$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3139342e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3139342e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: Mo9PGd6HnXG5QmKyGU+KUll8EaaFJBxg/I5fFGnke3k= Subject key identifier: 23:37:1E:D3:28:2D:92:2A:E6:17:33:18:06:B7:D6:8C:9F:17:FD:C1 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 140DF2436D418823E987488ABD9CFF079BC57C92 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3139342e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 05:45:53 +0000 ROA not before: Fri 24 Apr 2026 05:40:53 +0000 ROA not after: Fri 23 Apr 2027 05:45:53 +0000 asID: 38019 IP address blocks: 139.220.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:0d:f2:43:6d:41:88:23:e9:87:48:8a:bd:9c:ff:07:9b:c5:7c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 05:40:53 2026 GMT Not After : Apr 23 05:45:53 2027 GMT Subject: CN=23371ED3282D922AE617331806B7D68C9F17FDC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:bf:43:0b:07:aa:3a:64:9b:db:6b:a0:17:16: 16:4e:6f:57:18:a5:42:fd:e0:93:fd:66:30:a9:3f: a7:89:d9:ab:78:fc:ae:55:0e:60:c6:79:f9:29:95: 9e:b3:42:6b:43:d5:b2:d8:9d:c9:30:ca:eb:34:c2: 25:a9:64:30:58:fc:c1:fe:c8:33:51:0d:55:e6:b6: 77:87:74:51:fe:6a:30:86:78:ae:79:84:2a:48:34: 6f:e3:2d:d5:98:8f:56:59:9b:42:e3:ff:c0:d3:74: dd:92:38:31:36:ca:d8:16:7e:12:d1:3e:34:20:f1: b9:73:e0:6e:32:35:df:20:d4:74:7b:88:78:cd:79: 93:da:28:9a:55:ed:99:17:e3:60:ab:01:20:4d:7e: 91:46:e5:07:b9:52:1a:cf:59:f5:90:e6:ef:f2:d4: df:15:3c:88:f3:06:57:71:aa:6f:6e:3f:81:61:66: cf:66:de:57:aa:19:1d:9f:66:6c:65:0a:a7:4f:5e: 83:78:4d:b7:ef:7d:63:7a:e0:1f:4b:d1:f8:e3:27: 47:4c:c7:69:93:2a:e0:cd:94:c5:0e:24:8d:13:a2: 4f:5d:9e:d1:19:ad:c3:28:47:af:f7:1f:2e:07:a0: 3b:9c:5a:5c:93:8e:59:d7:55:e3:3c:f5:11:21:49: 85:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:37:1E:D3:28:2D:92:2A:E6:17:33:18:06:B7:D6:8C:9F:17:FD:C1 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3139342e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.194.0/23 Signature Algorithm: sha256WithRSAEncryption 08:d7:f9:a7:e1:b8:1c:f2:be:07:db:81:09:ed:32:2e:a3:20: 1f:0b:b9:50:63:7f:fe:6d:25:83:f9:38:dd:a5:e9:9c:1e:dd: 7f:14:96:6f:82:c6:0b:31:88:1a:3e:a8:92:9c:ab:04:96:54: 8b:12:e5:35:34:44:c6:72:c1:92:f0:cb:a8:63:4c:c6:6e:bb: bf:a3:a9:8b:63:2e:c0:73:f3:52:3b:81:59:4f:18:2c:a3:80: e3:cc:51:d1:45:af:be:52:3f:3b:80:3a:e5:d9:01:ca:1b:90: 41:8c:c8:2b:81:a3:e7:b0:4d:12:50:f4:73:b1:bc:74:25:55: 68:91:c3:29:6f:09:78:43:bc:79:d8:ee:a3:6b:81:0c:22:75: 37:76:f1:dc:50:ee:93:2c:4f:a8:37:1c:c2:cf:af:cd:00:b3: 34:b4:ee:87:20:89:c5:12:d4:4f:8d:3f:5a:9e:e1:41:9a:a9: 73:f7:81:9c:58:68:d1:1f:31:9e:0b:a1:b5:c4:0f:5a:28:1c: c4:07:31:d7:a8:bd:53:9a:33:5a:de:b6:9b:04:ab:cf:00:bf: 6c:6f:74:40:7c:c3:92:c5:47:ea:47:e4:64:59:3f:0a:48:2d: 2c:04:20:3c:c5:8b:03:62:ba:1c:1a:d3:d7:99:74:c1:37:82: e3:12:3c:4f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFA3yQ21BiCPph0iKvZz/B5vFfJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNTQwNTNaFw0yNzA0MjMwNTQ1NTNaMDMxMTAvBgNV BAMTKDIzMzcxRUQzMjgyRDkyMkFFNjE3MzMxODA2QjdENjhDOUYxN0ZEQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSv0MLB6o6ZJvba6AXFhZOb1cY pUL94JP9ZjCpP6eJ2at4/K5VDmDGefkplZ6zQmtD1bLYnckwyus0wiWpZDBY/MH+ yDNRDVXmtneHdFH+ajCGeK55hCpING/jLdWYj1ZZm0Lj/8DTdN2SODE2ytgWfhLR PjQg8blz4G4yNd8g1HR7iHjNeZPaKJpV7ZkX42CrASBNfpFG5Qe5UhrPWfWQ5u/y 1N8VPIjzBldxqm9uP4FhZs9m3leqGR2fZmxlCqdPXoN4TbfvfWN64B9L0fjjJ0dM x2mTKuDNlMUOJI0Tok9dntEZrcMoR6/3Hy4HoDucWlyTjlnXVeM89REhSYVLAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUIzce0ygtkirmFzMYBrfWjJ8X/cEwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzEzOTM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcwjANBgkqhkiG9w0BAQsFAAOCAQEACNf5p+G4HPK+B9uBCe0y LqMgHwu5UGN//m0lg/k43aXpnB7dfxSWb4LGCzGIGj6okpyrBJZUixLlNTRExnLB kvDLqGNMxm67v6Opi2MuwHPzUjuBWU8YLKOA48xR0UWvvlI/O4A65dkByhuQQYzI K4Gj57BNElD0c7G8dCVVaJHDKW8JeEO8edjuo2uBDCJ1N3bx3FDukyxPqDccws+v zQCzNLTuhyCJxRLUT40/Wp7hQZqpc/eBnFho0R8xnguhtcQPWigcxAcx16i9U5oz Wt62mwSrzwC/bG90QHzDksVH6kfkZFk/CkgtLAQgPMWLA2K6HBrT15l0wTeC4xI8 Tw== -----END CERTIFICATE-----Generated at Wed May 13 13:27:33 2026 by rpki-client