$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3232322e302f32342d3234203d3e203538353139.roa File: 3134302e3234362e3232322e302f32342d3234203d3e203538353139.roa (raw, json) Hash identifier: gwBbqJvFIhXuUKk12jg3XLiRiNHH7bEx5FM1Enu2Cp0= Subject key identifier: 09:B3:9A:09:71:B4:56:61:22:F5:83:8E:14:BB:1B:42:AE:27:95:89 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 23D358887BCF5E9B693CA9C00646349E6ECAE9CE Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3232322e302f32342d3234203d3e203538353139.roa Signing time: Wed 03 Jun 2026 16:53:19 +0000 ROA not before: Wed 03 Jun 2026 16:48:19 +0000 ROA not after: Wed 02 Jun 2027 16:53:19 +0000 asID: 58519 IP address blocks: 140.246.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d3:58:88:7b:cf:5e:9b:69:3c:a9:c0:06:46:34:9e:6e:ca:e9:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 16:48:19 2026 GMT Not After : Jun 2 16:53:19 2027 GMT Subject: CN=09B39A0971B4566122F5838E14BB1B42AE279589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:41:c3:57:01:8c:cc:04:c3:88:ad:b0:07:69: f7:80:c0:be:25:4a:a0:d7:bc:1b:85:d4:24:4f:6d: 65:0c:bc:50:e5:f2:ed:36:65:ba:42:94:c9:79:b0: c3:65:fe:24:f1:f7:8d:80:bd:18:b7:b6:66:97:a1: 48:6c:46:67:a9:56:79:f0:8f:c4:f3:05:c2:39:92: 14:f6:39:89:d3:4f:bc:e0:86:0d:9b:26:f1:d9:4a: f5:36:b1:33:e5:f1:20:ca:e7:2f:bb:8f:90:e5:e9: bd:e2:86:74:4a:a5:8e:7c:06:b3:dd:e5:4f:e1:3b: cb:b1:7e:9d:ee:a8:f5:15:ba:c1:16:5d:1f:fc:45: 3f:e7:11:3c:59:44:c2:30:ca:21:7d:42:78:73:5c: 5f:31:0e:29:ea:c2:14:7f:4e:2d:16:e7:ed:08:51: fd:87:b3:72:ae:76:40:71:10:42:65:37:bf:98:8a: 4b:3e:b2:08:e1:41:b8:ab:8e:18:52:25:90:70:4b: 0d:bb:4b:d4:6a:bc:4b:77:ac:66:30:a8:4b:34:90: 6a:e1:7d:ed:35:9a:e9:1b:44:a8:05:bf:ab:9b:e2: e2:38:8a:bf:f8:a8:d3:d7:ce:ad:b1:9f:32:39:e4: 52:90:3b:ff:79:69:c4:88:12:74:6b:8c:33:ff:a9: 5f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B3:9A:09:71:B4:56:61:22:F5:83:8E:14:BB:1B:42:AE:27:95:89 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e3232322e302f32342d3234203d3e203538353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.246.222.0/24 Signature Algorithm: sha256WithRSAEncryption da:31:1a:4e:f7:8a:5b:19:af:1e:71:b2:2f:33:24:01:b1:6a: 88:ae:1e:af:74:47:21:77:c3:76:f0:a7:3a:5a:a1:89:4e:8e: 62:c1:1d:8c:4d:86:da:41:5b:bc:52:1c:18:6b:bd:67:a1:7d: 08:46:49:a2:a2:72:21:bf:3c:02:a8:0c:0d:85:c3:c1:be:d2: 7b:83:ce:d2:a3:12:6b:a9:b5:58:54:f2:50:6a:f7:cc:12:f7: 67:bb:bd:67:3d:93:14:72:ac:e8:87:47:ea:0a:22:f9:d9:e0: 1c:08:8f:18:07:4b:2a:0d:eb:0a:e1:87:cb:3a:26:e7:97:5b: 89:c0:16:86:cb:32:ee:53:ce:49:a4:43:c7:69:8c:31:08:ec: bf:ae:ef:9e:79:8f:65:41:58:fe:f9:bb:1a:61:e3:09:4f:45: 02:51:a1:42:75:20:f6:e9:74:15:2d:bd:4c:f7:fd:3d:2b:9d: 4e:de:e0:45:60:a0:24:72:14:07:4d:70:e8:c5:57:cd:07:31: 8d:2c:9c:2d:da:4e:7a:98:22:5b:2a:0b:2c:fd:fd:e8:3f:03: 35:25:ef:3f:4a:e5:0e:d6:fb:9c:2c:aa:11:54:f5:bc:a0:d1: e3:39:33:33:97:9f:a3:38:cf:1a:33:d6:cc:e0:05:e9:46:9b: 48:c2:de:b9 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUI9NYiHvPXptpPKnABkY0nm7K6c4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE2NDgxOVoX DTI3MDYwMjE2NTMxOVowMzExMC8GA1UEAxMoMDlCMzlBMDk3MUI0NTY2MTIyRjU4 MzhFMTRCQjFCNDJBRTI3OTU4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPBBw1cBjMwEw4itsAdp94DAviVKoNe8G4XUJE9tZQy8UOXy7TZlukKUyXmw w2X+JPH3jYC9GLe2ZpehSGxGZ6lWefCPxPMFwjmSFPY5idNPvOCGDZsm8dlK9Tax M+XxIMrnL7uPkOXpveKGdEqljnwGs93lT+E7y7F+ne6o9RW6wRZdH/xFP+cRPFlE wjDKIX1CeHNcXzEOKerCFH9OLRbn7QhR/Yezcq52QHEQQmU3v5iKSz6yCOFBuKuO GFIlkHBLDbtL1Gq8S3esZjCoSzSQauF97TWa6RtEqAW/q5vi4jiKv/io09fOrbGf MjnkUpA7/3lpxIgSdGuMM/+pX/cCAwEAAaOCAhcwggITMB0GA1UdDgQWBBQJs5oJ cbRWYSL1g44UuxtCrieViTAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM2MmUzMjMyMzIyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPbeMA0GCSqGSIb3DQEB CwUAA4IBAQDaMRpO94pbGa8ecbIvMyQBsWqIrh6vdEchd8N28Kc6WqGJTo5iwR2M TYbaQVu8UhwYa71noX0IRkmionIhvzwCqAwNhcPBvtJ7g87SoxJrqbVYVPJQavfM Evdnu71nPZMUcqzoh0fqCiL52eAcCI8YB0sqDesK4YfLOibnl1uJwBaGyzLuU85J pEPHaYwxCOy/ru+eeY9lQVj++bsaYeMJT0UCUaFCdSD26XQVLb1M9/09K51O3uBF YKAkchQHTXDoxVfNBzGNLJwt2k56mCJbKgss/f3oPwM1Je8/SuUO1vucLKoRVPW8 oNHjOTMzl5+jOM8aM9bM4AXpRptIwt65 -----END CERTIFICATE-----Generated at Fri Jun 12 02:41:44 2026 by rpki-client