$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31362e302f32312d3231203d3e203538353431.roa File: 3134302e3234392e31362e302f32312d3231203d3e203538353431.roa (raw, json) Hash identifier: jJxSYsKCsIQ9mq2h6iUtYqfAevSildwLpB7l3EBTYKw= Subject key identifier: 51:32:4F:C5:E7:DC:79:A3:CD:AB:8D:B7:B8:89:BD:2B:4B:28:1D:2B Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 4817AFA815B5B885EFDD475F45A060051D8AEBDC Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31362e302f32312d3231203d3e203538353431.roa Signing time: Wed 03 Jun 2026 17:39:02 +0000 ROA not before: Wed 03 Jun 2026 17:34:02 +0000 ROA not after: Wed 02 Jun 2027 17:39:02 +0000 asID: 58541 IP address blocks: 140.249.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:17:af:a8:15:b5:b8:85:ef:dd:47:5f:45:a0:60:05:1d:8a:eb:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 17:34:02 2026 GMT Not After : Jun 2 17:39:02 2027 GMT Subject: CN=51324FC5E7DC79A3CDAB8DB7B889BD2B4B281D2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:eb:54:49:40:09:da:a7:42:c1:fd:ea:94:fe: 44:29:e9:8f:82:bd:07:0e:cf:30:c1:57:6e:d9:74: 57:f5:f8:b6:d5:93:f7:40:06:2e:f5:f9:00:da:db: ef:97:42:9e:35:f9:d2:22:c1:ff:15:96:8a:c7:e7: 87:b9:28:6f:8d:bc:7a:bc:b3:88:91:01:6d:ec:6b: 7a:ff:30:38:ff:81:d1:3a:c5:39:08:bd:ab:c0:82: b4:b4:4f:4a:37:a8:da:3f:ae:22:8c:72:dd:10:0e: 6f:7e:d4:2f:fc:ec:7f:2b:b1:65:fb:fc:98:44:e7: 25:a3:87:d3:95:3d:3b:aa:a3:9b:c8:01:02:76:9f: 05:bb:19:4d:67:c2:44:e2:7e:0c:dd:90:57:d5:d4: 0f:74:0d:3f:9d:ac:d7:e3:f9:63:d7:5c:6f:2a:65: 0a:66:f1:9d:1e:39:f8:a1:74:8a:ae:69:f9:1f:11: 6c:18:42:55:4b:d0:b2:73:51:60:1b:e1:e1:9f:21: 44:4b:a1:26:78:7b:00:9a:40:e2:19:8b:76:19:c9: 83:43:f6:9c:2e:88:0c:28:e9:2e:53:11:98:ba:24: 0d:dc:04:fd:8b:8f:61:78:2b:a5:13:43:dd:1f:a0: 41:ce:22:c4:b1:d1:8c:d4:e5:17:fc:2a:aa:0b:b0: 3c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:32:4F:C5:E7:DC:79:A3:CD:AB:8D:B7:B8:89:BD:2B:4B:28:1D:2B X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31362e302f32312d3231203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.16.0/21 Signature Algorithm: sha256WithRSAEncryption ae:e2:60:ba:07:75:bd:98:44:8b:07:a7:08:65:b9:63:74:2c: 04:32:61:9a:f5:01:8a:7c:2c:92:6b:49:a9:19:c1:8d:39:a5: 7b:20:ba:ec:43:65:59:a0:18:f7:27:e6:54:80:24:bb:35:04: bc:12:93:9f:7b:54:f2:b4:4b:c2:4e:93:59:ea:02:a0:4e:88: 6e:0e:2f:f2:09:4b:cb:7e:20:46:07:6e:19:fa:dc:87:ee:32: ca:b5:37:79:83:59:34:37:ea:9f:fc:9d:08:7f:70:c8:74:60: c1:49:e8:59:55:51:a6:ac:45:b8:66:77:f3:bd:40:2b:a5:42: f6:4a:e9:5c:cf:ae:22:d1:4b:81:9c:79:49:42:ff:18:16:ea: 14:ed:f3:ca:97:c0:68:da:6f:48:24:5e:80:48:fb:19:8b:22: 8e:4b:39:0c:d6:3c:e1:94:9a:86:45:d7:78:e7:26:bf:38:f1: 2c:71:a8:4a:b6:9b:17:23:0e:6a:19:bd:5d:e1:e5:87:70:37: 8f:c5:6b:bb:f0:ed:9b:99:56:0f:15:e2:f7:86:cd:dc:0a:73: d8:6e:73:16:c5:55:d7:c2:12:3d:38:8d:51:aa:42:14:71:53: 79:2f:01:59:82:b0:fa:04:b5:05:a4:00:90:69:d7:e0:bf:1b: 52:d0:c8:55 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUSBevqBW1uIXv3UdfRaBgBR2K69wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE3MzQwMloX DTI3MDYwMjE3MzkwMlowMzExMC8GA1UEAxMoNTEzMjRGQzVFN0RDNzlBM0NEQUI4 REI3Qjg4OUJEMkI0QjI4MUQyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLrVElACdqnQsH96pT+RCnpj4K9Bw7PMMFXbtl0V/X4ttWT90AGLvX5ANrb 75dCnjX50iLB/xWWisfnh7kob428eryziJEBbexrev8wOP+B0TrFOQi9q8CCtLRP Sjeo2j+uIoxy3RAOb37UL/zsfyuxZfv8mETnJaOH05U9O6qjm8gBAnafBbsZTWfC ROJ+DN2QV9XUD3QNP52s1+P5Y9dcbyplCmbxnR45+KF0iq5p+R8RbBhCVUvQsnNR YBvh4Z8hREuhJnh7AJpA4hmLdhnJg0P2nC6IDCjpLlMRmLokDdwE/YuPYXgrpRND 3R+gQc4ixLHRjNTlF/wqqguwPNsCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBRRMk/F 59x5o82rjbe4ib0rSygdKzAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzkyZTMxMzYyZTMwMmYzMjMxMmQzMjMx MjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjPkQMA0GCSqGSIb3DQEBCwUA A4IBAQCu4mC6B3W9mESLB6cIZbljdCwEMmGa9QGKfCySa0mpGcGNOaV7ILrsQ2VZ oBj3J+ZUgCS7NQS8EpOfe1TytEvCTpNZ6gKgTohuDi/yCUvLfiBGB24Z+tyH7jLK tTd5g1k0N+qf/J0If3DIdGDBSehZVVGmrEW4ZnfzvUArpUL2Sulcz64i0UuBnHlJ Qv8YFuoU7fPKl8Bo2m9IJF6ASPsZiyKOSzkM1jzhlJqGRdd45ya/OPEscahKtpsX Iw5qGb1d4eWHcDePxWu78O2bmVYPFeL3hs3cCnPYbnMWxVXXwhI9OI1RqkIUcVN5 LwFZgrD6BLUFpACQadfgvxtS0MhV -----END CERTIFICATE-----Generated at Fri Jun 12 11:24:49 2026 by rpki-client