$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137322e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3137322e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: 5/3ILfoMJ054/0YKcercaqswXE19I8b+a5dYuVDto40= Subject key identifier: 40:D3:E6:C1:2F:02:0A:CA:5D:09:EA:E6:92:62:A6:70:6D:12:50:67 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 1B10594134CE59BF739E7D516A1FD09D2AEA4BF2 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137322e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:17 +0000 ROA not before: Fri 24 Apr 2026 06:56:17 +0000 ROA not after: Fri 23 Apr 2027 07:01:17 +0000 asID: 38019 IP address blocks: 139.220.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:10:59:41:34:ce:59:bf:73:9e:7d:51:6a:1f:d0:9d:2a:ea:4b:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:17 2026 GMT Not After : Apr 23 07:01:17 2027 GMT Subject: CN=40D3E6C12F020ACA5D09EAE69262A6706D125067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:85:c3:02:36:8e:d6:8d:3f:62:fd:c1:39: 6f:e0:c6:f8:d2:13:5e:d9:7c:17:06:6e:33:32:9a: ba:38:7f:eb:c2:3b:e2:f7:8c:85:d3:35:ab:0f:32: 83:87:7e:05:20:65:42:37:41:d1:ef:af:7f:44:b4: ac:07:07:1e:af:49:c3:d6:f2:b2:60:51:15:34:94: 56:2e:a0:68:61:44:ae:28:e0:c4:53:b9:70:db:64: 73:e1:31:d0:d9:36:28:29:ee:ed:39:83:fa:13:7e: 4f:e6:c4:a6:21:8e:df:de:ae:f3:60:84:94:40:36: 85:cb:c8:cd:6b:a0:61:76:60:fe:1e:78:84:52:7b: fe:7a:95:ba:26:a6:2b:bc:e1:c2:b2:7b:64:1b:01: 91:75:ca:b7:0a:43:65:40:36:1b:a0:7e:84:4f:7d: 56:66:00:fc:10:df:2b:28:b7:b0:6b:99:49:ca:27: ff:75:3b:39:e2:ef:18:35:52:78:56:36:c7:95:e7: 2c:7d:17:34:28:93:2b:b0:c8:6b:d9:6b:6f:6c:b9: a4:b5:dc:94:ca:b5:57:0f:a8:aa:53:51:2c:e8:2e: 74:bd:65:0c:77:4b:fe:2f:36:51:04:44:53:15:1b: fd:74:43:8a:56:e2:65:b2:10:ba:0e:60:ef:a9:48: 49:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D3:E6:C1:2F:02:0A:CA:5D:09:EA:E6:92:62:A6:70:6D:12:50:67 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137322e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.172.0/23 Signature Algorithm: sha256WithRSAEncryption 53:0c:17:76:a9:64:64:a5:94:1d:a9:76:d3:7f:d4:0d:3a:59: ac:fd:32:23:8f:95:c5:53:0d:84:5a:36:ae:0c:23:97:1c:60: 2f:e8:dc:82:90:4d:36:5d:2e:3c:3d:0d:27:2a:8f:08:6a:9b: 26:11:d7:91:75:95:1f:3b:6e:8c:90:8e:46:73:e8:81:c5:06: 17:14:83:56:6b:6b:75:3e:3a:f7:b9:80:d5:e1:94:2c:e5:53: 7e:63:c5:4f:8a:fb:1e:ea:94:c7:24:23:df:b8:d8:a6:34:62: 8b:85:d6:a9:54:7a:1a:73:c1:bb:3e:26:84:3c:08:10:71:01: 39:37:f0:dd:bb:fe:90:56:f7:77:2f:ad:1f:18:a4:27:4a:0c: bb:83:93:48:65:77:da:51:c5:93:07:c0:f5:6a:d9:ce:cf:67: 9c:1d:36:f6:9d:ff:2f:c6:53:64:e6:46:6c:67:78:ff:74:1d: 5f:f7:c5:ed:e4:1e:f5:0f:17:15:ff:b4:28:2c:68:de:3a:01: b7:bb:af:a4:2b:f1:3c:9a:47:07:bd:2c:61:92:bc:9f:22:69: 1e:58:5f:38:9b:cf:fc:55:bc:99:b7:a9:55:71:a0:78:84:92: fb:7a:51:b9:bc:5e:ec:e5:7c:b9:af:e6:cd:6e:d4:ec:e0:41: be:2f:0b:99 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGxBZQTTOWb9znn1Rah/QnSrqS/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTdaFw0yNzA0MjMwNzAxMTdaMDMxMTAvBgNV BAMTKDQwRDNFNkMxMkYwMjBBQ0E1RDA5RUFFNjkyNjJBNjcwNkQxMjUwNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCjIXDAjaO1o0/Yv3BOW/gxvjS E17ZfBcGbjMymro4f+vCO+L3jIXTNasPMoOHfgUgZUI3QdHvr39EtKwHBx6vScPW 8rJgURU0lFYuoGhhRK4o4MRTuXDbZHPhMdDZNigp7u05g/oTfk/mxKYhjt/ervNg hJRANoXLyM1roGF2YP4eeIRSe/56lbompiu84cKye2QbAZF1yrcKQ2VANhugfoRP fVZmAPwQ3ysot7BrmUnKJ/91Ozni7xg1UnhWNseV5yx9FzQokyuwyGvZa29suaS1 3JTKtVcPqKpTUSzoLnS9ZQx3S/4vNlEERFMVG/10Q4pW4mWyELoOYO+pSEnlAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQNPmwS8CCspdCermkmKmcG0SUGcwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNzMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcrDANBgkqhkiG9w0BAQsFAAOCAQEAUwwXdqlkZKWUHal203/U DTpZrP0yI4+VxVMNhFo2rgwjlxxgL+jcgpBNNl0uPD0NJyqPCGqbJhHXkXWVHztu jJCORnPogcUGFxSDVmtrdT4697mA1eGULOVTfmPFT4r7HuqUxyQj37jYpjRii4XW qVR6GnPBuz4mhDwIEHEBOTfw3bv+kFb3dy+tHxikJ0oMu4OTSGV32lHFkwfA9WrZ zs9nnB029p3/L8ZTZOZGbGd4/3QdX/fF7eQe9Q8XFf+0KCxo3joBt7uvpCvxPJpH B70sYZK8nyJpHlhfOJvP/FW8mbepVXGgeISS+3pRubxe7OV8ua/mzW7U7OBBvi8L mQ== -----END CERTIFICATE-----Generated at Wed May 13 13:34:25 2026 by rpki-client