$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3138382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3138382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: HSTIAmuhwAQDkPZLGErF/+M8ssNSWSFCTZF35hlBuOw= Subject key identifier: 37:E8:A3:3A:22:0F:E3:17:EF:E4:F2:7B:A5:BD:14:2A:93:26:C3:89 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 4C46771E7B8B2458969F89001DEE735F492147A9 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3138382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:01:17 +0000 ROA not before: Fri 24 Apr 2026 06:56:17 +0000 ROA not after: Fri 23 Apr 2027 07:01:17 +0000 asID: 38019 IP address blocks: 139.220.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:46:77:1e:7b:8b:24:58:96:9f:89:00:1d:ee:73:5f:49:21:47:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:56:17 2026 GMT Not After : Apr 23 07:01:17 2027 GMT Subject: CN=37E8A33A220FE317EFE4F27BA5BD142A9326C389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:f6:f2:ea:ed:28:9c:bd:86:17:e9:91:52: fb:bc:78:76:14:3b:86:16:50:29:1e:10:5a:5c:ca: dd:e9:05:45:ae:f5:da:51:10:c6:d4:dd:b3:fc:2b: b2:95:8a:a0:c0:2d:3d:b5:21:a8:8a:56:72:37:45: 00:31:b7:48:de:25:48:cd:9f:56:c5:68:ee:21:20: 41:14:fe:24:34:ad:e7:f4:15:8f:d8:11:65:42:27: 06:87:b6:2c:e9:a7:3f:14:84:82:33:06:20:bd:c8: 0c:ec:38:0e:f6:b3:15:d3:f5:da:cb:73:94:e9:28: df:a5:b5:90:13:89:54:54:2c:d2:a8:0c:de:1e:39: ff:ee:84:7d:95:16:d1:03:b7:86:2a:21:62:d2:76: b6:0d:79:3b:c8:12:09:2f:0f:b3:51:4d:12:9e:5d: 0f:a6:d5:3b:3b:b2:0a:20:b7:00:13:71:0d:c6:97: d5:99:21:f8:e6:05:97:94:e6:7f:ea:0c:70:1f:89: 57:ba:d9:11:16:37:db:64:3e:73:28:cc:b6:26:33: 21:d4:57:03:76:a7:72:6c:c0:c4:fb:16:24:2e:66: e1:51:ba:56:53:d7:bd:ff:fe:a8:f5:fa:04:9d:69: ae:26:6f:97:22:c0:1e:c7:05:ad:e8:20:13:76:5c: 1e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E8:A3:3A:22:0F:E3:17:EF:E4:F2:7B:A5:BD:14:2A:93:26:C3:89 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3138382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.188.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:16:32:f5:80:6a:0c:ff:87:bf:6c:eb:de:86:3f:8e:1e:e4: c8:eb:9f:c4:bd:7d:77:28:68:d8:65:97:69:bb:cf:83:3b:80: b8:e2:33:ec:90:66:e3:87:92:15:24:64:0b:ae:07:a6:6f:27: 06:61:95:b8:fe:b4:ce:32:3e:ae:9a:9e:c5:ac:ad:21:ff:1e: 7a:fa:26:54:47:f1:89:a6:56:64:47:16:bd:c4:55:d0:34:45: 78:2f:1c:7c:87:79:d5:ee:01:1b:3c:b5:c5:32:f6:ff:68:f0: 98:e8:fd:db:be:86:9c:3e:c3:10:00:1d:f5:83:1d:28:cc:7e: 21:03:1e:da:c2:74:f5:60:63:55:15:85:fd:a8:7e:a4:b7:a7: 88:ec:94:99:ef:79:20:c6:c0:da:2f:76:29:c7:63:3b:e9:e4: f6:cf:88:30:92:dc:26:ec:16:07:93:74:cd:a3:2f:4b:3e:18: 45:a9:57:79:e5:a3:1e:3f:b2:32:ed:ea:01:c8:e7:01:72:9b: 8c:21:d1:37:23:8e:cb:31:9c:70:95:fe:5b:59:3a:57:1e:74: 50:a2:e9:27:14:da:91:c1:9c:ca:9f:f9:65:99:af:4d:a6:02: 47:81:9d:4a:9c:cf:9f:eb:78:fb:54:c9:8f:f4:da:19:53:41: d5:d5:1e:4b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTEZ3HnuLJFiWn4kAHe5zX0khR6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU2MTdaFw0yNzA0MjMwNzAxMTdaMDMxMTAvBgNV BAMTKDM3RThBMzNBMjIwRkUzMTdFRkU0RjI3QkE1QkQxNDJBOTMyNkMzODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mPby6u0onL2GF+mRUvu8eHYU O4YWUCkeEFpcyt3pBUWu9dpREMbU3bP8K7KViqDALT21IaiKVnI3RQAxt0jeJUjN n1bFaO4hIEEU/iQ0ref0FY/YEWVCJwaHtizppz8UhIIzBiC9yAzsOA72sxXT9drL c5TpKN+ltZATiVRULNKoDN4eOf/uhH2VFtEDt4YqIWLSdrYNeTvIEgkvD7NRTRKe XQ+m1Ts7sgogtwATcQ3Gl9WZIfjmBZeU5n/qDHAfiVe62REWN9tkPnMozLYmMyHU VwN2p3JswMT7FiQuZuFRulZT173//qj1+gSdaa4mb5ciwB7HBa3oIBN2XB71AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUN+ijOiIP4xfv5PJ7pb0UKpMmw4kwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzODM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcvDANBgkqhkiG9w0BAQsFAAOCAQEAHBYy9YBqDP+Hv2zr3oY/ jh7kyOufxL19dyho2GWXabvPgzuAuOIz7JBm44eSFSRkC64Hpm8nBmGVuP60zjI+ rpqexaytIf8eevomVEfxiaZWZEcWvcRV0DRFeC8cfId51e4BGzy1xTL2/2jwmOj9 276GnD7DEAAd9YMdKMx+IQMe2sJ09WBjVRWF/ah+pLeniOyUme95IMbA2i92Kcdj O+nk9s+IMJLcJuwWB5N0zaMvSz4YRalXeeWjHj+yMu3qAcjnAXKbjCHRNyOOyzGc cJX+W1k6Vx50UKLpJxTakcGcyp/5ZZmvTaYCR4GdSpzPn+t4+1TJj/TaGVNB1dUe Sw== -----END CERTIFICATE-----Generated at Wed May 13 14:03:31 2026 by rpki-client