$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3235302e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3235302e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: Q9U+GzGuUbFe5xqS5H7A1lIkxdYd0YxqKfRYB5Fricg= Subject key identifier: E1:DA:27:B4:66:03:53:05:0D:2F:42:19:68:87:42:D0:7B:DD:B9:66 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 5D008CD18EFD2F7B7A1CB5238B9F30A71E120079 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3235302e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:33 +0000 ROA not before: Fri 24 Apr 2026 06:58:33 +0000 ROA not after: Fri 23 Apr 2027 07:03:33 +0000 asID: 38019 IP address blocks: 139.220.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:00:8c:d1:8e:fd:2f:7b:7a:1c:b5:23:8b:9f:30:a7:1e:12:00:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:33 2026 GMT Not After : Apr 23 07:03:33 2027 GMT Subject: CN=E1DA27B4660353050D2F4219688742D07BDDB966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ef:2b:32:47:fc:df:ca:97:b3:51:53:8f:6b: 5e:de:b9:8d:af:b7:c0:f0:78:bc:cd:fd:df:a6:b6: e9:63:6a:ce:76:8b:ad:83:c8:db:e5:40:f4:f5:60: 20:0b:b2:8d:3f:57:29:94:20:1b:24:cc:a9:c3:f6: ec:29:58:00:58:c3:5c:1b:cf:95:f8:5c:22:43:e2: e5:af:13:ee:8a:cb:72:33:12:fb:17:ad:9c:5a:20: 22:11:51:ba:8d:68:4a:54:86:6f:4a:96:96:f3:71: 60:8d:c7:38:04:fc:65:40:a4:b9:00:23:6a:2d:2b: 50:1d:9f:66:4b:01:17:ab:a0:f7:21:0d:03:c1:6d: 70:a8:e0:45:48:c2:55:88:be:49:76:4e:a6:54:d0: c6:da:3e:3e:6d:00:01:5d:72:8b:a9:be:ab:46:c1: 71:d4:bc:69:d5:d0:27:46:42:f3:a8:c6:2c:01:51: a4:d9:a4:2c:3d:10:e6:e6:89:fb:c6:fc:09:06:52: ba:a8:2c:28:2e:d5:ce:a6:8c:f7:54:de:a9:7e:21: b0:97:b0:1b:dd:8a:6c:18:6b:2d:b8:98:db:fc:8c: b4:4a:2c:4f:c0:72:6a:ca:56:62:7e:fd:e3:3d:1b: 04:54:56:5e:07:ae:08:34:69:d1:9a:77:f8:18:02: 81:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DA:27:B4:66:03:53:05:0D:2F:42:19:68:87:42:D0:7B:DD:B9:66 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3235302e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.250.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:13:a1:43:59:74:6d:53:70:7f:2f:1b:51:bf:d6:8b:2a:a3: f0:4d:40:99:41:ef:41:61:8c:86:1c:ef:87:76:18:72:ea:e9: 9c:1f:68:02:5b:2b:30:9f:ff:3e:c0:20:2d:53:38:56:dd:3e: 6f:65:5a:65:8b:49:4d:be:09:c9:24:2a:14:c5:db:8c:d2:cd: b7:58:8a:5a:e8:01:89:2d:63:01:35:a8:b9:54:20:72:b8:33: 5b:86:f8:66:b6:c3:4c:3e:c5:36:d9:62:70:d6:09:ac:f3:3e: fb:69:e2:28:8e:62:bf:30:1b:6f:0c:ea:ab:cf:89:92:05:c0: e6:19:a8:af:58:db:69:88:76:cf:73:c5:3e:cf:8f:0c:d8:48: b1:50:c1:7f:bd:7c:5a:cf:61:02:3c:42:d0:80:ad:20:58:7b: 2e:bb:41:2c:0d:60:38:78:d7:27:68:34:bb:58:5c:6a:16:f4: 73:0c:77:87:aa:d0:87:49:82:f8:54:e8:31:bc:86:bd:4f:39: 61:f3:a3:fc:7d:c1:68:73:c7:ed:fa:b9:c9:d6:bb:bd:f4:32: 09:26:f0:aa:d1:e3:43:92:d4:6e:38:09:e3:12:65:61:10:37: 00:98:3d:ec:9b:e7:05:0b:b4:1c:4d:39:71:73:95:b5:47:2f: 63:a3:c6:c0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXQCM0Y79L3t6HLUji58wpx4SAHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzNaFw0yNzA0MjMwNzAzMzNaMDMxMTAvBgNV BAMTKEUxREEyN0I0NjYwMzUzMDUwRDJGNDIxOTY4ODc0MkQwN0JEREI5NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH7ysyR/zfypezUVOPa17euY2v t8DweLzN/d+mtuljas52i62DyNvlQPT1YCALso0/VymUIBskzKnD9uwpWABYw1wb z5X4XCJD4uWvE+6Ky3IzEvsXrZxaICIRUbqNaEpUhm9KlpbzcWCNxzgE/GVApLkA I2otK1Adn2ZLAReroPchDQPBbXCo4EVIwlWIvkl2TqZU0MbaPj5tAAFdcoupvqtG wXHUvGnV0CdGQvOoxiwBUaTZpCw9EObmifvG/AkGUrqoLCgu1c6mjPdU3ql+IbCX sBvdimwYay24mNv8jLRKLE/AcmrKVmJ+/eM9GwRUVl4Hrgg0adGad/gYAoHvAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU4dontGYDUwUNL0IZaIdC0HvduWYwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzNTMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc+jANBgkqhkiG9w0BAQsFAAOCAQEAOxOhQ1l0bVNwfy8bUb/W iyqj8E1AmUHvQWGMhhzvh3YYcurpnB9oAlsrMJ//PsAgLVM4Vt0+b2VaZYtJTb4J ySQqFMXbjNLNt1iKWugBiS1jATWouVQgcrgzW4b4ZrbDTD7FNtlicNYJrPM++2ni KI5ivzAbbwzqq8+JkgXA5hmor1jbaYh2z3PFPs+PDNhIsVDBf718Ws9hAjxC0ICt IFh7LrtBLA1gOHjXJ2g0u1hcahb0cwx3h6rQh0mC+FToMbyGvU85YfOj/H3BaHPH 7fq5yda7vfQyCSbwqtHjQ5LUbjgJ4xJlYRA3AJg97JvnBQu0HE05cXOVtUcvY6PG wA== -----END CERTIFICATE-----Generated at Wed May 13 13:57:55 2026 by rpki-client