$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e33322e302f31392d3139203d3e203538353431.roa File: 3134302e3234392e33322e302f31392d3139203d3e203538353431.roa (raw, json) Hash identifier: 6bSFQAQyjP2Ftc0ZrR8afbhyXoZEReNQThCJG2cHPTQ= Subject key identifier: 3D:46:CD:29:72:A1:BD:FA:CD:1B:9F:41:46:47:00:09:B3:E0:85:9A Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 26C8053431497F624BAC3D742A96134D7DC4FB69 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e33322e302f31392d3139203d3e203538353431.roa Signing time: Wed 03 Jun 2026 17:40:01 +0000 ROA not before: Wed 03 Jun 2026 17:35:01 +0000 ROA not after: Wed 02 Jun 2027 17:40:01 +0000 asID: 58541 IP address blocks: 140.249.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c8:05:34:31:49:7f:62:4b:ac:3d:74:2a:96:13:4d:7d:c4:fb:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 17:35:01 2026 GMT Not After : Jun 2 17:40:01 2027 GMT Subject: CN=3D46CD2972A1BDFACD1B9F4146470009B3E0859A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:51:c2:f6:8b:10:a4:c2:7a:1e:3b:ec:3a:48: 5c:b2:5b:66:47:95:b8:78:3d:f1:34:36:76:80:b9: 2d:17:b3:40:f9:de:c0:10:81:56:97:64:6d:70:a6: ff:03:ce:1f:63:8e:4e:b9:85:6f:cd:6e:f3:86:82: 34:9e:16:04:06:b5:90:ce:59:ec:eb:0e:57:61:ef: 90:dc:c4:78:e1:a1:a6:b1:9a:4a:b0:2a:0e:16:60: 5a:f0:9c:fb:d4:d3:76:eb:83:c8:44:ae:97:4b:b6: cf:55:ef:66:31:49:02:f5:81:c8:60:75:94:a9:07: b6:ac:2b:10:73:82:57:c8:24:82:dc:6e:39:45:2d: 81:88:fb:fd:e3:8c:cb:1d:4d:c5:97:fd:75:5b:4c: 71:78:9a:05:2e:7d:ad:87:e5:ff:0d:dc:89:fb:0c: cc:18:1f:fc:83:15:9a:69:c9:f5:d4:2f:30:93:43: 26:6e:bf:3f:23:0e:c3:1d:0c:28:07:5f:ee:89:61: 59:91:81:4d:60:a8:0e:d7:74:1e:4b:ed:e5:10:cc: cf:e8:d0:7a:95:0c:b9:d7:82:d7:c8:ee:0b:f9:f4: 01:e9:4c:6f:ee:04:5a:2d:3d:75:00:5c:05:e2:38: 08:40:91:60:ba:d6:d8:95:85:e4:42:95:ed:ad:fd: 5f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:46:CD:29:72:A1:BD:FA:CD:1B:9F:41:46:47:00:09:B3:E0:85:9A X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e33322e302f31392d3139203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:3c:5c:d4:7d:7e:b1:1a:c2:b1:c7:ca:ea:d1:80:db:78:aa: 95:e6:96:7c:4d:9a:27:86:85:ab:0a:5e:85:03:37:52:1a:af: 49:5a:3f:b7:5c:e8:76:11:69:34:27:39:75:ba:ce:4f:b9:0d: 3a:ec:f4:cb:56:e3:8f:a8:1f:cf:14:e8:05:cf:d7:44:b6:5f: 30:c6:34:22:c8:93:81:ed:90:c2:5f:13:8c:19:dc:58:99:04: ba:7f:15:ea:8a:ae:32:74:8e:0d:d5:3d:a3:76:ae:75:aa:61: e4:f8:0b:1b:3e:6b:ce:f0:7d:df:db:a7:c8:cb:59:96:e2:e7: 81:84:5e:b3:91:6d:5d:ff:d9:ba:2f:c9:39:11:3d:be:7f:94: 66:62:e9:a3:18:59:93:6f:3a:30:03:82:fd:80:77:69:ab:25: 96:5f:34:c2:02:cd:c0:60:14:66:42:a4:e0:65:f8:5f:a5:5c: ee:4c:4f:cf:74:ad:ea:c8:d4:5b:d8:4c:65:84:29:c4:e6:34: d6:4f:9f:fc:04:2a:17:63:8b:7e:f3:10:6a:85:c7:86:77:5c: 5f:c6:4c:b4:64:7e:7f:ac:0f:b5:57:f3:d7:d0:e2:a3:82:2e: 2c:b8:74:a2:36:74:97:3b:4f:54:24:d9:5f:cb:89:da:34:a1: 05:58:6b:a0 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUJsgFNDFJf2JLrD10KpYTTX3E+2kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE3MzUwMVoX DTI3MDYwMjE3NDAwMVowMzExMC8GA1UEAxMoM0Q0NkNEMjk3MkExQkRGQUNEMUI5 RjQxNDY0NzAwMDlCM0UwODU5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIhRwvaLEKTCeh477DpIXLJbZkeVuHg98TQ2doC5LRezQPnewBCBVpdkbXCm /wPOH2OOTrmFb81u84aCNJ4WBAa1kM5Z7OsOV2HvkNzEeOGhprGaSrAqDhZgWvCc +9TTduuDyESul0u2z1XvZjFJAvWByGB1lKkHtqwrEHOCV8gkgtxuOUUtgYj7/eOM yx1NxZf9dVtMcXiaBS59rYfl/w3cifsMzBgf/IMVmmnJ9dQvMJNDJm6/PyMOwx0M KAdf7olhWZGBTWCoDtd0Hkvt5RDMz+jQepUMudeC18juC/n0AelMb+4EWi09dQBc BeI4CECRYLrW2JWF5EKV7a39X/cCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBQ9Rs0p cqG9+s0bn0FGRwAJs+CFmjAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzkyZTMzMzIyZTMwMmYzMTM5MmQzMTM5 MjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFjPkgMA0GCSqGSIb3DQEBCwUA A4IBAQCbPFzUfX6xGsKxx8rq0YDbeKqV5pZ8TZonhoWrCl6FAzdSGq9JWj+3XOh2 EWk0Jzl1us5PuQ067PTLVuOPqB/PFOgFz9dEtl8wxjQiyJOB7ZDCXxOMGdxYmQS6 fxXqiq4ydI4N1T2jdq51qmHk+AsbPmvO8H3f26fIy1mW4ueBhF6zkW1d/9m6L8k5 ET2+f5RmYumjGFmTbzowA4L9gHdpqyWWXzTCAs3AYBRmQqTgZfhfpVzuTE/PdK3q yNRb2ExlhCnE5jTWT5/8BCoXY4t+8xBqhceGd1xfxky0ZH5/rA+1V/PX0OKjgi4s uHSiNnSXO09UJNlfy4naNKEFWGug -----END CERTIFICATE-----Generated at Fri Jun 12 11:24:49 2026 by rpki-client