$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096265459348537346/1/AS136958.roa File: AS136958.roa (raw, json) Hash identifier: es7Px72aZsegKB/zlZjsZawH5pspdJD+M95b+DUVsMk= Subject key identifier: E3:64:22:CE:7A:7E:0F:7B:4C:CC:41:F3:8C:34:46:C3:CE:19:E1:23 Certificate issuer: /CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Certificate serial: 29FAAF4A6A50B1C264428816D61BCE3D249C58F3 Authority key identifier: 1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/AS136958.roa Signing time: Mon 18 May 2026 03:31:34 +0000 ROA not before: Mon 18 May 2026 03:26:34 +0000 ROA not after: Mon 17 May 2027 03:31:34 +0000 asID: 136958 IP address blocks: 120.133.128.0/18 maxlen: 32 2403:a200:a3ff::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 23:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:fa:af:4a:6a:50:b1:c2:64:42:88:16:d6:1b:ce:3d:24:9c:58:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Validity Not Before: May 18 03:26:34 2026 GMT Not After : May 17 03:31:34 2027 GMT Subject: CN=E36422CE7A7E0F7B4CCC41F38C3446C3CE19E123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:23:b1:15:79:ea:0f:bb:32:c1:7d:f8:02:ab: e3:d1:bf:1f:ec:86:9f:65:53:ad:58:39:d8:11:e0: 5e:63:28:9e:5f:09:ed:85:d7:9b:1f:02:b3:8e:3b: 68:18:ac:34:20:31:e1:b8:32:0e:64:00:f1:c0:6b: ae:ab:f3:25:cf:80:0b:e9:89:00:e6:04:99:a3:96: 5e:ba:f3:22:ae:4f:8f:ee:d5:f6:ac:15:d1:53:ed: 26:fc:dc:e4:8b:02:f6:19:f1:84:5f:72:65:af:69: d8:5b:2d:b0:7b:59:8d:59:c2:8b:80:9c:8c:96:40: 3c:56:ce:7b:4f:cb:41:a5:24:07:58:ac:8f:7c:14: b0:a3:ab:dd:5b:56:60:a4:18:0f:14:af:08:e7:84: 17:05:0e:b6:78:10:70:78:92:ae:e0:8d:16:ab:48: da:6a:8c:cb:48:07:eb:c3:a3:7b:1b:7d:81:65:dc: 65:b2:fc:c6:fe:d8:84:73:12:77:e0:75:11:99:27: 1f:f3:e2:7c:0a:92:3f:0b:90:78:46:e2:1a:f4:a9: 9d:96:cd:72:82:f8:8d:f0:a9:ca:a1:3a:16:09:9c: 70:7a:79:b7:45:6b:53:60:da:d8:10:60:c5:de:4d: 27:98:24:c1:c4:56:39:10:5a:ec:ff:8d:79:6b:52: 8c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:64:22:CE:7A:7E:0F:7B:4C:CC:41:F3:8C:34:46:C3:CE:19:E1:23 X509v3 Authority Key Identifier: keyid:1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/AS136958.