$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230302e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3230302e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: AC3jM3HWgvr+3nqA9EIHG8VNzhQ+28Y4YsWol/RdB7s= Subject key identifier: 8F:5A:09:B1:B9:10:F1:D4:8D:AE:A7:35:AC:07:3E:5A:66:BC:27:73 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 74295D7BC7729BB5EA8FBBB18C664053E0CA5E65 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230302e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:36 +0000 ROA not before: Fri 24 Apr 2026 07:00:36 +0000 ROA not after: Fri 23 Apr 2027 07:05:36 +0000 asID: 38019 IP address blocks: 139.220.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:29:5d:7b:c7:72:9b:b5:ea:8f:bb:b1:8c:66:40:53:e0:ca:5e:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:36 2026 GMT Not After : Apr 23 07:05:36 2027 GMT Subject: CN=8F5A09B1B910F1D48DAEA735AC073E5A66BC2773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:f4:49:7d:9e:24:61:90:e8:50:33:22:5c: f0:43:dd:d1:99:a8:d7:1d:ea:e0:89:d9:bb:6d:01: d9:bb:70:2b:58:9b:fd:60:61:75:b0:f5:14:07:3c: 52:f5:3b:89:c0:44:1d:33:9b:6f:ff:28:72:68:ea: c0:11:66:16:3a:cb:eb:76:42:cf:a6:52:30:0f:fa: 52:bd:db:f1:10:e4:63:69:e2:80:4a:58:96:10:3d: 88:84:8f:e2:63:0f:9c:37:36:b3:2a:7d:0e:3d:79: f6:f6:37:d1:1a:c7:ce:46:a1:59:b7:ea:d9:53:18: e2:5d:f0:2c:3f:1f:32:c1:70:db:39:e6:0a:fb:e9: 46:8d:77:d1:05:3d:3c:f6:6d:84:f1:8d:08:71:df: f2:79:30:04:46:3d:54:2a:6c:be:fb:20:5b:78:73: bf:5a:44:cf:a8:d5:24:2a:ac:93:7c:1b:52:05:fc: a9:69:5c:6e:87:ec:b2:f5:d4:98:07:83:7c:a0:f8: b3:03:48:f9:28:9f:bf:e3:bf:de:a4:70:dc:17:40: b7:e5:7f:bd:9c:45:4e:ff:9b:4e:da:8e:f7:4f:bf: a2:11:a5:ea:ac:3c:a4:f3:9e:be:1f:7d:cd:42:cc: 5a:9b:8a:fe:a7:15:47:8f:17:a5:f8:ed:3e:ea:de: 0b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5A:09:B1:B9:10:F1:D4:8D:AE:A7:35:AC:07:3E:5A:66:BC:27:73 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230302e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.200.0/23 Signature Algorithm: sha256WithRSAEncryption b2:50:74:2f:1d:3c:74:3d:17:6f:27:87:4a:84:cb:b0:04:0d: 3a:a1:13:32:42:b8:84:7e:45:b9:e6:7f:8f:ad:49:20:6d:a5: a6:d4:de:b6:62:e6:47:54:b9:38:14:f8:33:a3:11:1e:73:14: 1c:6b:0b:a1:4a:b4:89:62:ab:3e:bc:0f:3e:cb:9a:f1:3f:85: c4:75:2d:6b:42:b6:af:89:22:74:12:a9:34:4e:a8:18:df:ea: 92:60:0f:8c:1a:ed:1e:ac:67:3f:75:67:d8:77:da:f2:39:e5: cb:ef:3c:b3:d9:46:58:af:3b:8f:73:3c:9a:b3:13:c0:c7:83: 84:fd:ac:a3:1b:81:3b:35:19:e4:7b:ab:c8:08:f7:28:23:ec: 4b:67:24:c3:9c:b9:71:73:69:a7:67:1d:26:76:83:02:3c:e9: 38:eb:bf:83:cb:41:45:7c:d3:e7:64:ff:91:6e:ed:29:b7:86: 74:18:75:78:e4:05:c7:cd:b5:f4:d7:3f:7c:9d:0e:e9:60:70: 0a:7a:38:14:dd:8e:07:05:76:3e:71:8f:02:14:45:7a:ef:06: 03:94:ab:f0:f2:db:fd:4a:48:98:06:61:02:f4:e3:f2:bd:27: f8:a9:b1:d4:12:88:7b:21:17:23:64:aa:ed:c7:41:3e:fa:49: 21:17:ef:1b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUdClde8dym7Xqj7uxjGZAU+DKXmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzZaFw0yNzA0MjMwNzA1MzZaMDMxMTAvBgNV BAMTKDhGNUEwOUIxQjkxMEYxRDQ4REFFQTczNUFDMDczRTVBNjZCQzI3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1U/RJfZ4kYZDoUDMiXPBD3dGZ qNcd6uCJ2bttAdm7cCtYm/1gYXWw9RQHPFL1O4nARB0zm2//KHJo6sARZhY6y+t2 Qs+mUjAP+lK92/EQ5GNp4oBKWJYQPYiEj+JjD5w3NrMqfQ49efb2N9Eax85GoVm3 6tlTGOJd8Cw/HzLBcNs55gr76UaNd9EFPTz2bYTxjQhx3/J5MARGPVQqbL77IFt4 c79aRM+o1SQqrJN8G1IF/KlpXG6H7LL11JgHg3yg+LMDSPkon7/jv96kcNwXQLfl f72cRU7/m07ajvdPv6IRpeqsPKTznr4ffc1CzFqbiv6nFUePF6X47T7q3gtPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUj1oJsbkQ8dSNrqc1rAc+Wma8J3MwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMDMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvcyDANBgkqhkiG9w0BAQsFAAOCAQEAslB0Lx08dD0XbyeHSoTL sAQNOqETMkK4hH5FueZ/j61JIG2lptTetmLmR1S5OBT4M6MRHnMUHGsLoUq0iWKr PrwPPsua8T+FxHUta0K2r4kidBKpNE6oGN/qkmAPjBrtHqxnP3Vn2Hfa8jnly+88 s9lGWK87j3M8mrMTwMeDhP2soxuBOzUZ5HuryAj3KCPsS2ckw5y5cXNpp2cdJnaD AjzpOOu/g8tBRXzT52T/kW7tKbeGdBh1eOQFx8219Nc/fJ0O6WBwCno4FN2OBwV2 PnGPAhRFeu8GA5Sr8PLb/UpImAZhAvTj8r0n+Kmx1BKIeyEXI2Sq7cdBPvpJIRfv Gw== -----END CERTIFICATE-----Generated at Wed May 13 12:41:14 2026 by rpki-client