$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132382e302f31372d3137203d3e203539303738.roa File: 3133392e3139382e3132382e302f31372d3137203d3e203539303738.roa (raw, json) Hash identifier: ik3Xv1s6bVP/ByL9GZO6K+Kl4D6XC1/06MSmQMsX/jU= Subject key identifier: 2C:A7:81:DB:99:2F:94:83:FD:EB:3B:B5:41:9B:9E:6B:E2:DB:5D:AA Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 24375CF685039CFC3CDEBB0D813B5CF59D9A3918 Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132382e302f31372d3137203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:31:21 +0000 ROA not before: Wed 15 Apr 2026 07:26:21 +0000 ROA not after: Wed 14 Apr 2027 07:31:21 +0000 asID: 59078 IP address blocks: 139.198.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:37:5c:f6:85:03:9c:fc:3c:de:bb:0d:81:3b:5c:f5:9d:9a:39:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:26:21 2026 GMT Not After : Apr 14 07:31:21 2027 GMT Subject: CN=2CA781DB992F9483FDEB3BB5419B9E6BE2DB5DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:53:b4:1a:94:57:b6:23:a7:9e:b7:2c:12:df: 28:f3:d8:5e:6c:4c:78:29:87:ac:3a:1a:b5:64:fb: 1c:d2:23:6e:8c:d9:79:b3:84:a4:4e:88:c1:c3:ec: 25:0f:da:c1:3c:d5:db:f9:c9:d7:79:ca:fd:44:52: 99:7e:bd:9b:87:2f:c9:e9:c1:31:54:20:f7:7d:3a: ef:8f:83:52:44:f6:98:ff:0a:54:9e:4c:64:03:0c: 8e:16:ea:ae:95:dd:31:2f:38:ed:43:ae:ea:4d:32: 47:f7:23:1f:fc:94:21:5e:60:b6:a0:3c:8a:6f:3e: 4a:b6:44:e6:4c:5c:a9:34:04:02:97:85:a5:de:39: 01:fa:93:56:49:b5:70:d1:76:b1:b0:5a:0c:58:a9: 91:44:c8:25:87:16:4b:ae:fb:97:f4:f3:d7:3d:2d: b1:77:56:34:7f:f2:4c:53:12:bd:36:a8:c3:ae:0b: 03:74:ed:2d:02:e3:ac:cf:4c:8f:92:d8:2b:ff:be: e7:1f:e5:e0:76:1d:41:24:d6:3e:65:20:72:72:0f: 03:af:aa:11:1e:2a:37:f2:d0:d7:0b:c4:32:a1:16: a4:fb:7a:60:ca:ce:89:6e:4c:1c:12:e0:ec:1f:d3: 3e:38:13:a2:ec:af:79:72:4f:60:43:df:d0:b9:3a: 15:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A7:81:DB:99:2F:94:83:FD:EB:3B:B5:41:9B:9E:6B:E2:DB:5D:AA X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3132382e302f31372d3137203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2d:2c:64:ab:50:2a:43:d7:a3:d7:55:eb:58:f2:ca:32:fb:dc: 95:c5:b2:2d:5b:59:01:59:db:6a:79:63:28:28:42:e6:a8:ee: 70:bd:37:0b:89:50:d5:91:d4:08:17:42:d3:25:06:43:c4:44: 8d:f6:2f:73:61:10:10:1c:0a:5f:84:a4:74:52:e6:53:4c:59: ef:1e:39:b3:b5:48:2b:26:cb:c6:29:a0:ed:51:eb:44:0f:72: a1:70:4b:a5:19:1c:ed:3f:30:f9:25:02:5a:b2:63:79:c6:25: f2:ae:f6:2c:94:e0:3a:cc:c8:97:3d:5d:a1:d4:99:78:d1:74: ca:81:38:d8:b7:0c:78:8d:25:eb:97:fa:e8:91:32:aa:52:ba: 72:78:97:6b:c2:d5:70:f1:b8:73:88:47:c8:a2:6c:f1:25:ba: bf:17:d7:61:58:f1:bd:6e:21:fd:ed:b3:52:47:72:09:d7:9f: af:04:b6:04:06:7b:b4:45:a2:7f:dd:ef:59:27:81:1f:e8:46: 99:20:b9:1b:63:43:c1:37:2d:43:ca:a0:99:28:96:50:c5:95: ad:17:86:3e:ea:2b:03:17:3e:45:12:27:2f:9c:3f:81:d2:a2: 34:0a:32:a1:4c:97:c0:63:61:4e:7b:81:3a:01:ec:a1:ea:92: 1b:bb:12:cd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJDdc9oUDnPw83rsNgTtc9Z2aORgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzI2MjFaFw0yNzA0MTQwNzMxMjFaMDMxMTAvBgNV BAMTKDJDQTc4MURCOTkyRjk0ODNGREVCM0JCNTQxOUI5RTZCRTJEQjVEQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTU7QalFe2I6eetywS3yjz2F5s THgph6w6GrVk+xzSI26M2XmzhKROiMHD7CUP2sE81dv5ydd5yv1EUpl+vZuHL8np wTFUIPd9Ou+Pg1JE9pj/ClSeTGQDDI4W6q6V3TEvOO1DrupNMkf3Ix/8lCFeYLag PIpvPkq2ROZMXKk0BAKXhaXeOQH6k1ZJtXDRdrGwWgxYqZFEyCWHFkuu+5f089c9 LbF3VjR/8kxTEr02qMOuCwN07S0C46zPTI+S2Cv/vucf5eB2HUEk1j5lIHJyDwOv qhEeKjfy0NcLxDKhFqT7emDKzoluTBwS4Owf0z44E6Lsr3lyT2BD39C5OhXNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQULKeB25kvlIP96zu1QZuea+LbXaowHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzMjM4MmUzMDJmMzEzNzJkMzEzNzIwM2QzZTIwMzUzOTMwMzczOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEB4vGgDANBgkqhkiG9w0BAQsFAAOCAQEALSxkq1AqQ9ej11XrWPLK MvvclcWyLVtZAVnbanljKChC5qjucL03C4lQ1ZHUCBdC0yUGQ8REjfYvc2EQEBwK X4SkdFLmU0xZ7x45s7VIKybLximg7VHrRA9yoXBLpRkc7T8w+SUCWrJjecYl8q72 LJTgOszIlz1dodSZeNF0yoE42LcMeI0l65f66JEyqlK6cniXa8LVcPG4c4hHyKJs 8SW6vxfXYVjxvW4h/e2zUkdyCdefrwS2BAZ7tEWif93vWSeBH+hGmSC5G2NDwTct Q8qgmSiWUMWVrReGPuorAxc+RRInL5w/gdKiNAoyoUyXwGNhTnuBOgHsoeqSG7sS zQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:30:27 2026 by rpki-client