$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3230302e302f32312d3231203d3e203538353431.roa File: 3134302e3234392e3230302e302f32312d3231203d3e203538353431.roa (raw, json) Hash identifier: KS6WtLSee4TEC6BwcpFfQfMWCA8nCHQoAqqU/GJDbFY= Subject key identifier: F2:BE:C1:9B:19:7F:C9:61:4C:C0:64:3D:EC:7B:95:FC:FE:F8:CA:96 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 1498DADF3693AF1729298A3281CE94DC76535899 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3230302e302f32312d3231203d3e203538353431.roa Signing time: Thu 28 May 2026 16:07:18 +0000 ROA not before: Thu 28 May 2026 16:02:18 +0000 ROA not after: Thu 27 May 2027 16:07:18 +0000 asID: 58541 IP address blocks: 140.249.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:98:da:df:36:93:af:17:29:29:8a:32:81:ce:94:dc:76:53:58:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:02:18 2026 GMT Not After : May 27 16:07:18 2027 GMT Subject: CN=F2BEC19B197FC9614CC0643DEC7B95FCFEF8CA96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:ed:bf:85:ff:59:f6:e6:92:14:cf:c1:3c:f7: 72:54:06:16:3f:10:39:f3:ae:80:99:e0:55:0e:d0: 12:52:8c:ee:8d:72:bb:0c:e3:89:3d:f7:a0:c8:b5: 5e:8f:a2:54:de:a3:7e:2a:c2:27:45:c4:c1:e0:31: c9:03:60:29:9b:df:af:45:be:e0:b3:af:65:3a:82: 3c:ef:60:68:e2:04:41:72:df:a5:7f:33:27:1f:e6: d4:2d:98:86:18:a4:7c:3b:d2:1b:24:50:8f:14:a2: d5:76:0e:ba:c5:d4:46:cd:a8:34:f1:9a:6d:9f:ab: a0:2d:1d:57:e3:77:e4:db:e8:8e:d4:f5:01:72:e4: 4b:87:87:f8:bb:94:1d:a8:40:9e:6c:d1:c6:2d:07: 2c:10:9a:9b:e9:77:13:9d:b3:fc:d2:a6:ad:28:de: 85:68:a1:c3:85:42:90:ea:e3:7d:f0:d6:e7:7e:09: d3:c3:96:e5:37:4f:bb:04:4e:6d:71:dd:f3:3b:ed: 17:cb:aa:ed:28:5b:88:f0:c5:2c:2a:0d:b6:d5:7e: e4:48:8b:4c:d9:89:7e:96:97:fc:3d:50:f1:ea:78: e7:a2:65:81:4a:8c:ae:27:e5:aa:e4:42:a7:8e:bd: 37:54:9d:a5:28:d7:1b:3c:26:91:a0:4a:e0:15:37: 53:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BE:C1:9B:19:7F:C9:61:4C:C0:64:3D:EC:7B:95:FC:FE:F8:CA:96 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3230302e302f32312d3231203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.200.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:98:85:09:d7:9a:22:66:50:ab:86:92:76:e1:05:a2:af:dc: 8b:01:9e:54:5c:ae:6e:5f:7c:a7:fc:87:dc:50:c6:cb:94:e5: 48:69:81:ed:d6:10:a0:47:59:63:cd:35:58:50:9b:c3:59:09: 51:46:3e:8f:0e:7d:39:ee:d6:ff:06:a7:80:86:82:92:5b:b4: c0:ba:2e:68:6b:47:0c:ed:c3:56:2a:cb:ac:bf:e9:6c:bc:70: ac:0c:68:e7:8f:cc:61:f0:d8:01:2e:41:89:b8:c9:78:b7:f7: c6:b8:5f:a8:11:94:4e:65:ec:a5:91:41:61:fc:46:2c:9d:74: 96:eb:08:b3:5c:ae:95:0c:3f:b4:4c:c8:7b:78:25:8c:fe:16: 5c:04:05:ac:c7:5f:34:99:8d:63:dd:6a:20:90:a1:02:9c:5d: bb:d0:75:56:a5:ee:7e:37:19:9e:13:9c:05:e1:25:9c:57:49: 3e:a4:81:ba:c4:38:f2:72:f9:3e:de:c0:f8:91:aa:c4:b0:20: ed:db:40:03:f6:61:aa:63:a6:7c:9f:1a:4f:c1:c2:5d:80:22: 44:c1:04:89:5a:a0:ba:83:bb:b0:00:99:0e:c7:d7:6a:8d:24: d5:33:e8:ea:0f:ae:52:02:d1:3e:06:a8:6a:b5:39:1c:e0:51: ad:5f:0c:0f -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUFJja3zaTrxcpKYoygc6U3HZTWJkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDIxOFoX DTI3MDUyNzE2MDcxOFowMzExMC8GA1UEAxMoRjJCRUMxOUIxOTdGQzk2MTRDQzA2 NDNERUM3Qjk1RkNGRUY4Q0E5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIrtv4X/WfbmkhTPwTz3clQGFj8QOfOugJngVQ7QElKM7o1yuwzjiT33oMi1 Xo+iVN6jfirCJ0XEweAxyQNgKZvfr0W+4LOvZTqCPO9gaOIEQXLfpX8zJx/m1C2Y hhikfDvSGyRQjxSi1XYOusXURs2oNPGabZ+roC0dV+N35NvojtT1AXLkS4eH+LuU HahAnmzRxi0HLBCam+l3E52z/NKmrSjehWihw4VCkOrjffDW534J08OW5TdPuwRO bXHd8zvtF8uq7ShbiPDFLCoNttV+5EiLTNmJfpaX/D1Q8ep456JlgUqMriflquRC p469N1SdpSjXGzwmkaBK4BU3UxECAwEAAaOCAhcwggITMB0GA1UdDgQWBBTyvsGb GX/JYUzAZD3se5X8/vjKljAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzMjMwMzAyZTMwMmYzMjMxMmQz MjMxMjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjPnIMA0GCSqGSIb3DQEB CwUAA4IBAQAKmIUJ15oiZlCrhpJ24QWir9yLAZ5UXK5uX3yn/IfcUMbLlOVIaYHt 1hCgR1ljzTVYUJvDWQlRRj6PDn057tb/BqeAhoKSW7TAui5oa0cM7cNWKsusv+ls vHCsDGjnj8xh8NgBLkGJuMl4t/fGuF+oEZROZeylkUFh/EYsnXSW6wizXK6VDD+0 TMh7eCWM/hZcBAWsx180mY1j3WogkKECnF270HVWpe5+NxmeE5wF4SWcV0k+pIG6 xDjycvk+3sD4karEsCDt20AD9mGqY6Z8nxpPwcJdgCJEwQSJWqC6g7uwAJkOx9dq jSTVM+jqD65SAtE+BqhqtTkc4FGtXwwP -----END CERTIFICATE-----Generated at Sat May 30 02:40:39 2026 by rpki-client