$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3131342e302f32342d3234203d3e203538343636.roa File: 3133392e3139382e3131342e302f32342d3234203d3e203538343636.roa (raw, json) Hash identifier: /z2MOp0VKDCEPLsM3QSn2Fr0czwhSRz63LYNvJYJ8Ww= Subject key identifier: C2:D9:A7:E5:47:6F:C0:9F:BE:2C:08:29:99:6F:8E:FA:5D:74:FA:CB Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 22F51ADFC42CFDDEA67FF77E478AE6F76CEEA9BC Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3131342e302f32342d3234203d3e203538343636.roa Signing time: Wed 15 Apr 2026 07:47:04 +0000 ROA not before: Wed 15 Apr 2026 07:42:04 +0000 ROA not after: Wed 14 Apr 2027 07:47:04 +0000 asID: 58466 IP address blocks: 139.198.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f5:1a:df:c4:2c:fd:de:a6:7f:f7:7e:47:8a:e6:f7:6c:ee:a9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:42:04 2026 GMT Not After : Apr 14 07:47:04 2027 GMT Subject: CN=C2D9A7E5476FC09FBE2C0829996F8EFA5D74FACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:7f:38:f7:95:39:fe:13:d1:5d:3e:2b:a9: a1:55:43:43:e1:3f:17:29:d5:de:8b:eb:a1:f3:12: 7a:14:e8:89:06:3e:df:48:4e:0d:70:c8:93:b1:a1: cc:58:69:30:5a:d9:d5:7b:44:55:46:52:c7:f5:4b: 6d:79:f8:f5:17:2c:2e:0c:f4:e1:3b:27:fc:09:b2: 0b:a0:17:ae:81:62:f7:6d:12:33:22:a2:f0:af:51: 79:32:ae:df:a9:bb:f8:7e:6c:19:3f:9a:55:59:be: 2c:23:63:2c:17:8c:8a:03:4f:7c:5a:35:0e:74:32: 6f:44:c0:4a:01:10:7e:5d:ba:13:81:43:3d:66:41: ad:14:f2:1b:fd:2d:32:d9:2b:79:2c:c2:c3:07:42: 15:49:0f:cc:b1:e2:ee:35:2f:77:49:22:39:d3:0f: 39:db:a3:ff:2d:06:e9:4b:b4:f9:6d:08:25:36:19: 13:23:58:f1:62:08:06:7a:84:8c:7f:43:7f:82:a6: ef:68:fc:8b:26:e7:18:15:5d:34:ba:41:9a:cc:1f: 4f:fd:fe:a5:a9:15:73:32:46:f8:23:63:5d:39:0a: ca:d4:6d:ef:88:32:f0:a0:73:00:5d:bf:27:93:7c: b5:11:35:8b:84:4d:93:d7:61:33:88:56:47:18:bc: 12:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D9:A7:E5:47:6F:C0:9F:BE:2C:08:29:99:6F:8E:FA:5D:74:FA:CB X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3131342e302f32342d3234203d3e203538343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.114.0/24 Signature Algorithm: sha256WithRSAEncryption 97:d3:77:c7:4f:b1:f3:bf:a3:b9:dc:83:98:9c:41:b9:89:26: 2f:14:26:32:cf:7c:5f:87:c2:69:a4:b9:8e:8e:f6:bb:84:c6: 85:0d:f2:10:f8:1d:6b:a4:3f:a4:52:a2:f4:8d:d8:9a:ae:ec: 14:67:51:7a:b4:80:80:58:a1:1b:0c:9a:78:57:0c:ac:e9:03: 20:ac:48:28:cd:8a:16:ee:a1:f8:70:6b:17:59:b0:eb:02:03: 89:2e:6f:b0:04:4d:57:a3:9f:22:ed:47:08:dd:46:ad:df:ac: 52:c4:b0:7c:04:b8:04:ba:d3:a1:93:5f:d3:43:5c:e4:23:79: ae:6f:46:46:d5:2c:b1:53:db:7d:55:f4:f8:fb:b5:1c:cd:fe: 72:41:ba:2b:06:e8:03:52:1e:41:ba:22:1c:a2:a5:c9:c1:fa: a2:f6:ff:8a:d7:50:51:b3:73:9c:1d:f9:ad:57:49:6c:f6:7b: 60:ae:ce:55:56:08:09:6d:ab:27:5f:0f:1c:48:ae:a5:cf:fb: 0a:48:df:d3:68:6f:46:37:bb:cc:2f:91:8b:87:c4:80:79:87: a0:da:56:cc:05:b8:e5:3a:57:99:74:99:3c:ed:a5:d8:80:e8: 00:4c:86:02:27:14:05:73:d1:9b:7a:7b:24:49:a8:91:30:78: dd:67:b6:6c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUIvUa38Qs/d6mf/d+R4rm92zuqbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzQyMDRaFw0yNzA0MTQwNzQ3MDRaMDMxMTAvBgNV BAMTKEMyRDlBN0U1NDc2RkMwOUZCRTJDMDgyOTk5NkY4RUZBNUQ3NEZBQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKgX8495U5/hPRXT4rqaFVQ0Ph Pxcp1d6L66HzEnoU6IkGPt9ITg1wyJOxocxYaTBa2dV7RFVGUsf1S215+PUXLC4M 9OE7J/wJsgugF66BYvdtEjMiovCvUXkyrt+pu/h+bBk/mlVZviwjYywXjIoDT3xa NQ50Mm9EwEoBEH5duhOBQz1mQa0U8hv9LTLZK3kswsMHQhVJD8yx4u41L3dJIjnT Dznbo/8tBulLtPltCCU2GRMjWPFiCAZ6hIx/Q3+Cpu9o/Ism5xgVXTS6QZrMH0/9 /qWpFXMyRvgjY105CsrUbe+IMvCgcwBdvyeTfLURNYuETZPXYTOIVkcYvBLtAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUwtmn5UdvwJ++LAgpmW+O+l10+sswHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzMTM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIvGcjANBgkqhkiG9w0BAQsFAAOCAQEAl9N3x0+x87+judyDmJxB uYkmLxQmMs98X4fCaaS5jo72u4TGhQ3yEPgda6Q/pFKi9I3Ymq7sFGdRerSAgFih GwyaeFcMrOkDIKxIKM2KFu6h+HBrF1mw6wIDiS5vsARNV6OfIu1HCN1Grd+sUsSw fAS4BLrToZNf00Nc5CN5rm9GRtUssVPbfVX0+Pu1HM3+ckG6KwboA1IeQboiHKKl ycH6ovb/itdQUbNznB35rVdJbPZ7YK7OVVYICW2rJ18PHEiupc/7Ckjf02hvRje7 zC+Ri4fEgHmHoNpWzAW45TpXmXSZPO2l2IDoAEyGAicUBXPRm3p7JEmokTB43We2 bA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:17:28 2026 by rpki-client