$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137342e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3137342e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: NBtnx+g88YbQEzTF/ZJYTJw9Qt5gjQ8VKRiV5ec+2V8= Subject key identifier: 85:44:7D:35:42:89:C2:88:F1:7A:D2:D6:71:75:90:02:CB:1F:45:7A Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 1528607B5437A9C4FF6440DD86A87C6FBB28C6A1 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137342e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:34 +0000 ROA not before: Fri 24 Apr 2026 06:58:34 +0000 ROA not after: Fri 23 Apr 2027 07:03:34 +0000 asID: 38019 IP address blocks: 139.220.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:28:60:7b:54:37:a9:c4:ff:64:40:dd:86:a8:7c:6f:bb:28:c6:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:34 2026 GMT Not After : Apr 23 07:03:34 2027 GMT Subject: CN=85447D354289C288F17AD2D671759002CB1F457A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fa:0d:71:52:ac:90:5f:f8:7d:cd:70:56:7b: 80:90:5f:90:62:55:de:4e:7e:ad:5f:b7:0b:60:83: db:23:e2:7f:89:8f:91:36:0c:47:f3:72:6e:3a:02: e6:ef:83:07:09:03:aa:d7:8c:83:6a:30:ce:c1:64: 14:e6:18:a5:ff:f7:e2:6d:7e:43:5b:45:bd:ad:ec: 5e:cd:bb:4c:6e:89:a8:1b:db:a2:6f:55:71:5e:f4: d8:db:07:dd:0d:ba:bd:79:cf:96:e4:7d:c4:1a:9f: 7e:1c:17:72:c2:0a:00:10:12:d7:94:61:2b:e8:6f: 38:38:59:92:a8:d5:d3:58:b3:b9:2f:dc:1e:b9:1e: b4:46:a0:44:81:9c:dd:db:d1:92:8a:cd:a0:f3:50: c6:58:1a:0c:bb:d0:39:d1:d2:70:4d:e6:7c:f8:41: 7a:78:d3:e8:19:a9:8c:39:0e:91:14:d5:67:c1:42: ef:1b:1d:ed:aa:d7:05:0e:70:aa:02:00:43:3e:a2: 7d:d2:20:9d:88:29:d4:ca:ca:f7:6f:b6:fb:53:94: 30:99:92:dd:06:86:39:fe:71:b1:b7:ad:b6:7d:5b: d4:07:db:11:fb:3a:6a:87:a1:89:1b:9d:83:88:42: 43:34:35:aa:77:90:61:89:f4:66:c9:56:12:6f:38: ae:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:44:7D:35:42:89:C2:88:F1:7A:D2:D6:71:75:90:02:CB:1F:45:7A X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137342e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.174.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:e9:38:95:e7:24:3c:96:dd:a1:8a:eb:13:0c:8d:d4:73:aa: a2:24:60:bf:7a:e2:ee:c5:3f:b8:a1:eb:30:0d:fc:ba:a1:90: 07:16:a9:d5:30:20:8a:c4:13:18:83:d2:68:13:13:c8:fa:1e: c6:00:97:2a:9f:38:d7:bd:a9:61:e7:49:66:3b:a8:f8:e2:c8: 66:e6:4e:87:4f:03:58:b8:10:28:eb:0d:b1:de:bb:50:a9:c0: af:1c:63:32:6e:e2:66:3c:ea:79:8c:e3:22:88:ce:54:fd:45: 03:c1:08:b5:ce:a5:28:2c:70:14:8c:9a:a3:81:01:d1:47:d2: f9:cc:08:15:93:4a:2b:41:94:52:d7:24:7a:5f:22:60:39:b4: a0:fb:15:11:03:af:3b:be:bf:51:30:3a:9b:c4:89:76:f0:7f: f8:c3:f4:23:f2:3e:cd:fd:1d:57:ce:b2:1e:5f:f2:9c:5e:33: c3:73:8d:3d:e0:b1:7e:c3:01:38:c6:cf:1f:d9:58:79:e9:e3: f4:3e:17:06:e1:9f:35:89:de:d7:38:7b:05:66:5c:f8:68:b5: 8c:08:cc:dc:1e:4c:2a:56:a1:9e:ec:08:47:74:c3:9e:09:13: 6d:18:59:d0:2b:bd:6c:86:28:ce:16:e9:2d:ce:3e:9b:71:1a: 9d:c5:a0:e7 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFShge1Q3qcT/ZEDdhqh8b7soxqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzRaFw0yNzA0MjMwNzAzMzRaMDMxMTAvBgNV BAMTKDg1NDQ3RDM1NDI4OUMyODhGMTdBRDJENjcxNzU5MDAyQ0IxRjQ1N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm+g1xUqyQX/h9zXBWe4CQX5Bi Vd5Ofq1ftwtgg9sj4n+Jj5E2DEfzcm46AubvgwcJA6rXjINqMM7BZBTmGKX/9+Jt fkNbRb2t7F7Nu0xuiagb26JvVXFe9NjbB90Nur15z5bkfcQan34cF3LCCgAQEteU YSvobzg4WZKo1dNYs7kv3B65HrRGoESBnN3b0ZKKzaDzUMZYGgy70DnR0nBN5nz4 QXp40+gZqYw5DpEU1WfBQu8bHe2q1wUOcKoCAEM+on3SIJ2IKdTKyvdvtvtTlDCZ kt0Ghjn+cbG3rbZ9W9QH2xH7OmqHoYkbnYOIQkM0Nap3kGGJ9GbJVhJvOK65AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhUR9NUKJwojxetLWcXWQAssfRXowHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNzM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcrjANBgkqhkiG9w0BAQsFAAOCAQEAS+k4leckPJbdoYrrEwyN 1HOqoiRgv3ri7sU/uKHrMA38uqGQBxap1TAgisQTGIPSaBMTyPoexgCXKp84172p YedJZjuo+OLIZuZOh08DWLgQKOsNsd67UKnArxxjMm7iZjzqeYzjIojOVP1FA8EI tc6lKCxwFIyao4EB0UfS+cwIFZNKK0GUUtckel8iYDm0oPsVEQOvO76/UTA6m8SJ dvB/+MP0I/I+zf0dV86yHl/ynF4zw3ONPeCxfsMBOMbPH9lYeenj9D4XBuGfNYne 1zh7BWZc+Gi1jAjM3B5MKlahnuwIR3TDngkTbRhZ0Cu9bIYozhbpLc4+m3EancWg 5w== -----END CERTIFICATE-----Generated at Wed May 13 14:24:57 2026 by rpki-client