$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3136302e302f32302d3230203d3e203538353431.roa File: 3134302e3234392e3136302e302f32302d3230203d3e203538353431.roa (raw, json) Hash identifier: gAyrX/XYHLkvs9wPx2n+fVRPY+XB4xBH8m/8bO4wQ1A= Subject key identifier: DD:FD:ED:3B:0D:3D:F7:C4:49:97:14:ED:32:9C:E5:A3:82:81:D4:9D Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 3F1CBCB9418C46FFF7D4BEFC481187AFEA0CE910 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3136302e302f32302d3230203d3e203538353431.roa Signing time: Mon 25 May 2026 16:08:31 +0000 ROA not before: Mon 25 May 2026 16:03:31 +0000 ROA not after: Mon 24 May 2027 16:08:31 +0000 asID: 58541 IP address blocks: 140.249.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:1c:bc:b9:41:8c:46:ff:f7:d4:be:fc:48:11:87:af:ea:0c:e9:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 25 16:03:31 2026 GMT Not After : May 24 16:08:31 2027 GMT Subject: CN=DDFDED3B0D3DF7C4499714ED329CE5A38281D49D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:26:63:d5:77:89:df:38:7d:e6:29:c4:e7: 04:72:71:97:ef:09:69:22:6a:11:0c:79:8a:8d:60: ec:c9:33:b6:4f:6f:e3:40:78:12:b5:4a:1b:aa:32: bd:79:bf:bd:10:7d:a2:55:84:54:f7:a1:e2:94:52: ae:98:10:03:98:14:64:38:31:ee:2f:44:a1:75:66: d8:68:00:32:06:18:1e:de:10:8f:52:9c:e2:76:93: cb:7b:fc:75:81:4c:e1:85:31:48:0f:ac:9e:51:21: 7d:01:08:2d:21:1e:f3:72:c0:9a:6e:10:39:79:05: bc:b3:f0:89:1f:ae:f2:b5:6e:fc:b6:3f:ae:6f:d8: 03:57:eb:0c:20:99:d4:5f:63:dc:7e:87:40:1d:cb: 88:18:c6:87:ab:7a:3d:f1:59:35:6c:f8:6a:6b:48: b1:a9:17:a5:da:ac:d4:da:3c:0e:77:dd:10:35:62: eb:5a:a1:27:5b:b9:4b:33:1b:cf:66:09:1a:8b:3f: ca:7f:05:31:35:cd:6d:9c:46:59:f8:e5:fc:e1:36: 49:32:be:28:95:5f:64:25:e1:da:57:d9:6a:56:8d: 9c:1e:7c:07:9f:cd:9f:50:4f:bd:7f:08:0b:8d:49: 87:9e:17:9d:c8:ee:42:d2:4b:bd:72:f1:0b:e8:f1: 3e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FD:ED:3B:0D:3D:F7:C4:49:97:14:ED:32:9C:E5:A3:82:81:D4:9D X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3136302e302f32302d3230203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.160.0/20 Signature Algorithm: sha256WithRSAEncryption d7:36:be:00:c9:6a:9a:4a:10:11:77:20:3e:8d:0d:ca:3e:12: c7:2f:91:e6:77:4f:43:27:16:b5:63:06:12:40:dc:d6:ba:cf: c6:c4:af:0e:e3:d0:f8:bb:6d:b6:8b:86:70:28:ef:60:af:9e: f5:2e:ff:31:8d:bf:89:40:7e:ab:dd:1d:f5:0a:fa:53:75:dd: 50:5e:e9:0e:35:aa:c3:2b:e7:c7:14:e1:db:fc:51:df:7f:f2: 23:32:78:cc:be:17:b8:ea:c4:d5:25:4d:3d:e3:f8:16:10:99: 54:24:9e:cc:85:e1:3d:ea:b1:6b:27:73:46:a2:f0:f3:a9:e5: d4:1f:9d:4a:85:fa:1e:e8:93:b3:3d:a3:60:25:47:3a:46:d2: 85:55:71:65:2e:f1:f1:35:71:20:53:28:4e:f5:6f:99:ae:fd: 62:77:93:51:4e:7a:63:d6:a9:2e:4f:9d:89:e4:c1:3b:67:12: a8:67:77:04:35:8c:54:11:41:14:7a:93:f8:17:f7:16:b4:a8: 76:86:81:0d:78:b2:eb:17:e0:4a:06:b3:eb:4d:2d:f8:36:0f: a5:c6:29:85:ad:ed:1a:82:17:78:b3:18:ca:92:c3:7e:a3:24: f3:29:81:d7:79:76:b9:8a:39:14:80:b3:09:12:5d:86:7a:45: 3b:fa:83:8b -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUPxy8uUGMRv/31L78SBGHr+oM6RAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyNTE2MDMzMVoX DTI3MDUyNDE2MDgzMVowMzExMC8GA1UEAxMoRERGREVEM0IwRDNERjdDNDQ5OTcx NEVEMzI5Q0U1QTM4MjgxRDQ5RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBnJmPVd4nfOH3mKcTnBHJxl+8JaSJqEQx5io1g7Mkztk9v40B4ErVKG6oy vXm/vRB9olWEVPeh4pRSrpgQA5gUZDgx7i9EoXVm2GgAMgYYHt4Qj1Kc4naTy3v8 dYFM4YUxSA+snlEhfQEILSEe83LAmm4QOXkFvLPwiR+u8rVu/LY/rm/YA1frDCCZ 1F9j3H6HQB3LiBjGh6t6PfFZNWz4amtIsakXpdqs1No8DnfdEDVi61qhJ1u5SzMb z2YJGos/yn8FMTXNbZxGWfjl/OE2STK+KJVfZCXh2lfZalaNnB58B5/Nn1BPvX8I C41Jh54XncjuQtJLvXLxC+jxPi8CAwEAAaOCAhcwggITMB0GA1UdDgQWBBTd/e07 DT33xEmXFO0ynOWjgoHUnTAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzMTM2MzAyZTMwMmYzMjMwMmQz MjMwMjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEjPmgMA0GCSqGSIb3DQEB CwUAA4IBAQDXNr4AyWqaShARdyA+jQ3KPhLHL5Hmd09DJxa1YwYSQNzWus/GxK8O 49D4u222i4ZwKO9gr571Lv8xjb+JQH6r3R31CvpTdd1QXukONarDK+fHFOHb/FHf f/IjMnjMvhe46sTVJU094/gWEJlUJJ7MheE96rFrJ3NGovDzqeXUH51Khfoe6JOz PaNgJUc6RtKFVXFlLvHxNXEgUyhO9W+Zrv1id5NRTnpj1qkuT52J5ME7ZxKoZ3cE NYxUEUEUepP4F/cWtKh2hoENeLLrF+BKBrPrTS34Ng+lximFre0aghd4sxjKksN+ oyTzKYHXeXa5ijkUgLMJEl2GekU7+oOL -----END CERTIFICATE-----Generated at Sat May 30 02:40:33 2026 by rpki-client