$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e33322e302f32312d3231203d3e203539303738.roa File: 3133392e3139382e33322e302f32312d3231203d3e203539303738.roa (raw, json) Hash identifier: kB7p0DMA934Jlg7HSOHOaBwmaG+BjKw5/kGrQH61MM8= Subject key identifier: F6:6B:80:40:08:14:70:3A:9C:1E:A5:52:EF:85:CD:B2:21:C7:74:72 Certificate issuer: /CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Certificate serial: 3C38CEA3D9414D7952D9F8B4D3C29AB3022FBBBC Authority key identifier: 01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e33322e302f32312d3231203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:27:31 +0000 ROA not before: Wed 15 Apr 2026 07:22:31 +0000 ROA not after: Wed 14 Apr 2027 07:27:31 +0000 asID: 59078 IP address blocks: 139.198.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:38:ce:a3:d9:41:4d:79:52:d9:f8:b4:d3:c2:9a:b3:02:2f:bb:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA Validity Not Before: Apr 15 07:22:31 2026 GMT Not After : Apr 14 07:27:31 2027 GMT Subject: CN=F66B80400814703A9C1EA552EF85CDB221C77472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1c:97:ad:9d:5c:34:34:bd:5f:ed:fe:62:c1: 7d:60:1c:c5:38:82:0f:a2:e5:fd:52:84:c3:34:6c: 91:b8:89:30:03:c2:56:8c:a2:08:fc:5f:2d:24:ca: 9e:3f:99:6a:e5:cf:5c:96:c0:81:aa:b4:f6:21:84: b4:d9:07:94:98:6f:58:03:83:cd:fa:6e:6c:3d:d9: 96:c7:79:ad:ea:54:40:3c:91:19:05:30:a6:67:f4: 94:7f:52:f1:34:25:5b:27:82:4f:aa:80:47:28:b6: d5:21:69:6e:d0:d6:cb:7f:8c:61:6d:37:49:46:f4: 91:5c:0d:d7:24:aa:8e:53:ff:4c:17:5f:0d:8c:95: 17:9c:d4:66:81:00:e1:b1:22:e6:d9:d5:8c:4a:bb: 83:86:f4:3f:6b:c8:8d:47:bb:be:32:e3:a9:e0:04: a7:69:ca:8f:0d:f6:6d:6a:1a:41:6e:02:d5:41:56: 6a:45:73:ed:07:e0:94:93:cd:31:80:12:cb:d9:1e: 38:69:54:ce:fd:2e:c0:b2:da:de:2b:e6:92:a9:20: e1:a5:fd:e5:2f:ef:63:e1:fc:2a:e9:1d:8f:37:dc: 97:e5:4e:02:18:aa:77:86:ba:4b:36:14:d5:3f:67: 5c:ac:9b:45:11:e2:f3:53:43:23:4e:58:77:b9:d9: cc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6B:80:40:08:14:70:3A:9C:1E:A5:52:EF:85:CD:B2:21:C7:74:72 X509v3 Authority Key Identifier: keyid:01:FB:56:09:FD:2A:A5:67:AD:7A:F6:9C:D2:0C:C4:AB:3E:BD:10:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/01FB5609FD2AA567AD7AF69CD20CC4AB3EBD10CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/1/3133392e3139382e33322e302f32312d3231203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.198.32.0/21 Signature Algorithm: sha256WithRSAEncryption 