$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3231362e302f32312d3231203d3e20313336313935.roa File: 3134302e3234392e3231362e302f32312d3231203d3e20313336313935.roa (raw, json) Hash identifier: NYlf6V9T5kUZ7BfIhkhqLdSk/79Y1Z6DBgCp8fADQNI= Subject key identifier: A0:1F:06:73:97:C9:C4:5A:9E:91:4F:F2:DC:62:2E:8F:33:F8:2D:79 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 626F240049436CC079FF8B054B9B4F8C96B03563 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3231362e302f32312d3231203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:12:01 +0000 ROA not before: Thu 28 May 2026 16:07:01 +0000 ROA not after: Thu 27 May 2027 16:12:01 +0000 asID: 136195 IP address blocks: 140.249.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:6f:24:00:49:43:6c:c0:79:ff:8b:05:4b:9b:4f:8c:96:b0:35:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:07:01 2026 GMT Not After : May 27 16:12:01 2027 GMT Subject: CN=A01F067397C9C45A9E914FF2DC622E8F33F82D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:93:03:cc:51:c3:3a:da:23:ee:45:6a:7e:a4: 7a:7b:87:9f:85:de:81:07:65:88:63:41:60:68:10: 57:d1:9e:17:75:81:35:a1:e9:f8:d1:54:2b:79:e4: f2:12:ae:88:00:6b:8e:62:4d:00:03:cb:f7:17:de: 68:87:43:a3:37:35:e9:1e:9d:f1:a2:56:ba:ff:53: da:bd:15:90:65:40:c5:be:2a:93:50:39:e4:42:e2: 68:33:40:f1:07:18:e0:a5:73:e9:ee:30:28:d9:52: ec:b0:45:d5:87:0b:29:7b:c3:d6:86:ba:37:c6:a6: 39:69:1e:f3:cf:27:54:da:3a:5a:d6:da:37:0f:a3: e6:8d:f1:59:ed:30:56:e4:cf:f9:62:c2:68:20:21: 50:a8:57:27:15:97:8d:70:9a:83:63:f5:fb:8a:c5: 7f:9d:ce:26:ce:c6:c2:83:15:5d:6d:5b:f4:98:d0: 27:f1:16:a9:3c:99:bc:8b:cd:9a:db:19:2a:26:a7: 40:a5:d9:a5:fd:82:f1:aa:56:b8:89:1e:e2:8c:27: 2f:21:7b:de:33:b8:23:5b:14:6b:b9:3d:ec:75:69: ad:e4:5c:71:d8:b1:5e:e4:75:db:45:f9:29:b2:e0: 81:1e:2b:dc:b1:6b:bd:85:b0:7f:2d:a8:6c:c3:d0: 6a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1F:06:73:97:C9:C4:5A:9E:91:4F:F2:DC:62:2E:8F:33:F8:2D:79 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3231362e302f32312d3231203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.216.0/21 Signature Algorithm: sha256WithRSAEncryption d7:7d:1a:e5:33:a4:44:c6:bc:d4:c9:ac:bb:22:c4:75:0d:b9: 92:d7:a5:36:68:56:65:cc:55:07:9e:1a:41:4a:b8:1f:e8:da: 5a:05:33:93:7e:9f:72:86:ad:41:fd:82:77:d8:41:a7:21:19: 60:15:e1:cb:e3:09:e5:74:4a:1c:e8:4e:7f:1e:bf:a1:9d:a0: 9c:20:4a:cc:78:d4:c0:73:db:54:47:87:3b:79:ad:cb:ca:09: b2:ae:b8:ad:44:20:39:77:8e:f4:a3:fc:b7:0f:a5:7f:53:8d: 17:66:bd:18:62:bd:bc:28:52:26:95:45:18:b9:49:7a:2e:8c: 0c:8f:9e:2f:4f:d5:48:23:59:86:63:0d:40:0b:ab:f3:65:80: 7d:71:2b:5c:db:63:13:4e:7f:cc:a1:31:99:5b:a4:d6:4b:83: 9b:49:b4:97:d8:b5:65:d4:44:c4:93:cd:d0:c0:77:bf:e2:1a: 29:ba:6c:36:ba:f4:be:94:49:dc:e6:98:fa:90:d6:e3:cb:b1: a9:05:30:57:f7:c8:9c:99:ab:cc:b0:dc:ec:1f:f3:0c:fd:e9: 55:9d:e7:62:b9:53:e1:ef:1c:a9:44:1f:24:36:57:be:ac:f4: 11:e3:b8:71:b5:22:09:ef:a1:c1:c9:d7:2a:be:20:da:18:de: 13:52:ff:eb -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUYm8kAElDbMB5/4sFS5tPjJawNWMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDcwMVoX DTI3MDUyNzE2MTIwMVowMzExMC8GA1UEAxMoQTAxRjA2NzM5N0M5QzQ1QTlFOTE0 RkYyREM2MjJFOEYzM0Y4MkQ3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJuTA8xRwzraI+5Fan6kenuHn4XegQdliGNBYGgQV9GeF3WBNaHp+NFUK3nk 8hKuiABrjmJNAAPL9xfeaIdDozc16R6d8aJWuv9T2r0VkGVAxb4qk1A55ELiaDNA 8QcY4KVz6e4wKNlS7LBF1YcLKXvD1oa6N8amOWke888nVNo6WtbaNw+j5o3xWe0w VuTP+WLCaCAhUKhXJxWXjXCag2P1+4rFf53OJs7GwoMVXW1b9JjQJ/EWqTyZvIvN mtsZKianQKXZpf2C8apWuIke4ownLyF73jO4I1sUa7k97HVpreRccdixXuR120X5 KbLggR4r3LFrvYWwfy2obMPQas0CAwEAAaOCAhowggIWMB0GA1UdDgQWBBSgHwZz l8nEWp6RT/LcYi6PM/gteTAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzIzMTM2MmUzMDJmMzIzMTJk MzIzMTIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjPnYMA0GCSqGSIb3 DQEBCwUAA4IBAQDXfRrlM6RExrzUyay7IsR1DbmS16U2aFZlzFUHnhpBSrgf6Npa BTOTfp9yhq1B/YJ32EGnIRlgFeHL4wnldEoc6E5/Hr+hnaCcIErMeNTAc9tUR4c7 ea3LygmyrritRCA5d470o/y3D6V/U40XZr0YYr28KFImlUUYuUl6LowMj54vT9VI I1mGYw1AC6vzZYB9cStc22MTTn/MoTGZW6TWS4ObSbSX2LVl1ETEk83QwHe/4hop umw2uvS+lEnc5pj6kNbjy7GpBTBX98icmavMsNzsH/MM/elVnediuVPh7xypRB8k Nle+rPQR47hxtSIJ76HBydcqviDaGN4TUv/r -----END CERTIFICATE-----Generated at Sat May 30 02:41:44 2026 by rpki-client