$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e322e302f32342d3234203d3e203539303738.roa File: 3133392e3139382e322e302f32342d3234203d3e203539303738.roa (raw, json) Hash identifier: qLQe7FZ22VRAQLUy4e9B68bbCjy4LMSMD4rW5l6n8cs= Subject key identifier: 1D:D9:A6:DF:8A:BD:86:65:4D:27:1C:09:D2:01:EB:08:A3:E2:A1:CF Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 7579D60D38D930F72BD4CE37CE10175C55285615 Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e322e302f32342d3234203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:21:28 +0000 ROA not before: Wed 15 Apr 2026 07:16:28 +0000 ROA not after: Wed 14 Apr 2027 07:21:28 +0000 asID: 59078 IP address blocks: 139.198.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:79:d6:0d:38:d9:30:f7:2b:d4:ce:37:ce:10:17:5c:55:28:56:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:16:28 2026 GMT Not After : Apr 14 07:21:28 2027 GMT Subject: CN=1DD9A6DF8ABD86654D271C09D201EB08A3E2A1CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4a:3a:bd:ab:d1:97:43:28:13:82:78:76:f4: 4b:0b:1c:2f:b6:c2:3f:f0:fe:02:3c:9f:50:44:d7: bb:60:9d:f8:a3:a2:a4:8d:06:27:cf:2b:c4:10:1c: 63:d8:8e:29:2d:44:3e:e2:12:39:f2:4e:ad:a8:5b: 1e:5e:27:67:e0:e6:e9:fe:e6:88:63:b0:c7:4d:3d: 3f:33:43:97:3c:45:10:6a:58:4e:a1:61:be:26:61: 17:3c:ed:b0:f2:c7:4e:48:18:99:18:e9:c2:44:b6: 9a:74:b6:3b:ca:81:56:64:84:13:00:ac:95:ca:65: 87:73:c9:1b:65:df:d5:64:1e:76:fc:ab:51:5c:58: c2:34:25:6d:b7:08:39:67:10:0d:6a:e4:af:4f:f9: 7d:5f:99:1f:b7:f7:96:d6:77:3d:ab:a1:1f:20:9a: 54:2b:14:66:96:2e:ca:b2:df:06:1c:9c:c0:99:7b: 86:68:57:52:4e:36:4a:c8:a2:f3:65:24:a0:01:5f: 4b:c8:8b:b9:92:b7:e8:0f:ba:46:36:50:0c:9f:df: 63:d1:8b:37:8d:3d:79:ca:b7:59:22:00:8e:8b:fe: 9d:a1:b2:89:8f:48:bb:94:b2:9a:34:2b:8b:9f:a7: df:63:5a:39:cd:f0:8a:69:41:26:f6:e5:27:84:4a: 09:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D9:A6:DF:8A:BD:86:65:4D:27:1C:09:D2:01:EB:08:A3:E2:A1:CF X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e322e302f32342d3234203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.2.0/24 Signature Algorithm: sha256WithRSAEncryption 45:c1:99:43:8a:c0:dc:0f:be:b4:9b:ec:1b:ee:dd:36:d4:34: 4d:3f:a7:16:a3:5f:86:d2:e3:42:e3:30:c0:47:eb:7c:89:6b: 2a:4c:ca:f4:cf:a3:df:2b:95:bb:e6:6b:3e:1e:ec:dd:4f:40: cf:18:69:c5:18:cc:19:21:8f:6b:03:82:88:04:dc:92:8a:d6: b5:20:a8:48:a2:cf:89:01:63:87:27:9b:1d:14:5a:03:98:0f: 41:0a:d3:9b:52:68:15:16:9c:16:57:c3:40:3d:18:5e:98:84: 57:a2:52:de:51:34:d8:53:e2:e8:1f:21:42:18:81:de:c8:aa: b1:38:ac:75:e9:91:b7:43:9b:94:93:4f:fd:9d:3b:10:32:5f: 83:d5:a7:b1:8d:ea:96:5b:a5:e0:df:d3:c3:2b:00:ae:2e:d1: c9:60:3f:46:8c:21:be:7b:50:a6:14:e0:13:1a:78:1a:fa:38: 6b:2a:ef:40:cf:01:68:d7:e7:a3:ce:ce:bd:bb:7b:33:f1:48: 85:0d:06:97:4e:70:59:ea:79:c5:cc:32:42:c5:1f:e6:0d:56: 03:1d:86:7f:18:8b:21:ac:c7:de:e5:1c:2a:2a:fc:64:57:4b: 90:2c:3e:e0:ff:f7:53:c6:ba:80:a6:89:3d:ce:25:81:37:74: 62:7b:e5:0d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUdXnWDTjZMPcr1M43zhAXXFUoVhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzE2MjhaFw0yNzA0MTQwNzIxMjhaMDMxMTAvBgNV BAMTKDFERDlBNkRGOEFCRDg2NjU0RDI3MUMwOUQyMDFFQjA4QTNFMkExQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiSjq9q9GXQygTgnh29EsLHC+2 wj/w/gI8n1BE17tgnfijoqSNBifPK8QQHGPYjiktRD7iEjnyTq2oWx5eJ2fg5un+ 5ohjsMdNPT8zQ5c8RRBqWE6hYb4mYRc87bDyx05IGJkY6cJEtpp0tjvKgVZkhBMA rJXKZYdzyRtl39VkHnb8q1FcWMI0JW23CDlnEA1q5K9P+X1fmR+395bWdz2roR8g mlQrFGaWLsqy3wYcnMCZe4ZoV1JONkrIovNlJKABX0vIi7mSt+gPukY2UAyf32PR izeNPXnKt1kiAI6L/p2hsomPSLuUspo0K4ufp99jWjnN8IppQSb25SeESgm7AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUHdmm34q9hmVNJxwJ0gHrCKPioc8wHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NTIzNjUxLzEvMzEzMzM5MmUzMTM5 MzgyZTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzczOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAIvGAjANBgkqhkiG9w0BAQsFAAOCAQEARcGZQ4rA3A++tJvsG+7dNtQ0TT+n FqNfhtLjQuMwwEfrfIlrKkzK9M+j3yuVu+ZrPh7s3U9AzxhpxRjMGSGPawOCiATc korWtSCoSKLPiQFjhyebHRRaA5gPQQrTm1JoFRacFlfDQD0YXpiEV6JS3lE02FPi 6B8hQhiB3siqsTisdemRt0OblJNP/Z07EDJfg9WnsY3qllul4N/TwysAri7RyWA/ RowhvntQphTgExp4Gvo4ayrvQM8BaNfno87Ovbt7M/FIhQ0Gl05wWep5xcwyQsUf 5g1WAx2GfxiLIazH3uUcKir8ZFdLkCw+4P/3U8a6gKaJPc4lgTd0YnvlDQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:17:02 2026 by rpki-client