$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/0/3135372e302e3134342e302f32312d3231203d3e20313430373137.roa File: 3135372e302e3134342e302f32312d3231203d3e20313430373137.roa (raw, json) Hash identifier: Cv4hzn/Xd+NXvG9u/AXDMVjec5VftYOvT9rpUxSmwQU= Subject key identifier: 50:09:DA:4C:16:B6:53:8C:71:74:91:62:C7:58:BC:6C:DB:05:53:E6 Certificate issuer: /CN=A9143CB30000/serialNumber=EACB7B50F338DF2794EBA3F618C7233B2283E644 Certificate serial: 207046A7301AE9FC1120A85A41E0916F1B13D587 Authority key identifier: EA:CB:7B:50:F3:38:DF:27:94:EB:A3:F6:18:C7:23:3B:22:83:E6:44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/3135372e302e3134342e302f32312d3231203d3e20313430373137.roa Signing time: Mon 01 Jun 2026 01:57:17 +0000 ROA not before: Mon 01 Jun 2026 01:52:17 +0000 ROA not after: Mon 31 May 2027 01:57:17 +0000 asID: 140717 IP address blocks: 157.0.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 15:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:70:46:a7:30:1a:e9:fc:11:20:a8:5a:41:e0:91:6f:1b:13:d5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=EACB7B50F338DF2794EBA3F618C7233B2283E644 Validity Not Before: Jun 1 01:52:17 2026 GMT Not After : May 31 01:57:17 2027 GMT Subject: CN=5009DA4C16B6538C71749162C758BC6CDB0553E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e6:5a:75:d1:81:d5:d2:de:c0:26:6c:cf:7a: 42:6b:ca:a0:68:b8:93:4d:8a:12:63:bc:da:e5:a8: b9:3b:d6:2a:89:87:22:ba:80:9c:c3:ae:d9:84:77: 96:7e:53:e2:ef:36:ec:35:fd:54:1e:ef:4b:a1:4d: af:f8:47:9f:4e:29:f2:b6:c8:8e:1e:81:a8:d4:4c: 20:38:54:56:67:0b:8b:17:d3:cb:5e:58:4e:2c:79: 84:19:4d:a8:5e:37:50:63:d1:62:34:50:d2:e4:36: 93:ad:63:ae:4b:a9:35:3a:ca:d3:ee:66:b8:4c:31: 40:d4:d6:e8:c6:ad:11:4c:b2:cb:b7:16:90:22:8b: b1:30:eb:c4:eb:97:86:02:f3:29:10:dc:d2:9e:cf: 86:ca:d7:0b:7b:c1:38:02:a6:7d:6b:bb:f3:4d:f9: 34:43:48:ae:1a:9f:fe:91:5c:bd:54:05:77:4c:df: 62:fc:05:9b:f7:44:d0:c8:4c:b8:29:51:88:61:b9: 39:6f:fd:d7:09:88:e8:5a:4b:82:04:d9:9a:8c:cc: 1d:56:5a:7b:e7:bb:80:f6:d9:7e:98:19:87:d5:fd: 81:4d:c8:d5:ae:09:5c:f4:92:db:05:8c:f6:cc:29: 9e:09:5c:ef:6e:cc:6e:8c:a2:ba:3f:a5:a0:a5:89: aa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:09:DA:4C:16:B6:53:8C:71:74:91:62:C7:58:BC:6C:DB:05:53:E6 X509v3 Authority Key Identifier: keyid:EA:CB:7B:50:F3:38:DF:27:94:EB:A3:F6:18:C7:23:3B:22:83:E6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/3135372e302e3134342e302f32312d3231203d3e20313430373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.0.144.0/21 Signature Algorithm: