$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e31362e302f32312d3231203d3e203539303738.roa File: 3133392e3139382e31362e302f32312d3231203d3e203539303738.roa (raw, json) Hash identifier: +qW8+vZY0SEqW6Ny3I7nLJPawBzWjK3oexOzvmEIJvo= Subject key identifier: 20:84:98:FE:D6:53:5C:6B:92:1E:96:60:0A:A6:B3:FA:E6:61:B8:81 Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 3D467CF47DF0187CDF0C7B7AC89B1C89055D2B72 Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e31362e302f32312d3231203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:27:30 +0000 ROA not before: Wed 15 Apr 2026 07:22:30 +0000 ROA not after: Wed 14 Apr 2027 07:27:30 +0000 asID: 59078 IP address blocks: 139.198.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:46:7c:f4:7d:f0:18:7c:df:0c:7b:7a:c8:9b:1c:89:05:5d:2b:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:22:30 2026 GMT Not After : Apr 14 07:27:30 2027 GMT Subject: CN=208498FED6535C6B921E96600AA6B3FAE661B881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b8:af:4d:9b:ab:b8:56:83:f3:d2:39:c3:04: 39:74:44:ee:93:b6:0f:75:c4:80:25:c1:a0:76:7e: ba:dc:d8:6a:f5:d9:3e:f6:17:d7:7f:1a:58:03:f8: ea:d5:25:da:8e:3e:92:f2:63:d8:1e:e1:3c:d3:63: 52:a2:d7:cf:52:25:4d:99:6d:d6:dd:44:36:e1:f2: 72:00:dd:72:a5:c4:a4:8d:f3:59:25:f1:a6:7f:91: c4:0c:a5:94:85:70:f1:fc:b8:92:76:0c:3c:9b:23: 1f:65:77:80:39:2e:49:2e:3f:d8:7c:47:35:e6:83: 72:13:27:cc:c6:c1:c6:01:7b:74:41:27:c1:59:fb: 39:22:1a:31:71:88:f1:01:8a:a7:83:d7:86:88:93: 0e:0a:31:1c:02:e0:04:fe:2b:dd:e0:e2:a2:40:98: e3:63:3a:7a:58:41:ac:89:1f:35:42:ce:07:68:c6: 29:82:74:a5:54:c6:3e:31:ef:a5:49:9c:4f:6b:7c: 86:e3:61:82:cb:72:f3:74:79:d8:91:0f:72:0f:c3: 9d:37:78:9b:25:cf:ac:c5:00:59:e8:06:03:fe:6c: 71:0c:d9:c0:af:63:d3:fc:aa:35:16:89:65:11:e0: 1c:81:d3:b7:88:dd:e7:56:9e:5e:e1:4e:fb:19:72: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:84:98:FE:D6:53:5C:6B:92:1E:96:60:0A:A6:B3:FA:E6:61:B8:81 X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e31362e302f32312d3231203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.16.0/21 Signature Algorithm: sha256WithRSAEncryption 85:7c:c0:ad:98:ff:bb:1c:c3:b4:90:6c:56:5b:7f:5f:03:32: a0:eb:f5:b2:42:14:5e:80:d7:83:8e:0e:bd:db:79:ce:dd:c8: d3:3b:d1:47:ce:4f:a7:64:1a:51:c3:95:1a:23:04:d6:84:db: 58:fe:56:ab:6b:7a:c3:f1:23:6f:44:08:33:15:b2:88:ba:2c: 8b:89:5a:69:83:09:9c:2a:26:71:1e:17:78:e9:50:ab:01:66: 97:f0:e1:08:3a:aa:6b:c4:af:e0:6e:2c:4d:81:da:8c:65:f8: 84:c2:20:4b:46:16:11:de:b5:57:19:e8:96:b5:da:b1:57:8d: 5c:18:dd:53:6d:1c:82:e3:8e:1a:e5:46:22:2c:1c:d3:59:90: 33:1d:cd:8f:b7:e4:09:c2:9e:c5:12:d3:8f:a4:d0:b5:a2:bc: 26:5a:8d:72:85:61:87:ad:0d:e5:ee:c3:5c:85:82:7d:f3:5d: e5:71:2d:29:c3:31:46:24:4b:23:fa:8c:4c:75:f3:0e:da:09: 56:93:70:c9:1d:45:ab:84:17:2f:dd:b7:0f:e1:e6:51:f7:17: 06:f6:5e:39:7f:b0:8a:fe:ef:ef:ac:c4:62:60:85:41:bd:c8: e4:46:d1:33:56:d0:53:5b:b5:5d:24:8a:74:e8:a7:97:0a:fd: 06:21:55:51 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPUZ89H3wGHzfDHt6yJsciQVdK3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzIyMzBaFw0yNzA0MTQwNzI3MzBaMDMxMTAvBgNV BAMTKDIwODQ5OEZFRDY1MzVDNkI5MjFFOTY2MDBBQTZCM0ZBRTY2MUI4ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4uK9Nm6u4VoPz0jnDBDl0RO6T tg91xIAlwaB2frrc2Gr12T72F9d/GlgD+OrVJdqOPpLyY9ge4TzTY1Ki189SJU2Z bdbdRDbh8nIA3XKlxKSN81kl8aZ/kcQMpZSFcPH8uJJ2DDybIx9ld4A5LkkuP9h8 RzXmg3ITJ8zGwcYBe3RBJ8FZ+zkiGjFxiPEBiqeD14aIkw4KMRwC4AT+K93g4qJA mONjOnpYQayJHzVCzgdoximCdKVUxj4x76VJnE9rfIbjYYLLcvN0ediRD3IPw503 eJslz6zFAFnoBgP+bHEM2cCvY9P8qjUWiWUR4ByB07eI3edWnl7hTvsZcpwFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUIISY/tZTXGuSHpZgCqaz+uZhuIEwHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDUyMzY1MS8xLzMxMzMzOTJlMzEz OTM4MmUzMTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzczOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA4vGEDANBgkqhkiG9w0BAQsFAAOCAQEAhXzArZj/uxzDtJBsVlt/XwMy oOv1skIUXoDXg44Ovdt5zt3I0zvRR85Pp2QaUcOVGiME1oTbWP5Wq2t6w/Ejb0QI MxWyiLosi4laaYMJnComcR4XeOlQqwFml/DhCDqqa8Sv4G4sTYHajGX4hMIgS0YW Ed61VxnolrXasVeNXBjdU20cguOOGuVGIiwc01mQMx3Nj7fkCcKexRLTj6TQtaK8 JlqNcoVhh60N5e7DXIWCffNd5XEtKcMxRiRLI/qMTHXzDtoJVpNwyR1Fq4QXL923 D+HmUfcXBvZeOX+wiv7v76zEYmCFQb3I5EbRM1bQU1u1XSSKdOinlwr9BiFVUQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:16:38 2026 by rpki-client