$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e39362e302f32342d3234203d3e203538353139.roa File: 3134302e3234362e39362e302f32342d3234203d3e203538353139.roa (raw, json) Hash identifier: VWIBTuMiPCaa5RQLNdIQ4UxcpTnvc4Fhjmmtuuhxj9I= Subject key identifier: 36:3D:FC:5E:D8:5E:F1:D3:E6:05:62:9A:20:30:22:BC:A8:5D:CF:F2 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 2B05DFBD9D02360CFE41BDDA2C136449ED5DC7B3 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e39362e302f32342d3234203d3e203538353139.roa Signing time: Wed 03 Jun 2026 16:53:20 +0000 ROA not before: Wed 03 Jun 2026 16:48:20 +0000 ROA not after: Wed 02 Jun 2027 16:53:20 +0000 asID: 58519 IP address blocks: 140.246.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:05:df:bd:9d:02:36:0c:fe:41:bd:da:2c:13:64:49:ed:5d:c7:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 16:48:20 2026 GMT Not After : Jun 2 16:53:20 2027 GMT Subject: CN=363DFC5ED85EF1D3E605629A203022BCA85DCFF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:da:02:c0:e0:48:db:08:1d:6a:03:50:8c:5c: f4:c9:de:f8:11:d1:f8:47:44:49:d9:e9:78:67:b1: 7b:6b:24:8c:17:40:0e:9e:f1:3f:08:52:fd:50:5f: a9:5e:87:8c:fd:64:b6:41:c9:67:8a:b8:e5:ee:fc: e0:5f:9f:df:3c:b7:d0:ea:88:0d:e4:24:c1:3e:5c: 09:01:cd:f0:39:4f:79:e4:b8:ae:26:24:38:00:9d: f4:9e:18:b7:cf:a2:44:71:73:89:91:f2:85:10:0b: 26:f6:8a:11:e8:1f:98:e9:81:79:5b:24:25:d3:93: 2f:86:66:a4:6a:e4:05:0c:8a:71:9d:3a:8f:37:ee: b6:de:03:3f:3d:e0:fe:e1:d1:11:6f:5c:6e:61:ca: 59:7c:27:da:75:1f:64:c7:b4:22:1d:29:71:ee:df: 80:2a:d1:21:ce:28:57:85:02:4d:72:ca:96:81:d4: 11:fb:9b:7f:c6:3f:3a:f2:24:73:da:3c:78:36:ce: b1:3a:57:d2:24:ec:9e:98:17:e8:dc:61:cd:0b:ec: 66:c2:28:cb:87:38:2b:fb:1c:8d:75:95:01:1b:b8: 71:55:6a:87:c3:3f:e2:b5:78:c3:7c:a1:81:1a:8d: 53:ce:d8:ec:6d:d1:44:e4:0e:d0:0b:10:f6:56:75: 1b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:3D:FC:5E:D8:5E:F1:D3:E6:05:62:9A:20:30:22:BC:A8:5D:CF:F2 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234362e39362e302f32342d3234203d3e203538353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.246.96.0/24 Signature Algorithm: sha256WithRSAEncryption 18:65:79:3c:2e:cf:2f:4a:0e:4f:dd:7d:d1:d9:3e:74:d0:3c: 93:6d:52:4a:3f:b5:5c:57:57:5e:52:74:c1:a0:08:c9:70:c1: 23:48:ad:5b:56:45:f0:ff:ec:d1:c2:f5:98:6a:7c:41:41:57: 71:fa:ae:e1:a3:91:75:b8:49:66:8e:9b:7a:32:6b:bc:b4:8c: 4d:70:cb:3d:38:ba:12:87:b9:c1:73:01:0c:95:4f:9a:9c:bb: 71:ed:2b:50:e9:3c:1b:ef:6c:19:d5:52:3c:64:66:8e:84:e1: 1a:68:a5:1b:84:79:0e:5c:c7:85:d0:e5:10:01:56:67:b7:43: 16:86:e6:8c:c6:a6:3d:e6:87:ef:a6:42:2c:0a:b6:10:62:ef: 38:3e:ff:f8:35:b6:99:03:7c:b4:1e:17:00:ae:04:b2:09:61: ad:e7:bb:01:02:80:b6:8c:60:9f:2b:d9:c3:c5:d1:81:e0:aa: 28:a4:46:bc:55:ff:71:df:02:df:d6:69:c9:da:8d:57:db:a7: b2:77:27:ba:65:f9:20:d7:7a:f5:dd:0a:e3:44:70:80:f2:03: 1a:14:ba:fe:4a:56:26:69:cb:45:e9:1c:a8:94:36:fe:af:d0: 8a:b9:3c:d7:a0:3d:34:87:e1:ba:2b:ed:c4:44:8a:05:8b:7b: 04:da:bd:0b -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUKwXfvZ0CNgz+Qb3aLBNkSe1dx7MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE2NDgyMFoX DTI3MDYwMjE2NTMyMFowMzExMC8GA1UEAxMoMzYzREZDNUVEODVFRjFEM0U2MDU2 MjlBMjAzMDIyQkNBODVEQ0ZGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPaAsDgSNsIHWoDUIxc9Mne+BHR+EdESdnpeGexe2skjBdADp7xPwhS/VBf qV6HjP1ktkHJZ4q45e784F+f3zy30OqIDeQkwT5cCQHN8DlPeeS4riYkOACd9J4Y t8+iRHFziZHyhRALJvaKEegfmOmBeVskJdOTL4ZmpGrkBQyKcZ06jzfutt4DPz3g /uHREW9cbmHKWXwn2nUfZMe0Ih0pce7fgCrRIc4oV4UCTXLKloHUEfubf8Y/OvIk c9o8eDbOsTpX0iTsnpgX6NxhzQvsZsIoy4c4K/scjXWVARu4cVVqh8M/4rV4w3yh gRqNU87Y7G3RROQO0AsQ9lZ1G5ECAwEAAaOCAhQwggIQMB0GA1UdDgQWBBQ2Pfxe 2F7x0+YFYpogMCK8qF3P8jAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzYyZTM5MzYyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNTM4MzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPZgMA0GCSqGSIb3DQEBCwUA A4IBAQAYZXk8Ls8vSg5P3X3R2T500DyTbVJKP7VcV1deUnTBoAjJcMEjSK1bVkXw /+zRwvWYanxBQVdx+q7ho5F1uElmjpt6Mmu8tIxNcMs9OLoSh7nBcwEMlU+anLtx 7StQ6Twb72wZ1VI8ZGaOhOEaaKUbhHkOXMeF0OUQAVZnt0MWhuaMxqY95ofvpkIs CrYQYu84Pv/4NbaZA3y0HhcArgSyCWGt57sBAoC2jGCfK9nDxdGB4KoopEa8Vf9x 3wLf1mnJ2o1X26eydye6Zfkg13r13QrjRHCA8gMaFLr+SlYmactF6RyolDb+r9CK uTzXoD00h+G6K+3ERIoFi3sE2r0L -----END CERTIFICATE-----Generated at Fri Jun 12 02:41:05 2026 by rpki-client