$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32302e302f32322d3232203d3e20313336313935.roa File: 3134302e3234392e32302e302f32322d3232203d3e20313336313935.roa (raw, json) Hash identifier: VjzsVCJsS9IPGhkPXAC7o1JYpDziNJbzQacAhr/xWnI= Subject key identifier: B9:89:DE:DA:0F:BA:ED:E6:AA:66:0D:25:78:9E:A0:79:46:9B:FC:74 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 66C72C2B53DDF27259656A17AE6FDCD1944BED07 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32302e302f32322d3232203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:07:18 +0000 ROA not before: Thu 28 May 2026 16:02:18 +0000 ROA not after: Thu 27 May 2027 16:07:18 +0000 asID: 136195 IP address blocks: 140.249.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c7:2c:2b:53:dd:f2:72:59:65:6a:17:ae:6f:dc:d1:94:4b:ed:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:02:18 2026 GMT Not After : May 27 16:07:18 2027 GMT Subject: CN=B989DEDA0FBAEDE6AA660D25789EA079469BFC74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bd:ef:0c:82:79:c4:4e:f0:3d:2b:08:14:01: 8f:f7:2f:ba:77:6c:a5:64:42:fa:76:0c:4b:90:5a: 7e:7d:cb:f3:59:83:3e:da:4c:45:b1:35:5c:a1:e9: 0d:c8:34:77:a9:5d:b3:a6:ba:ab:66:33:36:e6:ce: af:3a:a5:bd:fe:d4:ad:c8:ee:4d:d3:0e:09:73:90: 53:f2:2e:3e:fb:13:27:b2:e8:94:5a:26:40:3d:0b: 1e:78:bd:cf:ee:72:4d:df:99:bf:f9:f7:4d:9c:fb: 99:a3:cc:69:d5:bf:e8:d2:05:dc:c1:54:d2:90:87: 41:2b:18:e5:e3:82:8d:e1:76:d4:43:95:45:ae:0a: d5:fd:ad:db:bc:52:4c:88:56:0b:73:88:13:64:4a: b7:c7:39:1e:cc:79:ff:4c:59:c7:a5:94:55:7f:5b: e0:c1:ac:d6:00:f3:40:d8:9c:3f:ba:0d:0b:e0:b3: dc:62:04:6f:08:89:5a:dc:bd:47:7d:07:24:c0:9c: 77:02:16:66:73:04:27:bf:f5:ea:4e:3c:ca:6b:e9: d7:20:15:78:be:da:b8:6f:4d:5e:0b:aa:0f:e9:f3: 9e:c5:5e:00:a9:f1:b2:de:66:49:a3:67:8f:1f:eb: cd:90:03:8e:2c:85:55:15:d3:91:97:bb:60:15:b6: 2a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:89:DE:DA:0F:BA:ED:E6:AA:66:0D:25:78:9E:A0:79:46:9B:FC:74 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32302e302f32322d3232203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:70:7c:5d:4f:6a:e3:34:c3:f7:4b:d7:fc:51:e9:16:0c:6f: 0e:a4:fe:02:57:43:e2:3b:00:9f:2d:21:ce:b4:54:ea:f0:9a: 17:fc:ca:0b:e7:67:b2:e7:d4:03:a1:b5:49:65:55:63:54:05: b7:a8:17:8c:5b:d9:52:3e:65:2c:0d:d0:71:9e:e0:f6:d6:cd: 07:43:78:c0:e6:ac:c9:3a:e5:01:d9:e2:ee:93:5b:7d:37:df: ae:b3:ca:5d:61:29:47:43:28:ad:47:5a:47:c3:1c:b4:61:12: 26:eb:b5:86:29:a4:37:1a:1d:b9:1b:46:20:fa:a9:d3:5d:d2: 10:47:ed:4a:37:15:c9:25:fb:cf:52:14:98:c1:b5:59:c5:2b: 5c:20:27:df:ca:14:f2:18:97:28:b3:6d:01:2e:aa:42:ba:b5: a1:7b:95:77:00:f4:56:77:b6:77:4b:e8:2b:ed:50:6e:3d:cd: 8b:77:fc:2e:8c:5a:e5:d3:6a:98:d0:8a:58:72:64:65:c7:b0: 62:10:ee:41:18:8a:2e:3f:8e:ff:f2:e4:26:dc:88:f3:c0:bf: df:b5:06:da:55:f6:e2:b5:47:ef:ab:27:83:29:05:a2:70:4c: c8:8f:81:81:c3:8b:cd:75:db:e6:05:34:83:87:02:c7:c0:5a: 2a:5f:61:b3 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUZscsK1Pd8nJZZWoXrm/c0ZRL7QcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDIxOFoX DTI3MDUyNzE2MDcxOFowMzExMC8GA1UEAxMoQjk4OURFREEwRkJBRURFNkFBNjYw RDI1Nzg5RUEwNzk0NjlCRkM3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANC97wyCecRO8D0rCBQBj/cvundspWRC+nYMS5Bafn3L81mDPtpMRbE1XKHp Dcg0d6lds6a6q2YzNubOrzqlvf7UrcjuTdMOCXOQU/IuPvsTJ7LolFomQD0LHni9 z+5yTd+Zv/n3TZz7maPMadW/6NIF3MFU0pCHQSsY5eOCjeF21EOVRa4K1f2t27xS TIhWC3OIE2RKt8c5Hsx5/0xZx6WUVX9b4MGs1gDzQNicP7oNC+Cz3GIEbwiJWty9 R30HJMCcdwIWZnMEJ7/16k48ymvp1yAVeL7auG9NXguqD+nznsVeAKnxst5mSaNn jx/rzZADjiyFVRXTkZe7YBW2KrECAwEAAaOCAhcwggITMB0GA1UdDgQWBBS5id7a D7rt5qpmDSV4nqB5Rpv8dDAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzMjMwMmUzMDJmMzIzMjJkMzIz MjIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjPkUMA0GCSqGSIb3DQEB CwUAA4IBAQCfcHxdT2rjNMP3S9f8UekWDG8OpP4CV0PiOwCfLSHOtFTq8JoX/MoL 52ey59QDobVJZVVjVAW3qBeMW9lSPmUsDdBxnuD21s0HQ3jA5qzJOuUB2eLuk1t9 N9+us8pdYSlHQyitR1pHwxy0YRIm67WGKaQ3Gh25G0Yg+qnTXdIQR+1KNxXJJfvP UhSYwbVZxStcICffyhTyGJcos20BLqpCurWhe5V3APRWd7Z3S+gr7VBuPc2Ld/wu jFrl02qY0IpYcmRlx7BiEO5BGIouP47/8uQm3IjzwL/ftQbaVfbitUfvqyeDKQWi cEzIj4GBw4vNddvmBTSDhwLHwFoqX2Gz -----END CERTIFICATE-----Generated at Sat May 30 02:41:17 2026 by rpki-client