$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3131312e302f32342d3234203d3e203538353430.roa File: 3134302e3234392e3131312e302f32342d3234203d3e203538353430.roa (raw, json) Hash identifier: djO4FLp5zKPbWtt0WcMMA3MYv3aYgb5v74uaict4vUU= Subject key identifier: 99:B4:B4:53:29:67:73:32:69:E1:6B:75:35:92:DE:95:0E:D4:CD:EC Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 71630AA064E730513C249394D531BEB3B03B9CB2 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3131312e302f32342d3234203d3e203538353430.roa Signing time: Thu 28 May 2026 16:07:19 +0000 ROA not before: Thu 28 May 2026 16:02:19 +0000 ROA not after: Thu 27 May 2027 16:07:19 +0000 asID: 58540 IP address blocks: 140.249.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:63:0a:a0:64:e7:30:51:3c:24:93:94:d5:31:be:b3:b0:3b:9c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:02:19 2026 GMT Not After : May 27 16:07:19 2027 GMT Subject: CN=99B4B4532967733269E16B753592DE950ED4CDEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:81:23:f1:94:12:e5:27:ab:70:cd:30:85:37: 85:70:61:31:1f:33:1b:97:61:ca:24:41:91:1b:5d: c7:0c:94:19:92:63:5c:40:8f:9b:35:89:a8:c4:91: db:49:1d:3b:76:09:5c:1e:f9:f2:c8:e0:87:9b:e5: 50:e2:e7:cf:e6:34:ae:c3:37:59:04:94:c9:a4:b1: e9:11:2d:31:ac:41:63:61:1a:e9:0e:30:9a:87:2e: 64:08:0a:a6:da:2a:0a:bb:8e:83:22:16:ae:f2:da: af:17:34:ab:00:13:e8:bc:88:20:9a:92:6b:ed:54: 3f:a0:e8:86:cf:a9:ed:fb:c9:c5:aa:a7:c0:f1:78: 3f:34:5e:7e:3a:d3:96:f8:52:c8:b7:95:07:d1:fd: 71:ba:a5:f9:5e:db:c4:8d:2f:49:77:30:a1:37:1c: ed:58:b3:fd:73:c8:1b:29:22:4e:60:b7:31:dc:e0: 3a:ff:6e:df:e9:52:1c:a3:95:0e:43:a2:62:68:be: 61:ab:6e:29:ab:4c:87:f9:99:e5:77:38:d6:83:4c: 6c:1a:5c:66:ad:e7:b6:bb:93:28:76:28:b9:19:06: 8b:a3:a0:8e:79:4f:3d:75:5d:37:7f:ec:1c:1d:0a: d9:c0:cc:c3:e2:70:dc:6a:a3:00:30:ff:22:a2:7e: 0d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B4:B4:53:29:67:73:32:69:E1:6B:75:35:92:DE:95:0E:D4:CD:EC X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3131312e302f32342d3234203d3e203538353430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.111.0/24 Signature Algorithm: sha256WithRSAEncryption 33:78:bd:ec:51:b6:42:aa:61:df:35:94:48:0c:15:1e:5f:7b: b2:80:25:c2:a0:bd:c8:8d:64:c6:67:0e:6a:2c:05:74:54:6b: 02:44:8a:7b:89:f2:77:e3:7b:29:b8:f3:69:fc:f4:94:4e:2d: 7c:a0:91:d8:7f:0d:a3:8a:28:35:64:dc:a6:ad:bf:f8:cb:9e: c6:b0:4f:e8:ed:35:8f:09:50:ba:f1:69:ff:8c:78:bd:79:56: b8:4f:61:ac:2e:1a:20:23:aa:07:98:cb:4a:53:36:ef:1c:0d: 06:4f:3c:5a:e7:34:51:fa:e1:1a:5c:53:35:25:32:95:13:3c: 8b:39:12:cb:c0:d7:77:08:39:23:a3:ee:fd:c1:74:b7:24:22: 32:7f:b5:d4:8e:eb:eb:e1:da:fc:43:32:c7:4a:d0:36:77:d7: 9d:ab:00:4e:d6:90:5c:ed:2c:9f:95:1f:2e:19:f5:88:32:4b: 8c:c2:11:00:5a:22:8e:5d:13:6f:e1:a2:5c:17:46:93:9c:47: dd:29:53:34:30:a6:98:50:ee:0f:8b:d4:81:58:68:82:eb:35: e9:c9:c8:ea:ad:a8:8e:0e:56:1a:5d:1e:f6:78:da:23:13:4e: f6:a9:21:b4:cf:41:13:88:64:67:82:59:1d:1e:b9:3f:af:a0: b9:2b:db:71 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUcWMKoGTnMFE8JJOU1TG+s7A7nLIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDIxOVoX DTI3MDUyNzE2MDcxOVowMzExMC8GA1UEAxMoOTlCNEI0NTMyOTY3NzMzMjY5RTE2 Qjc1MzU5MkRFOTUwRUQ0Q0RFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmBI/GUEuUnq3DNMIU3hXBhMR8zG5dhyiRBkRtdxwyUGZJjXECPmzWJqMSR 20kdO3YJXB758sjgh5vlUOLnz+Y0rsM3WQSUyaSx6REtMaxBY2Ea6Q4wmocuZAgK ptoqCruOgyIWrvLarxc0qwAT6LyIIJqSa+1UP6Dohs+p7fvJxaqnwPF4PzRefjrT lvhSyLeVB9H9cbql+V7bxI0vSXcwoTcc7Viz/XPIGykiTmC3MdzgOv9u3+lSHKOV DkOiYmi+YatuKatMh/mZ5Xc41oNMbBpcZq3ntruTKHYouRkGi6OgjnlPPXVdN3/s HB0K2cDMw+Jw3GqjADD/IqJ+DcECAwEAAaOCAhcwggITMB0GA1UdDgQWBBSZtLRT KWdzMmnha3U1kt6VDtTN7DAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzMTMxMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzUzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPlvMA0GCSqGSIb3DQEB CwUAA4IBAQAzeL3sUbZCqmHfNZRIDBUeX3uygCXCoL3IjWTGZw5qLAV0VGsCRIp7 ifJ343spuPNp/PSUTi18oJHYfw2jiig1ZNymrb/4y57GsE/o7TWPCVC68Wn/jHi9 eVa4T2GsLhogI6oHmMtKUzbvHA0GTzxa5zRR+uEaXFM1JTKVEzyLORLLwNd3CDkj o+79wXS3JCIyf7XUjuvr4dr8QzLHStA2d9edqwBO1pBc7SyflR8uGfWIMkuMwhEA WiKOXRNv4aJcF0aTnEfdKVM0MKaYUO4Pi9SBWGiC6zXpycjqraiODlYaXR72eNoj E072qSG0z0ETiGRnglkdHrk/r6C5K9tx -----END CERTIFICATE-----Generated at Sat May 30 01:23:41 2026 by rpki-client