$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234302e3132382e302f31372d3137203d3e20313531303538.roa File: 3134302e3234302e3132382e302f31372d3137203d3e20313531303538.roa (raw, json) Hash identifier: fZhyuGDvbogTorQEYEOOOg/tAV5XrmVo386/LBfXouc= Subject key identifier: 75:25:AA:1E:AB:31:DE:EA:6D:B2:F5:87:B8:65:A0:60:BF:53:F0:A8 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 02F13B3D5D75ED761914410B3CC2C5C2FAF118CD Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234302e3132382e302f31372d3137203d3e20313531303538.roa Signing time: Wed 03 Jun 2026 16:45:37 +0000 ROA not before: Wed 03 Jun 2026 16:40:37 +0000 ROA not after: Wed 02 Jun 2027 16:45:37 +0000 asID: 151058 IP address blocks: 140.240.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f1:3b:3d:5d:75:ed:76:19:14:41:0b:3c:c2:c5:c2:fa:f1:18:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 16:40:37 2026 GMT Not After : Jun 2 16:45:37 2027 GMT Subject: CN=7525AA1EAB31DEEA6DB2F587B865A060BF53F0A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:75:0f:91:62:b0:30:31:db:f5:f7:3f:b9:df: fe:9a:ce:9b:bf:1e:62:3b:8a:68:94:b2:38:d1:92: a0:e7:54:a4:bc:d0:4b:9f:13:7a:57:e7:7d:7f:9f: 36:f7:ad:1e:6b:0d:e8:58:13:1d:94:c8:c5:a1:8c: 0a:46:e3:19:8b:ba:b1:2e:5e:c7:e9:ba:e1:64:d2: be:01:50:b0:00:a9:88:4a:a9:43:c4:53:4c:5c:c7: c5:bb:bf:3e:3f:cb:ee:67:94:1e:c1:d4:b3:19:4d: de:09:3e:12:57:eb:a3:e0:43:3e:6a:b3:0f:45:db: 9d:96:0c:d6:45:6b:3e:ef:f5:28:86:0b:ce:67:05: 33:2e:99:1b:19:52:e7:91:af:20:44:aa:54:7c:cf: 52:99:7f:c4:5a:f7:43:f8:19:f3:7e:f3:48:b4:74: 29:cd:70:52:96:37:30:2a:43:6d:e1:3d:34:46:e0: 8c:68:cb:3d:7c:4e:dc:46:5e:56:02:14:61:18:9d: 40:df:88:e4:77:be:52:94:38:65:5e:f1:47:f6:4e: e5:10:02:e9:eb:10:29:03:ca:9c:cb:8c:06:b5:88: 2e:d7:f9:5b:26:87:e6:46:a0:35:e8:bf:80:37:44: e9:5a:43:6a:e4:d0:b1:54:78:a7:87:79:50:e9:25: 8e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:25:AA:1E:AB:31:DE:EA:6D:B2:F5:87:B8:65:A0:60:BF:53:F0:A8 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234302e3132382e302f31372d3137203d3e20313531303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.240.128.0/17 Signature Algorithm: sha256WithRSAEncryption d3:3d:e6:ab:1e:70:53:11:23:ea:27:5d:60:bf:02:fa:86:7e: fc:cc:55:6e:55:d7:36:47:83:4d:88:29:0b:44:80:b8:ef:c0: 95:17:41:43:ca:c8:0c:d7:00:c4:a6:77:bb:f1:95:d0:02:79: af:62:c5:0b:42:6f:e6:4b:cc:dc:d2:77:26:49:20:63:01:0f: 07:3a:b2:c6:4d:39:70:23:f4:45:f6:2d:8d:92:35:7b:8a:5a: c6:b8:bf:93:f6:d7:91:94:c6:10:14:61:f6:7c:ad:39:9d:07: 0c:da:5a:33:16:73:df:73:4c:6a:37:ca:e5:5d:fe:fa:4c:e5: a5:e0:2a:07:93:8a:61:e9:43:67:30:78:12:b8:e8:8c:6d:28: 52:ce:d0:8b:25:4f:5b:18:28:17:c2:2b:ee:ef:ad:b6:c2:c4: 1b:f7:76:f6:a2:0a:40:b5:7e:83:65:31:a8:75:c5:46:a1:c8: 81:ad:bc:21:67:e4:8c:c3:81:5e:3a:4b:4d:76:85:ea:e6:45: 3c:c3:c6:83:3c:aa:22:92:c3:a9:6d:2b:76:fc:f0:cf:1e:32: fa:95:ea:47:de:ce:7b:fc:bd:a9:6e:ab:d6:e8:46:2b:b1:2e: 6a:c2:d5:4a:e3:34:fd:ab:c3:69:34:fa:c3:1c:44:7c:94:8c: d1:4e:4c:72 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAvE7PV117XYZFEELPMLFwvrxGM0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE2NDAzN1oX DTI3MDYwMjE2NDUzN1owMzExMC8GA1UEAxMoNzUyNUFBMUVBQjMxREVFQTZEQjJG NTg3Qjg2NUEwNjBCRjUzRjBBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAId1D5FisDAx2/X3P7nf/prOm78eYjuKaJSyONGSoOdUpLzQS58TelfnfX+f NvetHmsN6FgTHZTIxaGMCkbjGYu6sS5ex+m64WTSvgFQsACpiEqpQ8RTTFzHxbu/ Pj/L7meUHsHUsxlN3gk+Elfro+BDPmqzD0XbnZYM1kVrPu/1KIYLzmcFMy6ZGxlS 55GvIESqVHzPUpl/xFr3Q/gZ837zSLR0Kc1wUpY3MCpDbeE9NEbgjGjLPXxO3EZe VgIUYRidQN+I5He+UpQ4ZV7xR/ZO5RAC6esQKQPKnMuMBrWILtf5WyaH5kagNei/ gDdE6VpDauTQsVR4p4d5UOkljsECAwEAAaOCAhowggIWMB0GA1UdDgQWBBR1Jaoe qzHe6m2y9Ye4ZaBgv1PwqDAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzMDJlMzEzMjM4MmUzMDJmMzEzNzJk MzEzNzIwM2QzZTIwMzEzNTMxMzAzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHjPCAMA0GCSqGSIb3 DQEBCwUAA4IBAQDTPearHnBTESPqJ11gvwL6hn78zFVuVdc2R4NNiCkLRIC478CV F0FDysgM1wDEpne78ZXQAnmvYsULQm/mS8zc0ncmSSBjAQ8HOrLGTTlwI/RF9i2N kjV7ilrGuL+T9teRlMYQFGH2fK05nQcM2lozFnPfc0xqN8rlXf76TOWl4CoHk4ph 6UNnMHgSuOiMbShSztCLJU9bGCgXwivu7622wsQb93b2ogpAtX6DZTGodcVGociB rbwhZ+SMw4FeOktNdoXq5kU8w8aDPKoiksOpbSt2/PDPHjL6lepH3s57/L2pbqvW 6EYrsS5qwtVK4zT9q8NpNPrDHER8lIzRTkxy -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:18 2026 by rpki-client