$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3234302e302f32302d3230203d3e20313336313935.roa File: 3134302e3234392e3234302e302f32302d3230203d3e20313336313935.roa (raw, json) Hash identifier: zktkdBv2lZfb8p/kCs/Ux8EQHnKPZ7gzeabE8HGpKn8= Subject key identifier: 45:19:8C:7E:9C:3F:2A:67:53:C8:D3:0B:4A:4E:BB:78:52:2D:79:44 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 42E811F97A18E6F9C3C1E1E253A4FD77787D93BE Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3234302e302f32302d3230203d3e20313336313935.roa Signing time: Thu 28 May 2026 16:07:18 +0000 ROA not before: Thu 28 May 2026 16:02:18 +0000 ROA not after: Thu 27 May 2027 16:07:18 +0000 asID: 136195 IP address blocks: 140.249.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e8:11:f9:7a:18:e6:f9:c3:c1:e1:e2:53:a4:fd:77:78:7d:93:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:02:18 2026 GMT Not After : May 27 16:07:18 2027 GMT Subject: CN=45198C7E9C3F2A6753C8D30B4A4EBB78522D7944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:bc:5c:92:ef:22:00:d4:3a:53:07:ed:70:da: bf:6e:07:47:8a:1b:3c:54:2d:c7:29:d5:ab:2e:0f: 2e:91:bd:16:5b:37:d9:3e:3c:5c:24:f5:59:18:8c: e2:d6:41:e0:76:b1:fe:03:79:d1:33:86:79:39:df: d5:64:b5:51:b4:f7:39:9a:9b:08:8c:2b:d9:56:a3: 4e:68:14:6d:01:1a:cf:a2:67:b4:f3:ad:cf:12:73: 50:d5:77:42:d4:bd:c6:59:8a:24:dd:27:d9:78:1d: a1:14:8b:b8:5e:8b:43:56:7f:4f:62:88:40:ee:f6: a1:de:d6:2b:8e:c5:05:43:c5:dd:bf:82:7c:c7:26: 22:70:17:3f:68:83:ce:83:ff:d3:11:c3:d2:23:41: 83:17:ab:c2:82:ff:dc:f3:e0:3f:b3:b5:02:a6:f8: 7a:11:00:5e:aa:f9:5c:ef:23:0a:a9:79:45:1d:db: 29:7f:d4:48:b3:e2:e3:09:be:c8:c5:6b:2a:48:a6: 10:8d:4f:e3:d5:91:b2:0f:58:34:1e:56:f4:75:33: e8:c9:cf:f2:aa:f0:b9:1c:e6:a1:b8:90:8b:a4:9e: 12:2c:40:61:98:2c:e4:21:2a:ee:48:6b:a2:82:d3: 27:bc:d1:5b:d0:5f:80:0d:75:5b:2c:29:60:f4:e0: d6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:19:8C:7E:9C:3F:2A:67:53:C8:D3:0B:4A:4E:BB:78:52:2D:79:44 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3234302e302f32302d3230203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.240.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:58:75:61:4b:98:74:74:90:1b:b5:e4:92:57:c5:c2:a5:83: 3c:97:cd:4b:c4:3b:35:66:dd:66:6f:5c:4b:cf:4d:7d:68:12: d4:a7:c2:49:8a:e4:5c:1f:76:75:f1:fb:5d:a3:57:7d:8a:22: 58:40:d1:d2:0f:db:07:e1:bc:95:4e:f8:d2:eb:a2:11:42:9b: 7e:f7:0b:2c:bb:e9:1f:4b:1d:38:a2:7f:41:62:b3:9c:01:76: 92:fc:73:c1:e0:9b:24:3d:84:9d:87:cf:07:1a:db:b7:6a:7f: e0:b2:64:1f:0b:39:e2:9a:17:d8:b7:e9:b0:5a:53:a4:89:75: f8:eb:3e:75:39:cc:86:41:4b:9b:0a:2d:09:9e:f6:d0:6e:c7: 89:d0:c7:4a:ce:44:07:de:a0:ad:23:68:d5:d6:63:64:13:c9: 8c:9d:28:83:6b:8d:d8:ee:9c:aa:56:b1:9e:7c:2d:14:bb:c0: 57:8c:17:a5:3d:b5:6e:29:e0:40:62:76:87:4f:df:9c:e3:b5: 17:28:b0:49:2e:95:f6:f2:91:3b:e4:17:64:9c:b1:93:4b:dc: c2:2b:19:fc:3a:e4:e2:c4:a0:28:36:8c:7d:b0:d1:8b:a7:62: 93:41:5c:5d:de:50:6e:30:32:43:d8:3a:72:38:68:a8:08:35: 8c:8d:6b:e7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUQugR+XoY5vnDweHiU6T9d3h9k74wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDIxOFoX DTI3MDUyNzE2MDcxOFowMzExMC8GA1UEAxMoNDUxOThDN0U5QzNGMkE2NzUzQzhE MzBCNEE0RUJCNzg1MjJENzk0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI28XJLvIgDUOlMH7XDav24HR4obPFQtxynVqy4PLpG9Fls32T48XCT1WRiM 4tZB4Hax/gN50TOGeTnf1WS1UbT3OZqbCIwr2VajTmgUbQEaz6JntPOtzxJzUNV3 QtS9xlmKJN0n2XgdoRSLuF6LQ1Z/T2KIQO72od7WK47FBUPF3b+CfMcmInAXP2iD zoP/0xHD0iNBgxerwoL/3PPgP7O1Aqb4ehEAXqr5XO8jCql5RR3bKX/USLPi4wm+ yMVrKkimEI1P49WRsg9YNB5W9HUz6MnP8qrwuRzmobiQi6SeEixAYZgs5CEq7khr ooLTJ7zRW9BfgA11WywpYPTg1tcCAwEAAaOCAhowggIWMB0GA1UdDgQWBBRFGYx+ nD8qZ1PI0wtKTrt4Ui15RDAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzIzNDMwMmUzMDJmMzIzMDJk MzIzMDIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEjPnwMA0GCSqGSIb3 DQEBCwUAA4IBAQB6WHVhS5h0dJAbteSSV8XCpYM8l81LxDs1Zt1mb1xLz019aBLU p8JJiuRcH3Z18ftdo1d9iiJYQNHSD9sH4byVTvjS66IRQpt+9wssu+kfSx04on9B YrOcAXaS/HPB4JskPYSdh88HGtu3an/gsmQfCznimhfYt+mwWlOkiXX46z51OcyG QUubCi0JnvbQbseJ0MdKzkQH3qCtI2jV1mNkE8mMnSiDa43Y7pyqVrGefC0Uu8BX jBelPbVuKeBAYnaHT9+c47UXKLBJLpX28pE75BdknLGTS9zCKxn8OuTixKAoNox9 sNGLp2KTQVxd3lBuMDJD2DpyOGioCDWMjWvn -----END CERTIFICATE-----Generated at Sat May 30 02:41:16 2026 by rpki-client