$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3134302e3231302e38372e302f32342d3234203d3e2034383038.roa File: 3134302e3231302e38372e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: VBmStCGj0BnxdNvZ6K7TZYKI94lHbFhriQXDxptGHQU= Subject key identifier: 5C:D8:E9:02:E0:00:F4:E5:57:6F:35:74:53:AE:6F:DE:A9:22:3A:D3 Certificate issuer: /CN=34D58A062B3D996DB1E8A2BB2764188FDEF00DBA Certificate serial: 76934664F25D10FD8D298062AAB9FD3C4F0320C9 Authority key identifier: 34:D5:8A:06:2B:3D:99:6D:B1:E8:A2:BB:27:64:18:8F:DE:F0:0D:BA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3134302e3231302e38372e302f32342d3234203d3e2034383038.roa Signing time: Wed 10 Jun 2026 17:54:20 +0000 ROA not before: Wed 10 Jun 2026 17:49:20 +0000 ROA not after: Wed 09 Jun 2027 17:54:20 +0000 asID: 4808 IP address blocks: 140.210.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:93:46:64:f2:5d:10:fd:8d:29:80:62:aa:b9:fd:3c:4f:03:20:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D58A062B3D996DB1E8A2BB2764188FDEF00DBA Validity Not Before: Jun 10 17:49:20 2026 GMT Not After : Jun 9 17:54:20 2027 GMT Subject: CN=5CD8E902E000F4E5576F357453AE6FDEA9223AD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:66:c9:96:dc:49:5b:62:fd:7a:81:b4:62: 64:f2:e9:3a:be:0e:8e:cb:40:76:42:6d:46:9d:f2: 61:2d:8f:50:34:9b:13:d3:45:6d:3c:04:d7:3e:4f: 38:14:59:65:81:8c:e7:93:67:0e:8f:e3:c5:eb:c5: df:d4:df:ec:06:df:8f:3f:1f:ed:96:8a:24:40:dc: b3:73:33:d6:03:e5:19:ad:80:a5:a3:bf:11:5f:c7: f4:6d:af:ee:a1:9f:37:c5:60:f1:14:96:fb:02:b3: fe:f8:1c:a2:b5:cf:bc:e0:46:6f:1c:54:bf:d2:a2: fd:5e:47:74:cb:ec:6f:75:0c:25:ec:db:ee:e8:09: f7:e1:66:5c:6b:17:09:ed:4d:16:eb:42:b9:4c:eb: d8:62:2d:5b:98:6d:48:e9:aa:d8:10:73:a9:55:b2: b5:3f:a6:92:cd:42:aa:fb:53:e1:a1:67:50:a9:43: 37:b8:52:02:80:80:75:eb:89:a7:69:d0:33:bf:53: 2a:ac:69:2d:ad:51:96:db:42:2a:50:cb:de:7d:71: 3a:d8:e6:21:03:fd:d6:80:78:35:9d:84:86:0a:37: 53:3f:15:a9:a1:dd:16:4e:96:fb:69:dc:73:33:c1: 8d:4d:4b:dd:15:2b:79:8a:f7:57:ce:5b:2f:f0:7e: ec:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D8:E9:02:E0:00:F4:E5:57:6F:35:74:53:AE:6F:DE:A9:22:3A:D3 X509v3 Authority Key Identifier: keyid:34:D5:8A:06:2B:3D:99:6D:B1:E8:A2:BB:27:64:18:8F:DE:F0:0D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3134302e3231302e38372e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.210.87.0/24 Signature Algorithm: sha256WithRSAEncryption 15:ac:d7:29:0a:c4:7b:f7:c5:cd:84:3d:5b:8c:42:12:bc:2d: 