$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230362e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3230362e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: qgBNenfuK9vrBLXDpQFwxi8kHqmqH2S2NM3L+6IFtrs= Subject key identifier: 03:97:D4:07:BD:BB:0E:32:A9:76:2D:0D:34:56:8A:A7:7F:40:DD:E3 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 2D41B39CFEC364FACDA47116DC7D9FE4C60E0AB7 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230362e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:35 +0000 ROA not before: Fri 24 Apr 2026 06:58:35 +0000 ROA not after: Fri 23 Apr 2027 07:03:35 +0000 asID: 38019 IP address blocks: 139.220.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:41:b3:9c:fe:c3:64:fa:cd:a4:71:16:dc:7d:9f:e4:c6:0e:0a:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:35 2026 GMT Not After : Apr 23 07:03:35 2027 GMT Subject: CN=0397D407BDBB0E32A9762D0D34568AA77F40DDE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:53:91:a8:6c:d5:d7:83:40:c1:9e:11:67:53: fe:8c:67:27:3d:39:74:69:01:a5:a2:22:da:c2:34: 14:fe:f5:0d:cc:3a:75:89:25:93:da:5a:70:15:c2: ff:13:0c:36:d3:cf:fa:9c:87:d8:fa:ac:e9:e4:2f: a5:c8:1b:00:bf:07:07:08:8b:4a:31:90:dc:53:ad: 0d:00:2f:99:39:72:f0:8b:38:17:a0:05:43:b2:9d: 81:74:1d:20:31:94:8e:9d:fe:62:a6:31:1f:53:45: 34:c3:37:9b:33:16:16:2d:6c:f6:6e:12:b7:f1:36: cf:04:d0:80:61:0f:c9:6b:61:bd:93:d0:29:a7:82: 92:e5:dc:d4:9c:4b:98:2d:c5:b3:dd:cc:71:1f:33: c3:eb:40:6c:3b:b0:de:c8:47:09:71:b4:ac:d7:78: 5a:7b:4d:d4:33:43:24:13:4f:0e:cf:3b:3a:ac:d0: 81:fe:24:20:52:37:66:f7:43:7d:f6:67:8c:cd:00: 11:22:53:2c:00:40:5d:a9:21:cf:53:12:37:84:a6: b9:f9:cc:eb:37:0b:0c:75:fc:e0:30:f1:00:bf:c1: 78:da:be:1c:cf:1e:0e:f1:c6:58:0b:6c:ae:d0:fb: b5:1d:1e:15:3c:f0:ea:70:60:4a:25:47:a4:5e:fc: 0d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:97:D4:07:BD:BB:0E:32:A9:76:2D:0D:34:56:8A:A7:7F:40:DD:E3 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230362e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.206.0/23 Signature Algorithm: sha256WithRSAEncryption 09:5b:0f:93:59:84:27:6d:fa:dd:9c:4a:b5:c2:cb:7f:42:18: f0:76:1d:4f:d2:6c:fc:9a:28:ba:90:e5:1e:74:a8:3f:ad:d2: a6:fd:37:fb:34:d6:a9:35:cc:ed:ba:a5:12:41:14:dc:e4:d3: 50:cc:9f:b4:45:0a:32:ef:63:21:f3:fc:f7:a4:ad:86:10:74: 8a:ca:de:82:7c:2c:16:21:75:06:e9:74:a6:df:0f:35:fd:42: 57:43:51:23:4f:01:8e:6e:de:30:69:0c:4a:9e:b7:6c:92:c0: 74:39:3d:2b:d7:16:38:02:4b:15:cd:8b:a7:3c:6d:9f:ca:3a: 70:b2:26:47:78:d9:6b:b7:1b:33:ce:28:73:af:cb:2f:18:7d: 10:36:5d:22:2b:a7:ba:07:ec:ba:11:af:6c:3c:a2:1e:74:57: 81:a5:ba:48:a5:59:89:e5:69:c5:7b:07:1e:c7:6e:f5:a8:d0: ea:03:8b:f9:62:72:2b:48:44:de:96:a7:5c:57:d8:16:e4:f5: 46:5b:9b:77:cc:e9:07:ce:43:73:d1:ad:c9:e7:e3:e0:d8:4a: c6:87:fb:e9:c2:74:85:90:20:86:0e:b9:f2:2f:47:f2:0c:47: 56:98:37:02:d1:de:c7:1d:c4:f7:fe:cc:57:51:92:db:e2:ad: bd:b6:3f:3e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULUGznP7DZPrNpHEW3H2f5MYOCrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzVaFw0yNzA0MjMwNzAzMzVaMDMxMTAvBgNV BAMTKDAzOTdENDA3QkRCQjBFMzJBOTc2MkQwRDM0NTY4QUE3N0Y0MERERTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5U5GobNXXg0DBnhFnU/6MZyc9 OXRpAaWiItrCNBT+9Q3MOnWJJZPaWnAVwv8TDDbTz/qch9j6rOnkL6XIGwC/BwcI i0oxkNxTrQ0AL5k5cvCLOBegBUOynYF0HSAxlI6d/mKmMR9TRTTDN5szFhYtbPZu ErfxNs8E0IBhD8lrYb2T0CmngpLl3NScS5gtxbPdzHEfM8PrQGw7sN7IRwlxtKzX eFp7TdQzQyQTTw7POzqs0IH+JCBSN2b3Q332Z4zNABEiUywAQF2pIc9TEjeEprn5 zOs3Cwx1/OAw8QC/wXjavhzPHg7xxlgLbK7Q+7UdHhU88OpwYEolR6Re/A3pAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUA5fUB727DjKpdi0NNFaKp39A3eMwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMDM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvczjANBgkqhkiG9w0BAQsFAAOCAQEACVsPk1mEJ2363ZxKtcLL f0IY8HYdT9Js/JooupDlHnSoP63Spv03+zTWqTXM7bqlEkEU3OTTUMyftEUKMu9j IfP896SthhB0isregnwsFiF1Bul0pt8PNf1CV0NRI08Bjm7eMGkMSp63bJLAdDk9 K9cWOAJLFc2Lpzxtn8o6cLImR3jZa7cbM84oc6/LLxh9EDZdIiunugfsuhGvbDyi HnRXgaW6SKVZieVpxXsHHsdu9ajQ6gOL+WJyK0hE3panXFfYFuT1Rlubd8zpB85D c9Gtyefj4NhKxof76cJ0hZAghg658i9H8gxHVpg3AtHexx3E9/7MV1GS2+KtvbY/ Pg== -----END CERTIFICATE-----Generated at Wed May 13 12:51:27 2026 by rpki-client