$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/0/3135372e302e302e302f31362d3136203d3e2034383337.roa File: 3135372e302e302e302f31362d3136203d3e2034383337.roa (raw, json) Hash identifier: fDj9PbgYar7K7zd4B1N1Um0X9vj9sQ2rE3BREscOUsI= Subject key identifier: 09:1A:37:52:DB:60:B7:0D:73:9C:25:C1:6A:E5:85:CD:37:2B:A1:51 Certificate issuer: /CN=A9143CB30000/serialNumber=EACB7B50F338DF2794EBA3F618C7233B2283E644 Certificate serial: 340C8EA588039A30A5D145E0C65A7DD6E9A4A763 Authority key identifier: EA:CB:7B:50:F3:38:DF:27:94:EB:A3:F6:18:C7:23:3B:22:83:E6:44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/3135372e302e302e302f31362d3136203d3e2034383337.roa Signing time: Tue 02 Jun 2026 10:42:24 +0000 ROA not before: Tue 02 Jun 2026 10:37:24 +0000 ROA not after: Tue 01 Jun 2027 10:42:24 +0000 asID: 4837 IP address blocks: 157.0.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 15:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:0c:8e:a5:88:03:9a:30:a5:d1:45:e0:c6:5a:7d:d6:e9:a4:a7:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=EACB7B50F338DF2794EBA3F618C7233B2283E644 Validity Not Before: Jun 2 10:37:24 2026 GMT Not After : Jun 1 10:42:24 2027 GMT Subject: CN=091A3752DB60B70D739C25C16AE585CD372BA151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:82:76:53:90:7a:67:3e:6e:9d:ab:0e:ae:46: 87:9d:d9:d3:2b:7c:b1:6f:3d:68:4b:c2:43:b5:6e: fc:77:73:cf:d7:66:f1:5f:ed:93:22:e6:4b:92:2a: 9c:61:c8:c7:53:11:86:7e:8f:b6:f2:d4:7c:31:77: 2d:81:c9:ce:8e:06:b5:dc:6e:ca:3a:04:02:b2:15: fe:c0:0b:68:29:b9:3d:30:25:b5:a1:f1:49:db:7d: a3:23:b5:d1:9f:80:52:f2:3e:b5:2b:ac:78:3f:d3: 66:8f:18:73:bb:49:ae:ea:83:a2:f2:f6:76:47:cb: fc:2c:8c:13:1b:37:a3:fc:b6:c4:7d:13:64:50:77: c6:0e:ab:ae:e2:d0:97:49:e7:5e:8b:2f:c6:b7:8d: 78:45:dc:62:b1:d9:ba:a4:b3:b5:27:c7:96:63:91: 9c:42:8d:c0:24:2f:6b:51:90:f6:36:34:88:32:4d: 26:2a:f8:ed:a2:76:ec:4c:d4:0e:c3:b7:09:73:f5: 2d:cd:5f:8b:be:87:91:0b:f9:d2:68:c0:5e:46:71: ff:d7:92:49:ba:8a:3e:e9:4f:04:52:04:8a:0a:31: fc:3f:50:43:0e:d0:56:0c:cf:cf:83:2a:ce:b2:bb: 50:6b:0b:ab:54:dd:af:75:84:fa:14:2c:db:27:c6: ac:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1A:37:52:DB:60:B7:0D:73:9C:25:C1:6A:E5:85:CD:37:2B:A1:51 X509v3 Authority Key Identifier: keyid:EA:CB:7B:50:F3:38:DF:27:94:EB:A3:F6:18:C7:23:3B:22:83:E6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/3135372e302e302e302f31362d3136203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:b0:ed:be:54:d1:f5:83:9d:4b:86:58:39:b8:e1:62:4a:da: