$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132302e302f32342d3234203d3e20313334333636.roa File: 3133392e3139382e3132302e302f32342d3234203d3e20313334333636.roa (raw, json) Hash identifier: 3BmftA9ytggl0qhhmlBsPnPJ136y1X3N9+/6ekE1ZZU= Subject key identifier: 95:F5:66:05:C6:C1:A8:D0:D2:11:F4:6C:7B:4F:33:D3:39:AD:EE:5B Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 3B9A9535AD097633379FCF46872233C7CA2A015C Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132302e302f32342d3234203d3e20313334333636.roa Signing time: Wed 15 Apr 2026 06:58:05 +0000 ROA not before: Wed 15 Apr 2026 06:53:05 +0000 ROA not after: Wed 14 Apr 2027 06:58:05 +0000 asID: 134366 IP address blocks: 139.198.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:9a:95:35:ad:09:76:33:37:9f:cf:46:87:22:33:c7:ca:2a:01:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 06:53:05 2026 GMT Not After : Apr 14 06:58:05 2027 GMT Subject: CN=95F56605C6C1A8D0D211F46C7B4F33D339ADEE5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:9a:66:01:1f:31:02:e9:36:f0:5d:f7:53: 8a:ee:85:99:de:82:70:a5:a5:6a:97:b4:a3:33:83: f8:47:cc:6a:90:b3:ed:48:e2:28:66:30:15:f4:84: ce:8e:61:80:f6:aa:3c:80:00:7a:09:0d:2f:25:4e: c2:c7:70:fb:1c:73:c1:11:d6:83:ea:8e:63:c8:86: 59:c7:dc:2c:b1:bd:ee:fe:5c:dc:89:9f:b5:90:67: af:3c:34:8f:8f:1b:85:2b:0c:35:2e:a1:86:c9:65: b9:dd:7e:4c:c7:8a:9c:57:61:26:6a:8e:52:d0:e0: 02:a0:11:12:4b:72:90:57:7d:ee:9b:51:27:dc:1a: 3f:98:02:33:19:53:95:51:45:14:f3:47:2f:22:22: 72:25:70:8d:f5:94:ae:f5:ee:d4:ab:c6:18:83:f0: 13:f8:88:11:8f:12:2c:f9:de:15:3e:ba:e0:66:02: 59:4a:bc:3c:60:8b:62:3d:2f:f3:9e:15:d2:4a:64: cb:77:63:f8:75:13:c1:bb:a8:30:95:84:86:c1:a2: b4:98:74:a8:f3:62:68:a1:50:92:bd:a9:db:cc:d9: 92:07:d5:61:24:4e:54:0c:9f:e8:c2:b4:43:0c:a6: 17:c3:7d:70:4a:9d:cf:d4:de:f4:c6:aa:1f:c1:8b: 31:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F5:66:05:C6:C1:A8:D0:D2:11:F4:6C:7B:4F:33:D3:39:AD:EE:5B X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132302e302f32342d3234203d3e20313334333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.120.0/24 Signature Algorithm: sha256WithRSAEncryption b4:bf:a2:c5:ff:3f:52:25:ed:e4:e5:9f:64:ce:3b:ff:ea:b5: 18:9f:00:37:73:cb:ac:32:d1:61:d1:45:84:26:20:da:5a:1f: db:6a:e2:17:84:b6:1b:ec:db:ac:2b:03:e8:ba:b0:21:68:e2: e1:4c:7b:9a:04:ab:15:cb:84:30:ec:89:39:d1:2a:df:bf:53: bb:e6:76:14:e1:4c:71:58:3c:ab:33:cd:97:20:27:b0:2d:fa: c0:04:d2:52:fa:3d:a0:10:3c:2f:5e:16:57:ef:3c:38:0d:9d: 37:c3:ca:5b:67:53:9c:d6:c8:9a:17:14:f8:1d:3c:09:72:53: bc:df:89:af:52:ac:4e:6d:33:77:5d:6f:84:9c:ae:79:47:6c: fd:da:07:f6:36:b0:14:82:4f:f4:ad:26:6b:19:3b:77:7b:0f: 67:de:6c:a7:8e:4f:9f:46:4b:be:f9:03:89:39:45:41:c8:db: 31:22:b9:6b:8a:a3:48:77:cf:16:10:c7:66:ea:21:0b:d2:b9: 89:a6:94:c7:6d:e4:a6:b6:c8:44:39:c8:4c:4a:54:af:d3:76: 69:79:9d:55:5c:8c:54:f6:c9:26:10:38:94:41:68:cc:93:92: d5:47:43:65:dd:3a:3d:db:fc:6d:da:75:79:7f:e6:fd:90:27: 3d:14:3d:1a -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUO5qVNa0JdjM3n89GhyIzx8oqAVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNjUzMDVaFw0yNzA0MTQwNjU4MDVaMDMxMTAvBgNV BAMTKDk1RjU2NjA1QzZDMUE4RDBEMjExRjQ2QzdCNEYzM0QzMzlBREVFNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCZZpmAR8xAuk28F33U4ruhZne gnClpWqXtKMzg/hHzGqQs+1I4ihmMBX0hM6OYYD2qjyAAHoJDS8lTsLHcPscc8ER 1oPqjmPIhlnH3Cyxve7+XNyJn7WQZ688NI+PG4UrDDUuoYbJZbndfkzHipxXYSZq jlLQ4AKgERJLcpBXfe6bUSfcGj+YAjMZU5VRRRTzRy8iInIlcI31lK717tSrxhiD 8BP4iBGPEiz53hU+uuBmAllKvDxgi2I9L/OeFdJKZMt3Y/h1E8G7qDCVhIbBorSY dKjzYmihUJK9qdvM2ZIH1WEkTlQMn+jCtEMMphfDfXBKnc/U3vTGqh/BizFBAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUlfVmBcbBqNDSEfRse08z0zmt7lswHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NTIzNjUxLzEvMzEzMzM5MmUz MTM5MzgyZTMxMzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDMzMzYz Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIvGeDANBgkqhkiG9w0BAQsFAAOCAQEAtL+ixf8/UiXt5OWf ZM47/+q1GJ8AN3PLrDLRYdFFhCYg2lof22riF4S2G+zbrCsD6LqwIWji4Ux7mgSr FcuEMOyJOdEq379Tu+Z2FOFMcVg8qzPNlyAnsC36wATSUvo9oBA8L14WV+88OA2d N8PKW2dTnNbImhcU+B08CXJTvN+Jr1KsTm0zd11vhJyueUds/doH9jawFIJP9K0m axk7d3sPZ95sp45Pn0ZLvvkDiTlFQcjbMSK5a4qjSHfPFhDHZuohC9K5iaaUx23k prbIRDnITEpUr9N2aXmdVVyMVPbJJhA4lEFozJOS1UdDZd06Pdv8bdp1eX/m/ZAn PRQ9Gg== -----END CERTIFICATE-----Generated at Sat Apr 18 03:53:32 2026 by rpki-client