$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3233342e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3233342e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: HWBxi8Lzo2tnaGbkWLOMIcC5DYpFfzsHPNyHDRjtwzU= Subject key identifier: D3:43:12:32:52:39:6E:62:63:B5:18:C2:3C:B0:5F:94:B5:95:E0:81 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 656627952B3A9E669C27631B8915CE572FC2B784 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3233342e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:36 +0000 ROA not before: Fri 24 Apr 2026 07:00:36 +0000 ROA not after: Fri 23 Apr 2027 07:05:36 +0000 asID: 38019 IP address blocks: 139.220.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:66:27:95:2b:3a:9e:66:9c:27:63:1b:89:15:ce:57:2f:c2:b7:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:36 2026 GMT Not After : Apr 23 07:05:36 2027 GMT Subject: CN=D343123252396E6263B518C23CB05F94B595E081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:41:ac:44:43:fe:d8:04:92:0a:b5:6e:71: 44:50:0f:f7:c2:ad:f3:1d:13:cc:d5:83:72:61:87: 72:e2:ff:26:26:b4:42:f1:2e:59:a5:b4:84:59:3a: 88:b6:62:02:1f:86:53:ac:3c:d3:55:a5:03:d8:6e: 90:33:c1:86:3f:3a:53:39:f2:58:38:87:c6:f9:39: 52:be:2e:bc:44:5a:34:67:c4:3e:8b:5e:55:bc:9c: cd:dd:64:c1:fe:67:c5:25:08:0b:75:11:ed:4d:8c: 02:d8:2a:fb:d9:88:13:86:0c:1f:9d:da:a3:44:98: 56:03:f6:8f:73:83:d0:59:e4:68:78:af:7d:ea:a1: c0:9d:ea:17:17:e2:77:df:b0:96:56:f8:a2:07:c1: 48:d9:af:cf:f9:f1:16:a3:e4:4d:55:25:d1:c1:1d: c1:d7:d8:ca:c2:e0:01:56:48:4a:02:b7:96:7a:72: 28:7f:f4:9e:bd:e6:02:fe:ed:e6:96:b5:82:bf:46: cc:64:49:d4:db:c8:f1:03:df:94:25:77:a2:87:3b: 85:94:dd:22:17:51:71:a9:5a:93:a2:6a:3c:66:69: 2a:66:83:77:30:09:47:e8:30:a5:19:3c:2d:c1:3e: 2c:f2:0e:04:e4:62:ee:5c:e1:87:0f:8f:29:86:14: b5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:43:12:32:52:39:6E:62:63:B5:18:C2:3C:B0:5F:94:B5:95:E0:81 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3233342e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.234.0/23 Signature Algorithm: sha256WithRSAEncryption 58:05:b0:be:9c:8c:7f:6a:d1:f2:fc:98:4b:df:b4:79:4e:72: b4:9b:6f:5b:90:3c:e5:d5:8a:a4:8a:4c:d4:bc:9f:64:bc:4b: 8b:64:bf:d0:01:1e:3c:e7:7a:2a:95:27:66:7f:21:d5:04:e6: 9d:6a:ce:c0:e3:d2:c5:6d:c1:80:80:02:ca:28:f6:70:24:11: 80:01:cc:13:05:83:2e:33:55:98:e2:16:0a:4a:5c:09:67:49: 91:80:04:d0:5e:fc:2c:43:b7:8d:64:cf:28:b8:97:41:90:57: 38:e3:a5:73:6b:3b:94:c1:fe:da:05:3b:c6:18:ef:21:c4:10: 14:1c:2a:d0:e0:1f:b5:5f:1f:12:7a:72:f2:f0:01:c1:41:18: 56:eb:9f:42:bd:bc:0d:bc:70:f3:01:11:1f:61:7c:23:0c:e3: 9d:b8:11:61:9c:fe:73:e4:c6:ee:0f:3c:3e:b0:4e:9c:0f:07: 4c:72:53:b0:39:52:9b:92:e3:3e:87:69:b6:70:70:4d:02:ce: d4:80:ef:4f:05:7c:ee:cd:8f:1a:d8:e0:16:6e:92:ba:d2:41: fb:6d:82:5f:fe:d3:cd:c9:ba:64:56:66:25:f7:45:41:42:95: 78:dc:61:bc:09:8b:40:87:cc:33:c3:5f:d7:96:95:7e:e3:bc: 39:5b:a0:b1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZWYnlSs6nmacJ2MbiRXOVy/Ct4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzZaFw0yNzA0MjMwNzA1MzZaMDMxMTAvBgNV BAMTKEQzNDMxMjMyNTIzOTZFNjI2M0I1MThDMjNDQjA1Rjk0QjU5NUUwODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCza0GsREP+2ASSCrVucURQD/fC rfMdE8zVg3Jhh3Li/yYmtELxLlmltIRZOoi2YgIfhlOsPNNVpQPYbpAzwYY/OlM5 8lg4h8b5OVK+LrxEWjRnxD6LXlW8nM3dZMH+Z8UlCAt1Ee1NjALYKvvZiBOGDB+d 2qNEmFYD9o9zg9BZ5Gh4r33qocCd6hcX4nffsJZW+KIHwUjZr8/58Raj5E1VJdHB HcHX2MrC4AFWSEoCt5Z6cih/9J695gL+7eaWtYK/RsxkSdTbyPED35Qld6KHO4WU 3SIXUXGpWpOiajxmaSpmg3cwCUfoMKUZPC3BPizyDgTkYu5c4YcPjymGFLXDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU00MSMlI5bmJjtRjCPLBflLWV4IEwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMzM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc6jANBgkqhkiG9w0BAQsFAAOCAQEAWAWwvpyMf2rR8vyYS9+0 eU5ytJtvW5A85dWKpIpM1LyfZLxLi2S/0AEePOd6KpUnZn8h1QTmnWrOwOPSxW3B gIACyij2cCQRgAHMEwWDLjNVmOIWCkpcCWdJkYAE0F78LEO3jWTPKLiXQZBXOOOl c2s7lMH+2gU7xhjvIcQQFBwq0OAftV8fEnpy8vABwUEYVuufQr28Dbxw8wERH2F8 IwzjnbgRYZz+c+TG7g88PrBOnA8HTHJTsDlSm5LjPodptnBwTQLO1IDvTwV87s2P GtjgFm6SutJB+22CX/7Tzcm6ZFZmJfdFQUKVeNxhvAmLQIfMM8Nf15aVfuO8OVug sQ== -----END CERTIFICATE-----Generated at Wed May 13 12:40:11 2026 by rpki-client