$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3231342e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3231342e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: zpPpw4VK4tI1Pbz5VnMlqYG8rjroUKEEut7B5WDiQ1w= Subject key identifier: 4B:87:4F:3E:88:4C:69:DC:9A:D3:5C:F8:A8:16:89:20:41:EC:63:A1 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 607696FD5603100407A4312ED0841A5B79D39A86 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3231342e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:37 +0000 ROA not before: Fri 24 Apr 2026 07:00:37 +0000 ROA not after: Fri 23 Apr 2027 07:05:37 +0000 asID: 38019 IP address blocks: 139.220.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:76:96:fd:56:03:10:04:07:a4:31:2e:d0:84:1a:5b:79:d3:9a:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:37 2026 GMT Not After : Apr 23 07:05:37 2027 GMT Subject: CN=4B874F3E884C69DC9AD35CF8A816892041EC63A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:b9:e3:3d:06:d8:bd:95:00:4f:8c:cb:91: 80:b0:c5:60:5a:f4:fe:ac:3d:dc:0d:e7:2c:f9:b5: 5f:b9:c6:9b:a2:b8:12:66:2c:32:c8:74:3a:9b:29: 3c:38:2a:df:04:64:5c:ed:78:a6:b5:78:58:41:ad: b6:d2:f1:3d:41:30:6b:38:42:64:4f:f3:42:1f:ab: 39:e0:2b:cd:3b:0d:90:8a:84:04:bb:ad:07:93:cf: 4c:b9:f8:29:3a:78:ec:3a:21:12:da:80:e9:9b:84: ac:d5:8c:f0:7e:ef:66:7a:23:1e:1c:b5:d6:0c:2a: b5:4c:90:8b:d9:ca:e4:80:9c:92:46:76:cf:55:10: 35:dd:6f:18:f6:70:6d:2e:b8:b3:e2:78:84:e1:12: d0:b8:a9:45:46:81:5d:2d:15:12:8d:56:9f:21:17: 4d:00:38:1a:5b:be:9f:d8:40:5b:88:32:47:b6:00: 94:90:88:ca:c7:fb:65:7d:33:bb:87:58:96:c7:0f: b4:c5:d1:07:bc:ae:e3:4c:c8:f3:90:73:9f:ab:2f: 5d:99:2f:cd:f6:9d:94:7c:ee:17:77:30:fa:be:f8: 68:48:45:ca:ad:c8:03:c0:0f:c5:00:43:7c:00:51: 85:f9:50:ef:5d:93:8d:d1:40:fe:ea:12:88:8d:e2: 14:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:87:4F:3E:88:4C:69:DC:9A:D3:5C:F8:A8:16:89:20:41:EC:63:A1 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3231342e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.214.0/23 Signature Algorithm: sha256WithRSAEncryption 07:78:3d:5f:ea:3a:61:46:30:a7:50:01:2e:50:ea:be:69:ab: 14:09:96:fe:03:6f:06:5b:da:8a:6a:29:61:bb:f0:48:80:3b: 34:3f:92:63:a1:44:cf:d1:03:81:50:de:ce:b4:8e:2d:68:76: c8:66:6c:86:c4:09:8d:83:30:fa:18:05:ea:d8:ca:65:18:54: 0e:18:5b:e1:e8:cb:1f:94:2f:4f:5a:f6:5a:2d:5f:f0:04:70: 25:87:ed:08:2f:87:81:af:6f:00:49:c1:55:99:61:1c:e4:11: 97:65:6a:24:fd:5e:99:d5:64:f3:6f:46:92:48:09:d9:47:f8: 71:28:01:a9:eb:8b:e1:11:a2:41:43:1c:86:21:29:5d:fe:db: a2:ca:15:cd:e6:c0:dd:51:7f:1d:c3:9c:09:77:55:5e:9b:07: 19:02:c3:ff:36:72:f3:f0:09:43:36:f8:98:64:bc:b7:70:c3: 27:ce:ae:fd:14:b4:59:0a:f9:6f:ac:c1:9d:bc:a4:58:ca:12: 9c:56:20:82:f5:2e:67:17:a7:1d:f9:1e:71:16:1a:4c:70:47: d1:aa:b7:3a:7b:0f:6a:fe:46:7a:8d:1e:de:4d:32:d4:6a:6e: 4e:b6:81:7a:2e:c6:96:86:4c:0d:02:ab:4e:c6:4a:94:b7:51: 3a:11:71:38 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUYHaW/VYDEAQHpDEu0IQaW3nTmoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzdaFw0yNzA0MjMwNzA1MzdaMDMxMTAvBgNV BAMTKDRCODc0RjNFODg0QzY5REM5QUQzNUNGOEE4MTY4OTIwNDFFQzYzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrF7njPQbYvZUAT4zLkYCwxWBa 9P6sPdwN5yz5tV+5xpuiuBJmLDLIdDqbKTw4Kt8EZFzteKa1eFhBrbbS8T1BMGs4 QmRP80IfqzngK807DZCKhAS7rQeTz0y5+Ck6eOw6IRLagOmbhKzVjPB+72Z6Ix4c tdYMKrVMkIvZyuSAnJJGds9VEDXdbxj2cG0uuLPieIThEtC4qUVGgV0tFRKNVp8h F00AOBpbvp/YQFuIMke2AJSQiMrH+2V9M7uHWJbHD7TF0Qe8ruNMyPOQc5+rL12Z L832nZR87hd3MPq++GhIRcqtyAPAD8UAQ3wAUYX5UO9dk43RQP7qEoiN4hR5AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUS4dPPohMadya01z4qBaJIEHsY6EwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMTM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc1jANBgkqhkiG9w0BAQsFAAOCAQEAB3g9X+o6YUYwp1ABLlDq vmmrFAmW/gNvBlvaimopYbvwSIA7ND+SY6FEz9EDgVDezrSOLWh2yGZshsQJjYMw +hgF6tjKZRhUDhhb4ejLH5QvT1r2Wi1f8ARwJYftCC+Hga9vAEnBVZlhHOQRl2Vq JP1emdVk829GkkgJ2Uf4cSgBqeuL4RGiQUMchiEpXf7bosoVzebA3VF/HcOcCXdV XpsHGQLD/zZy8/AJQzb4mGS8t3DDJ86u/RS0WQr5b6zBnbykWMoSnFYggvUuZxen HfkecRYaTHBH0aq3OnsPav5Geo0e3k0y1GpuTraBei7GloZMDQKrTsZKlLdROhFx OA== -----END CERTIFICATE-----Generated at Wed May 13 12:40:08 2026 by rpki-client