$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3231342e302f32342d3234203d3e203538353139.roa File: 3134302e3234362e3231342e302f32342d3234203d3e203538353139.roa (raw, json) Hash identifier: aH1bFKR1Q8hhuMQOImBTAn3sYhueAUZYHotfutqhkjQ= Subject key identifier: 31:EF:29:5E:96:15:03:1C:39:9F:65:A8:7D:39:FF:A5:3D:95:18:5A Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 6A7FC4558B635BFF63591D5274CEC014A4E20737 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3231342e302f32342d3234203d3e203538353139.roa Signing time: Wed 03 Jun 2026 16:53:22 +0000 ROA not before: Wed 03 Jun 2026 16:48:22 +0000 ROA not after: Wed 02 Jun 2027 16:53:22 +0000 asID: 58519 IP address blocks: 140.246.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:7f:c4:55:8b:63:5b:ff:63:59:1d:52:74:ce:c0:14:a4:e2:07:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 16:48:22 2026 GMT Not After : Jun 2 16:53:22 2027 GMT Subject: CN=31EF295E9615031C399F65A87D39FFA53D95185A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c9:05:e1:e6:17:66:df:55:ae:47:3a:00:c4: c6:a9:50:27:fa:8d:c5:3f:67:58:b9:66:cf:9c:f2: 10:18:55:b1:de:3b:3b:70:13:29:cb:4f:a9:1f:17: f2:14:a6:75:b3:32:f9:d6:f9:a4:fb:01:c4:04:9f: 7e:a2:f3:31:91:44:77:e5:46:d1:ab:41:51:5d:d8: 68:c4:13:81:29:fb:ad:a6:97:8a:37:3c:6c:89:a0: 09:61:ee:af:46:2e:82:d1:aa:b1:82:03:76:f3:35: 19:d3:82:22:6b:d8:85:d2:3e:fd:7c:31:7c:30:14: 25:ad:40:44:7d:31:ef:fd:f4:0c:40:42:0d:84:ce: 95:de:16:89:76:17:ed:39:95:f7:34:d2:75:72:23: 9c:55:ad:e8:0b:15:e5:91:ca:47:0f:12:7c:4b:e8: 96:90:b8:ac:6f:b7:0e:cc:4c:40:8d:d0:c5:6b:00: 14:39:b7:07:aa:da:33:79:2a:ab:5e:a3:7e:61:1f: 2e:d5:a7:bb:c8:dd:c8:1d:cd:67:f7:5a:22:a4:2f: a2:58:c1:d8:c4:89:6a:99:e5:5d:2e:60:d0:b5:af: 95:f2:0c:48:07:48:bb:6e:a0:51:c0:35:0d:25:a0: 86:2f:65:34:6b:1a:8e:47:59:f1:39:64:f8:64:97: a6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EF:29:5E:96:15:03:1C:39:9F:65:A8:7D:39:FF:A5:3D:95:18:5A X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3231342e302f32342d3234203d3e203538353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.246.214.0/24 Signature Algorithm: sha256WithRSAEncryption 30:de:e8:ab:c8:96:1d:d8:df:63:7c:b5:9b:fb:fe:94:02:4e: 3a:70:dc:b8:2f:94:d0:8c:b5:f9:10:62:86:77:16:55:87:6c: 49:d7:97:96:9e:98:8c:5f:d1:ce:fe:aa:39:d2:c9:16:4e:18: 0e:cf:97:72:92:c3:37:a9:52:6e:85:29:60:d2:19:03:c7:74: 09:44:92:63:41:cd:ad:46:cd:9d:d0:8c:a5:b8:f5:ea:d2:e8: a0:fd:17:01:38:19:83:51:b5:b6:a6:f6:66:17:a1:0f:e1:72: ff:9b:79:35:0b:12:9d:0e:18:57:a6:f0:5f:af:35:fb:5c:08: 53:62:21:51:e3:8e:6a:f1:07:51:06:83:01:5c:a4:7f:2e:8f: ca:b1:14:f7:5b:6d:13:3c:b9:0b:3f:e3:80:6e:70:4c:38:80: f1:98:ba:73:86:a9:5f:c4:37:81:00:85:83:df:1c:1a:6f:0d: 71:19:24:e1:21:8c:fc:b9:b6:54:50:db:1e:02:5a:54:7d:c7: 66:e7:b6:5b:5a:7f:b2:2a:ef:f0:d5:8f:2b:63:bf:5a:16:7e: 5c:77:f2:e0:35:b4:1a:10:69:0c:8c:48:01:66:66:1e:af:14: dc:c8:41:76:de:b4:9b:1f:b8:9a:72:ef:9c:89:e3:de:77:6d: 1f:e3:00:98 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUan/EVYtjW/9jWR1SdM7AFKTiBzcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE2NDgyMloX DTI3MDYwMjE2NTMyMlowMzExMC8GA1UEAxMoMzFFRjI5NUU5NjE1MDMxQzM5OUY2 NUE4N0QzOUZGQTUzRDk1MTg1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJzJBeHmF2bfVa5HOgDExqlQJ/qNxT9nWLlmz5zyEBhVsd47O3ATKctPqR8X 8hSmdbMy+db5pPsBxASffqLzMZFEd+VG0atBUV3YaMQTgSn7raaXijc8bImgCWHu r0YugtGqsYIDdvM1GdOCImvYhdI+/XwxfDAUJa1ARH0x7/30DEBCDYTOld4WiXYX 7TmV9zTSdXIjnFWt6AsV5ZHKRw8SfEvolpC4rG+3DsxMQI3QxWsAFDm3B6raM3kq q16jfmEfLtWnu8jdyB3NZ/daIqQvoljB2MSJapnlXS5g0LWvlfIMSAdIu26gUcA1 DSWghi9lNGsajkdZ8Tlk+GSXpgcCAwEAAaOCAhcwggITMB0GA1UdDgQWBBQx7yle lhUDHDmfZah9Of+lPZUYWjAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM2MmUzMjMxMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPbWMA0GCSqGSIb3DQEB CwUAA4IBAQAw3uiryJYd2N9jfLWb+/6UAk46cNy4L5TQjLX5EGKGdxZVh2xJ15eW npiMX9HO/qo50skWThgOz5dyksM3qVJuhSlg0hkDx3QJRJJjQc2tRs2d0IyluPXq 0uig/RcBOBmDUbW2pvZmF6EP4XL/m3k1CxKdDhhXpvBfrzX7XAhTYiFR445q8QdR BoMBXKR/Lo/KsRT3W20TPLkLP+OAbnBMOIDxmLpzhqlfxDeBAIWD3xwabw1xGSTh IYz8ubZUUNseAlpUfcdm57ZbWn+yKu/w1Y8rY79aFn5cd/LgNbQaEGkMjEgBZmYe rxTcyEF23rSbH7iacu+ciePed20f4wCY -----END CERTIFICATE-----Generated at Fri Jun 12 02:41:09 2026 by rpki-client