$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3232302e302f32322d3232203d3e203538353431.roa File: 3134302e3234392e3232302e302f32322d3232203d3e203538353431.roa (raw, json) Hash identifier: FCv3NNpxK8D9Yd3jjgefQzUx+1aIAA8miuuIlAbtaCk= Subject key identifier: 06:CE:67:7A:E7:F7:9E:15:63:83:2A:48:AB:AC:D1:15:E0:7C:16:AF Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 4380F726E8B95409A74A7F708DD38C1DAA1FB516 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3232302e302f32322d3232203d3e203538353431.roa Signing time: Thu 28 May 2026 16:07:18 +0000 ROA not before: Thu 28 May 2026 16:02:18 +0000 ROA not after: Thu 27 May 2027 16:07:18 +0000 asID: 58541 IP address blocks: 140.249.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:80:f7:26:e8:b9:54:09:a7:4a:7f:70:8d:d3:8c:1d:aa:1f:b5:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:02:18 2026 GMT Not After : May 27 16:07:18 2027 GMT Subject: CN=06CE677AE7F79E1563832A48ABACD115E07C16AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c3:39:a8:27:c2:bf:78:18:56:99:e4:d9:b0: fd:57:9d:b3:1c:31:15:7d:5b:ae:d6:7c:d1:ac:90: 02:a6:cf:12:63:ad:8e:0b:9f:32:24:2a:6f:11:65: 02:a4:a0:8f:71:9f:41:a3:8b:be:94:48:fd:db:a9: 04:49:ec:c6:1a:16:7f:c4:74:32:27:d8:fe:ee:07: 5a:95:64:7a:2e:46:66:c0:1a:dd:30:82:d9:c9:e1: 5b:a2:86:51:09:3e:c1:40:27:80:f9:39:32:19:62: 53:dc:4f:78:11:5b:3b:09:2c:f7:9e:20:d1:33:f9: 81:e9:38:d9:89:6d:70:60:4c:ee:a5:ed:c7:e9:49: a5:4e:12:3f:0e:2d:8f:6f:2e:33:45:bb:93:97:62: de:e3:4f:17:99:be:de:8e:16:76:60:3f:91:3e:d8: a0:80:36:1d:57:15:99:ba:d9:01:f9:2e:dc:ce:db: 8e:4e:1e:f0:90:21:eb:ae:7c:47:96:56:37:05:96: 51:df:cf:94:5e:46:03:51:bc:95:3a:9f:e3:be:18: cb:1f:c3:c0:98:00:e3:5e:5e:06:88:c5:e5:f1:e2: f0:15:95:7b:36:36:41:9b:ef:58:b4:a2:59:ab:e9: d9:61:c6:f0:2c:f7:81:8f:0c:9b:3a:70:18:8d:21: b9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:CE:67:7A:E7:F7:9E:15:63:83:2A:48:AB:AC:D1:15:E0:7C:16:AF X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3232302e302f32322d3232203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.220.0/22 Signature Algorithm: sha256WithRSAEncryption 79:ce:07:dc:38:75:f2:d5:85:d5:bc:ee:c5:36:9c:45:27:df: 39:5a:42:09:39:f3:e9:f2:5c:11:90:fc:fc:d3:42:3a:4b:e7: d2:2f:68:1d:45:0c:b8:71:cb:cf:67:66:f8:ec:8a:d0:fe:e9: a1:0e:f6:38:48:00:73:f5:59:26:12:68:42:8e:ad:45:1d:fc: a0:d6:39:ed:11:b9:ec:6e:69:b4:a8:b7:fb:29:35:d0:af:90: dd:e5:89:7d:32:9f:a0:92:8c:cf:5a:ad:d8:01:8e:db:20:b1: 69:8d:17:32:84:33:26:03:ff:8f:d0:69:77:fc:4e:29:f2:4f: ef:33:fe:48:b1:71:0c:63:b0:2f:3d:60:35:cf:0c:35:ab:9e: 63:4b:f1:48:f7:da:e7:53:cf:38:1e:a2:cc:ba:a7:18:a6:6f: 44:89:55:1a:01:12:0f:65:93:10:0d:b3:32:0c:fe:44:74:56: 6f:16:aa:2e:66:54:65:93:a0:a9:c3:0c:3c:6f:6a:29:df:a4: 15:90:93:52:c8:a6:8a:fa:20:3b:9f:92:5c:2e:85:c3:0f:93: da:fc:3f:a3:1b:e1:ec:b6:cf:91:77:b7:25:ad:82:05:9f:66: b7:a1:d0:75:01:d1:13:7a:70:fc:3f:37:ec:bc:9e:44:93:e5: 66:c2:f6:93 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQ4D3Jui5VAmnSn9wjdOMHaoftRYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDIxOFoX DTI3MDUyNzE2MDcxOFowMzExMC8GA1UEAxMoMDZDRTY3N0FFN0Y3OUUxNTYzODMy QTQ4QUJBQ0QxMTVFMDdDMTZBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJzDOagnwr94GFaZ5Nmw/VedsxwxFX1brtZ80ayQAqbPEmOtjgufMiQqbxFl AqSgj3GfQaOLvpRI/dupBEnsxhoWf8R0MifY/u4HWpVkei5GZsAa3TCC2cnhW6KG UQk+wUAngPk5MhliU9xPeBFbOwks954g0TP5gek42YltcGBM7qXtx+lJpU4SPw4t j28uM0W7k5di3uNPF5m+3o4WdmA/kT7YoIA2HVcVmbrZAfku3M7bjk4e8JAh6658 R5ZWNwWWUd/PlF5GA1G8lTqf474Yyx/DwJgA415eBojF5fHi8BWVezY2QZvvWLSi Wavp2WHG8Cz3gY8MmzpwGI0huUsCAwEAAaOCAhcwggITMB0GA1UdDgQWBBQGzmd6 5/eeFWODKkirrNEV4HwWrzAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzMjMyMzAyZTMwMmYzMjMyMmQz MjMyMjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjPncMA0GCSqGSIb3DQEB CwUAA4IBAQB5zgfcOHXy1YXVvO7FNpxFJ985WkIJOfPp8lwRkPz800I6S+fSL2gd RQy4ccvPZ2b47IrQ/umhDvY4SABz9VkmEmhCjq1FHfyg1jntEbnsbmm0qLf7KTXQ r5Dd5Yl9Mp+gkozPWq3YAY7bILFpjRcyhDMmA/+P0Gl3/E4p8k/vM/5IsXEMY7Av PWA1zww1q55jS/FI99rnU884HqLMuqcYpm9EiVUaARIPZZMQDbMyDP5EdFZvFqou ZlRlk6Cpwww8b2op36QVkJNSyKaK+iA7n5JcLoXDD5Pa/D+jG+Hsts+Rd7clrYIF n2a3odB1AdETenD8PzfsvJ5Ek+VmwvaT -----END CERTIFICATE-----Generated at Sat May 30 02:40:51 2026 by rpki-client