ce:aa:d8:90:68:a8:17:14:0e:2b:37:f6:82:22:86:5b:b5:ae: 89:2d:1a:80:cd:ea:87:3d:94:97:3b:b1:f3:f6:b8:9d:f3:d3: 40:38:20:39:4b:0e:ac:fa:bc:d5:2d:ed:51:70:88:ae:b2:0b: ff:0b:16:dd:5e:27:f8:9c:3b:61:1e:e2:c4:3d:d9:e5:cd:10: a3:aa:ed:8d:83:fa:e9:e6:7c:be:9e:5d:f6:ff:16:c2:ab:bf: 96:90:2e:f2:59:b1:66:ef:f5:0d:48:47:ee:84:69:0e:ba:b9: 69:f8:a5:94:d4:2e:11:0f:b3:db:68:37:13:3f:50:36:a7:3d: 2e:61:26:c8:ec:4f:df:e1:cb:bb:e0:a7:78:db:06:5f:0b:d9: 8d:ee:da:36:50:12:b0:4d:2d:af:e7:48:77:9b:f5:6e:a2:74: 2d:0d:cb:b2:9b:e2:22:73:71:91:98:92:2f:05:6d:c6:3d:30: f8:ca:b3:c5:fa:e8:1b:84:fc:1e:96:6a:35:4b:5d:c0:2d:59: 9e:b4:8e:d7:e1:d4:dc:60:f9:7b:52:38:cd:22:8e:de:fc:20: 1e:e1:a6:98:2d:72:9f:ec:90:02:c6:b2:44:29:51:e8:79:76: 42:38:85:5e -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUNAyOpYgDmjCl0UXgxlp91umkp2MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyhFQUNCN0I1MEYz MzhERjI3OTRFQkEzRjYxOEM3MjMzQjIyODNFNjQ0MB4XDTI2MDYwMjEwMzcyNFoX DTI3MDYwMTEwNDIyNFowMzExMC8GA1UEAxMoMDkxQTM3NTJEQjYwQjcwRDczOUMy NUMxNkFFNTg1Q0QzNzJCQTE1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPWCdlOQemc+bp2rDq5Gh53Z0yt8sW89aEvCQ7Vu/Hdzz9dm8V/tkyLmS5Iq nGHIx1MRhn6PtvLUfDF3LYHJzo4GtdxuyjoEArIV/sALaCm5PTAltaHxSdt9oyO1 0Z+AUvI+tSuseD/TZo8Yc7tJruqDovL2dkfL/CyMExs3o/y2xH0TZFB3xg6rruLQ l0nnXosvxreNeEXcYrHZuqSztSfHlmORnEKNwCQva1GQ9jY0iDJNJir47aJ27EzU DsO3CXP1Lc1fi76HkQv50mjAXkZx/9eSSbqKPulPBFIEigox/D9QQw7QVgzPz4Mq zrK7UGsLq1Tdr3WE+hQs2yfGrM8CAwEAAaOCAgowggIGMB0GA1UdDgQWBBQJGjdS 22C3DXOcJcFq5YXNNyuhUTAfBgNVHSMEGDAWgBTqy3tQ8zjfJ5Tro/YYxyM7IoPm RDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzAvRUFDQjdC NTBGMzM4REYyNzk0RUJBM0Y2MThDNzIzM0IyMjgzRTY0NC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvNnN0N1VQTTQz eWVVNjZQMkdNY2pPeUtENWtRLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUF BzALhmhyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTY3MDQ1OTM2 OTUzNDI1OTMvMC8zMTM1MzcyZTMwMmUzMDJlMzAyZjMxMzYyZDMxMzYyMDNkM2Uy MDM0MzgzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUF BwEHAQH/BA8wDTALBAIAATAFAwMAnQAwDQYJKoZIhvcNAQELBQADggEBAA2w7b5U 0fWDnUuGWDm44WJK2s6q2JBoqBcUDis39oIihlu1roktGoDN6oc9lJc7sfP2uJ3z 00A4IDlLDqz6vNUt7VFwiK6yC/8LFt1eJ/icO2Ee4sQ92eXNEKOq7Y2D+unmfL6e Xfb/FsKrv5aQLvJZsWbv9Q1IR+6EaQ66uWn4pZTULhEPs9toNxM/UDanPS5hJsjs T9/hy7vgp3jbBl8L2Y3u2jZQErBNLa/nSHeb9W6idC0Ny7Kb4iJzcZGYki8FbcY9 MPjKs8X66BuE/B6WajVLXcAtWZ60jtfh1Nxg+XtSOM0ijt78IB7hppgtcp/skALG skQpUeh5dkI4hV4= -----END CERTIFICATE-----Generated at Tue Jun 2 21:32:19 2026 by rpki-client