$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3234382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3234382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: QdCUlP58K70h2A83v7t6NBCi1HZwm6u9qjZs5ewgOZ4= Subject key identifier: 14:B1:42:A7:12:2A:5C:E9:51:D0:D4:06:54:58:4B:DF:88:82:90:5A Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 4D28F30AFAD491F139E26404C040C342D73ED48D Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3234382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:36 +0000 ROA not before: Fri 24 Apr 2026 07:00:36 +0000 ROA not after: Fri 23 Apr 2027 07:05:36 +0000 asID: 38019 IP address blocks: 139.220.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:28:f3:0a:fa:d4:91:f1:39:e2:64:04:c0:40:c3:42:d7:3e:d4:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:36 2026 GMT Not After : Apr 23 07:05:36 2027 GMT Subject: CN=14B142A7122A5CE951D0D40654584BDF8882905A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ed:eb:73:2b:a7:ec:7c:1b:25:62:0a:7d:02: ff:d3:f4:cc:b1:f3:ca:36:d7:ef:4d:45:80:8c:0f: 4f:22:9d:23:1d:f2:1b:cc:de:d9:b8:bf:03:6c:a0: 5f:df:5e:9c:47:12:36:31:3d:2a:fc:da:84:4b:8d: 61:85:8d:da:02:da:eb:d3:e5:07:e8:9c:64:b7:10: 99:2c:07:9f:ae:39:8c:c3:0e:ae:15:09:59:60:34: 69:93:43:24:79:7c:76:f8:2c:a8:6b:f5:b8:ba:32: d5:4a:79:4f:95:6f:18:de:94:ed:e0:5a:c7:06:7a: a2:4b:a1:9b:86:df:80:58:ff:11:52:27:0a:30:b5: 94:94:de:79:71:f1:ed:71:fb:42:4a:a6:ee:bf:ae: 9c:96:6a:e9:24:28:31:68:aa:c0:b1:7a:71:43:20: a7:72:ec:ed:09:de:48:6a:78:16:88:dd:40:81:47: 77:d9:d2:aa:4a:fc:4e:0f:f1:04:4d:21:57:05:d9: 42:cd:fa:1f:c4:c3:23:e3:eb:5f:37:e6:e8:6f:1c: c9:8c:ac:61:17:e0:48:18:ce:a5:b0:37:86:5a:2a: 3a:d3:57:f3:91:47:41:7b:fc:8f:e1:b4:19:83:d6: 4b:f3:48:6a:b2:d4:e1:fd:7b:16:b2:0b:ce:98:0e: 04:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B1:42:A7:12:2A:5C:E9:51:D0:D4:06:54:58:4B:DF:88:82:90:5A X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3234382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.248.0/23 Signature Algorithm: sha256WithRSAEncryption b6:e2:d8:43:48:d9:e7:4e:15:9c:ce:cb:1f:0b:15:0b:0f:22: 66:a6:2e:40:1c:97:6d:c2:d0:b3:6b:ba:87:32:19:d3:29:f2: 91:cf:61:ea:79:6a:fb:6b:8a:f8:ab:2d:90:8a:a1:cd:21:74: 83:3b:ff:f3:b2:a0:94:50:68:b0:8f:34:12:f7:b8:8e:1b:b7: 9e:1c:a1:c0:13:c2:af:51:3c:57:87:7a:dc:61:7f:cb:80:e7: eb:47:5a:4a:b3:bb:4b:ae:9d:87:90:3e:07:35:3c:dd:f4:33: 34:0b:02:0f:2e:33:72:78:d5:29:5a:dc:0d:71:15:69:20:d5: 6b:a2:a6:39:99:70:2a:09:f5:fd:82:f3:7c:87:df:fb:29:39: f2:73:9e:54:68:fe:a1:0d:0f:11:2f:c5:26:9d:0d:92:51:8e: e5:ff:f5:34:4a:6b:19:3a:52:5d:23:d8:43:4a:99:c4:8f:5f: 73:39:c2:32:a3:8d:e0:07:41:45:a0:e0:cf:e7:66:3f:dd:b5: eb:99:18:85:13:b7:76:2d:97:6d:48:64:6a:e4:34:0b:69:47: d2:0b:ab:04:34:7d:36:92:ed:38:92:6e:6e:5a:d0:4c:1e:b2: 16:31:bb:e3:82:89:a6:e5:58:73:89:c0:97:9f:d6:81:a1:b6: 9a:ab:0e:13 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTSjzCvrUkfE54mQEwEDDQtc+1I0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzZaFw0yNzA0MjMwNzA1MzZaMDMxMTAvBgNV BAMTKDE0QjE0MkE3MTIyQTVDRTk1MUQwRDQwNjU0NTg0QkRGODg4MjkwNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX7etzK6fsfBslYgp9Av/T9Myx 88o21+9NRYCMD08inSMd8hvM3tm4vwNsoF/fXpxHEjYxPSr82oRLjWGFjdoC2uvT 5QfonGS3EJksB5+uOYzDDq4VCVlgNGmTQyR5fHb4LKhr9bi6MtVKeU+VbxjelO3g WscGeqJLoZuG34BY/xFSJwowtZSU3nlx8e1x+0JKpu6/rpyWaukkKDFoqsCxenFD IKdy7O0J3khqeBaI3UCBR3fZ0qpK/E4P8QRNIVcF2ULN+h/EwyPj61835uhvHMmM rGEX4EgYzqWwN4ZaKjrTV/ORR0F7/I/htBmD1kvzSGqy1OH9exayC86YDgRlAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUFLFCpxIqXOlR0NQGVFhL34iCkFowHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzNDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc+DANBgkqhkiG9w0BAQsFAAOCAQEAtuLYQ0jZ504VnM7LHwsV Cw8iZqYuQByXbcLQs2u6hzIZ0ynykc9h6nlq+2uK+KstkIqhzSF0gzv/87KglFBo sI80Eve4jhu3nhyhwBPCr1E8V4d63GF/y4Dn60daSrO7S66dh5A+BzU83fQzNAsC Dy4zcnjVKVrcDXEVaSDVa6KmOZlwKgn1/YLzfIff+yk58nOeVGj+oQ0PES/FJp0N klGO5f/1NEprGTpSXSPYQ0qZxI9fcznCMqON4AdBRaDgz+dmP92165kYhRO3di2X bUhkauQ0C2lH0gurBDR9NpLtOJJublrQTB6yFjG744KJpuVYc4nAl5/WgaG2mqsO Ew== -----END CERTIFICATE-----Generated at Wed May 13 14:24:21 2026 by rpki-client