$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3231362e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3231362e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: s0o5i3f+i7pXjBCLW16YTUeTWSAxrCWn7DmCwHp05xo= Subject key identifier: 51:18:45:AC:62:5B:0D:00:F9:13:93:FF:82:93:EC:74:1E:69:35:BC Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 5D82980F842383BCDC5746C8B69AB3B92384DB02 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3231362e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:36 +0000 ROA not before: Fri 24 Apr 2026 07:00:36 +0000 ROA not after: Fri 23 Apr 2027 07:05:36 +0000 asID: 38019 IP address blocks: 139.220.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:82:98:0f:84:23:83:bc:dc:57:46:c8:b6:9a:b3:b9:23:84:db:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:36 2026 GMT Not After : Apr 23 07:05:36 2027 GMT Subject: CN=511845AC625B0D00F91393FF8293EC741E6935BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:99:42:e3:dc:0d:7f:40:eb:2e:dc:b3:f2:cb: a8:27:24:02:a5:d1:6a:6f:ea:62:82:82:fd:46:6a: 85:10:86:04:0d:09:54:b6:b6:07:eb:82:35:89:35: 34:f5:57:53:e9:dc:bd:e2:51:ae:a4:a2:88:6b:56: 74:42:bc:f5:1c:a9:04:04:82:7d:b7:6c:11:85:5a: eb:98:21:03:18:33:f5:1d:21:29:ff:ce:cc:33:9a: 22:54:06:93:63:81:a6:87:20:af:4d:21:5a:9b:4f: 14:c5:95:d0:fd:70:23:9f:9f:6c:2b:d4:6d:2b:64: 53:5e:ad:4f:bd:e5:64:25:0a:6c:80:5e:15:27:0e: cf:eb:c6:32:14:1e:d4:45:48:e5:53:76:03:07:e4: d1:09:5d:ef:42:2c:65:4e:83:d9:e5:5a:26:f1:f7: 3c:e1:07:16:0c:c4:83:df:57:78:0f:f9:8e:6a:28: 46:a6:c6:66:e1:9d:59:58:99:c0:d4:86:85:fe:08: 25:f1:52:06:fe:68:a8:49:7f:86:f0:d4:d7:f3:dd: a7:ac:5f:ac:ae:76:ef:64:9b:44:05:b4:61:d0:2f: 93:da:c1:cc:6e:4c:00:81:88:6d:18:8b:90:1a:57: ad:ab:5d:45:be:35:e5:fb:3e:4f:f2:97:a6:41:d6: 25:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:18:45:AC:62:5B:0D:00:F9:13:93:FF:82:93:EC:74:1E:69:35:BC X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3231362e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.216.0/23 Signature Algorithm: sha256WithRSAEncryption 86:91:08:83:9c:bc:11:5b:05:f5:f7:85:36:1e:06:ee:04:43: e3:34:ec:f0:f7:c5:85:30:a6:3e:ca:55:14:e0:49:01:a6:ea: b3:99:81:2c:30:6e:33:35:fe:4f:2f:88:64:47:b5:30:de:6d: 90:56:72:1a:8c:80:c6:c7:bd:9f:4b:fe:ea:5a:a4:2b:99:11: 40:c9:2b:ea:60:d0:da:da:ce:2a:1d:49:e5:94:57:12:8f:6b: b9:f3:08:8e:52:30:88:47:e3:85:f1:c3:85:cf:91:b7:92:d7: cd:fe:09:e7:d2:68:04:1d:62:ee:b3:c0:7a:33:9c:e9:fa:0b: b5:67:88:93:b1:22:53:a2:f4:81:31:ad:b7:f9:2a:5f:f8:79: 3c:93:ad:d3:8e:a1:56:b0:42:0a:2d:49:f2:98:d3:d0:d5:87: a6:18:b9:c5:e8:bd:d2:76:49:4e:c0:37:8a:f9:6e:95:af:5b: 63:14:82:38:5c:a4:fe:e3:ea:7b:75:ff:2d:90:79:63:f2:4b: 90:eb:c4:05:54:21:5f:74:ef:dd:ea:27:63:46:8f:c6:59:02: 69:9b:a7:d0:f5:69:b8:a2:83:db:03:00:27:b3:b9:73:44:78: 51:2e:02:93:82:22:b7:2e:28:22:7c:a7:08:62:26:a6:92:53: 47:8d:cd:d8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXYKYD4Qjg7zcV0bItpqzuSOE2wIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzZaFw0yNzA0MjMwNzA1MzZaMDMxMTAvBgNV BAMTKDUxMTg0NUFDNjI1QjBEMDBGOTEzOTNGRjgyOTNFQzc0MUU2OTM1QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMmULj3A1/QOsu3LPyy6gnJAKl 0Wpv6mKCgv1GaoUQhgQNCVS2tgfrgjWJNTT1V1Pp3L3iUa6koohrVnRCvPUcqQQE gn23bBGFWuuYIQMYM/UdISn/zswzmiJUBpNjgaaHIK9NIVqbTxTFldD9cCOfn2wr 1G0rZFNerU+95WQlCmyAXhUnDs/rxjIUHtRFSOVTdgMH5NEJXe9CLGVOg9nlWibx 9zzhBxYMxIPfV3gP+Y5qKEamxmbhnVlYmcDUhoX+CCXxUgb+aKhJf4bw1Nfz3aes X6yudu9km0QFtGHQL5PawcxuTACBiG0Yi5AaV62rXUW+NeX7Pk/yl6ZB1iV7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUURhFrGJbDQD5E5P/gpPsdB5pNbwwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMTM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc2DANBgkqhkiG9w0BAQsFAAOCAQEAhpEIg5y8EVsF9feFNh4G 7gRD4zTs8PfFhTCmPspVFOBJAabqs5mBLDBuMzX+Ty+IZEe1MN5tkFZyGoyAxse9 n0v+6lqkK5kRQMkr6mDQ2trOKh1J5ZRXEo9rufMIjlIwiEfjhfHDhc+Rt5LXzf4J 59JoBB1i7rPAejOc6foLtWeIk7EiU6L0gTGtt/kqX/h5PJOt046hVrBCCi1J8pjT 0NWHphi5xei90nZJTsA3ivlula9bYxSCOFyk/uPqe3X/LZB5Y/JLkOvEBVQhX3Tv 3eonY0aPxlkCaZun0PVpuKKD2wMAJ7O5c0R4US4Ck4Iity4oInynCGImppJTR43N 2A== -----END CERTIFICATE-----Generated at Wed May 13 13:57:43 2026 by rpki-client