$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31382e302f32342d3234203d3e203538353431.roa File: 3134302e3234392e31382e302f32342d3234203d3e203538353431.roa (raw, json) Hash identifier: U15ZrnFgZJNgQ0XHr20y4TX/J9peGvkOIUaAIKrIa1A= Subject key identifier: AA:32:5B:BE:86:27:73:1E:4D:1C:E1:C0:0D:85:D9:30:00:EE:34:27 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 491D6896E532719DAE74AE4BFD4C1746D482C8AE Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31382e302f32342d3234203d3e203538353431.roa Signing time: Mon 25 May 2026 16:08:31 +0000 ROA not before: Mon 25 May 2026 16:03:31 +0000 ROA not after: Mon 24 May 2027 16:08:31 +0000 asID: 58541 IP address blocks: 140.249.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1d:68:96:e5:32:71:9d:ae:74:ae:4b:fd:4c:17:46:d4:82:c8:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 25 16:03:31 2026 GMT Not After : May 24 16:08:31 2027 GMT Subject: CN=AA325BBE8627731E4D1CE1C00D85D93000EE3427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:32:4b:1d:c0:a7:2a:66:38:b4:3e:15:a3:cb: b3:a0:56:16:88:c8:7e:b6:d3:c7:0a:0c:71:17:81: e7:7e:47:60:6d:69:93:3d:17:18:30:4d:0f:e7:16: ba:6c:86:a4:c0:ca:c6:76:56:36:fd:0d:89:69:01: bc:b3:28:7d:9c:bd:81:8f:f6:97:c7:6b:66:e3:bd: f8:52:7a:e5:ab:a1:af:e3:3e:92:15:98:0f:ec:09: 19:4c:f6:7b:71:9a:3a:37:b5:62:20:88:4c:7a:e5: d9:c6:d2:e9:2a:67:c4:e2:7a:a8:be:20:c0:fc:d1: d4:e3:0d:c4:d0:ef:a1:c0:dc:1b:24:9f:74:a6:4b: db:b2:e0:a9:11:ce:ab:61:d7:54:d0:77:c8:6c:1a: 57:55:8c:94:f2:c0:6c:a6:1a:01:85:36:a1:4a:fa: 84:ac:49:68:06:b0:f6:cd:c8:95:28:4f:9a:dd:dd: ca:5f:6d:f8:0f:8b:7c:e9:db:03:e5:a8:7a:77:1e: 3a:37:99:bf:54:63:52:e0:68:a4:8b:9c:bf:04:61: aa:27:cf:aa:7b:82:8b:60:79:26:35:41:cf:da:65: 41:87:d1:57:0e:30:d5:e7:79:3b:33:ae:a0:ac:8c: 3d:25:5b:e2:8f:5b:c2:a4:48:30:5c:52:ea:1f:b3: 3b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:32:5B:BE:86:27:73:1E:4D:1C:E1:C0:0D:85:D9:30:00:EE:34:27 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31382e302f32342d3234203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.18.0/24 Signature Algorithm: sha256WithRSAEncryption ea:bb:31:3b:6e:9c:58:fe:05:4d:4a:51:43:d8:ba:76:f3:c3: 75:76:63:71:90:22:f2:76:84:9f:7e:21:34:ae:84:fc:62:30: 4f:c6:ec:d3:55:8c:78:f8:dc:b4:12:04:87:bf:6f:84:da:49: c2:9b:33:49:1b:83:95:67:55:06:42:48:f2:e4:b6:9b:6e:ab: 7d:cb:5d:c2:75:90:34:91:70:39:0a:e9:c1:19:8f:b9:6b:09: 32:43:f2:80:44:1a:15:7f:93:74:a6:86:83:37:f5:1b:5b:70: 1d:b8:60:c7:9a:26:3f:91:1f:89:9a:e0:66:b9:c3:82:bc:5c: 30:b1:f7:ff:d9:ac:07:95:d7:3d:d6:63:ea:59:d6:0c:3c:39: a4:85:c4:cf:99:a1:54:26:3b:db:25:62:6c:4b:16:cd:f6:a8: 2e:b2:9d:7b:b7:f5:da:04:2f:ab:7d:fc:0c:2f:e1:32:c5:2b: 30:51:81:4c:53:cb:6f:17:06:71:d3:91:86:c2:02:a6:96:5f: 88:97:9e:4a:5b:ce:94:cb:67:2b:6b:e7:f0:c9:47:4c:f6:2e: 61:a8:a4:9c:a4:79:23:1e:60:9e:7e:bb:5d:28:0a:58:64:75: 37:2c:a1:44:a2:ff:67:bd:77:77:13:b0:21:bb:41:b5:1c:bc: f9:8b:51:9e -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUSR1oluUycZ2udK5L/UwXRtSCyK4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyNTE2MDMzMVoX DTI3MDUyNDE2MDgzMVowMzExMC8GA1UEAxMoQUEzMjVCQkU4NjI3NzMxRTREMUNF MUMwMEQ4NUQ5MzAwMEVFMzQyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI0ySx3ApypmOLQ+FaPLs6BWFojIfrbTxwoMcReB535HYG1pkz0XGDBND+cW umyGpMDKxnZWNv0NiWkBvLMofZy9gY/2l8drZuO9+FJ65auhr+M+khWYD+wJGUz2 e3GaOje1YiCITHrl2cbS6SpnxOJ6qL4gwPzR1OMNxNDvocDcGySfdKZL27LgqRHO q2HXVNB3yGwaV1WMlPLAbKYaAYU2oUr6hKxJaAaw9s3IlShPmt3dyl9t+A+LfOnb A+WoenceOjeZv1RjUuBopIucvwRhqifPqnuCi2B5JjVBz9plQYfRVw4w1ed5OzOu oKyMPSVb4o9bwqRIMFxS6h+zO80CAwEAAaOCAhQwggIQMB0GA1UdDgQWBBSqMlu+ hidzHk0c4cANhdkwAO40JzAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzkyZTMxMzgyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPkSMA0GCSqGSIb3DQEBCwUA A4IBAQDquzE7bpxY/gVNSlFD2Lp288N1dmNxkCLydoSffiE0roT8YjBPxuzTVYx4 +Ny0EgSHv2+E2knCmzNJG4OVZ1UGQkjy5Labbqt9y13CdZA0kXA5CunBGY+5awky Q/KARBoVf5N0poaDN/UbW3AduGDHmiY/kR+JmuBmucOCvFwwsff/2awHldc91mPq WdYMPDmkhcTPmaFUJjvbJWJsSxbN9qgusp17t/XaBC+rffwML+EyxSswUYFMU8tv FwZx05GGwgKmll+Il55KW86Uy2cra+fwyUdM9i5hqKScpHkjHmCefrtdKApYZHU3 LKFEov9nvXd3E7Ahu0G1HLz5i1Ge -----END CERTIFICATE-----Generated at Sat May 30 02:40:51 2026 by rpki-client