$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3132382e302f32322d3232203d3e20313336313935.roa File: 3134302e3234392e3132382e302f32322d3232203d3e20313336313935.roa (raw, json) Hash identifier: 0Zt76NIVLDbEOgiGLSy6mdjUpWl20cm8dqOlF8PjhSo= Subject key identifier: 2A:2D:A9:EE:4E:02:96:F5:5F:36:9A:E9:C7:08:9B:33:A8:9C:DA:F7 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 1A190DCF9AFB84B09450C9A3E14D33D256090CC7 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3132382e302f32322d3232203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:05:39 +0000 ROA not before: Thu 28 May 2026 16:00:39 +0000 ROA not after: Thu 27 May 2027 16:05:39 +0000 asID: 136195 IP address blocks: 140.249.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:19:0d:cf:9a:fb:84:b0:94:50:c9:a3:e1:4d:33:d2:56:09:0c:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:00:39 2026 GMT Not After : May 27 16:05:39 2027 GMT Subject: CN=2A2DA9EE4E0296F55F369AE9C7089B33A89CDAF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:a5:d5:b7:95:0f:0c:c5:d5:4b:eb:09:74:b9: 82:e7:65:f4:2a:eb:0e:4a:be:54:5e:91:54:16:ba: 6a:0a:b8:82:42:94:9f:2e:0b:ac:a9:bd:db:92:08: cf:8d:a3:aa:b7:cf:8a:7e:1f:54:98:47:fa:7b:92: dc:58:1d:13:f6:9f:d2:81:18:2b:66:e7:0e:67:91: f0:33:d0:9d:11:df:a3:d8:01:f1:1c:44:19:cd:20: 57:3d:c3:b6:19:32:f7:94:5b:4e:19:68:10:95:14: fa:f3:3f:ea:f1:1e:4f:a3:cc:09:97:bf:1d:7d:e9: fe:f8:b6:ac:b7:c2:b4:45:7f:43:c6:d8:6e:63:57: 72:17:dc:7e:0b:68:fe:9b:3c:66:2b:92:ed:19:b1: 56:5d:d7:b9:f5:5f:74:b6:de:80:90:f7:63:85:9e: 12:86:a1:e5:3f:a1:68:2a:36:a1:d3:e8:85:9e:30: a4:33:8d:20:19:b9:ac:6d:a8:30:bc:6c:8c:14:9e: a9:7d:cf:6f:00:a8:35:cd:c3:5f:34:5a:16:5b:dd: 38:5f:47:02:01:9a:5b:b2:6b:4a:80:da:ee:04:b9: f7:1e:9c:ed:a4:43:98:3f:02:98:a8:3a:37:31:71: cf:1c:eb:be:fb:89:bd:63:91:0b:a3:99:de:17:61: 79:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2D:A9:EE:4E:02:96:F5:5F:36:9A:E9:C7:08:9B:33:A8:9C:DA:F7 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3132382e302f32322d3232203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.128.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:0b:11:b7:bd:25:01:81:b9:77:20:3c:fb:8f:fa:da:6f:8a: b0:50:0f:70:7c:b3:e8:92:40:27:0b:b5:2d:95:7e:26:fb:71: 9e:0e:c8:3a:6d:e5:a0:c4:72:73:11:ee:b3:0d:6d:ea:db:71: 1e:18:8f:a7:7e:83:13:fa:3f:4c:9c:ba:b1:7e:4e:8b:c3:72: ce:32:af:1a:eb:66:72:39:7d:82:28:fe:3a:d7:e0:b5:72:5d: ba:7b:d2:5b:82:51:b6:f6:db:17:0d:d1:78:64:bd:f3:b6:db: f2:1f:f2:76:94:4b:59:de:04:77:19:d4:df:b9:a4:68:44:c3: 0c:cd:b5:b4:50:1c:e4:4f:26:52:7c:c5:59:f7:38:6b:44:26: d9:4c:63:c8:a4:b2:70:cf:4a:b2:b2:13:bf:22:aa:73:b0:43: 83:69:8d:68:c2:2d:d3:c1:87:07:f6:d9:8a:61:79:7a:33:dd: 29:c8:4a:22:77:cc:bc:9c:17:f9:c1:61:b7:4a:d3:f2:a7:02: c3:c1:40:18:3f:0a:f0:7d:2f:54:69:ae:9b:92:90:fc:17:71: 3b:f5:f1:26:c8:88:57:b9:f5:50:37:f1:1b:21:2e:e5:24:75: b0:d8:65:21:dc:b8:1d:02:a4:9e:90:cb:d2:37:67:f7:ab:1f: 46:d0:f1:26 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUGhkNz5r7hLCUUMmj4U0z0lYJDMcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDAzOVoX DTI3MDUyNzE2MDUzOVowMzExMC8GA1UEAxMoMkEyREE5RUU0RTAyOTZGNTVGMzY5 QUU5QzcwODlCMzNBODlDREFGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIal1beVDwzF1UvrCXS5gudl9CrrDkq+VF6RVBa6agq4gkKUny4LrKm925II z42jqrfPin4fVJhH+nuS3FgdE/af0oEYK2bnDmeR8DPQnRHfo9gB8RxEGc0gVz3D thky95RbThloEJUU+vM/6vEeT6PMCZe/HX3p/vi2rLfCtEV/Q8bYbmNXchfcfgto /ps8ZiuS7RmxVl3XufVfdLbegJD3Y4WeEoah5T+haCo2odPohZ4wpDONIBm5rG2o MLxsjBSeqX3PbwCoNc3DXzRaFlvdOF9HAgGaW7JrSoDa7gS59x6c7aRDmD8CmKg6 NzFxzxzrvvuJvWORC6OZ3hdheQcCAwEAAaOCAhowggIWMB0GA1UdDgQWBBQqLanu TgKW9V82munHCJszqJza9zAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzEzMjM4MmUzMDJmMzIzMjJk MzIzMjIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjPmAMA0GCSqGSIb3 DQEBCwUAA4IBAQAvCxG3vSUBgbl3IDz7j/rab4qwUA9wfLPokkAnC7UtlX4m+3Ge Dsg6beWgxHJzEe6zDW3q23EeGI+nfoMT+j9MnLqxfk6Lw3LOMq8a62ZyOX2CKP46 1+C1cl26e9JbglG29tsXDdF4ZL3zttvyH/J2lEtZ3gR3GdTfuaRoRMMMzbW0UBzk TyZSfMVZ9zhrRCbZTGPIpLJwz0qyshO/IqpzsEODaY1owi3TwYcH9tmKYXl6M90p yEoid8y8nBf5wWG3StPypwLDwUAYPwrwfS9Uaa6bkpD8F3E79fEmyIhXufVQN/Eb IS7lJHWw2GUh3LgdAqSekMvSN2f3qx9G0PEm -----END CERTIFICATE-----Generated at Sat May 30 02:41:44 2026 by rpki-client