$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31392e302f32342d3234203d3e203538353431.roa File: 3134302e3234392e31392e302f32342d3234203d3e203538353431.roa (raw, json) Hash identifier: 01LXk35ISxo75yHHvkyIntp4UYy741R1sFewkCxWvsc= Subject key identifier: 62:03:B4:E3:1C:59:EB:D0:28:37:29:1C:6E:9F:BC:48:48:7C:5F:A1 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 59FA3F51443A055148458681BAC4D301DF0960E0 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31392e302f32342d3234203d3e203538353431.roa Signing time: Mon 25 May 2026 16:08:31 +0000 ROA not before: Mon 25 May 2026 16:03:31 +0000 ROA not after: Mon 24 May 2027 16:08:31 +0000 asID: 58541 IP address blocks: 140.249.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fa:3f:51:44:3a:05:51:48:45:86:81:ba:c4:d3:01:df:09:60:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 25 16:03:31 2026 GMT Not After : May 24 16:08:31 2027 GMT Subject: CN=6203B4E31C59EBD02837291C6E9FBC48487C5FA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:72:4f:89:22:00:b1:15:ba:8d:55:85:f7:8b: 81:54:d4:6f:42:e7:1b:cd:fd:f0:50:42:a6:23:de: 0b:62:4d:ed:69:f1:50:53:b1:71:35:e2:86:b5:02: 02:f8:9b:b9:bd:27:c4:01:22:c4:75:76:2a:7c:7d: b8:b8:cd:9b:2b:de:42:87:76:bf:17:81:c2:1d:ea: de:2d:c8:76:b9:9d:48:e5:de:f9:09:95:74:63:ec: 0d:cb:ed:1c:5a:1b:cc:5f:b2:17:90:bb:58:f2:5c: 3f:ef:a3:8e:e6:91:e1:93:6e:25:f2:39:6e:c6:87: 12:81:7a:4e:13:87:07:7a:bc:67:69:cf:6e:3f:b6: 9a:61:a3:16:7d:85:1a:82:34:80:2b:21:ca:f1:d9: cc:f6:cf:f7:ea:a9:6b:eb:12:53:cf:b4:8f:30:7f: 1f:47:3b:37:bc:35:93:39:7a:b7:5b:b1:7f:10:5f: 30:5c:7f:44:ec:b3:e4:38:62:0d:58:2c:a7:be:96: 33:c1:84:d6:5e:c2:c1:13:32:ef:4c:8a:7b:a8:51: 28:a4:2d:95:0c:e8:e3:29:7b:ca:b9:dd:5f:66:27: 56:d5:68:a2:bf:27:ce:d3:81:e0:2a:3e:b5:df:bd: 0b:e0:6c:e1:88:a3:9b:c0:df:3e:ca:56:ea:3f:05: 5c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:03:B4:E3:1C:59:EB:D0:28:37:29:1C:6E:9F:BC:48:48:7C:5F:A1 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e31392e302f32342d3234203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.19.0/24 Signature Algorithm: sha256WithRSAEncryption ae:82:61:c3:12:d7:a3:16:56:39:d8:00:f4:54:b2:0e:fc:80: 9c:24:e6:a8:73:c3:46:97:00:a7:ae:18:86:95:98:2d:38:5d: 61:9b:da:27:36:8b:f7:1f:09:b2:3a:6d:8c:d2:fb:e2:6f:3f: 29:b4:d7:49:4a:08:7a:98:d6:73:8b:ff:89:a4:c8:51:02:ab: 17:96:6a:29:36:09:f0:06:da:be:ef:49:f4:2c:ba:e4:52:c8: db:42:ea:78:ca:81:d7:ae:1a:e9:95:78:f0:e1:fd:58:53:63: 59:1e:45:08:0e:fa:32:6c:42:f4:5d:52:70:63:98:9a:f7:04: c8:16:e5:f7:45:88:67:c1:32:6b:ca:0f:e6:d4:71:07:b7:84: bf:04:fc:53:e5:f7:ef:b6:3c:e0:b2:81:77:77:ef:29:10:26: 32:39:e0:e7:f0:3e:63:62:77:c4:57:73:1f:b2:55:54:4f:af: 63:cf:93:eb:d4:4b:2d:43:76:7e:55:54:42:62:74:db:57:78: ea:83:dc:d6:c1:ce:df:89:9b:70:69:15:82:10:5d:61:7e:c5: 13:b0:d6:85:ab:c2:24:e7:26:90:96:cb:eb:f1:9c:e0:55:21: b8:fa:f9:8c:b4:c5:e6:f0:98:51:7a:40:13:bc:a4:4e:41:a9: f5:20:9c:8b -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUWfo/UUQ6BVFIRYaBusTTAd8JYOAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyNTE2MDMzMVoX DTI3MDUyNDE2MDgzMVowMzExMC8GA1UEAxMoNjIwM0I0RTMxQzU5RUJEMDI4Mzcy OTFDNkU5RkJDNDg0ODdDNUZBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZyT4kiALEVuo1VhfeLgVTUb0LnG8398FBCpiPeC2JN7WnxUFOxcTXihrUC Avibub0nxAEixHV2Knx9uLjNmyveQod2vxeBwh3q3i3IdrmdSOXe+QmVdGPsDcvt HFobzF+yF5C7WPJcP++jjuaR4ZNuJfI5bsaHEoF6ThOHB3q8Z2nPbj+2mmGjFn2F GoI0gCshyvHZzPbP9+qpa+sSU8+0jzB/H0c7N7w1kzl6t1uxfxBfMFx/ROyz5Dhi DVgsp76WM8GE1l7CwRMy70yKe6hRKKQtlQzo4yl7yrndX2YnVtVoor8nztOB4Co+ td+9C+Bs4Yijm8DfPspW6j8FXNECAwEAAaOCAhQwggIQMB0GA1UdDgQWBBRiA7Tj HFnr0Cg3KRxun7xISHxfoTAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzkyZTMxMzkyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPkTMA0GCSqGSIb3DQEBCwUA A4IBAQCugmHDEtejFlY52AD0VLIO/ICcJOaoc8NGlwCnrhiGlZgtOF1hm9onNov3 HwmyOm2M0vvibz8ptNdJSgh6mNZzi/+JpMhRAqsXlmopNgnwBtq+70n0LLrkUsjb Qup4yoHXrhrplXjw4f1YU2NZHkUIDvoybEL0XVJwY5ia9wTIFuX3RYhnwTJryg/m 1HEHt4S/BPxT5ffvtjzgsoF3d+8pECYyOeDn8D5jYnfEV3MfslVUT69jz5Pr1Est Q3Z+VVRCYnTbV3jqg9zWwc7fiZtwaRWCEF1hfsUTsNaFq8Ik5yaQlsvr8ZzgVSG4 +vmMtMXm8JhRekATvKROQan1IJyL -----END CERTIFICATE-----Generated at Sat May 30 02:40:51 2026 by rpki-client