$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32342e302f32342d3234203d3e20313336313935.roa File: 3134302e3234392e32342e302f32342d3234203d3e20313336313935.roa (raw, json) Hash identifier: ZpdpqqbRK42ZrQFDKi7/kjSpi6klMXR3pP4880V2R0Q= Subject key identifier: D9:47:0B:B6:C9:64:79:18:E0:D6:02:90:82:6A:C5:D0:28:8B:FE:2A Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 155499D89A289C6BEEF18A9BC0B1AADA4D37B0BB Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32342e302f32342d3234203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:07:18 +0000 ROA not before: Thu 28 May 2026 16:02:18 +0000 ROA not after: Thu 27 May 2027 16:07:18 +0000 asID: 136195 IP address blocks: 140.249.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:54:99:d8:9a:28:9c:6b:ee:f1:8a:9b:c0:b1:aa:da:4d:37:b0:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:02:18 2026 GMT Not After : May 27 16:07:18 2027 GMT Subject: CN=D9470BB6C9647918E0D60290826AC5D0288BFE2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:58:b9:64:01:43:ba:18:de:ce:09:bc:13:7d: ac:bd:3b:d5:23:64:dd:fd:df:ae:9a:83:5b:8b:d8: 74:91:e1:af:0d:cf:65:70:69:51:15:9a:48:56:5e: 9d:2c:1f:ce:89:90:08:4c:aa:92:c5:a3:b9:e8:60: ec:d6:6f:78:91:d2:bd:87:9f:2f:6d:5b:97:7d:7d: 9f:91:d4:a9:ce:78:cb:54:9d:fd:25:a0:cf:86:44: a4:7a:98:31:80:fa:ce:23:60:50:f7:c0:7f:06:3d: 5f:ca:49:93:bc:a2:23:19:42:64:fd:15:54:eb:c6: db:9a:ab:52:05:54:e7:39:c4:bd:77:4a:81:44:98: ab:4b:0d:be:32:dd:92:4d:65:48:f5:51:3a:30:f1: 2c:54:b4:8e:5d:5b:ef:e5:1d:83:2f:8c:7a:a4:a5: e3:b6:f5:7c:7e:af:43:4d:90:a4:f6:5b:14:15:ef: d0:a0:5c:23:ce:c1:36:4d:cf:6e:9e:14:19:38:1c: 6d:01:5a:72:02:24:ed:a2:7f:9e:51:31:77:11:84: 13:8d:8d:2c:1b:51:a2:4b:f0:92:c6:b9:6f:34:b4: 6f:57:a9:95:a5:02:04:2a:77:ba:0f:a2:f2:cd:6d: 44:86:4f:ce:c0:79:0e:ea:dd:3c:e4:43:ac:ff:43: 92:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:47:0B:B6:C9:64:79:18:E0:D6:02:90:82:6A:C5:D0:28:8B:FE:2A X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e32342e302f32342d3234203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.24.0/24 Signature Algorithm: sha256WithRSAEncryption 19:37:fb:c7:4a:23:6e:f7:9a:75:90:61:fb:1b:12:23:c0:60: 67:a8:c2:54:d5:3c:7e:a5:97:0e:0f:7e:d2:27:a7:67:05:97: 34:50:29:4b:8e:1f:d7:df:0e:5f:a1:b3:67:12:ec:10:e6:67: 57:cf:36:13:6e:86:25:e3:04:d0:bd:67:d1:eb:2b:36:52:91: 58:3e:fc:eb:c4:53:db:39:c9:5f:83:d2:a2:57:46:af:7b:3f: 86:c7:98:7c:39:f5:e0:2f:b7:8e:51:9e:54:00:84:f9:55:31: 7d:a7:0e:e0:04:b3:ab:a2:ac:4b:10:75:a8:42:05:6a:9d:5a: 40:91:7d:11:b0:e4:ae:48:bf:74:57:62:87:2a:5c:f5:a9:4e: 60:85:00:2b:59:9a:4f:96:3c:09:72:af:ab:ff:8e:40:50:8c: 8d:af:b2:b8:52:3a:a2:af:f4:4e:26:5b:d9:e4:2b:af:f4:52: a3:ca:c3:71:e0:9a:2f:91:68:13:0c:33:96:40:a3:a8:3c:a4: 27:8b:bb:8b:94:e0:bb:cd:98:19:00:30:8d:a4:c4:c8:0a:6c: ae:f0:3f:84:42:7e:86:2f:66:71:1a:3c:f6:1a:dd:65:7c:1e: 87:25:91:23:a2:7d:a4:84:be:46:e7:93:27:61:f4:35:68:a7: b7:1b:e7:19 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUFVSZ2JoonGvu8YqbwLGq2k03sLswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDIxOFoX DTI3MDUyNzE2MDcxOFowMzExMC8GA1UEAxMoRDk0NzBCQjZDOTY0NzkxOEUwRDYw MjkwODI2QUM1RDAyODhCRkUyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJFYuWQBQ7oY3s4JvBN9rL071SNk3f3frpqDW4vYdJHhrw3PZXBpURWaSFZe nSwfzomQCEyqksWjuehg7NZveJHSvYefL21bl319n5HUqc54y1Sd/SWgz4ZEpHqY MYD6ziNgUPfAfwY9X8pJk7yiIxlCZP0VVOvG25qrUgVU5znEvXdKgUSYq0sNvjLd kk1lSPVROjDxLFS0jl1b7+Udgy+MeqSl47b1fH6vQ02QpPZbFBXv0KBcI87BNk3P bp4UGTgcbQFacgIk7aJ/nlExdxGEE42NLBtRokvwksa5bzS0b1eplaUCBCp3ug+i 8s1tRIZPzsB5DurdPORDrP9Dkn0CAwEAAaOCAhcwggITMB0GA1UdDgQWBBTZRwu2 yWR5GODWApCCasXQKIv+KjAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzMjM0MmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjPkYMA0GCSqGSIb3DQEB CwUAA4IBAQAZN/vHSiNu95p1kGH7GxIjwGBnqMJU1Tx+pZcOD37SJ6dnBZc0UClL jh/X3w5fobNnEuwQ5mdXzzYTboYl4wTQvWfR6ys2UpFYPvzrxFPbOclfg9KiV0av ez+Gx5h8OfXgL7eOUZ5UAIT5VTF9pw7gBLOroqxLEHWoQgVqnVpAkX0RsOSuSL90 V2KHKlz1qU5ghQArWZpPljwJcq+r/45AUIyNr7K4Ujqir/ROJlvZ5Cuv9FKjysNx 4JovkWgTDDOWQKOoPKQni7uLlOC7zZgZADCNpMTICmyu8D+EQn6GL2ZxGjz2Gt1l fB6HJZEjon2khL5G55MnYfQ1aKe3G+cZ -----END CERTIFICATE-----Generated at Sat May 30 02:40:08 2026 by rpki-client