$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32342e302f32322d3232203d3e203538353431.roa File: 3134302e3234392e32342e302f32322d3232203d3e203538353431.roa (raw, json) Hash identifier: UmhnpvBh+ffMNdLwgOP5/PzZvQoV1yLQBGmPnH1EBUQ= Subject key identifier: 7F:70:36:7A:91:BB:DE:F0:F9:B2:5E:FC:E4:0C:1F:EC:91:67:68:4E Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 078300D860664765520C1546B69EE4FACCEDA1FE Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32342e302f32322d3232203d3e203538353431.roa Signing time: Thu 28 May 2026 16:12:01 +0000 ROA not before: Thu 28 May 2026 16:07:01 +0000 ROA not after: Thu 27 May 2027 16:12:01 +0000 asID: 58541 IP address blocks: 140.249.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:83:00:d8:60:66:47:65:52:0c:15:46:b6:9e:e4:fa:cc:ed:a1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:07:01 2026 GMT Not After : May 27 16:12:01 2027 GMT Subject: CN=7F70367A91BBDEF0F9B25EFCE40C1FEC9167684E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:eb:0c:c5:e2:a6:46:a5:0f:0b:35:68:66:27: e3:00:1b:01:cc:e5:86:02:d7:57:9a:07:c1:b0:10: a7:04:11:6f:72:bb:28:8f:17:e9:2d:dd:8b:2f:61: 8d:69:65:1a:93:2a:44:5a:95:43:e2:bb:0b:42:f6: bd:3d:90:21:ab:58:d7:7b:d4:60:0e:d5:24:9f:2e: a7:a7:7f:25:84:db:95:17:0f:7f:e2:8e:79:85:bd: c7:64:3a:b2:b9:d6:9e:26:18:85:c1:54:d1:2a:3b: 89:21:1c:d7:ec:ac:87:19:10:10:5f:8f:cf:04:3c: 01:a5:8e:70:2a:e0:be:85:f2:4b:17:ed:f9:7f:b6: 9a:c4:98:2b:66:0e:b9:c2:58:80:70:86:f4:6b:47: c8:e8:9f:d6:27:37:8a:fc:d7:af:ac:eb:52:0f:0b: 2f:4b:58:9c:72:7b:07:44:d7:96:6b:9b:52:f5:e1: 29:4f:03:63:fd:b0:31:8b:40:de:d7:91:1c:2d:c3: e9:dc:2f:94:16:06:f0:5c:d8:bc:c1:4f:07:86:c3: 6c:df:ea:07:bc:d9:44:c4:5c:b2:e9:88:f9:18:ac: ad:1c:c9:7d:f1:b1:9e:da:54:67:d1:15:26:21:4d: f8:13:18:e1:32:62:2a:95:cb:13:2e:cb:26:a9:70: d2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:70:36:7A:91:BB:DE:F0:F9:B2:5E:FC:E4:0C:1F:EC:91:67:68:4E X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32342e302f32322d3232203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.24.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:01:5e:0d:17:e5:42:1e:b2:e5:28:ef:d7:1e:a7:d7:63:bf: d4:06:99:7c:9a:6c:30:24:e8:90:74:ef:30:18:e5:22:53:8c: 9b:8c:41:ad:d7:99:18:ab:43:dc:3c:51:94:01:9a:45:49:0e: fd:b4:a8:6c:ec:55:84:a9:c5:ea:ac:ca:b2:0a:4f:12:e4:2c: 25:2f:43:9f:46:d4:18:3b:c3:38:5e:c0:77:76:a3:c8:05:77: 0e:c8:cd:86:58:d4:34:5a:f0:fe:b5:9b:0e:fa:c0:f9:58:b4: d5:a8:ac:59:fe:93:0c:18:c1:a8:95:a2:c4:89:23:09:81:8a: a3:22:d9:0b:b0:74:1b:d3:24:1a:3a:80:20:fa:fe:77:a7:7a: 3f:6c:c9:80:ad:92:0a:35:3e:8c:7c:53:e3:73:d6:b6:61:e5: b2:93:f8:2c:46:30:97:a7:2a:f2:2a:c9:5e:d6:85:39:f5:ee: 44:03:95:60:39:60:70:09:37:e7:6d:d0:f5:6e:31:e5:0e:c1: 93:21:f7:89:11:75:11:52:1d:f3:bf:82:0a:78:39:42:49:b1: 60:8c:be:79:d2:41:f1:8d:9d:20:09:02:68:14:98:a3:ab:57: 55:dd:3b:73:5d:3e:45:e1:08:4e:a2:a3:c3:81:cf:ef:0f:c7: f3:ea:8c:75 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUB4MA2GBmR2VSDBVGtp7k+sztof4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDcwMVoX DTI3MDUyNzE2MTIwMVowMzExMC8GA1UEAxMoN0Y3MDM2N0E5MUJCREVGMEY5QjI1 RUZDRTQwQzFGRUM5MTY3Njg0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOvrDMXipkalDws1aGYn4wAbAczlhgLXV5oHwbAQpwQRb3K7KI8X6S3diy9h jWllGpMqRFqVQ+K7C0L2vT2QIatY13vUYA7VJJ8up6d/JYTblRcPf+KOeYW9x2Q6 srnWniYYhcFU0So7iSEc1+yshxkQEF+PzwQ8AaWOcCrgvoXySxft+X+2msSYK2YO ucJYgHCG9GtHyOif1ic3ivzXr6zrUg8LL0tYnHJ7B0TXlmubUvXhKU8DY/2wMYtA 3teRHC3D6dwvlBYG8FzYvMFPB4bDbN/qB7zZRMRcsumI+RisrRzJffGxntpUZ9EV JiFN+BMY4TJiKpXLEy7LJqlw0vcCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBR/cDZ6 kbve8PmyXvzkDB/skWdoTjAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzkyZTMyMzQyZTMwMmYzMjMyMmQzMjMy MjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjPkYMA0GCSqGSIb3DQEBCwUA A4IBAQBtAV4NF+VCHrLlKO/XHqfXY7/UBpl8mmwwJOiQdO8wGOUiU4ybjEGt15kY q0PcPFGUAZpFSQ79tKhs7FWEqcXqrMqyCk8S5CwlL0OfRtQYO8M4XsB3dqPIBXcO yM2GWNQ0WvD+tZsO+sD5WLTVqKxZ/pMMGMGolaLEiSMJgYqjItkLsHQb0yQaOoAg +v53p3o/bMmArZIKNT6MfFPjc9a2YeWyk/gsRjCXpyryKsle1oU59e5EA5VgOWBw CTfnbdD1bjHlDsGTIfeJEXURUh3zv4IKeDlCSbFgjL550kHxjZ0gCQJoFJijq1dV 3TtzXT5F4QhOoqPDgc/vD8fz6ox1 -----END CERTIFICATE-----Generated at Sat May 30 02:40:08 2026 by rpki-client