$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3133362e302f32342d3234203d3e20313336313935.roa File: 3134302e3234392e3133362e302f32342d3234203d3e20313336313935.roa (raw, json) Hash identifier: TlQFqyenLD/jaFH6dNdhQjDHGBDf3q01g3VlepQxzi8= Subject key identifier: 35:06:4F:C2:3D:C0:08:3F:77:51:A3:62:F4:11:D6:BC:C6:AE:21:F1 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 22DA32D08174217F31F3E28B6B38D4EEBC4F8249 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3133362e302f32342d3234203d3e20313336313935.roa Signing time: Mon 25 May 2026 16:08:32 +0000 ROA not before: Mon 25 May 2026 16:03:32 +0000 ROA not after: Mon 24 May 2027 16:08:32 +0000 asID: 136195 IP address blocks: 140.249.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:da:32:d0:81:74:21:7f:31:f3:e2:8b:6b:38:d4:ee:bc:4f:82:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 25 16:03:32 2026 GMT Not After : May 24 16:08:32 2027 GMT Subject: CN=35064FC23DC0083F7751A362F411D6BCC6AE21F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a6:21:22:7f:84:e2:46:95:12:4e:22:3f:c0: 25:41:18:bc:c5:a1:35:0a:69:e1:0d:2c:3f:8d:3c: bd:85:8c:39:97:2b:c8:48:c1:ec:65:85:91:0d:55: 27:06:4d:78:76:08:d3:fa:47:33:bd:b9:d0:91:a2: d7:6b:cc:52:c4:a3:dd:db:a4:af:1b:58:e5:84:38: 8e:40:60:3c:f2:fd:97:59:61:ae:b3:5c:89:96:d8: 9b:c5:31:a4:8e:ce:ef:83:3b:af:c1:32:eb:a8:79: 9a:47:9f:dc:fe:f1:00:25:e6:f4:72:64:0e:a2:96: bd:61:dc:21:af:91:1f:92:b1:15:21:d1:40:5e:fa: b2:31:48:07:f0:d1:eb:48:73:db:d0:50:88:7f:3b: 8c:d1:c0:75:e9:9b:ce:af:c5:ea:8f:5e:3d:31:06: 57:22:de:80:28:c9:2e:8a:16:cc:00:ac:32:e4:fb: 77:59:28:22:f5:e3:5a:13:9d:37:f6:11:8e:52:08: 10:e7:35:f5:c1:58:03:d5:9b:be:72:b1:07:a9:09: 2a:13:8d:bc:9d:aa:6a:24:1f:dc:c8:c7:0e:09:53: 44:cc:32:7f:ed:7e:e3:24:27:5e:29:4a:69:58:ec: e4:4b:97:41:60:d1:6c:78:43:5d:f4:b6:6c:f5:06: 2c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:06:4F:C2:3D:C0:08:3F:77:51:A3:62:F4:11:D6:BC:C6:AE:21:F1 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3133362e302f32342d3234203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.136.0/24 Signature Algorithm: sha256WithRSAEncryption 52:3a:af:ee:c3:44:f4:91:e8:c7:98:e6:fe:02:04:bc:3f:94: 1c:61:30:dd:1b:27:16:0a:c1:54:59:49:51:14:de:af:cc:b4: 2a:bb:57:3a:c8:04:06:21:6f:e9:57:9a:3f:61:18:52:81:11: d9:ad:5a:3a:3c:bc:81:f7:33:61:85:0a:8a:7e:ff:49:53:9c: a1:08:f8:e7:0f:3b:00:0f:e0:ce:7a:93:ef:b6:85:29:f1:90: da:03:52:04:7e:4f:8a:c4:d0:f2:3f:1a:de:30:a8:5c:b9:c2: 46:41:98:5f:3a:57:b2:fb:83:96:05:b1:9d:b3:a1:7a:4a:fc: 2c:ba:d4:6f:11:66:99:03:b4:42:05:8c:c3:be:1e:e9:1e:4c: c9:20:ac:58:fb:aa:6d:a0:8c:de:14:c8:4e:d2:ea:e2:be:3f: a9:2f:b0:54:d3:a7:cf:56:f2:03:39:9d:ba:49:a0:ea:03:37: a2:08:03:c2:5e:b7:a3:95:3a:15:12:9c:6e:58:85:75:46:e6: 4e:49:23:cf:01:9f:2a:bd:07:df:cc:05:36:f2:21:0b:b5:37: a4:37:65:f1:26:6e:4e:75:a4:81:c2:45:8b:44:f5:08:ca:02: 00:f0:4f:f0:32:41:9c:28:2c:6a:04:c7:11:9f:ae:c7:b7:e9: 7a:25:85:b7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUItoy0IF0IX8x8+KLazjU7rxPgkkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyNTE2MDMzMloX DTI3MDUyNDE2MDgzMlowMzExMC8GA1UEAxMoMzUwNjRGQzIzREMwMDgzRjc3NTFB MzYyRjQxMUQ2QkNDNkFFMjFGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2mISJ/hOJGlRJOIj/AJUEYvMWhNQpp4Q0sP408vYWMOZcryEjB7GWFkQ1V JwZNeHYI0/pHM7250JGi12vMUsSj3dukrxtY5YQ4jkBgPPL9l1lhrrNciZbYm8Ux pI7O74M7r8Ey66h5mkef3P7xACXm9HJkDqKWvWHcIa+RH5KxFSHRQF76sjFIB/DR 60hz29BQiH87jNHAdembzq/F6o9ePTEGVyLegCjJLooWzACsMuT7d1koIvXjWhOd N/YRjlIIEOc19cFYA9WbvnKxB6kJKhONvJ2qaiQf3MjHDglTRMwyf+1+4yQnXilK aVjs5EuXQWDRbHhDXfS2bPUGLLkCAwEAAaOCAhowggIWMB0GA1UdDgQWBBQ1Bk/C PcAIP3dRo2L0Eda8xq4h8TAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzEzMzM2MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPmIMA0GCSqGSIb3 DQEBCwUAA4IBAQBSOq/uw0T0kejHmOb+AgS8P5QcYTDdGycWCsFUWUlRFN6vzLQq u1c6yAQGIW/pV5o/YRhSgRHZrVo6PLyB9zNhhQqKfv9JU5yhCPjnDzsAD+DOepPv toUp8ZDaA1IEfk+KxNDyPxreMKhcucJGQZhfOley+4OWBbGds6F6SvwsutRvEWaZ A7RCBYzDvh7pHkzJIKxY+6ptoIzeFMhO0urivj+pL7BU06fPVvIDOZ26SaDqAzei CAPCXrejlToVEpxuWIV1RuZOSSPPAZ8qvQffzAU28iELtTekN2XxJm5OdaSBwkWL RPUIygIA8E/wMkGcKCxqBMcRn67Ht+l6JYW3 -----END CERTIFICATE-----Generated at Sat May 30 02:41:43 2026 by rpki-client