sha256WithRSAEncryption 90:1e:19:23:17:4f:86:8d:fa:d0:0b:1b:00:05:76:7b:33:6f: 47:ff:2c:41:b2:ea:d6:89:a3:20:47:56:b7:da:a3:f0:15:74: 39:ab:54:49:e2:0f:40:a2:a1:1b:45:15:88:ea:df:e5:b7:89: d6:77:e9:c6:de:1f:38:85:43:42:3f:0a:b5:f1:08:2c:03:7a: b6:6f:d3:5f:68:5d:dd:e5:be:3d:4a:ed:24:d8:8f:7e:77:f8: e9:dc:6a:d6:9c:f9:53:8b:f2:0d:0f:a5:cc:21:e8:aa:46:64: 00:a8:18:04:dc:28:9b:6c:89:f7:82:5a:cd:4c:73:47:28:ac: 27:b0:61:81:8e:68:c2:24:d5:81:54:fc:41:7a:3f:58:0f:95: f9:4d:a7:19:0d:49:00:cb:7d:26:f2:84:0a:56:55:14:92:98: 8d:97:5a:dc:08:cf:d7:03:df:de:61:83:f2:91:52:7a:22:07: 31:b2:e5:bd:df:8c:63:db:b7:bb:11:d2:e7:03:13:b1:e7:50: c2:49:eb:62:c7:3b:db:9d:4b:4e:2a:c7:35:7f:00:59:91:b7: 8f:f9:4c:06:2c:21:26:c5:70:53:63:84:29:b2:6c:8b:82:79: 87:f4:24:8b:4d:fe:86:da:72:df:10:c1:0e:5c:9a:3a:97:6c: 5f:9d:1b:32 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUIHBGpzAa6fwRIKhaQeCRbxsT1YcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyhFQUNCN0I1MEYz MzhERjI3OTRFQkEzRjYxOEM3MjMzQjIyODNFNjQ0MB4XDTI2MDYwMTAxNTIxN1oX DTI3MDUzMTAxNTcxN1owMzExMC8GA1UEAxMoNTAwOURBNEMxNkI2NTM4QzcxNzQ5 MTYyQzc1OEJDNkNEQjA1NTNFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPPmWnXRgdXS3sAmbM96QmvKoGi4k02KEmO82uWouTvWKomHIrqAnMOu2YR3 ln5T4u827DX9VB7vS6FNr/hHn04p8rbIjh6BqNRMIDhUVmcLixfTy15YTix5hBlN qF43UGPRYjRQ0uQ2k61jrkupNTrK0+5muEwxQNTW6MatEUyyy7cWkCKLsTDrxOuX hgLzKRDc0p7PhsrXC3vBOAKmfWu78035NENIrhqf/pFcvVQFd0zfYvwFm/dE0MhM uClRiGG5OW/91wmI6FpLggTZmozMHVZae+e7gPbZfpgZh9X9gU3I1a4JXPSS2wWM 9swpnglc727Mboyiuj+loKWJqqcCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBRQCdpM FrZTjHF0kWLHWLxs2wVT5jAfBgNVHSMEGDAWgBTqy3tQ8zjfJ5Tro/YYxyM7IoPm RDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzAvRUFDQjdC NTBGMzM4REYyNzk0RUJBM0Y2MThDNzIzM0IyMjgzRTY0NC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvNnN0N1VQTTQz eWVVNjZQMkdNY2pPeUtENWtRLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkz Njk1MzQyNTkzLzAvMzEzNTM3MmUzMDJlMzEzNDM0MmUzMDJmMzIzMTJkMzIzMTIw M2QzZTIwMzEzNDMwMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDnQCQMA0GCSqGSIb3DQEBCwUA A4IBAQCQHhkjF0+GjfrQCxsABXZ7M29H/yxBsurWiaMgR1a32qPwFXQ5q1RJ4g9A oqEbRRWI6t/lt4nWd+nG3h84hUNCPwq18QgsA3q2b9NfaF3d5b49Su0k2I9+d/jp 3GrWnPlTi/IND6XMIeiqRmQAqBgE3CibbIn3glrNTHNHKKwnsGGBjmjCJNWBVPxB ej9YD5X5TacZDUkAy30m8oQKVlUUkpiNl1rcCM/XA9/eYYPykVJ6IgcxsuW934xj 27e7EdLnAxOx51DCSetixzvbnUtOKsc1fwBZkbeP+UwGLCEmxXBTY4QpsmyLgnmH 9CSLTf6G2nLfEMEOXJo6l2xfnRsy -----END CERTIFICATE-----Generated at Tue Jun 2 21:25:17 2026 by rpki-client