$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3234362e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3234362e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: J5RG3ljQM+L5Zca31yRf96uWv05z85s1REvcMURaw4A= Subject key identifier: 9E:18:CA:AF:03:1F:4C:08:20:B0:17:88:F9:2C:F9:51:66:33:A6:04 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 0AFBC0B838713254FA7D829843E4010F130A88DB Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3234362e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:34 +0000 ROA not before: Fri 24 Apr 2026 06:58:34 +0000 ROA not after: Fri 23 Apr 2027 07:03:34 +0000 asID: 38019 IP address blocks: 139.220.246.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:fb:c0:b8:38:71:32:54:fa:7d:82:98:43:e4:01:0f:13:0a:88:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:34 2026 GMT Not After : Apr 23 07:03:34 2027 GMT Subject: CN=9E18CAAF031F4C0820B01788F92CF9516633A604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:84:73:23:bd:a0:af:7a:c2:20:6f:de:ef:6d: 37:e7:23:a8:8a:49:8c:8c:cf:e3:38:78:0c:5d:ca: 02:e6:ff:31:d0:a1:0c:2a:ce:cd:8f:69:63:71:6a: 3d:3c:a8:b9:7c:9d:6a:6d:4b:bb:a9:ae:42:42:68: d7:67:22:11:e8:48:df:a8:7e:40:e4:d7:7c:ad:c7: 64:8d:6f:f1:9c:a2:ab:07:6a:fc:97:ab:b8:49:42: 5e:0d:3c:d0:ec:23:c9:a2:e9:d9:4e:6b:39:e3:5c: 52:f5:fc:79:59:f6:b0:67:91:e5:5f:45:33:96:69: 39:10:78:b8:b1:4e:84:c6:f6:ca:1b:47:7b:10:f5: 39:4d:a2:8e:d4:4f:9e:2c:a0:54:38:7c:98:c7:4d: 49:7f:9f:d5:fb:a3:15:08:ea:7a:c5:81:67:ae:92: bc:ac:82:c5:89:88:9f:55:d6:37:9b:7a:ac:ec:36: 61:f4:74:a0:3b:33:6e:b2:9c:cf:4d:e6:f9:9e:73: 6c:d9:e3:de:9c:ce:fc:e0:9c:ac:38:69:7d:0d:7c: ea:48:1e:8f:aa:a4:5c:d6:15:86:9b:36:c3:e9:e4: 46:e8:43:46:bb:af:94:5a:62:0a:98:79:39:a6:82: 74:a1:a0:58:e3:e3:12:b2:7c:c0:6e:42:72:a4:ad: f5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:18:CA:AF:03:1F:4C:08:20:B0:17:88:F9:2C:F9:51:66:33:A6:04 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3234362e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.246.0/23 Signature Algorithm: sha256WithRSAEncryption 79:2c:b9:5c:ea:82:43:86:98:9e:bc:56:c7:e9:00:7d:85:40: ee:de:ef:0c:9c:02:58:ff:86:22:82:a0:32:01:e1:f8:ed:e0: 3e:c5:94:b4:28:62:95:89:fd:5b:b5:05:e5:d9:ee:ec:86:ec: b2:9a:ce:d4:c0:52:54:b3:c8:e7:f8:cd:d1:bd:f7:ab:ba:01: e6:e9:d4:8b:a5:62:a3:23:58:0b:db:a7:79:38:e4:58:46:12: 82:75:26:35:46:e4:d0:46:9a:9b:01:08:b1:55:e5:39:a3:50: 80:6e:2d:14:49:e3:85:a4:34:54:0a:69:61:6f:de:2a:08:c1: 3d:6e:10:96:83:7b:0d:a3:b0:6b:bf:07:55:57:ef:a1:87:f4: 60:c7:9c:ee:8d:3c:61:ae:35:72:42:7e:b2:99:42:e4:b5:07: c5:f5:14:e4:9b:1c:d7:95:a6:9f:13:30:64:ff:35:0c:8f:b7: 26:bc:1e:c6:f9:d0:db:59:03:6b:b7:7b:81:eb:6c:74:f7:b3: 6b:11:a1:f1:03:f9:83:76:2a:19:ea:95:e6:9d:3f:a4:1e:f2: 0d:d1:e7:ca:a5:40:e7:a3:37:90:d7:a0:09:1d:51:77:c1:30: d0:3f:54:9b:c5:6d:4f:4b:d3:d4:18:82:1b:00:7a:f6:cb:c8: 96:cc:78:03 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCvvAuDhxMlT6fYKYQ+QBDxMKiNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzRaFw0yNzA0MjMwNzAzMzRaMDMxMTAvBgNV BAMTKDlFMThDQUFGMDMxRjRDMDgyMEIwMTc4OEY5MkNGOTUxNjYzM0E2MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCshHMjvaCvesIgb97vbTfnI6iK SYyMz+M4eAxdygLm/zHQoQwqzs2PaWNxaj08qLl8nWptS7uprkJCaNdnIhHoSN+o fkDk13ytx2SNb/GcoqsHavyXq7hJQl4NPNDsI8mi6dlOaznjXFL1/HlZ9rBnkeVf RTOWaTkQeLixToTG9sobR3sQ9TlNoo7UT54soFQ4fJjHTUl/n9X7oxUI6nrFgWeu krysgsWJiJ9V1jebeqzsNmH0dKA7M26ynM9N5vmec2zZ496czvzgnKw4aX0NfOpI Ho+qpFzWFYabNsPp5EboQ0a7r5RaYgqYeTmmgnShoFjj4xKyfMBuQnKkrfXJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUnhjKrwMfTAggsBeI+Sz5UWYzpgQwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzNDM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc9jANBgkqhkiG9w0BAQsFAAOCAQEAeSy5XOqCQ4aYnrxWx+kA fYVA7t7vDJwCWP+GIoKgMgHh+O3gPsWUtChilYn9W7UF5dnu7IbssprO1MBSVLPI 5/jN0b33q7oB5unUi6VioyNYC9uneTjkWEYSgnUmNUbk0EaamwEIsVXlOaNQgG4t FEnjhaQ0VAppYW/eKgjBPW4QloN7DaOwa78HVVfvoYf0YMec7o08Ya41ckJ+splC 5LUHxfUU5Jsc15WmnxMwZP81DI+3JrwexvnQ21kDa7d7getsdPezaxGh8QP5g3Yq GeqV5p0/pB7yDdHnyqVA56M3kNegCR1Rd8Ew0D9Um8VtT0vT1BiCGwB69svIlsx4 Aw== -----END CERTIFICATE-----Generated at Wed May 13 13:27:26 2026 by rpki-client