$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130342e302f32322d3232203d3e203538343636.roa File: 3133392e3139382e3130342e302f32322d3232203d3e203538343636.roa (raw, json) Hash identifier: evCdQMrrhjDnIVsNRDI7jtKtWuItBCWO1uz0iB7defQ= Subject key identifier: 52:54:A4:00:52:A5:89:07:0D:0B:57:4B:FC:7A:5A:C5:C0:0C:2D:84 Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 1D23000C66DD862EBF6BF8112B5BD1EF265D408F Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130342e302f32322d3232203d3e203538343636.roa Signing time: Wed 15 Apr 2026 07:47:04 +0000 ROA not before: Wed 15 Apr 2026 07:42:04 +0000 ROA not after: Wed 14 Apr 2027 07:47:04 +0000 asID: 58466 IP address blocks: 139.198.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:23:00:0c:66:dd:86:2e:bf:6b:f8:11:2b:5b:d1:ef:26:5d:40:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:42:04 2026 GMT Not After : Apr 14 07:47:04 2027 GMT Subject: CN=5254A40052A589070D0B574BFC7A5AC5C00C2D84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:09:28:4e:b3:a7:1d:2e:81:2b:ed:e5:7b:9d: cf:55:12:94:37:fe:ca:04:2a:ed:41:29:19:43:ae: e0:0b:12:cc:40:86:2a:c2:e0:dd:d6:2b:fb:d8:19: 2d:32:51:6d:a0:f3:ac:cb:7e:bc:14:50:a2:05:ec: 3b:33:b5:af:47:1c:61:d8:66:99:fa:fe:44:90:71: 7d:bd:35:36:51:2e:8c:4a:5b:b6:d6:d5:c0:92:21: 98:f1:a5:2f:bf:cb:c6:1b:db:9c:b9:3b:81:bc:a6: d8:48:6a:e9:11:42:94:00:d0:65:ad:38:f8:b7:ef: ce:d5:68:e7:03:22:e6:35:4c:4c:8e:8c:66:67:21: 0a:d0:34:c3:51:ba:c9:25:b8:07:dd:06:b3:bb:c7: 23:4e:ac:a6:51:a6:8f:dc:0e:c8:81:45:9d:6e:1d: 47:d4:7d:b0:11:f3:24:bf:e2:6a:47:df:17:fb:9c: 3b:4e:78:66:a8:a5:53:4b:83:46:14:21:bb:97:8c: b1:ad:79:02:3f:21:18:3a:24:e6:7f:98:72:b8:34: a6:a0:fe:46:59:12:42:aa:ba:ae:2d:fc:c0:92:37: c5:17:4d:13:79:79:6c:82:8d:0e:01:b6:e3:94:62: c6:22:b3:c3:cd:74:a8:29:63:c1:d7:80:82:2b:c0: de:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:54:A4:00:52:A5:89:07:0D:0B:57:4B:FC:7A:5A:C5:C0:0C:2D:84 X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130342e302f32322d3232203d3e203538343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.104.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:35:57:4b:1f:c3:26:56:ef:11:8f:4f:d3:d9:ef:90:40:81: d1:a8:8f:4a:f5:bc:5b:7d:7c:06:fe:48:10:d1:e3:83:48:2d: 80:4b:1d:8c:89:6e:a2:42:b5:83:b3:14:86:61:d0:62:ee:48: c8:d6:3a:df:94:89:be:ba:89:5a:28:33:c5:ba:63:b4:1b:b0: f0:a8:4d:4e:51:88:f8:31:e7:c1:9a:e0:d0:47:2e:47:71:a6: e0:64:8d:12:6b:b5:7e:bf:36:4e:36:fb:34:56:61:39:57:15: fb:49:d1:cf:78:5c:99:59:25:51:c2:d3:ba:84:c1:75:c6:1b: 40:b3:85:ca:29:3c:cb:50:be:6a:c2:99:a4:0a:13:0c:41:fe: fd:8c:42:bc:6d:3d:41:b3:49:0d:e4:13:b7:2b:8b:21:64:4a: 6b:a8:2f:6e:ab:aa:0a:b9:28:95:6e:e9:d5:13:72:85:f9:dd: 32:cd:2b:4b:b8:49:76:52:c0:4b:e6:06:46:53:6c:68:76:8c: 2c:be:bf:27:47:ef:da:b3:01:e5:b9:1a:ae:ec:d0:5e:f9:03: 85:ef:c5:a3:4c:20:c5:6a:05:c5:74:b4:3f:21:4d:c2:fa:b3: 45:ae:3c:29:01:30:aa:a7:1e:5a:6b:98:ea:ef:75:cb:28:46: e2:14:b8:8f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUHSMADGbdhi6/a/gRK1vR7yZdQI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzQyMDRaFw0yNzA0MTQwNzQ3MDRaMDMxMTAvBgNV BAMTKDUyNTRBNDAwNTJBNTg5MDcwRDBCNTc0QkZDN0E1QUM1QzAwQzJEODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOCShOs6cdLoEr7eV7nc9VEpQ3 /soEKu1BKRlDruALEsxAhirC4N3WK/vYGS0yUW2g86zLfrwUUKIF7Dszta9HHGHY Zpn6/kSQcX29NTZRLoxKW7bW1cCSIZjxpS+/y8Yb25y5O4G8pthIaukRQpQA0GWt OPi3787VaOcDIuY1TEyOjGZnIQrQNMNRuskluAfdBrO7xyNOrKZRpo/cDsiBRZ1u HUfUfbAR8yS/4mpH3xf7nDtOeGaopVNLg0YUIbuXjLGteQI/IRg6JOZ/mHK4NKag /kZZEkKquq4t/MCSN8UXTRN5eWyCjQ4BtuOUYsYis8PNdKgpY8HXgIIrwN6lAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUUlSkAFKliQcNC1dL/HpaxcAMLYQwHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzMDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM0MzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAovGaDANBgkqhkiG9w0BAQsFAAOCAQEASzVXSx/DJlbvEY9P09nv kECB0aiPSvW8W318Bv5IENHjg0gtgEsdjIluokK1g7MUhmHQYu5IyNY635SJvrqJ WigzxbpjtBuw8KhNTlGI+DHnwZrg0EcuR3Gm4GSNEmu1fr82Tjb7NFZhOVcV+0nR z3hcmVklUcLTuoTBdcYbQLOFyik8y1C+asKZpAoTDEH+/YxCvG09QbNJDeQTtyuL IWRKa6gvbquqCrkolW7p1RNyhfndMs0rS7hJdlLAS+YGRlNsaHaMLL6/J0fv2rMB 5bkaruzQXvkDhe/Fo0wgxWoFxXS0PyFNwvqzRa48KQEwqqceWmuY6u91yyhG4hS4 jw== -----END CERTIFICATE-----Generated at Sat Apr 18 07:29:46 2026 by rpki-client