$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3137382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: bFpolOoQZk5speAxJbWZl3DxdjoNuK1BhMDlpONRcXY= Subject key identifier: 2C:49:A6:2F:D7:8A:6D:10:3A:7B:E1:64:39:62:A8:3B:C1:46:B1:47 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 2A4981A67EE57262C60CB9674E64866D4659BD10 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:17 +0000 ROA not before: Fri 24 Apr 2026 06:56:17 +0000 ROA not after: Fri 23 Apr 2027 07:01:17 +0000 asID: 38019 IP address blocks: 139.220.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:49:81:a6:7e:e5:72:62:c6:0c:b9:67:4e:64:86:6d:46:59:bd:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:17 2026 GMT Not After : Apr 23 07:01:17 2027 GMT Subject: CN=2C49A62FD78A6D103A7BE1643962A83BC146B147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e8:56:71:fd:6c:7d:e4:27:71:d2:7b:d7:fc: 27:45:71:b7:a9:0d:04:83:35:ec:ef:ba:ad:a4:a4: 54:ad:6d:21:70:a9:d0:67:48:ce:cc:e4:45:0a:a0: 92:eb:73:0e:f5:4e:86:d1:e6:c8:96:05:ac:5e:81: 57:d1:22:f8:73:5a:2b:94:64:46:97:39:7d:e8:31: 59:fb:e0:fe:12:84:a9:00:fc:35:15:f6:a5:c4:4a: 2d:77:44:08:bd:94:f9:11:c3:74:63:e6:30:18:4e: 39:a0:cd:9f:e5:a1:58:8b:f7:d6:f7:06:e8:cd:7c: bf:87:ad:6b:57:2d:52:3d:1d:7c:df:cf:81:b9:5b: f6:95:96:46:8f:ed:e4:00:fa:9c:4b:1a:45:15:16: e2:41:ac:1d:7e:70:f0:b3:f2:e8:98:2c:03:29:58: b8:26:16:b4:bf:e3:b2:5a:4c:2f:43:96:f3:ca:71: 35:28:93:60:27:c4:f6:c8:26:13:5f:89:18:b2:66: f0:1c:77:49:f4:91:f5:37:b6:9b:24:8e:93:2a:33: d3:11:ea:a9:51:af:d2:65:ff:f7:4f:02:78:61:f4: 71:4b:8d:75:a9:0f:f0:d8:89:38:5e:e8:23:0b:83: 34:1f:87:23:6a:79:ed:c9:2c:41:f1:58:6b:15:9d: 09:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:49:A6:2F:D7:8A:6D:10:3A:7B:E1:64:39:62:A8:3B:C1:46:B1:47 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3137382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.178.0/23 Signature Algorithm: sha256WithRSAEncryption 77:61:24:3c:95:51:9b:aa:ce:b2:77:63:f0:81:8d:5a:0c:e1: 9d:ca:ba:a7:e0:c9:c7:0b:3a:1c:8b:d0:68:38:19:66:e2:81: 9f:ae:1c:99:03:19:1a:ba:dd:d4:d7:04:38:13:30:4f:b2:6b: 66:2b:6d:26:95:00:9d:1e:52:29:52:4b:9f:11:22:5f:f5:55: 8d:01:57:9a:a1:62:57:8e:a3:ff:c3:fd:89:64:27:d9:25:ba: d1:33:17:e6:35:4c:ca:9f:26:2c:0b:b3:55:4f:1d:06:71:3a: 93:22:88:ba:de:40:f3:24:52:d1:ff:fc:26:23:7d:7d:a2:fe: 77:5d:ef:c9:9a:03:51:8d:d0:e1:ed:e3:a1:66:e8:3f:81:ca: 95:f2:8d:74:8b:80:ba:35:3c:5b:67:cd:b5:e4:a4:56:f7:35: 75:b8:d5:1c:62:72:9f:6f:a4:23:89:ee:16:e2:7f:43:bf:48: 56:2f:49:58:93:94:f3:71:52:d8:ff:83:5c:01:6f:12:51:1c: af:33:49:fb:50:51:16:af:10:9a:87:f7:e4:3a:31:ce:43:cd: 49:28:dd:b7:33:9a:f8:13:57:69:59:3d:d2:15:1d:12:80:73: af:49:11:30:51:f9:86:e5:69:2b:38:9c:e1:14:72:20:5e:21: a9:e6:aa:ef -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKkmBpn7lcmLGDLlnTmSGbUZZvRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTdaFw0yNzA0MjMwNzAxMTdaMDMxMTAvBgNV BAMTKDJDNDlBNjJGRDc4QTZEMTAzQTdCRTE2NDM5NjJBODNCQzE0NkIxNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF6FZx/Wx95Cdx0nvX/CdFcbep DQSDNezvuq2kpFStbSFwqdBnSM7M5EUKoJLrcw71TobR5siWBaxegVfRIvhzWiuU ZEaXOX3oMVn74P4ShKkA/DUV9qXESi13RAi9lPkRw3Rj5jAYTjmgzZ/loViL99b3 BujNfL+HrWtXLVI9HXzfz4G5W/aVlkaP7eQA+pxLGkUVFuJBrB1+cPCz8uiYLAMp WLgmFrS/47JaTC9DlvPKcTUok2AnxPbIJhNfiRiyZvAcd0n0kfU3tpskjpMqM9MR 6qlRr9Jl//dPAnhh9HFLjXWpD/DYiThe6CMLgzQfhyNqee3JLEHxWGsVnQlbAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQULEmmL9eKbRA6e+FkOWKoO8FGsUcwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzNzM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcsjANBgkqhkiG9w0BAQsFAAOCAQEAd2EkPJVRm6rOsndj8IGN Wgzhncq6p+DJxws6HIvQaDgZZuKBn64cmQMZGrrd1NcEOBMwT7JrZittJpUAnR5S KVJLnxEiX/VVjQFXmqFiV46j/8P9iWQn2SW60TMX5jVMyp8mLAuzVU8dBnE6kyKI ut5A8yRS0f/8JiN9faL+d13vyZoDUY3Q4e3joWboP4HKlfKNdIuAujU8W2fNteSk Vvc1dbjVHGJyn2+kI4nuFuJ/Q79IVi9JWJOU83FS2P+DXAFvElEcrzNJ+1BRFq8Q mof35DoxzkPNSSjdtzOa+BNXaVk90hUdEoBzr0kRMFH5huVpKzic4RRyIF4hqeaq 7w== -----END CERTIFICATE-----Generated at Wed May 13 13:46:28 2026 by rpki-client