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.133.128.0/18 IPv6: 2403:a200:a3ff::/48 Signature Algorithm: sha256WithRSAEncryption 87:fa:24:b8:42:4d:36:c8:94:ff:20:2f:e8:c8:86:78:95:81: 25:63:6e:f5:97:92:d8:2d:41:6c:99:b1:7d:9e:48:fd:15:b7: 7f:cc:34:6e:c0:c9:0a:f8:1e:b4:fb:a2:c2:ef:4b:3d:29:33: eb:c7:39:69:0a:cd:78:ea:9b:9a:88:c1:d2:2a:c5:e1:66:b4: c8:22:b6:9b:8e:68:5d:ef:eb:28:8f:08:15:a7:89:0b:c8:5b: 8a:61:4e:97:68:f1:8a:84:61:37:4e:70:fa:6b:e8:2d:15:36: 37:3a:fd:2b:a3:55:cd:f7:0e:21:7d:40:d3:6c:c3:af:bc:05: 1f:dc:2c:21:19:34:48:1f:0e:3e:ae:0a:99:e3:40:1f:45:90: f8:13:9f:c0:96:f6:c5:70:2c:3f:cd:44:fd:8b:d7:9c:4a:17: 13:9a:7f:6e:35:70:74:b0:e2:4e:0b:36:13:79:fe:a6:89:e6: db:10:8d:45:b2:c6:8c:07:90:3b:05:7d:75:c5:64:1d:7e:a2: 90:ea:c1:f6:96:a8:9d:ec:fc:78:3d:cf:4e:1f:39:09:7f:91: ed:2a:a1:be:c2:c1:99:6f:c2:93:a6:a2:98:60:2c:c4:85:10: ed:bd:13:0a:9a:8e:4f:75:16:31:94:65:af:4f:d9:1a:ea:82: ef:77:1f:c1 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUKfqvSmpQscJkQogW1hvOPSScWPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVD NTQ0Qzc0QjAeFw0yNjA1MTgwMzI2MzRaFw0yNzA1MTcwMzMxMzRaMDMxMTAvBgNV BAMTKEUzNjQyMkNFN0E3RTBGN0I0Q0NDNDFGMzhDMzQ0NkMzQ0UxOUUxMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwI7EVeeoPuzLBffgCq+PRvx/s hp9lU61YOdgR4F5jKJ5fCe2F15sfArOOO2gYrDQgMeG4Mg5kAPHAa66r8yXPgAvp iQDmBJmjll668yKuT4/u1fasFdFT7Sb83OSLAvYZ8YRfcmWvadhbLbB7WY1ZwouA nIyWQDxWzntPy0GlJAdYrI98FLCjq91bVmCkGA8UrwjnhBcFDrZ4EHB4kq7gjRar SNpqjMtIB+vDo3sbfYFl3GWy/Mb+2IRzEnfgdRGZJx/z4nwKkj8LkHhG4hr0qZ2W zXKC+I3wqcqhOhYJnHB6ebdFa1Ng2tgQYMXeTSeYJMHEVjkQWuz/jXlrUoxPAgMB AAGjggH1MIIB8TAdBgNVHQ4EFgQU42Qiznp+D3tMzEHzjDRGw84Z4SMwHwYDVR0j BBgwFoAUHFGc0cQVkl5/zpL9og/xjsVEx0swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI2NTQ1OTM0ODUzNzM0Ni8xLzFDNTE5Q0QxQzQxNTkyNUU3RkNFOTJGREEyMEZG MThFQzU0NEM3NEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVDNTQ0Qzc0Qi5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTYyNjU0NTkzNDg1MzczNDYvMS9BUzEzNjk1OC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQC AAEwBgMEBniFgDAPBAIAAjAJAwcAJAOiAKP/MA0GCSqGSIb3DQEBCwUAA4IBAQCH +iS4Qk02yJT/IC/oyIZ4lYElY271l5LYLUFsmbF9nkj9Fbd/zDRuwMkK+B60+6LC 70s9KTPrxzlpCs146puaiMHSKsXhZrTIIrabjmhd7+sojwgVp4kLyFuKYU6XaPGK hGE3TnD6a+gtFTY3Ov0ro1XN9w4hfUDTbMOvvAUf3CwhGTRIHw4+rgqZ40AfRZD4 E5/AlvbFcCw/zUT9i9ecShcTmn9uNXB0sOJOCzYTef6miebbEI1FssaMB5A7BX11 xWQdfqKQ6sH2lqid7Px4Pc9OHzkJf5HtKqG+wsGZb8KTpqKYYCzEhRDtvRMKmo5P dRYxlGWvT9ka6oLvdx/B -----END CERTIFICATE-----Generated at Sat Jun 6 16:46:05 2026 by rpki-client