$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3139322e302f32302d3230203d3e20313336313935.roa File: 3134302e3234392e3139322e302f32302d3230203d3e20313336313935.roa (raw, json) Hash identifier: /XleqW24ozIIIjjpgWXmD73Hd3mKdGAQeQ2zRtBdWKk= Subject key identifier: E5:95:22:EC:4F:6D:E9:EC:FF:73:7F:B6:88:B2:70:AD:93:09:EF:AF Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 2B97055F23E821679AC435C736FB6C9FEC616F19 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3139322e302f32302d3230203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:12:01 +0000 ROA not before: Thu 28 May 2026 16:07:01 +0000 ROA not after: Thu 27 May 2027 16:12:01 +0000 asID: 136195 IP address blocks: 140.249.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:97:05:5f:23:e8:21:67:9a:c4:35:c7:36:fb:6c:9f:ec:61:6f:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:07:01 2026 GMT Not After : May 27 16:12:01 2027 GMT Subject: CN=E59522EC4F6DE9ECFF737FB688B270AD9309EFAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:39:f5:c9:89:84:cd:8d:5d:72:a2:01:43: e4:00:d7:a0:fb:d9:55:9c:a7:9e:99:a1:7a:6d:ef: 56:17:91:e2:df:42:18:49:98:41:30:9b:b3:b2:c1: 58:b5:f4:3b:9b:7d:33:67:59:25:1a:e1:a7:4f:60: 96:2a:d7:14:25:30:6d:7f:00:b2:34:ca:80:6d:e8: 91:01:f4:6f:fa:ea:58:b7:54:59:eb:28:c8:29:be: ac:de:1f:ea:c2:36:6a:27:17:9f:e4:22:9c:56:8a: df:78:c4:2a:ea:65:ed:51:2e:b6:de:55:ec:01:f9: b0:47:e6:23:16:27:ed:f2:8b:39:9c:80:1d:78:a9: 6f:d1:e0:49:a4:af:75:d5:78:80:cc:d2:fe:f6:48: 8a:8e:7f:f8:7d:92:1a:dd:3f:b2:0e:71:7b:63:30: d0:58:70:fc:10:03:6a:c0:63:02:40:dd:f5:4d:44: cb:04:4d:d1:40:57:fe:1f:d5:78:a0:78:ee:b6:6e: 16:1e:fe:a5:50:64:15:76:d5:25:e8:99:a1:b1:21: a6:7c:2a:62:aa:e6:a1:a5:85:67:69:66:1c:ba:4e: 5f:a0:f1:1b:c9:9d:66:8a:49:d0:d3:98:74:c6:89: 00:fa:bf:06:58:26:50:34:18:55:1f:c2:91:aa:88: e8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:95:22:EC:4F:6D:E9:EC:FF:73:7F:B6:88:B2:70:AD:93:09:EF:AF X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3139322e302f32302d3230203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.192.0/20 Signature Algorithm: sha256WithRSAEncryption 49:92:cc:33:c1:d4:53:48:9a:a2:32:a7:9e:9a:65:03:3c:06: df:c6:1c:64:b6:c8:46:9f:1b:63:8e:4b:ab:a3:f0:c1:bb:42: 53:a3:e8:69:ae:39:e5:e9:06:e4:79:d3:b8:13:c0:da:66:91: b9:72:b5:d3:ec:87:41:99:11:9f:45:47:8d:64:a9:1e:9b:79: c0:b6:d2:83:ed:fb:fc:ea:7c:9f:e8:f3:04:d2:34:d8:36:1e: 38:bf:09:3c:1d:e6:74:0d:79:73:98:21:6b:3b:f1:a5:c8:cc: 2d:31:7c:41:02:f1:ae:48:4a:64:9e:76:1f:55:01:b9:d0:9d: 7f:7a:00:83:da:ea:63:4c:87:d5:b1:74:d1:cd:36:47:f6:47: 51:0e:77:0c:7d:cf:d0:c6:89:7f:19:1c:2d:61:a5:56:8f:42: 04:66:9f:72:cc:29:04:97:fc:a2:e8:27:55:b6:f6:20:eb:b2: de:65:bd:be:57:06:71:4e:95:be:ca:13:5e:b8:f3:26:c1:31: 03:f1:8e:d5:26:73:49:e9:ab:ed:b2:bf:4d:a3:de:52:3a:ac: 62:99:6a:24:1b:70:08:13:76:73:69:1a:af:ce:c3:05:e3:b7: 46:51:b9:cc:83:12:4a:de:09:54:62:63:32:e6:56:1f:d5:d4: 0d:31:13:2c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUK5cFXyPoIWeaxDXHNvtsn+xhbxkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDcwMVoX DTI3MDUyNzE2MTIwMVowMzExMC8GA1UEAxMoRTU5NTIyRUM0RjZERTlFQ0ZGNzM3 RkI2ODhCMjcwQUQ5MzA5RUZBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWEOfXJiYTNjV1yogFD5ADXoPvZVZynnpmhem3vVheR4t9CGEmYQTCbs7LB WLX0O5t9M2dZJRrhp09glirXFCUwbX8AsjTKgG3okQH0b/rqWLdUWesoyCm+rN4f 6sI2aicXn+QinFaK33jEKupl7VEutt5V7AH5sEfmIxYn7fKLOZyAHXipb9HgSaSv ddV4gMzS/vZIio5/+H2SGt0/sg5xe2Mw0Fhw/BADasBjAkDd9U1EywRN0UBX/h/V eKB47rZuFh7+pVBkFXbVJeiZobEhpnwqYqrmoaWFZ2lmHLpOX6DxG8mdZopJ0NOY dMaJAPq/BlgmUDQYVR/CkaqI6KsCAwEAAaOCAhowggIWMB0GA1UdDgQWBBTllSLs T23p7P9zf7aIsnCtkwnvrzAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzEzOTMyMmUzMDJmMzIzMDJk MzIzMDIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEjPnAMA0GCSqGSIb3 DQEBCwUAA4IBAQBJkswzwdRTSJqiMqeemmUDPAbfxhxktshGnxtjjkuro/DBu0JT o+hprjnl6QbkedO4E8DaZpG5crXT7IdBmRGfRUeNZKkem3nAttKD7fv86nyf6PME 0jTYNh44vwk8HeZ0DXlzmCFrO/GlyMwtMXxBAvGuSEpknnYfVQG50J1/egCD2upj TIfVsXTRzTZH9kdRDncMfc/Qxol/GRwtYaVWj0IEZp9yzCkEl/yi6CdVtvYg67Le Zb2+VwZxTpW+yhNeuPMmwTED8Y7VJnNJ6avtsr9No95SOqximWokG3AIE3ZzaRqv zsMF47dGUbnMgxJK3glUYmMy5lYf1dQNMRMs -----END CERTIFICATE-----Generated at Sat May 30 02:41:17 2026 by rpki-client