$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3133392e3138392e3132382e302f31372d3137203d3e20313531303538.roa File: 3133392e3138392e3132382e302f31372d3137203d3e20313531303538.roa (raw, json) Hash identifier: GgCEgQcIt4x/8V/l8ll7G2xnfejdgm0kOMhHvdNXq+o= Subject key identifier: E2:21:1C:51:3F:DF:24:20:73:71:7C:DD:5D:E7:38:B3:60:51:B9:35 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 5E7C7A3A3BEA22975BA77DEC0BFDC9B3862CB422 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3133392e3138392e3132382e302f31372d3137203d3e20313531303538.roa Signing time: Wed 03 Jun 2026 16:45:37 +0000 ROA not before: Wed 03 Jun 2026 16:40:37 +0000 ROA not after: Wed 02 Jun 2027 16:45:37 +0000 asID: 151058 IP address blocks: 139.189.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:7c:7a:3a:3b:ea:22:97:5b:a7:7d:ec:0b:fd:c9:b3:86:2c:b4:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 16:40:37 2026 GMT Not After : Jun 2 16:45:37 2027 GMT Subject: CN=E2211C513FDF242073717CDD5DE738B36051B935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:79:8d:1d:92:04:19:f8:f8:29:38:43:55:89: ce:35:52:28:18:40:de:34:49:b5:f0:68:c2:ce:f7: bb:15:ab:5d:66:03:a2:29:ea:b5:a9:03:fe:1a:3c: 99:0a:63:c7:f3:5e:25:eb:e4:38:f5:6f:20:cb:7c: 07:fb:cc:be:5c:11:e5:49:49:72:f5:a2:84:e6:d5: bb:ad:be:71:a0:69:50:e9:16:ff:a5:22:01:7b:1f: 3e:e1:3a:c6:00:40:2f:92:5e:fc:e6:04:4a:0b:a3: 9d:09:5f:4f:97:2c:fa:7f:51:da:8b:14:0c:7d:45: 2d:21:07:7e:ba:24:76:b6:c5:d4:b0:db:3b:d3:64: 5b:da:56:c7:3c:2c:98:aa:6d:b6:96:72:fc:e8:7f: bc:08:c1:0c:ad:24:93:5b:d0:e3:f0:0c:88:df:b6: 2f:e9:ab:22:bc:15:19:c0:cd:bd:86:88:1b:70:69: f8:e2:41:f3:93:95:22:23:da:1a:f9:26:0f:ad:3e: e3:80:5a:ac:d3:dd:d0:78:6f:fa:6f:21:48:f9:84: 9a:21:47:0a:1a:d7:da:92:de:15:79:35:39:5a:98: 62:d0:8b:cb:32:bc:6f:7a:fd:96:d2:df:df:ba:26: c8:b8:68:99:80:8d:7d:05:6b:b0:1f:8b:5d:9f:8b: 48:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:21:1C:51:3F:DF:24:20:73:71:7C:DD:5D:E7:38:B3:60:51:B9:35 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3133392e3138392e3132382e302f31372d3137203d3e20313531303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.189.128.0/17 Signature Algorithm: sha256WithRSAEncryption df:25:d2:4c:3f:a5:1c:d7:cd:37:61:7c:5a:dd:3e:31:5f:2c: 7d:cb:9a:8d:85:ed:da:bd:3a:78:32:7b:96:ae:6b:db:71:af: fa:45:56:93:50:3f:24:c5:4a:96:fb:c7:84:9b:06:a7:e2:76: 1f:5d:96:10:97:dc:31:ae:4d:cc:6e:79:4c:64:7c:19:a9:88: 36:99:70:5c:f8:c8:4b:e8:64:2c:7b:30:ff:ce:b1:75:a6:da: 80:d7:db:62:48:93:7b:bc:77:f8:ce:1e:0d:95:42:22:45:2a: 1c:ec:3b:c3:09:73:89:eb:b5:60:2f:49:d8:f4:9e:ec:86:3d: ce:d7:d7:a9:7a:56:9d:fc:d6:fb:da:04:0d:1a:92:28:8a:f3: ee:a9:a6:0c:b0:14:23:be:18:73:b9:ee:b0:13:80:2a:e3:75: a4:f6:ae:76:b3:88:f0:24:7c:b1:0b:91:14:f0:d7:28:fc:59: 81:bb:f8:f8:01:df:61:ee:e0:18:f4:f8:24:15:59:8c:d7:da: 4c:8f:f3:8a:3c:7a:3e:90:3f:62:03:22:c8:e7:ab:4c:a2:5d: 70:7b:0c:99:95:90:bd:da:47:92:9e:3d:cf:d2:f5:2b:c4:62: 51:05:c3:4a:a8:81:6f:86:15:39:c4:5b:e3:dc:1b:90:5a:f3: bc:9a:a0:75 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUXnx6OjvqIpdbp33sC/3Js4YstCIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE2NDAzN1oX DTI3MDYwMjE2NDUzN1owMzExMC8GA1UEAxMoRTIyMTFDNTEzRkRGMjQyMDczNzE3 Q0RENURFNzM4QjM2MDUxQjkzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANN5jR2SBBn4+Ck4Q1WJzjVSKBhA3jRJtfBows73uxWrXWYDoinqtakD/ho8 mQpjx/NeJevkOPVvIMt8B/vMvlwR5UlJcvWihObVu62+caBpUOkW/6UiAXsfPuE6 xgBAL5Je/OYESgujnQlfT5cs+n9R2osUDH1FLSEHfrokdrbF1LDbO9NkW9pWxzws mKpttpZy/Oh/vAjBDK0kk1vQ4/AMiN+2L+mrIrwVGcDNvYaIG3Bp+OJB85OVIiPa GvkmD60+44BarNPd0Hhv+m8hSPmEmiFHChrX2pLeFXk1OVqYYtCLyzK8b3r9ltLf 37omyLhomYCNfQVrsB+LXZ+LSAUCAwEAAaOCAhowggIWMB0GA1UdDgQWBBTiIRxR P98kIHNxfN1d5zizYFG5NTAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTMzMzkyZTMxMzgzOTJlMzEzMjM4MmUzMDJmMzEzNzJk MzEzNzIwM2QzZTIwMzEzNTMxMzAzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHi72AMA0GCSqGSIb3 DQEBCwUAA4IBAQDfJdJMP6Uc1803YXxa3T4xXyx9y5qNhe3avTp4MnuWrmvbca/6 RVaTUD8kxUqW+8eEmwan4nYfXZYQl9wxrk3MbnlMZHwZqYg2mXBc+MhL6GQsezD/ zrF1ptqA19tiSJN7vHf4zh4NlUIiRSoc7DvDCXOJ67VgL0nY9J7shj3O19epelad /Nb72gQNGpIoivPuqaYMsBQjvhhzue6wE4Aq43Wk9q52s4jwJHyxC5EU8Nco/FmB u/j4Ad9h7uAY9PgkFVmM19pMj/OKPHo+kD9iAyLI56tMol1wewyZlZC92keSnj3P 0vUrxGJRBcNKqIFvhhU5xFvj3BuQWvO8mqB1 -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:33 2026 by rpki-client