$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3139342e302f32332d3233203d3e2034383038.roa File: 3133392e3232302e3139342e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: wGNZSyOi/RQjXWhPD91mILtww6oVTvFVlQRy3q8MYEA= Subject key identifier: 3E:29:78:7A:A9:BC:AD:75:55:F6:66:FE:CA:EA:68:23:11:2D:93:15 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 023736739C2869780E3A6807B23E12BDE3E13320 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3139342e302f32332d3233203d3e2034383038.roa Signing time: Fri 24 Apr 2026 05:45:54 +0000 ROA not before: Fri 24 Apr 2026 05:40:54 +0000 ROA not after: Fri 23 Apr 2027 05:45:54 +0000 asID: 4808 IP address blocks: 139.220.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 20:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:37:36:73:9c:28:69:78:0e:3a:68:07:b2:3e:12:bd:e3:e1:33:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 05:40:54 2026 GMT Not After : Apr 23 05:45:54 2027 GMT Subject: CN=3E29787AA9BCAD7555F666FECAEA6823112D9315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:68:11:16:b7:46:eb:40:fc:70:a2:a3:12: 1d:3f:7b:30:de:e5:f9:3c:fe:68:64:7f:7c:ac:88: 58:77:07:8f:f2:ec:b9:85:2a:22:21:4e:28:26:cb: d1:6b:5a:7b:27:86:88:18:23:2a:cf:92:49:9d:8a: 92:85:0b:21:d0:3c:6d:7b:df:8a:61:2c:ab:dc:26: f3:8c:3a:c9:34:36:d3:d8:a5:27:6f:8d:34:06:e4: de:9b:96:09:4a:f7:ab:27:5a:28:0f:30:c2:26:b9: a5:9a:cb:c5:64:5d:88:dc:90:60:54:1c:a0:df:d0: 4e:bf:a3:5b:3f:45:19:ea:d9:9b:62:18:f2:41:d4: 21:32:13:a3:e5:de:b9:4c:45:0d:28:93:f7:16:2e: 5d:0b:54:73:37:3c:7c:4a:cc:2d:db:61:23:5a:c4: 94:77:17:75:86:80:d8:96:ff:14:3a:01:c9:1d:f8: 1a:f6:fe:1b:38:04:53:0e:c4:73:08:34:a4:af:02: c0:56:64:fa:88:03:8b:a0:fc:a3:de:23:7f:13:90: 8d:c2:48:ff:75:d5:00:47:d0:0b:2e:1e:99:df:1e: 5c:a2:b3:a6:bb:06:dd:b4:db:c4:60:2a:1b:af:4c: 30:8e:b1:30:a3:98:35:c7:d5:22:b1:5e:83:e5:32: d6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:29:78:7A:A9:BC:AD:75:55:F6:66:FE:CA:EA:68:23:11:2D:93:15 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3139342e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.194.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:38:e6:85:d5:53:48:e8:82:5f:6c:17:c5:37:69:94:f7:3e: 11:4b:21:cd:a8:81:03:05:a4:72:d7:70:b1:48:81:1c:ff:9c: 2b:93:35:d6:d8:31:26:76:97:a5:27:da:06:e4:50:86:25:31: 3b:38:01:23:c6:12:87:c6:1d:a7:62:09:ea:ee:99:44:88:31: 04:c8:5c:5c:82:13:35:11:54:74:43:bc:83:29:c6:63:04:dc: fb:ca:c0:50:74:87:7e:a3:c1:b3:6e:e6:d9:cb:89:67:9f:a3: 77:37:b1:a9:a8:53:d8:0c:c9:33:95:5c:ad:89:92:c8:c3:3a: 98:32:ce:28:a2:34:fc:31:2c:3d:e6:65:da:24:a8:08:f7:1e: 05:6d:44:87:72:5d:77:41:c8:9d:80:6a:e7:4c:d2:f2:33:3d: 26:1b:6f:cf:45:12:d8:ee:fc:d6:f5:7f:78:b8:26:e6:e4:6c: 2b:bc:b0:1a:7d:53:02:fe:b7:57:e0:19:ee:ee:5c:fc:30:25: 03:23:1f:b4:3f:b5:1b:77:ba:96:74:a5:21:f1:50:bc:0e:ea: 71:49:ae:3f:40:c6:41:4a:a7:9e:8a:5a:5a:90:d8:70:89:fb: 23:3f:8b:ea:25:44:51:0e:a6:e1:b5:3c:56:f1:e3:56:7a:6b: e5:52:5c:8c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUAjc2c5woaXgOOmgHsj4SvePhMyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNTQwNTRaFw0yNzA0MjMwNTQ1NTRaMDMxMTAvBgNV BAMTKDNFMjk3ODdBQTlCQ0FENzU1NUY2NjZGRUNBRUE2ODIzMTEyRDkzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGSWgRFrdG60D8cKKjEh0/ezDe 5fk8/mhkf3ysiFh3B4/y7LmFKiIhTigmy9FrWnsnhogYIyrPkkmdipKFCyHQPG17 34phLKvcJvOMOsk0NtPYpSdvjTQG5N6blglK96snWigPMMImuaWay8VkXYjckGBU HKDf0E6/o1s/RRnq2ZtiGPJB1CEyE6Pl3rlMRQ0ok/cWLl0LVHM3PHxKzC3bYSNa xJR3F3WGgNiW/xQ6Ackd+Br2/hs4BFMOxHMINKSvAsBWZPqIA4ug/KPeI38TkI3C SP911QBH0AsuHpnfHlyis6a7Bt2028RgKhuvTDCOsTCjmDXH1SKxXoPlMtahAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUPil4eqm8rXVV9mb+yupoIxEtkxUwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0ODI3MTYxOS8xLzMxMzMzOTJlMzIz MjMwMmUzMTM5MzQyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAYvcwjANBgkqhkiG9w0BAQsFAAOCAQEAjjjmhdVTSOiCX2wXxTdplPc+ EUshzaiBAwWkctdwsUiBHP+cK5M11tgxJnaXpSfaBuRQhiUxOzgBI8YSh8Ydp2IJ 6u6ZRIgxBMhcXIITNRFUdEO8gynGYwTc+8rAUHSHfqPBs27m2cuJZ5+jdzexqahT 2AzJM5VcrYmSyMM6mDLOKKI0/DEsPeZl2iSoCPceBW1Eh3Jdd0HInYBq50zS8jM9 Jhtvz0US2O781vV/eLgm5uRsK7ywGn1TAv63V+AZ7u5c/DAlAyMftD+1G3e6lnSl IfFQvA7qcUmuP0DGQUqnnopaWpDYcIn7Iz+L6iVEUQ6m4bU8VvHjVnpr5VJcjA== -----END CERTIFICATE-----Generated at Mon Apr 27 14:19:11 2026 by rpki-client