$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3137362e302f32312d3231203d3e203539303738.roa File: 3133392e3139382e3137362e302f32312d3231203d3e203539303738.roa (raw, json) Hash identifier: ugfze0qJTd/8+SrFZdSrzMIRgEqx6Sz4N/JZqx5mov0= Subject key identifier: 3B:DF:2A:BD:FF:43:1C:C7:0E:E1:23:12:45:2B:87:A3:AD:3D:40:98 Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 0B6423193A4E6C3ACB224C7826664B7F3044DD95 Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3137362e302f32312d3231203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:27:31 +0000 ROA not before: Wed 15 Apr 2026 07:22:31 +0000 ROA not after: Wed 14 Apr 2027 07:27:31 +0000 asID: 59078 IP address blocks: 139.198.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:64:23:19:3a:4e:6c:3a:cb:22:4c:78:26:66:4b:7f:30:44:dd:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:22:31 2026 GMT Not After : Apr 14 07:27:31 2027 GMT Subject: CN=3BDF2ABDFF431CC70EE12312452B87A3AD3D4098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a6:7b:4e:40:aa:52:f1:0e:1a:66:a6:ad:c7: 65:28:f9:97:ba:a1:2b:99:48:45:c4:87:37:e2:00: fb:af:24:3d:4f:79:9a:01:d3:aa:08:ac:33:1f:1f: f4:c5:7b:81:da:14:dc:ee:51:9e:c2:e0:38:74:1f: 04:f9:cf:ff:55:d6:0c:0f:34:e8:f8:33:69:67:38: 1a:78:22:5f:bd:dd:86:c9:4b:07:0c:03:84:31:76: 00:80:4c:91:86:3c:bc:3b:87:da:50:5e:f7:59:de: 84:b6:46:a4:84:54:84:29:06:79:16:84:5d:a3:01: dd:c3:f1:20:03:1e:9d:42:b6:24:89:3b:52:01:df: 6c:05:f4:45:1f:53:de:22:1b:96:e0:7a:78:28:e8: 7e:c0:c9:74:f1:66:22:b4:f5:eb:7c:67:70:90:74: d9:56:e9:51:e6:15:07:f4:b4:c8:0d:ee:ad:46:b4: e1:c1:42:bf:56:85:0e:80:a8:53:bf:82:f2:51:15: e2:c7:d2:51:0a:11:cb:3f:90:e7:f1:59:18:df:b8: 66:31:43:81:b4:c1:6f:4a:fd:aa:dc:e1:b2:97:93: 32:00:b2:be:d9:3b:13:16:bc:c8:ba:3a:eb:a4:01: d0:22:f8:26:66:44:dd:68:cb:00:33:dd:cf:58:02: 54:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DF:2A:BD:FF:43:1C:C7:0E:E1:23:12:45:2B:87:A3:AD:3D:40:98 X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e3137362e302f32312d3231203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.176.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:9b:25:92:6f:06:da:10:4f:e3:f3:71:e2:0b:88:9e:73:69: ff:14:da:4f:22:90:8a:65:4f:58:52:fb:f5:40:09:36:30:89: 01:d5:61:dd:db:8c:22:65:94:61:f0:ae:e7:a8:64:2d:41:36: bd:9f:71:a3:27:1c:35:40:35:47:2c:39:d5:c3:2f:89:1c:ae: 16:bb:f9:77:f2:63:a8:e1:db:2c:e1:39:5b:60:73:6c:a2:5a: 53:21:35:2e:19:8b:8b:32:c7:8f:e8:92:31:ed:62:1d:97:c6: 13:16:4b:02:f1:df:33:62:75:3d:da:66:9e:57:e8:e5:ea:62: c1:c9:80:0b:eb:ad:74:ef:b9:4b:1a:38:b9:a4:9d:c7:7b:84: 82:54:e4:aa:45:17:d2:5a:39:90:2a:2d:ca:4b:a9:b3:06:73: 69:31:7f:f2:ef:ab:a1:51:89:d4:6d:4b:1e:71:8e:d9:46:78: a3:f6:c3:20:43:45:6b:d6:97:12:9d:e2:c7:b3:55:68:8e:21: f6:63:2f:ce:fd:b9:71:f3:85:91:ee:e0:4a:33:06:17:0f:b0: d3:42:30:aa:19:d6:4b:c0:61:01:75:a1:c3:8d:98:bd:29:ee: c7:4a:13:44:e5:59:fb:c3:97:81:96:06:64:20:35:03:5b:a0: 38:d0:1f:34 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUC2QjGTpObDrLIkx4JmZLfzBE3ZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzIyMzFaFw0yNzA0MTQwNzI3MzFaMDMxMTAvBgNV BAMTKDNCREYyQUJERkY0MzFDQzcwRUUxMjMxMjQ1MkI4N0EzQUQzRDQwOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDapntOQKpS8Q4aZqatx2Uo+Ze6 oSuZSEXEhzfiAPuvJD1PeZoB06oIrDMfH/TFe4HaFNzuUZ7C4Dh0HwT5z/9V1gwP NOj4M2lnOBp4Il+93YbJSwcMA4QxdgCATJGGPLw7h9pQXvdZ3oS2RqSEVIQpBnkW hF2jAd3D8SADHp1CtiSJO1IB32wF9EUfU94iG5bgengo6H7AyXTxZiK09et8Z3CQ dNlW6VHmFQf0tMgN7q1GtOHBQr9WhQ6AqFO/gvJRFeLH0lEKEcs/kOfxWRjfuGYx Q4G0wW9K/arc4bKXkzIAsr7ZOxMWvMi6OuukAdAi+CZmRN1oywAz3c9YAlShAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUO98qvf9DHMcO4SMSRSuHo609QJgwHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1MjM2NTEvMS8zMTMzMzkyZTMx MzkzODJlMzEzNzM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzczOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA4vGsDANBgkqhkiG9w0BAQsFAAOCAQEAfZslkm8G2hBP4/Nx4guI nnNp/xTaTyKQimVPWFL79UAJNjCJAdVh3duMImWUYfCu56hkLUE2vZ9xoyccNUA1 Ryw51cMviRyuFrv5d/JjqOHbLOE5W2BzbKJaUyE1LhmLizLHj+iSMe1iHZfGExZL AvHfM2J1Pdpmnlfo5epiwcmAC+utdO+5Sxo4uaSdx3uEglTkqkUX0lo5kCotykup swZzaTF/8u+roVGJ1G1LHnGO2UZ4o/bDIENFa9aXEp3ix7NVaI4h9mMvzv25cfOF ke7gSjMGFw+w00IwqhnWS8BhAXWhw42YvSnux0oTROVZ+8OXgZYGZCA1A1ugONAf NA== -----END CERTIFICATE-----Generated at Fri Apr 17 20:33:10 2026 by rpki-client