$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3233382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3233382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: 3qHq/I8itcDzwXMS7en6/MAZ9clEogq8LWh5Tpk8c8A= Subject key identifier: A9:BB:F3:4D:DD:85:46:02:A1:09:12:30:26:28:52:75:DB:47:1B:FA Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 030861C062A64B3DDE458617079EDDCDCBD502BC Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3233382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:36 +0000 ROA not before: Fri 24 Apr 2026 07:00:36 +0000 ROA not after: Fri 23 Apr 2027 07:05:36 +0000 asID: 38019 IP address blocks: 139.220.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:08:61:c0:62:a6:4b:3d:de:45:86:17:07:9e:dd:cd:cb:d5:02:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:36 2026 GMT Not After : Apr 23 07:05:36 2027 GMT Subject: CN=A9BBF34DDD854602A109123026285275DB471BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:59:3c:d0:b6:3a:c2:f7:83:01:dc:f3:95:3c: 6b:f1:d8:3f:d6:31:02:f6:ff:10:79:73:81:5c:68: f9:87:93:e6:d1:51:47:1e:8c:1d:dc:6b:3b:47:43: c9:c6:68:ef:45:8c:10:64:a5:08:6d:95:e5:40:bf: 06:0d:14:4b:27:22:0a:82:e5:6f:ef:d7:82:09:c6: 19:ed:68:17:87:e8:e9:ca:d9:50:32:87:0e:14:58: 59:8c:e7:74:70:9e:a2:8c:fc:1f:d7:58:7d:87:7c: c3:0b:a2:50:92:70:14:bc:e7:8d:aa:70:f8:e9:e8: dd:54:9c:c3:cd:a5:ea:25:d9:31:88:3b:4b:47:ff: df:8f:f3:1f:c2:9a:4a:2d:bf:64:16:f0:d5:7e:ee: 99:2e:e1:71:5d:06:04:5a:af:c4:b6:82:6e:b1:ed: 0e:33:97:1d:dc:bf:bd:c3:70:d4:84:80:b9:cb:a3: 2e:d3:73:c3:15:1d:08:13:1b:10:c2:21:30:8a:56: 55:bc:34:c7:95:6a:cf:4f:b9:54:bd:c6:00:f7:24: 7b:76:21:92:be:1d:32:9a:84:8b:e4:8c:ce:94:63: fc:0d:86:75:8d:30:3f:91:86:9b:61:ba:d8:ca:9d: 46:81:c5:fb:eb:ea:8b:03:0d:ae:1c:61:e9:b5:8a: 69:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BB:F3:4D:DD:85:46:02:A1:09:12:30:26:28:52:75:DB:47:1B:FA X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3233382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.238.0/23 Signature Algorithm: sha256WithRSAEncryption 04:8c:6a:52:1f:5a:fb:e5:58:f2:24:28:0d:39:18:b2:54:50: 9d:3e:62:31:88:db:68:c7:08:df:71:b5:02:71:85:82:f6:52: 93:5c:33:61:50:52:0f:c2:c1:ed:7e:eb:72:d4:6a:02:29:b1: aa:44:96:2b:84:76:a1:0e:d2:d4:7c:e3:57:a1:43:62:28:29: 0c:d4:19:c3:0d:99:bc:71:69:37:9b:d4:b0:d6:e1:88:2b:d6: 91:d0:76:94:7e:69:29:36:ca:1d:3c:1b:9e:7d:33:ca:e4:b6: 80:13:25:2a:2c:a0:b1:03:a8:f2:14:ff:02:80:e2:7f:be:44: e7:01:26:d4:f4:ee:de:32:be:fe:cd:d0:cc:cb:dc:0b:eb:37: ac:d2:90:19:d3:e1:6b:c1:f2:f5:9f:55:6a:26:5c:f3:80:72: 6e:42:32:b0:f1:5e:19:12:b0:c2:7d:7f:46:4d:0c:d1:9d:14: 62:ab:c7:f2:6f:00:5a:d7:6a:11:b6:6f:7f:b7:f6:0d:ac:c4: 42:c4:a3:19:eb:cd:77:41:22:25:af:17:77:2e:f1:d2:29:e4: 76:4b:b1:d8:97:ce:89:19:c5:e7:2b:96:77:b3:1e:b2:bb:4a: 22:ee:24:37:ff:0e:86:bb:f1:ff:35:33:66:14:3b:0a:57:f0: 4b:6b:f9:9e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUAwhhwGKmSz3eRYYXB57dzcvVArwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzZaFw0yNzA0MjMwNzA1MzZaMDMxMTAvBgNV BAMTKEE5QkJGMzREREQ4NTQ2MDJBMTA5MTIzMDI2Mjg1Mjc1REI0NzFCRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOWTzQtjrC94MB3POVPGvx2D/W MQL2/xB5c4FcaPmHk+bRUUcejB3caztHQ8nGaO9FjBBkpQhtleVAvwYNFEsnIgqC 5W/v14IJxhntaBeH6OnK2VAyhw4UWFmM53RwnqKM/B/XWH2HfMMLolCScBS8542q cPjp6N1UnMPNpeol2TGIO0tH/9+P8x/Cmkotv2QW8NV+7pku4XFdBgRar8S2gm6x 7Q4zlx3cv73DcNSEgLnLoy7Tc8MVHQgTGxDCITCKVlW8NMeVas9PuVS9xgD3JHt2 IZK+HTKahIvkjM6UY/wNhnWNMD+RhpthutjKnUaBxfvr6osDDa4cYem1imklAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqbvzTd2FRgKhCRIwJihSddtHG/owHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMzM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc7jANBgkqhkiG9w0BAQsFAAOCAQEABIxqUh9a++VY8iQoDTkY slRQnT5iMYjbaMcI33G1AnGFgvZSk1wzYVBSD8LB7X7rctRqAimxqkSWK4R2oQ7S 1HzjV6FDYigpDNQZww2ZvHFpN5vUsNbhiCvWkdB2lH5pKTbKHTwbnn0zyuS2gBMl KiygsQOo8hT/AoDif75E5wEm1PTu3jK+/s3QzMvcC+s3rNKQGdPha8Hy9Z9VaiZc 84BybkIysPFeGRKwwn1/Rk0M0Z0UYqvH8m8AWtdqEbZvf7f2DazEQsSjGevNd0Ei Ja8Xdy7x0inkdkux2JfOiRnF5yuWd7MesrtKIu4kN/8Ohrvx/zUzZhQ7ClfwS2v5 ng== -----END CERTIFICATE-----Generated at Wed May 13 12:46:14 2026 by rpki-client