$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3232322e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3232322e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: et3wWDnq4wLtsV9t1NLy2s1nXxAY7ND3Gcn1mm6zXeA= Subject key identifier: 93:21:E3:80:AD:0C:3F:AF:E8:45:F0:65:67:15:42:A1:FC:76:70:F6 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 1A8FF51DE5DA5423461E79C14AEF25459C771553 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3232322e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:36 +0000 ROA not before: Fri 24 Apr 2026 07:00:36 +0000 ROA not after: Fri 23 Apr 2027 07:05:36 +0000 asID: 38019 IP address blocks: 139.220.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:8f:f5:1d:e5:da:54:23:46:1e:79:c1:4a:ef:25:45:9c:77:15:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:36 2026 GMT Not After : Apr 23 07:05:36 2027 GMT Subject: CN=9321E380AD0C3FAFE845F065671542A1FC7670F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b4:7c:b0:5c:20:0f:7d:29:c4:3e:87:54:79: b9:52:fd:30:fa:8f:b2:0a:fb:35:93:3b:d7:8a:f6: 09:fe:f5:54:fe:00:0f:60:a6:23:b8:6e:49:7a:05: 0e:21:65:b2:fc:95:95:78:0b:9d:b8:13:d1:7f:96: 66:de:7b:1e:66:5a:30:81:9b:3e:2d:9e:90:17:dc: 3c:df:f0:e6:51:ce:ea:25:14:5c:5e:04:7f:9f:7f: 00:e5:05:2b:1e:2d:d0:c8:40:7a:32:eb:e6:0d:ba: 26:6c:a7:21:71:a5:cb:f8:4b:12:08:d4:d3:99:2c: 10:43:c8:1f:c9:3f:65:02:b7:dc:83:92:32:bf:e1: cb:24:72:e5:6f:07:d0:2b:5b:e0:3a:9b:ad:1f:4a: 6a:76:62:ff:26:af:18:95:77:79:f1:57:3c:84:da: f0:f7:d7:2a:09:81:a3:7a:e4:92:1e:3a:a7:e6:40: c9:46:f5:3d:b0:0a:bc:a3:9e:56:2c:08:f8:63:10: 33:9f:18:9c:ce:9b:65:37:d8:9e:b2:ab:df:40:61: ce:20:98:cf:f1:55:59:7f:ae:f9:71:76:ef:c1:68: 0d:2d:21:57:25:e8:97:ae:0f:d6:9a:d5:92:c2:83: f1:7d:57:47:f7:2e:4c:b2:52:28:9c:5d:40:85:1c: 47:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:21:E3:80:AD:0C:3F:AF:E8:45:F0:65:67:15:42:A1:FC:76:70:F6 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3232322e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.222.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:51:78:cf:9f:7b:df:94:41:aa:d9:8c:df:4a:0f:d1:9b:c8: f6:52:1f:01:a5:0e:1b:55:b5:c8:1b:05:7a:79:29:7e:cc:fe: f7:4a:7b:81:50:00:f8:6e:e9:ea:cf:ae:b0:31:00:6d:da:1c: bb:84:5c:8c:17:e5:67:bc:30:ea:ad:d8:f2:47:93:fc:0e:38: b3:5c:7e:82:fc:74:22:3d:c3:93:ac:3b:fe:d6:a5:86:33:52: 7b:95:09:fd:2c:78:6a:2c:99:02:bd:ad:c0:0b:81:b1:ec:18: 6f:5b:5d:00:9e:33:2e:56:ee:89:a8:89:9a:6d:76:b1:9c:c6: 15:de:36:1b:c0:6d:a8:de:01:63:bc:3d:54:ef:43:5b:3a:6f: 11:27:47:9a:eb:a2:f3:16:54:0f:65:b4:b3:c7:70:f7:cf:98: 38:fc:e1:d9:df:a3:85:ad:3d:ae:18:fc:74:9a:73:8a:52:7c: ac:23:ae:4c:50:a1:1a:c4:96:0c:78:37:25:ee:40:30:8a:4b: f5:85:52:1d:2a:f2:68:da:f9:de:42:38:3b:12:4d:dd:b6:5e: 95:4c:c3:07:a4:92:85:ed:2c:34:b5:98:94:5a:86:ab:b8:5e: fe:0a:9e:16:3d:4b:fa:a8:88:ad:4a:90:d1:37:59:b3:1e:06: e8:8e:4e:36 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGo/1HeXaVCNGHnnBSu8lRZx3FVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzZaFw0yNzA0MjMwNzA1MzZaMDMxMTAvBgNV BAMTKDkzMjFFMzgwQUQwQzNGQUZFODQ1RjA2NTY3MTU0MkExRkM3NjcwRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJtHywXCAPfSnEPodUeblS/TD6 j7IK+zWTO9eK9gn+9VT+AA9gpiO4bkl6BQ4hZbL8lZV4C524E9F/lmbeex5mWjCB mz4tnpAX3Dzf8OZRzuolFFxeBH+ffwDlBSseLdDIQHoy6+YNuiZspyFxpcv4SxII 1NOZLBBDyB/JP2UCt9yDkjK/4cskcuVvB9ArW+A6m60fSmp2Yv8mrxiVd3nxVzyE 2vD31yoJgaN65JIeOqfmQMlG9T2wCryjnlYsCPhjEDOfGJzOm2U32J6yq99AYc4g mM/xVVl/rvlxdu/BaA0tIVcl6JeuD9aa1ZLCg/F9V0f3LkyyUiicXUCFHEdLAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUkyHjgK0MP6/oRfBlZxVCofx2cPYwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMjMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc3jANBgkqhkiG9w0BAQsFAAOCAQEAGlF4z59735RBqtmM30oP 0ZvI9lIfAaUOG1W1yBsFenkpfsz+90p7gVAA+G7p6s+usDEAbdocu4RcjBflZ7ww 6q3Y8keT/A44s1x+gvx0Ij3Dk6w7/talhjNSe5UJ/Sx4aiyZAr2twAuBsewYb1td AJ4zLlbuiaiJmm12sZzGFd42G8BtqN4BY7w9VO9DWzpvESdHmuui8xZUD2W0s8dw 98+YOPzh2d+jha09rhj8dJpzilJ8rCOuTFChGsSWDHg3Je5AMIpL9YVSHSryaNr5 3kI4OxJN3bZelUzDB6SShe0sNLWYlFqGq7he/gqeFj1L+qiIrUqQ0TdZsx4G6I5O Ng== -----END CERTIFICATE-----Generated at Wed May 13 13:58:05 2026 by rpki-client