$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3235322e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3235322e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: slL2KNdR9/YoGPff04ThP1Ak/nqq5ufrJKUtrw83ygE= Subject key identifier: 03:24:45:7B:39:98:B0:E7:68:7B:33:E9:4F:F5:7A:38:3B:C0:CC:3D Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 75EBE6D4590D4B211AF18144E8829FC6AC651D29 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3235322e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:05:37 +0000 ROA not before: Fri 24 Apr 2026 07:00:37 +0000 ROA not after: Fri 23 Apr 2027 07:05:37 +0000 asID: 38019 IP address blocks: 139.220.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:eb:e6:d4:59:0d:4b:21:1a:f1:81:44:e8:82:9f:c6:ac:65:1d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 07:00:37 2026 GMT Not After : Apr 23 07:05:37 2027 GMT Subject: CN=0324457B3998B0E7687B33E94FF57A383BC0CC3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1a:24:0e:24:3b:8c:b2:60:da:a3:17:5d:24: ae:c2:da:f3:a9:a1:0b:ef:33:db:95:c2:74:16:dd: dd:8d:a1:03:64:a3:f0:80:c2:48:a6:63:68:df:96: 3b:e7:b0:61:a8:cc:dc:8a:d9:8e:7c:ac:df:6f:17: 7f:93:31:b3:3b:22:72:31:3f:a3:fc:ba:09:2b:df: 7a:54:bd:f4:71:5a:6e:dc:50:d0:b3:f0:05:2d:f6: 45:e8:34:9d:86:39:9f:c5:e1:42:a8:90:74:3d:1f: 51:fe:02:68:fd:51:45:0e:c2:49:fc:e6:f8:23:d2: b8:58:0e:68:64:9a:26:28:af:9e:16:61:29:6e:37: 7b:f0:d7:b3:c3:01:6e:43:f9:31:62:5b:bb:94:8b: 04:bc:96:58:56:c0:57:96:e5:fe:43:b5:1f:cf:6b: 27:e7:99:f5:6e:29:ee:27:21:15:93:c0:62:f6:b9: ce:e9:9a:c5:7a:4a:f5:5f:ec:7c:20:72:12:9e:da: 15:c4:8a:f5:87:bd:9b:b9:db:12:81:03:71:9a:d8: 58:ba:52:db:0f:06:40:ac:9d:8f:a5:04:de:c6:e4: f2:23:92:11:41:54:81:07:ca:f8:c4:33:7d:ce:59: 8b:a8:43:f1:48:c4:b4:13:a1:24:b2:db:20:15:b1: 98:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:24:45:7B:39:98:B0:E7:68:7B:33:E9:4F:F5:7A:38:3B:C0:CC:3D X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3235322e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.252.0/23 Signature Algorithm: sha256WithRSAEncryption a6:58:45:2c:8c:92:6a:ca:0b:99:0f:1b:0b:2e:6b:4f:1f:65: 67:60:fc:91:d1:0d:cd:df:9e:29:d2:75:a4:af:d5:cc:03:51: 0d:b6:e3:cb:79:51:62:51:47:5d:53:36:e9:05:b9:db:68:7b: 7f:59:48:1a:ba:62:80:86:cb:ac:3a:88:81:f3:19:d9:25:dd: 91:0d:b3:1d:d7:97:80:c6:64:e9:d4:81:24:65:c7:d7:6a:c9: c0:77:c2:fd:d2:fc:76:c0:36:03:4e:ce:78:d6:0f:d9:a5:88: 57:d8:80:01:e3:76:e8:0d:40:b3:dc:0a:1d:71:bb:37:59:7f: 38:ac:11:5a:b5:f9:5f:be:d2:14:09:ce:7f:13:64:a5:60:30: 1e:11:f5:f2:39:63:2d:47:2e:1d:66:0b:3c:15:9e:eb:6d:cc: 3f:e5:f6:90:8d:af:c6:c6:b1:44:ea:85:1e:14:3a:6c:ac:0b: 9e:ca:6e:96:bd:64:1e:5d:d2:38:3b:80:f7:2d:52:1f:28:93: 7e:18:14:6e:a9:aa:0b:ad:86:8c:32:8d:e8:48:62:db:8f:e5: 13:7e:d4:2e:92:dc:2f:04:b5:4d:7d:3d:3a:97:0c:9c:06:48: 91:2c:9d:1d:41:ef:58:a6:b6:13:ed:d5:b1:10:3b:e5:67:5c: 38:02:c1:27 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUdevm1FkNSyEa8YFE6IKfxqxlHSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNzAwMzdaFw0yNzA0MjMwNzA1MzdaMDMxMTAvBgNV BAMTKDAzMjQ0NTdCMzk5OEIwRTc2ODdCMzNFOTRGRjU3QTM4M0JDMENDM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4GiQOJDuMsmDaoxddJK7C2vOp oQvvM9uVwnQW3d2NoQNko/CAwkimY2jfljvnsGGozNyK2Y58rN9vF3+TMbM7InIx P6P8ugkr33pUvfRxWm7cUNCz8AUt9kXoNJ2GOZ/F4UKokHQ9H1H+Amj9UUUOwkn8 5vgj0rhYDmhkmiYor54WYSluN3vw17PDAW5D+TFiW7uUiwS8llhWwFeW5f5DtR/P ayfnmfVuKe4nIRWTwGL2uc7pmsV6SvVf7HwgchKe2hXEivWHvZu52xKBA3Ga2Fi6 UtsPBkCsnY+lBN7G5PIjkhFBVIEHyvjEM33OWYuoQ/FIxLQToSSy2yAVsZhjAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUAyRFezmYsOdoezPpT/V6ODvAzD0wHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzNTMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc/DANBgkqhkiG9w0BAQsFAAOCAQEAplhFLIySasoLmQ8bCy5r Tx9lZ2D8kdENzd+eKdJ1pK/VzANRDbbjy3lRYlFHXVM26QW522h7f1lIGrpigIbL rDqIgfMZ2SXdkQ2zHdeXgMZk6dSBJGXH12rJwHfC/dL8dsA2A07OeNYP2aWIV9iA AeN26A1As9wKHXG7N1l/OKwRWrX5X77SFAnOfxNkpWAwHhH18jljLUcuHWYLPBWe 623MP+X2kI2vxsaxROqFHhQ6bKwLnspulr1kHl3SODuA9y1SHyiTfhgUbqmqC62G jDKN6Ehi24/lE37ULpLcLwS1TX09OpcMnAZIkSydHUHvWKa2E+3VsRA75WdcOALB Jw== -----END CERTIFICATE-----Generated at Wed May 13 14:57:29 2026 by rpki-client