87:b4:85:b7:02:27:ef:d5:fb:0d:b0:3a:f6:1f:03:a9:8a:60: cc:0b:1c:61:8f:8f:6e:1d:a4:c0:0a:44:95:4b:1e:6f:7c:c9: 71:87:07:25:cf:b5:c4:29:c6:db:d8:b7:50:82:77:f1:b6:2a: 7a:09:f7:a5:cf:50:5c:98:02:d7:71:20:49:3d:b4:4e:f1:18: b4:d4:9b:97:44:3c:38:cf:58:97:52:8a:da:24:a5:8e:10:12: 72:55:28:f6:fa:e2:3e:d4:0a:39:30:e4:7d:24:f0:2e:a6:c6: d3:f1:d9:b8:e3:14:18:c4:d9:11:ef:35:cd:af:f7:fe:53:07: da:f6:8c:09:d4:a9:6e:c7:e8:a0:a0:42:08:f2:e3:59:d3:b1: be:d2:a5:6c:b9:fd:0f:eb:d6:2f:b6:8f:6c:bb:1c:fc:8c:13: 08:d3:f2:23:8e:a2:b5:dc:5d:2b:c7:4f:a3:ad:75:32:84:05: 5c:31:da:31:43:a8:e9:c7:7f:fa:54:9d:4f:5c:e2:02:1a:14: b2:04:b5:c6:86:42:88:32:94:1b:66:16:26:87:80:13:cc:f9: b3:4f:62:22:d2:37:82:36:48:e8:c4:a4:46:90:5d:34:28:d7: d5:1b:16:35 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUdpNGZPJdEP2NKYBiqrn9PE8DIMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRENThBMDYyQjNEOTk2REIxRThBMkJCMjc2NDE4OEZE RUYwMERCQTAeFw0yNjA2MTAxNzQ5MjBaFw0yNzA2MDkxNzU0MjBaMDMxMTAvBgNV BAMTKDVDRDhFOTAyRTAwMEY0RTU1NzZGMzU3NDUzQUU2RkRFQTkyMjNBRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+TmbJltxJW2L9eoG0YmTy6Tq+ Do7LQHZCbUad8mEtj1A0mxPTRW08BNc+TzgUWWWBjOeTZw6P48Xrxd/U3+wG348/ H+2WiiRA3LNzM9YD5RmtgKWjvxFfx/Rtr+6hnzfFYPEUlvsCs/74HKK1z7zgRm8c VL/Sov1eR3TL7G91DCXs2+7oCffhZlxrFwntTRbrQrlM69hiLVuYbUjpqtgQc6lV srU/ppLNQqr7U+GhZ1CpQze4UgKAgHXriadp0DO/UyqsaS2tUZbbQipQy959cTrY 5iED/daAeDWdhIYKN1M/Famh3RZOlvtp3HMzwY1NS90VK3mK91fOWy/wfuyBAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUXNjpAuAA9OVXbzV0U65v3qkiOtMwHwYDVR0j BBgwFoAUNNWKBis9mW2x6KK7J2QYj97wDbowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODE1NjkzMC8xLzM0RDU4QTA2MkIzRDk5NkRCMUU4QTJCQjI3NjQx ODhGREVGMDBEQkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMzRENThBMDYyQjNEOTk2REIxRThBMkJCMjc2NDE4OEZERUYwMERCQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4OTkzNTQ4MTU2OTMwLzEvMzEzNDMwMmUzMjMx MzAyZTM4MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAIzSVzANBgkqhkiG9w0BAQsFAAOCAQEAFazXKQrEe/fFzYQ9W4xCErwth7SF twIn79X7DbA69h8DqYpgzAscYY+Pbh2kwApElUseb3zJcYcHJc+1xCnG29i3UIJ3 8bYqegn3pc9QXJgC13EgST20TvEYtNSbl0Q8OM9Yl1KK2iSljhASclUo9vriPtQK OTDkfSTwLqbG0/HZuOMUGMTZEe81za/3/lMH2vaMCdSpbsfooKBCCPLjWdOxvtKl bLn9D+vWL7aPbLsc/IwTCNPyI46itdxdK8dPo611MoQFXDHaMUOo6cd/+lSdT1zi AhoUsgS1xoZCiDKUG2YWJoeAE8z5s09iItI3gjZI6MSkRpBdNCjX1RsWNQ== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:07 2026 by rpki-client