$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3230382e302f32312d3231203d3e20313336313935.roa File: 3134302e3234392e3230382e302f32312d3231203d3e20313336313935.roa (raw, json) Hash identifier: 6T05wPM3Gyw/iT1AhlibdipwpWsP/4TRlCGvaCR3f7E= Subject key identifier: 46:C9:21:56:7B:1E:28:98:C6:C9:9A:F5:E5:D1:F2:F3:D2:97:C6:07 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 46DFC7AA4AB2562C12EDF42E82C33543D3FF39F5 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3230382e302f32312d3231203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:12:01 +0000 ROA not before: Thu 28 May 2026 16:07:01 +0000 ROA not after: Thu 27 May 2027 16:12:01 +0000 asID: 136195 IP address blocks: 140.249.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:df:c7:aa:4a:b2:56:2c:12:ed:f4:2e:82:c3:35:43:d3:ff:39:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:07:01 2026 GMT Not After : May 27 16:12:01 2027 GMT Subject: CN=46C921567B1E2898C6C99AF5E5D1F2F3D297C607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f7:9d:d1:59:58:40:9c:7b:0d:a8:8a:ed:c8: 28:99:e3:63:8e:54:33:2c:da:43:b2:3f:2d:9b:b8: b5:9d:ed:68:45:68:7b:16:ca:07:c9:92:32:5e:bc: be:05:ae:07:5e:fa:ed:39:57:42:b1:37:75:f0:e7: 3d:62:42:2b:d7:dd:72:a7:0b:62:4b:d0:5f:d7:36: 80:91:7e:4c:d0:3f:3d:a7:d3:c5:36:26:fb:6d:56: b1:15:e1:97:b9:eb:bb:39:40:5c:2a:a7:d6:b4:0c: 06:63:8f:a5:4c:f4:6b:77:44:f8:64:a7:cf:f9:4c: ea:4e:9f:b5:06:80:a9:50:3b:db:1b:be:51:1a:f3: 01:96:74:ed:df:7f:a9:70:31:77:54:fc:00:af:f2: 33:50:6a:a1:84:ea:07:93:da:4e:01:5f:91:75:f6: 72:80:56:7c:d0:72:77:00:bd:4f:2c:93:39:43:0c: 9e:b2:e5:a2:5a:c6:a6:6a:96:8c:f9:dd:47:08:20: 9c:b3:27:ce:ae:41:5e:f9:5b:cf:ff:54:79:9c:08: 99:a2:6e:cf:0d:46:e1:11:d7:7d:1d:d3:c9:b5:dc: 1f:d1:70:65:bf:32:e5:cf:73:7e:cb:6e:88:cc:ef: 26:03:eb:66:57:05:2a:d1:78:77:23:75:db:15:c0: 48:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C9:21:56:7B:1E:28:98:C6:C9:9A:F5:E5:D1:F2:F3:D2:97:C6:07 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3230382e302f32312d3231203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.208.0/21 Signature Algorithm: sha256WithRSAEncryption 37:f0:e3:ab:15:d6:f8:ce:d6:d2:8f:14:9f:02:30:a6:4a:3f: 78:f1:33:3d:0c:c8:4f:83:ef:66:6c:20:71:5f:d1:05:e9:e1: 2b:f6:6a:6c:bd:f3:32:f1:07:2a:e9:9b:65:70:0e:17:b4:8a: c9:22:63:a4:3e:e9:eb:07:3d:3c:62:88:76:f8:d6:3c:ae:c0: e1:4a:97:63:3a:24:7a:34:df:64:43:33:46:c9:d9:ea:85:60: 93:44:d0:ac:df:9f:92:98:27:9b:2e:14:db:3a:b9:1d:50:d8: 88:56:a1:21:50:54:8b:dd:90:d3:72:7d:e3:f9:91:3b:3e:94: 1e:f8:5a:64:08:22:b0:d5:94:1d:42:85:58:b5:af:33:ff:6f: 28:e4:10:6a:87:5a:fd:78:2a:c9:67:68:c7:19:99:09:33:d0: 10:f4:7d:3e:1f:90:07:c0:b5:d1:52:f5:ac:99:ba:17:da:29: 46:39:26:b5:bb:46:cd:6c:b8:6c:cd:68:66:98:f0:a7:0f:20: 6c:d2:a5:33:d5:f5:94:df:ac:a2:dd:bd:12:11:b8:b8:d2:64: 3d:42:c2:db:29:2e:1d:4e:97:ce:d2:2b:65:a6:27:e0:4b:fa: 03:f1:24:2b:41:90:41:08:13:8b:e7:fd:a8:a3:6b:65:7e:84: 3c:9a:c9:8e -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIURt/HqkqyViwS7fQugsM1Q9P/OfUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDcwMVoX DTI3MDUyNzE2MTIwMVowMzExMC8GA1UEAxMoNDZDOTIxNTY3QjFFMjg5OEM2Qzk5 QUY1RTVEMUYyRjNEMjk3QzYwNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANr3ndFZWECcew2oiu3IKJnjY45UMyzaQ7I/LZu4tZ3taEVoexbKB8mSMl68 vgWuB1767TlXQrE3dfDnPWJCK9fdcqcLYkvQX9c2gJF+TNA/PafTxTYm+21WsRXh l7nruzlAXCqn1rQMBmOPpUz0a3dE+GSnz/lM6k6ftQaAqVA72xu+URrzAZZ07d9/ qXAxd1T8AK/yM1BqoYTqB5PaTgFfkXX2coBWfNBydwC9TyyTOUMMnrLlolrGpmqW jPndRwggnLMnzq5BXvlbz/9UeZwImaJuzw1G4RHXfR3TybXcH9FwZb8y5c9zfstu iMzvJgPrZlcFKtF4dyN12xXASFkCAwEAAaOCAhowggIWMB0GA1UdDgQWBBRGySFW ex4omMbJmvXl0fLz0pfGBzAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzIzMDM4MmUzMDJmMzIzMTJk MzIzMTIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjPnQMA0GCSqGSIb3 DQEBCwUAA4IBAQA38OOrFdb4ztbSjxSfAjCmSj948TM9DMhPg+9mbCBxX9EF6eEr 9mpsvfMy8Qcq6ZtlcA4XtIrJImOkPunrBz08Yoh2+NY8rsDhSpdjOiR6NN9kQzNG ydnqhWCTRNCs35+SmCebLhTbOrkdUNiIVqEhUFSL3ZDTcn3j+ZE7PpQe+FpkCCKw 1ZQdQoVYta8z/28o5BBqh1r9eCrJZ2jHGZkJM9AQ9H0+H5AHwLXRUvWsmboX2ilG OSa1u0bNbLhszWhmmPCnDyBs0qUz1fWU36yi3b0SEbi40mQ9QsLbKS4dTpfO0itl pifgS/oD8SQrQZBBCBOL5/2oo2tlfoQ8msmO -----END CERTIFICATE-----Generated at Sat May 30 02:41:44 2026 by rpki-client