BqdUuuSGO2j/xsxp9 L/XK8N3zAkc+ZU/ZYw6kfzRuFSIUTYPzXYhLH05ckwPtBUtK0KmCzjKfgC+FAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQbIFGfoTy8xKTtE95WsWhk67UTIwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNjM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcqDANBgkqhkiG9w0BAQsFAAOCAQEAd3FW0E4kmuCjwdsIHZI4 tLLUcipp/gAw3IvQqQu/HsM0uoXRflg7M4+kEfE2paCIGhLYaQz3ART+lF8Y3kbf FKRf7tWDsicIsOQ+nCnT/Cl926uEY5OIjiXbPgwAvUqBudR0bt2A6g4ud69MQ779 qWM9Dd938oOkLSfiGTqxAsbCW4zIjgzMk7YedVB0T66P38X9nS79P6ZuGp7tQe3k lfc0wZKdZ3XA0TEn/SY7GXuh0AGbuHHt81x4IjKQBLB9ZViSXrM76sMaXdGxTXIq Wbx9HSbFvBcewhCbyGUiXjTn9dfmFFjcgyK5byCH3HllOiHVtlCTdJDGE1TBSVfH oA== -----END CERTIFICATE-----Generated at Wed May 13 13:48:27 2026 by rpki-client