$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130382e302f32322d3232203d3e203539303738.roa File: 3133392e3139382e3130382e302f32322d3232203d3e203539303738.roa (raw, json) Hash identifier: yRB1HGUj/8CUYeYg62gzZ8ysMWvCkzYduOOrAQab23k= Subject key identifier: BC:FC:66:A9:8C:2F:45:32:73:93:1B:AF:6E:7E:DA:39:6F:F2:71:80 Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 07C1D70C1220F06F846E1771AF251FFDC98FD26A Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130382e302f32322d3232203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:27:30 +0000 ROA not before: Wed 15 Apr 2026 07:22:30 +0000 ROA not after: Wed 14 Apr 2027 07:27:30 +0000 asID: 59078 IP address blocks: 139.198.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c1:d7:0c:12:20:f0:6f:84:6e:17:71:af:25:1f:fd:c9:8f:d2:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:22:30 2026 GMT Not After : Apr 14 07:27:30 2027 GMT Subject: CN=BCFC66A98C2F453273931BAF6E7EDA396FF27180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:28:7e:60:e7:46:c7:e5:63:c6:7d:fc:9c: 87:9b:6c:2c:42:28:bd:02:8e:91:ca:e5:9d:93:dd: 9c:31:5c:e7:82:3c:80:b3:e2:9c:15:32:87:03:93: 4a:52:9b:86:48:f9:58:4d:45:b1:a0:98:63:a6:1b: 0e:80:be:e2:f0:77:6a:cc:f9:f1:a6:65:4d:15:1a: 25:ef:48:27:79:c3:02:e8:2d:ef:a7:50:7e:cb:7d: fa:13:ee:51:59:63:1a:50:50:db:de:95:e0:43:8e: c1:33:6d:33:0f:69:d8:a0:f7:65:35:da:cc:2d:a1: 09:c5:b8:19:48:09:82:82:72:2e:b2:01:32:20:f5: 49:8a:2a:ca:38:17:10:3f:23:5f:98:be:8c:3c:6a: 28:fd:06:ad:9e:86:c6:86:9b:54:47:b4:1f:91:f1: d3:54:f8:78:d7:ef:8c:89:d7:cd:96:88:69:dc:d9: 5d:a3:6c:0b:b0:7a:b4:9b:18:29:23:e1:b2:1c:8a: fc:50:b3:1a:54:46:bf:1b:87:a6:1d:80:b8:8f:43: 5c:8b:3b:84:fc:b0:df:d8:ee:d6:db:e8:5b:be:ae: 0a:fd:93:cc:af:6c:8d:17:8b:fa:1d:1d:36:24:c0: c0:b5:7e:11:a6:1c:5c:59:35:ae:f1:69:95:2d:55: c4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FC:66:A9:8C:2F:45:32:73:93:1B:AF:6E:7E:DA:39:6F:F2:71:80 X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130382e302f32322d3232203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.108.0/22 Signature Algorithm: sha256WithRSAEncryption a4:d2:54:5a:d4:74:97:db:b7:c0:df:d8:ba:78:f1:b8:6d:24: 7e:07:90:61:45:93:22:c3:be:a0:be:b2:3f:61:9d:98:8c:29: b3:fd:9c:bc:5d:1a:05:ee:5f:a6:0b:f9:be:e5:b2:bd:e0:b1: db:ca:b7:b3:de:37:6d:a0:fe:1d:8d:57:43:e0:ee:3e:1f:c4: 48:62:74:b3:45:28:50:f2:ab:00:df:60:8a:0d:3a:dd:e3:c0: 4b:d2:30:81:1f:ee:4d:7c:1f:76:05:c3:f1:e6:01:07:6f:31: 9f:be:38:32:0f:83:11:60:6b:e2:d4:dc:d1:6a:53:26:83:22: ee:94:b8:94:c3:4c:bd:a6:a5:ac:f5:01:cd:91:56:14:45:2f: b3:64:38:1e:f8:31:a9:10:da:90:e8:70:12:4d:2e:dd:86:4e: 7f:62:16:29:9f:f2:de:93:e4:ea:1e:eb:bd:22:16:0c:55:81: f5:af:24:72:89:33:cf:b2:5c:7d:ed:43:c0:81:29:3d:d3:fc: 3a:65:b7:9a:fd:88:a3:52:43:f7:cc:43:66:a1:0e:83:b3:ff: de:ed:a5:fb:f9:99:5c:08:0a:b0:bd:4d:0d:ec:e2:ad:b1:6e: 04:a5:d7:cc:27:71:d7:06:4b:ae:0a:0c:71:e0:28:11:b1:49: 2b:28:64:f1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUB8HXDBIg8G+EbhdxryUf/cmP0mowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzIyMzBaFw0yNzA0MTQwNzI3MzBaMDMxMTAvBgNV BAMTKEJDRkM2NkE5OEMyRjQ1MzI3MzkzMUJBRjZFN0VEQTM5NkZGMjcxODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC98Sh+YOdGx+Vjxn38nIebbCxC KL0CjpHK5Z2T3ZwxXOeCPICz4pwVMocDk0pSm4ZI+VhNRbGgmGOmGw6AvuLwd2rM +fGmZU0VGiXvSCd5wwLoLe+nUH7LffoT7lFZYxpQUNveleBDjsEzbTMPadig92U1 2swtoQnFuBlICYKCci6yATIg9UmKKso4FxA/I1+Yvow8aij9Bq2ehsaGm1RHtB+R 8dNU+HjX74yJ182WiGnc2V2jbAuwerSbGCkj4bIcivxQsxpURr8bh6YdgLiPQ1yL O4T8sN/Y7tbb6Fu+rgr9k8yvbI0Xi/odHTYkwMC1fhGmHFxZNa7xaZUtVcSVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUvPxmqYwvRTJzkxuvbn7aOW/ycYAwHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzMDM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzOTMwMzczOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAovGbDANBgkqhkiG9w0BAQsFAAOCAQEApNJUWtR0l9u3wN/Yunjx uG0kfgeQYUWTIsO+oL6yP2GdmIwps/2cvF0aBe5fpgv5vuWyveCx28q3s943baD+ HY1XQ+DuPh/ESGJ0s0UoUPKrAN9gig063ePAS9IwgR/uTXwfdgXD8eYBB28xn744 Mg+DEWBr4tTc0WpTJoMi7pS4lMNMvaalrPUBzZFWFEUvs2Q4HvgxqRDakOhwEk0u 3YZOf2IWKZ/y3pPk6h7rvSIWDFWB9a8kcokzz7Jcfe1DwIEpPdP8OmW3mv2Io1JD 98xDZqEOg7P/3u2l+/mZXAgKsL1NDezirbFuBKXXzCdx1wZLrgoMceAoEbFJKyhk 8Q== -----END CERTIFICATE-----Generated at Fri Apr 17 23:28:16 2026 by rpki-client