$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3131372e302f32342d3234203d3e203538353139.roa File: 3134302e3234362e3131372e302f32342d3234203d3e203538353139.roa (raw, json) Hash identifier: YS0KEIGh6d8AFSK9kYYmNULSM2ot2sqFNG+PHCqwnE8= Subject key identifier: 6A:FF:1C:20:AE:A1:0D:F5:CE:E3:EB:BD:84:DF:AF:6A:06:E5:18:47 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 03F69E395C66E24D7EBEFDEDFD492BDE897FB5A1 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3131372e302f32342d3234203d3e203538353139.roa Signing time: Wed 03 Jun 2026 16:53:20 +0000 ROA not before: Wed 03 Jun 2026 16:48:20 +0000 ROA not after: Wed 02 Jun 2027 16:53:20 +0000 asID: 58519 IP address blocks: 140.246.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f6:9e:39:5c:66:e2:4d:7e:be:fd:ed:fd:49:2b:de:89:7f:b5:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 16:48:20 2026 GMT Not After : Jun 2 16:53:20 2027 GMT Subject: CN=6AFF1C20AEA10DF5CEE3EBBD84DFAF6A06E51847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:dc:4d:83:4c:bb:84:22:f6:2f:44:67:30:de: 4a:ef:52:72:12:a5:c7:4d:e3:97:1b:27:ef:76:0d: 42:f1:20:bf:00:d2:7c:2b:dd:c1:84:32:38:e5:1e: 45:1d:d6:52:21:dc:c7:e0:28:6b:a4:11:36:fb:bc: e7:76:71:6d:3f:75:bf:f0:5c:f8:b8:e8:52:46:ed: 4b:ac:96:0a:04:4d:06:de:5b:c6:b5:07:00:0c:07: 6a:f2:33:e1:42:80:a8:7c:af:a7:49:bb:6f:f1:fd: 87:c3:20:55:d7:6c:44:37:f4:ef:3a:4c:10:6d:71: de:61:87:d2:69:10:5a:f5:44:78:26:26:52:45:a5: e0:60:ae:ba:0b:56:1c:62:23:88:b8:cc:c8:c0:59: 22:45:28:7b:41:f5:71:64:0e:72:70:f4:06:94:d0: 72:4e:58:20:e3:28:ce:1d:ee:32:2d:7e:3c:00:f0: 08:bc:fd:2c:f0:57:c8:fd:12:49:6b:8f:28:0c:12: a6:06:15:70:8f:4d:11:73:21:bb:9b:01:d2:a9:55: 54:d7:b2:42:90:ea:6f:13:a2:65:91:26:6e:b9:9e: db:87:9a:66:1d:14:cd:7e:78:35:0a:c6:49:81:46: 0a:18:01:e6:84:c2:59:51:02:97:88:a4:41:c0:fe: d5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FF:1C:20:AE:A1:0D:F5:CE:E3:EB:BD:84:DF:AF:6A:06:E5:18:47 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3131372e302f32342d3234203d3e203538353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.246.117.0/24 Signature Algorithm: sha256WithRSAEncryption e8:1e:c2:0b:bc:4f:70:9a:25:2a:06:d7:52:6b:89:19:e8:e0: 89:64:3e:60:f8:ff:b5:59:ca:11:49:8a:2b:2a:1d:75:86:81: 6a:8a:a2:65:da:f6:27:77:ab:09:0c:89:3c:1e:e8:81:a6:3c: c5:ac:83:e9:e0:27:b2:7a:95:64:77:82:cf:16:8e:dc:9c:af: 7c:c6:82:78:22:58:87:0c:b4:7f:da:fc:e8:12:50:48:0f:3c: 00:e0:0f:67:25:61:da:ad:8d:c6:91:a1:ef:f1:94:4b:b9:94: 2d:e8:30:84:96:02:44:b7:6e:b1:dc:0a:a6:19:13:00:f3:64: 20:d8:78:7e:67:3c:26:91:11:46:97:f7:8d:8f:15:59:0b:4c: bb:77:db:31:9f:a5:44:36:2c:68:3a:31:ce:01:3e:b6:8e:81: ca:64:ae:95:36:b3:72:6d:ff:d4:e5:7e:45:92:bd:25:5f:29: 0d:66:82:78:33:47:72:a7:d8:3a:7f:18:08:51:49:e1:70:a2: 6a:45:4d:b7:ee:2a:ad:d6:ec:38:bf:6b:75:23:2e:24:ff:21: 71:22:06:4b:b7:9c:b8:01:af:7b:9e:c4:80:7f:14:53:8c:24: 3a:6d:75:a1:6a:88:83:79:19:e8:ab:0c:33:67:33:9b:74:03: 2b:7c:2c:75 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUA/aeOVxm4k1+vv3t/Ukr3ol/taEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE2NDgyMFoX DTI3MDYwMjE2NTMyMFowMzExMC8GA1UEAxMoNkFGRjFDMjBBRUExMERGNUNFRTNF QkJEODRERkFGNkEwNkU1MTg0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXcTYNMu4Qi9i9EZzDeSu9SchKlx03jlxsn73YNQvEgvwDSfCvdwYQyOOUe RR3WUiHcx+Aoa6QRNvu853ZxbT91v/Bc+LjoUkbtS6yWCgRNBt5bxrUHAAwHavIz 4UKAqHyvp0m7b/H9h8MgVddsRDf07zpMEG1x3mGH0mkQWvVEeCYmUkWl4GCuugtW HGIjiLjMyMBZIkUoe0H1cWQOcnD0BpTQck5YIOMozh3uMi1+PADwCLz9LPBXyP0S SWuPKAwSpgYVcI9NEXMhu5sB0qlVVNeyQpDqbxOiZZEmbrme24eaZh0UzX54NQrG SYFGChgB5oTCWVECl4ikQcD+1dcCAwEAAaOCAhcwggITMB0GA1UdDgQWBBRq/xwg rqEN9c7j672E369qBuUYRzAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM2MmUzMTMxMzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPZ1MA0GCSqGSIb3DQEB CwUAA4IBAQDoHsILvE9wmiUqBtdSa4kZ6OCJZD5g+P+1WcoRSYorKh11hoFqiqJl 2vYnd6sJDIk8HuiBpjzFrIPp4CeyepVkd4LPFo7cnK98xoJ4IliHDLR/2vzoElBI DzwA4A9nJWHarY3GkaHv8ZRLuZQt6DCElgJEt26x3AqmGRMA82Qg2Hh+ZzwmkRFG l/eNjxVZC0y7d9sxn6VENixoOjHOAT62joHKZK6VNrNybf/U5X5Fkr0lXykNZoJ4 M0dyp9g6fxgIUUnhcKJqRU237iqt1uw4v2t1Iy4k/yFxIgZLt5y4Aa97nsSAfxRT jCQ6bXWhaoiDeRnoqwwzZzObdAMrfCx1 -----END CERTIFICATE-----Generated at Fri Jun 12 02:41:02 2026 by rpki-client