$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130392e302f32342d3234203d3e203538343636.roa File: 3133392e3139382e3130392e302f32342d3234203d3e203538343636.roa (raw, json) Hash identifier: 1G3k2fNRgf6Kq64h7doikWX1a0nPQmg3zBa8D+kmYbQ= Subject key identifier: 2F:46:21:9D:A1:C8:3D:08:84:1F:D4:4D:D1:31:68:26:FA:13:CE:B1 Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 5A7689E4299FC83A8B80C48884237495D9EEB735 Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130392e302f32342d3234203d3e203538343636.roa Signing time: Wed 15 Apr 2026 07:47:04 +0000 ROA not before: Wed 15 Apr 2026 07:42:04 +0000 ROA not after: Wed 14 Apr 2027 07:47:04 +0000 asID: 58466 IP address blocks: 139.198.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:76:89:e4:29:9f:c8:3a:8b:80:c4:88:84:23:74:95:d9:ee:b7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:42:04 2026 GMT Not After : Apr 14 07:47:04 2027 GMT Subject: CN=2F46219DA1C83D08841FD44DD1316826FA13CEB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:80:b8:4e:c7:6a:c9:b6:07:04:a5:05:09:34: b8:f1:2b:a1:33:b4:b2:8f:02:41:bf:3f:dc:1f:67: fb:33:16:9f:2d:09:75:14:48:e0:9d:76:8f:ea:56: fa:fe:7d:6f:df:95:5f:97:48:0c:86:b8:0c:0c:22: 6b:b4:a8:9d:8a:14:48:ab:90:39:c7:e6:f5:3f:65: 7b:51:52:2c:b2:8e:00:8e:c3:b4:f5:6a:19:d5:b8: 1f:3b:18:db:dc:46:b0:eb:65:9c:d3:33:1e:24:25: 3c:16:b0:67:36:00:9f:10:48:1c:9e:04:e5:12:f1: ba:b2:8b:c8:22:ba:34:e2:cd:d0:0e:84:27:72:93: f5:32:a3:22:fb:47:8c:1d:87:8d:9e:1c:36:67:6a: c2:b4:b7:8b:ed:22:d6:f6:99:f6:1d:08:a8:d2:97: 01:75:21:05:c4:a3:fd:a1:73:54:2f:d6:bf:f5:a5: 56:90:eb:db:3c:73:33:9b:a4:c8:dd:c2:08:93:27: 37:d0:1b:e4:e7:7c:e6:45:be:78:3e:f9:3d:81:b2: 24:3b:3d:cc:a4:8e:df:02:f3:89:7b:06:61:4e:3d: 0c:3f:62:e0:71:ef:67:40:9b:e4:cb:30:d2:da:d4: f2:b2:8a:14:d3:28:b1:f5:be:c0:6b:ac:94:01:22: 73:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:46:21:9D:A1:C8:3D:08:84:1F:D4:4D:D1:31:68:26:FA:13:CE:B1 X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3130392e302f32342d3234203d3e203538343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.109.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:99:a2:f8:8a:8c:db:ff:a7:9d:4d:c3:ee:99:88:17:6d:eb: c7:62:c2:19:71:0d:aa:18:a4:b8:1a:51:1b:aa:85:57:54:b6: f4:35:9b:aa:d3:c1:69:b4:32:b7:9a:6e:33:ec:ca:4f:59:95: df:b9:a3:92:18:2e:4c:45:66:56:d3:b6:c7:24:58:6b:e3:55: 8a:00:60:4e:1e:4a:81:a6:df:23:d7:cc:60:9c:cd:a3:37:33: 5b:8d:2e:ea:71:ce:43:79:a0:e6:12:37:c3:10:8d:e8:a1:fa: 41:86:9a:a4:43:b7:c1:40:4d:11:a9:ea:86:be:ac:0c:0c:9c: bd:72:f7:be:7a:d5:ab:16:d8:f9:ba:72:59:ec:cf:15:60:0c: f2:d5:f4:e6:af:26:d3:d5:47:65:ad:77:75:98:d2:63:51:26: ac:f4:7d:d6:51:ce:1b:c9:96:49:5a:19:f2:0a:87:b3:d0:ca: 70:bd:b5:91:d5:21:9d:9c:ae:66:b3:31:01:65:6b:1c:1d:21: e2:83:41:ed:fb:65:b6:cd:3b:e1:63:c0:24:0d:a8:e0:a1:21: 33:18:4c:51:d4:bd:b4:4c:26:b1:5a:72:ee:8e:db:66:b0:11: 94:6f:d1:a5:08:d1:45:e0:4d:cc:4d:15:c2:24:3d:1a:de:73: 8a:26:ee:98 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUWnaJ5CmfyDqLgMSIhCN0ldnutzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzQyMDRaFw0yNzA0MTQwNzQ3MDRaMDMxMTAvBgNV BAMTKDJGNDYyMTlEQTFDODNEMDg4NDFGRDQ0REQxMzE2ODI2RkExM0NFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSgLhOx2rJtgcEpQUJNLjxK6Ez tLKPAkG/P9wfZ/szFp8tCXUUSOCddo/qVvr+fW/flV+XSAyGuAwMImu0qJ2KFEir kDnH5vU/ZXtRUiyyjgCOw7T1ahnVuB87GNvcRrDrZZzTMx4kJTwWsGc2AJ8QSBye BOUS8bqyi8giujTizdAOhCdyk/UyoyL7R4wdh42eHDZnasK0t4vtItb2mfYdCKjS lwF1IQXEo/2hc1Qv1r/1pVaQ69s8czObpMjdwgiTJzfQG+TnfOZFvng++T2BsiQ7 Pcykjt8C84l7BmFOPQw/YuBx72dAm+TLMNLa1PKyihTTKLH1vsBrrJQBInNHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUL0YhnaHIPQiEH9RN0TFoJvoTzrEwHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzMDM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIvGbTANBgkqhkiG9w0BAQsFAAOCAQEAKpmi+IqM2/+nnU3D7pmI F23rx2LCGXENqhikuBpRG6qFV1S29DWbqtPBabQyt5puM+zKT1mV37mjkhguTEVm VtO2xyRYa+NVigBgTh5KgabfI9fMYJzNozczW40u6nHOQ3mg5hI3wxCN6KH6QYaa pEO3wUBNEanqhr6sDAycvXL3vnrVqxbY+bpyWezPFWAM8tX05q8m09VHZa13dZjS Y1EmrPR91lHOG8mWSVoZ8gqHs9DKcL21kdUhnZyuZrMxAWVrHB0h4oNB7ftlts07 4WPAJA2o4KEhMxhMUdS9tEwmsVpy7o7bZrARlG/RpQjRReBNzE0VwiQ9Gt5ziibu mA== -----END CERTIFICATE-----Generated at Fri Apr 17 21:21:34 2026 by rpki-client