$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3133322e302f32322d3232203d3e20313336313935.roa File: 3134302e3234392e3133322e302f32322d3232203d3e20313336313935.roa (raw, json) Hash identifier: p2pyitiM/kxJ47c04HCw/Vf0Ax8Oi/G19H2KFbc1/rA= Subject key identifier: 37:72:EB:57:C7:96:BF:F9:A4:C4:04:83:45:72:58:3B:99:A5:BE:C8 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 166248E90830E2F69ED6965C086B7AD65D2AE7DE Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3133322e302f32322d3232203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:05:39 +0000 ROA not before: Thu 28 May 2026 16:00:39 +0000 ROA not after: Thu 27 May 2027 16:05:39 +0000 asID: 136195 IP address blocks: 140.249.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:62:48:e9:08:30:e2:f6:9e:d6:96:5c:08:6b:7a:d6:5d:2a:e7:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:00:39 2026 GMT Not After : May 27 16:05:39 2027 GMT Subject: CN=3772EB57C796BFF9A4C404834572583B99A5BEC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a6:fc:cf:38:6f:84:d7:92:26:a2:89:be:ce: b4:0d:e4:63:3f:73:c9:64:6a:38:fa:41:fd:d0:f5: 0d:93:84:ec:d9:0c:df:21:5c:40:0b:fb:e8:96:eb: b2:c6:37:8a:30:be:8f:94:19:c5:ad:c4:c6:6e:e2: 1c:83:9f:cf:78:6c:30:f5:9b:3b:19:70:22:3e:18: 1e:16:79:da:bd:d1:91:4b:ed:b4:9b:c2:67:4b:43: 22:e5:85:8d:7e:78:b5:4c:84:51:40:7f:1c:89:ad: 4d:a8:85:2b:2f:f3:a9:ff:08:a9:66:ca:ba:ce:ac: 36:14:53:cb:22:41:f1:9f:13:98:25:fb:cd:85:7a: 29:6b:58:d8:84:cf:ea:d1:e4:cd:8d:8c:ca:aa:f3: e9:06:37:29:08:08:e6:67:e2:ff:3e:05:16:c6:00: 55:f2:a4:57:b2:d7:0e:a4:de:c7:f6:6c:03:f4:b8: 9d:d4:df:7a:1a:e1:76:bf:ca:d0:34:4e:b5:fb:e4: 14:8d:1d:0a:be:7c:2b:ac:19:a1:49:9c:63:28:20: ea:5f:1c:a9:e4:cf:bb:8b:38:aa:96:64:5e:ea:96: c6:b7:31:a2:cd:6a:07:2f:00:e2:90:a6:07:3d:b6: bb:0b:ef:9a:4a:86:a0:63:cf:16:cc:fa:4a:d8:2f: 78:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:72:EB:57:C7:96:BF:F9:A4:C4:04:83:45:72:58:3B:99:A5:BE:C8 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3133322e302f32322d3232203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.132.0/22 Signature Algorithm: sha256WithRSAEncryption 80:a0:6b:c1:d5:46:38:56:5b:94:3e:06:af:f5:49:f1:74:f3: 6f:d7:65:48:11:0c:dc:32:d6:2b:91:d8:be:88:35:31:10:c8: a5:82:56:ad:62:f5:b0:7e:e3:62:fe:69:89:05:33:6e:f5:ef: 28:0e:e7:d8:4d:5f:e1:37:4d:c7:fd:f0:8a:2b:b7:36:68:8a: 05:5e:c8:fa:0a:a6:d7:64:a2:2b:37:ec:c5:55:5e:0e:5d:13: 99:59:62:60:9d:83:0b:0f:73:4b:12:5a:74:77:4d:9e:c1:8d: 8f:61:a4:36:71:98:89:b7:77:ca:f9:62:30:54:d6:2a:56:e5: 47:5e:56:73:6e:74:35:6f:9b:5a:9c:d9:35:a1:7e:d1:b5:91: ad:45:f2:74:93:52:b3:c5:7a:dd:8a:18:2d:92:51:89:13:66: 0c:76:2f:35:f1:7a:78:4a:03:60:7d:85:d2:d5:16:fe:38:48: 6e:fe:88:fb:8f:e9:95:08:29:eb:df:1f:a2:17:8e:90:82:a5: 0a:ec:e2:d6:b4:13:50:15:66:dc:ca:a6:10:c3:21:d8:37:30: 6c:3c:74:bc:0f:9f:ed:e1:1a:c9:f5:02:00:a5:75:a6:42:80: 8d:3c:5e:40:80:82:42:92:74:a4:5e:be:28:28:ff:78:55:ca: 57:4e:e2:fc -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUFmJI6Qgw4vae1pZcCGt61l0q594wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDAzOVoX DTI3MDUyNzE2MDUzOVowMzExMC8GA1UEAxMoMzc3MkVCNTdDNzk2QkZGOUE0QzQw NDgzNDU3MjU4M0I5OUE1QkVDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2m/M84b4TXkiaiib7OtA3kYz9zyWRqOPpB/dD1DZOE7NkM3yFcQAv76Jbr ssY3ijC+j5QZxa3Exm7iHIOfz3hsMPWbOxlwIj4YHhZ52r3RkUvttJvCZ0tDIuWF jX54tUyEUUB/HImtTaiFKy/zqf8IqWbKus6sNhRTyyJB8Z8TmCX7zYV6KWtY2ITP 6tHkzY2Myqrz6QY3KQgI5mfi/z4FFsYAVfKkV7LXDqTex/ZsA/S4ndTfehrhdr/K 0DROtfvkFI0dCr58K6wZoUmcYygg6l8cqeTPu4s4qpZkXuqWxrcxos1qBy8A4pCm Bz22uwvvmkqGoGPPFsz6StgveO0CAwEAAaOCAhowggIWMB0GA1UdDgQWBBQ3cutX x5a/+aTEBINFclg7maW+yDAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzEzMzMyMmUzMDJmMzIzMjJk MzIzMjIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjPmEMA0GCSqGSIb3 DQEBCwUAA4IBAQCAoGvB1UY4VluUPgav9UnxdPNv12VIEQzcMtYrkdi+iDUxEMil glatYvWwfuNi/mmJBTNu9e8oDufYTV/hN03H/fCKK7c2aIoFXsj6CqbXZKIrN+zF VV4OXROZWWJgnYMLD3NLElp0d02ewY2PYaQ2cZiJt3fK+WIwVNYqVuVHXlZzbnQ1 b5tanNk1oX7RtZGtRfJ0k1KzxXrdihgtklGJE2YMdi818Xp4SgNgfYXS1Rb+OEhu /oj7j+mVCCnr3x+iF46QgqUK7OLWtBNQFWbcyqYQwyHYNzBsPHS8D5/t4RrJ9QIA pXWmQoCNPF5AgIJCknSkXr4oKP94VcpXTuL8 -----END CERTIFICATE-----Generated at Sat May 30 02:41:44 2026 by rpki-client