03:21:1e:d3:2e:58:71:63:fe:e9:7d:ab:9c:5f:2c:a3:e9:8f: 8c:33:1e:4b:3c:b5:38:42:33:68:71:ab:7c:d4:22:1e:49:0d: 6e:20:19:ea:61:4b:49:73:2b:54:cf:0b:b4:6a:a0:7d:e3:cf: da:68:c7:fe:60:76:a6:11:e8:e8:16:95:5a:92:09:1f:64:e8: d1:e6:43:89:16:60:ec:08:7d:42:d2:5a:5d:67:05:72:c9:41: 14:9e:67:62:3f:df:b0:b7:60:9a:dc:0e:28:07:91:e1:b8:03: 60:52:5f:b4:1e:cd:25:90:2e:cb:42:6e:1e:6f:05:03:51:28: c9:42:1a:a2:a3:ce:4c:9e:53:b8:d1:3f:ed:f5:6e:5e:97:d5: 3b:d3:3f:a7:dc:7c:57:2b:5d:18:cf:84:44:e5:72:29:98:ba: 8d:26:f0:5f:fc:de:9c:c7:0b:c7:bc:5d:1a:ea:5e:82:88:7a: 1d:30:b7:41:06:62:1a:e0:b4:95:b0:36:7c:ce:20:79:fa:5b: 8a:33:9f:56:d2:b3:ac:cc:c8:62:e3:58:f9:d5:35:13:4d:54: 14:98:e5:bc:78:7f:f7:5d:59:b2:2a:ef:88:85:12:7d:db:19: cd:11:cc:29:df:20:92:cd:12:fd:8a:e0:67:93:24:3a:e3:b0: 61:ea:10:85 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPDjOo9lBTXlS2fi008KaswIvu7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIz RUJEMTBDQTAeFw0yNjA0MTUwNzIyMzFaFw0yNzA0MTQwNzI3MzFaMDMxMTAvBgNV BAMTKEY2NkI4MDQwMDgxNDcwM0E5QzFFQTU1MkVGODVDREIyMjFDNzc0NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAHJetnVw0NL1f7f5iwX1gHMU4 gg+i5f1ShMM0bJG4iTADwlaMogj8Xy0kyp4/mWrlz1yWwIGqtPYhhLTZB5SYb1gD g836bmw92ZbHea3qVEA8kRkFMKZn9JR/UvE0JVsngk+qgEcottUhaW7Q1st/jGFt N0lG9JFcDdckqo5T/0wXXw2MlRec1GaBAOGxIubZ1YxKu4OG9D9ryI1Hu74y46ng BKdpyo8N9m1qGkFuAtVBVmpFc+0H4JSTzTGAEsvZHjhpVM79LsCy2t4r5pKpIOGl /eUv72Ph/CrpHY833JflTgIYqneGuks2FNU/Z1ysm0UR4vNTQyNOWHe52cxbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU9muAQAgUcDqcHqVS74XNsiHHdHIwHwYDVR0j BBgwFoAUAftWCf0qpWetevac0gzEqz69EMowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8xLzAxRkI1NjA5RkQyQUE1NjdBRDdBRjY5Q0QyMEND NEFCM0VCRDEwQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMDFGQjU2MDlGRDJBQTU2N0FEN0FGNjlDRDIwQ0M0QUIzRUJEMTBDQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDUyMzY1MS8xLzMxMzMzOTJlMzEz OTM4MmUzMzMyMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzczOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA4vGIDANBgkqhkiG9w0BAQsFAAOCAQEAAyEe0y5YcWP+6X2rnF8so+mP jDMeSzy1OEIzaHGrfNQiHkkNbiAZ6mFLSXMrVM8LtGqgfePP2mjH/mB2phHo6BaV WpIJH2To0eZDiRZg7Ah9QtJaXWcFcslBFJ5nYj/fsLdgmtwOKAeR4bgDYFJftB7N JZAuy0JuHm8FA1EoyUIaoqPOTJ5TuNE/7fVuXpfVO9M/p9x8VytdGM+EROVyKZi6 jSbwX/zenMcLx7xdGupegoh6HTC3QQZiGuC0lbA2fM4gefpbijOfVtKzrMzIYuNY +dU1E01UFJjlvHh/911ZsirviIUSfdsZzRHMKd8gks0S/YrgZ5MkOuOwYeoQhQ== -----END CERTIFICATE-----Generated at Fri Apr 17 21:21:39 2026 by rpki-client