$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132362e302f32342d3234203d3e203539303738.roa File: 3133392e3139382e3132362e302f32342d3234203d3e203539303738.roa (raw, json) Hash identifier: 1DpWJlNVCkhgA297R8o2tlC4U8xWLEjIYKlWdaCNLOE= Subject key identifier: D7:E6:D0:29:E9:3E:86:41:D3:E1:54:5A:3B:33:D7:08:3E:8F:97:CE Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 01AC70E75FEFD918CBE66CEAF8A26216EDBC81F8 Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132362e302f32342d3234203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:31:21 +0000 ROA not before: Wed 15 Apr 2026 07:26:21 +0000 ROA not after: Wed 14 Apr 2027 07:31:21 +0000 asID: 59078 IP address blocks: 139.198.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ac:70:e7:5f:ef:d9:18:cb:e6:6c:ea:f8:a2:62:16:ed:bc:81:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:26:21 2026 GMT Not After : Apr 14 07:31:21 2027 GMT Subject: CN=D7E6D029E93E8641D3E1545A3B33D7083E8F97CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2c:0b:f3:5f:50:73:e1:19:f3:b6:4f:7d:5d: 4e:96:c4:f3:e3:29:af:43:aa:a0:37:a0:84:96:db: be:8f:46:b1:50:88:5b:98:b7:81:d7:96:56:f6:de: 84:d3:39:3e:25:89:56:88:f7:98:b3:66:2e:f4:1d: fd:35:13:63:ee:8e:09:3b:5f:2d:16:76:fe:f1:91: 1a:d1:68:24:ce:67:b3:ea:c4:22:48:f9:b9:e6:51: 9c:d1:79:75:a3:1a:83:c5:ed:d8:04:6f:ef:e5:1d: 52:33:cc:54:27:07:5c:e6:da:5d:1d:da:65:1e:51: 0f:5c:c6:d1:9c:17:f6:17:ab:2b:18:d9:7f:9d:b4: 84:e2:9f:a3:c5:ec:3a:48:cf:43:b0:4a:6a:ff:09: 39:87:85:6a:a2:8a:39:30:de:fc:00:e9:fb:f9:cf: d4:74:07:95:eb:5e:2b:9b:5b:c5:06:1e:17:9d:ec: fe:59:11:16:ca:6b:f9:b4:c2:61:97:fa:4e:c7:bd: e5:a5:10:43:1b:0c:e0:27:b7:67:8d:b2:94:7b:b9: 2e:c0:35:3d:ba:14:b2:71:79:d9:13:2e:b3:76:e1: c8:ce:5c:14:39:c1:ed:2e:6f:31:f4:d1:82:57:c2: 65:ea:2b:6e:ec:2d:f1:7f:6a:b5:02:32:ca:88:28: f3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E6:D0:29:E9:3E:86:41:D3:E1:54:5A:3B:33:D7:08:3E:8F:97:CE X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132362e302f32342d3234203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.126.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:af:47:c1:0a:a5:78:ab:2a:13:53:65:7e:74:3a:1b:7f:eb: 7c:cf:a9:63:5a:b1:fb:3c:4e:01:3b:61:71:eb:01:c9:00:49: ca:20:f5:37:74:12:eb:47:c0:0d:8d:02:ed:4f:26:58:e6:30: 18:56:54:3f:c7:f6:06:5c:da:90:e3:5c:a1:dc:c8:1d:d5:bb: 0c:d2:28:60:0c:54:ad:8d:cf:d4:d6:e2:47:41:9f:a1:bb:89: 65:12:4a:9f:a0:fb:58:7f:8f:f5:1c:9e:2c:dd:bf:c9:f2:70: ea:71:69:fb:ca:2e:16:d7:ed:c4:75:a5:47:e4:62:c5:f6:06: 2a:18:9b:3f:a5:08:6b:fd:75:45:84:5f:a9:6a:a0:6a:0d:3f: f6:b8:4c:4a:cd:58:74:db:ed:e6:3f:4f:9a:44:a8:e2:ab:06: 88:f8:a5:97:91:65:ac:68:29:65:0e:06:91:34:e9:73:09:d4: e0:9a:ae:c6:75:04:cc:03:a0:2c:0c:03:44:1c:01:48:23:0c: b6:2b:db:2f:5a:71:60:7d:c5:69:23:e5:ed:da:9d:41:42:0f: 86:76:ee:73:9b:ff:c5:23:cc:c7:29:3c:2f:5c:46:cd:0b:fa: aa:6d:64:0a:bc:53:f7:2a:94:54:b1:a5:0f:0c:8d:d2:e8:f2: 61:ed:1d:aa -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUAaxw51/v2RjL5mzq+KJiFu28gfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzI2MjFaFw0yNzA0MTQwNzMxMjFaMDMxMTAvBgNV BAMTKEQ3RTZEMDI5RTkzRTg2NDFEM0UxNTQ1QTNCMzNENzA4M0U4Rjk3Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOLAvzX1Bz4Rnztk99XU6WxPPj Ka9DqqA3oISW276PRrFQiFuYt4HXllb23oTTOT4liVaI95izZi70Hf01E2Pujgk7 Xy0Wdv7xkRrRaCTOZ7PqxCJI+bnmUZzReXWjGoPF7dgEb+/lHVIzzFQnB1zm2l0d 2mUeUQ9cxtGcF/YXqysY2X+dtITin6PF7DpIz0OwSmr/CTmHhWqiijkw3vwA6fv5 z9R0B5XrXiubW8UGHhed7P5ZERbKa/m0wmGX+k7HveWlEEMbDOAnt2eNspR7uS7A NT26FLJxedkTLrN24cjOXBQ5we0ubzH00YJXwmXqK27sLfF/arUCMsqIKPMrAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU1+bQKek+hkHT4VRaOzPXCD6Pl84wHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzMjM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzczOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIvGfjANBgkqhkiG9w0BAQsFAAOCAQEADq9HwQqleKsqE1NlfnQ6 G3/rfM+pY1qx+zxOATthcesByQBJyiD1N3QS60fADY0C7U8mWOYwGFZUP8f2Blza kONcodzIHdW7DNIoYAxUrY3P1NbiR0GfobuJZRJKn6D7WH+P9RyeLN2/yfJw6nFp +8ouFtftxHWlR+RixfYGKhibP6UIa/11RYRfqWqgag0/9rhMSs1YdNvt5j9PmkSo 4qsGiPill5FlrGgpZQ4GkTTpcwnU4JquxnUEzAOgLAwDRBwBSCMMtivbL1pxYH3F aSPl7dqdQUIPhnbuc5v/xSPMxyk8L1xGzQv6qm1kCrxT9yqUVLGlDwyN0ujyYe0d qg== -----END CERTIFICATE-----Generated at Fri Apr 17 23:30:15 2026 by rpki-client