$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e35322e302f32322d3232203d3e203538353431.roa File: 3134302e3234392e35322e302f32322d3232203d3e203538353431.roa (raw, json) Hash identifier: kmhC+sM6KAOHTqQZsE0nrJ0uhoJRoRxX9MWhtl5ztKo= Subject key identifier: BE:77:D1:61:D8:39:93:96:33:93:C4:3E:BC:8B:58:BB:B4:2F:3F:E0 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 7A5103B9102E1C9580753BE24F7289BC43959E95 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e35322e302f32322d3232203d3e203538353431.roa Signing time: Thu 28 May 2026 16:12:01 +0000 ROA not before: Thu 28 May 2026 16:07:01 +0000 ROA not after: Thu 27 May 2027 16:12:01 +0000 asID: 58541 IP address blocks: 140.249.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:51:03:b9:10:2e:1c:95:80:75:3b:e2:4f:72:89:bc:43:95:9e:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:07:01 2026 GMT Not After : May 27 16:12:01 2027 GMT Subject: CN=BE77D161D83993963393C43EBC8B58BBB42F3FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:aa:9d:f1:75:e9:5e:79:73:b1:cb:79:33:38: 06:23:cf:32:94:cc:17:6b:e0:ac:de:fc:5c:d2:27: a8:da:64:3a:bc:2a:ad:6b:be:0e:62:d3:b7:94:ce: 67:3a:ef:ff:d9:3f:ea:43:4b:2f:53:08:14:79:b2: cf:96:b0:08:df:9e:65:88:3a:19:05:6f:c6:af:7b: 92:27:1f:f3:06:3a:77:fb:a6:84:2a:03:3a:71:60: 54:5d:4e:80:b1:0d:c1:c9:5d:67:85:b4:f9:ed:35: a8:1b:2b:65:d5:d4:e0:8a:59:d7:95:12:47:c6:a8: c2:27:38:f9:12:55:2a:f6:c6:7a:24:37:c4:c6:48: eb:a2:61:00:4b:b5:41:33:0b:e2:65:b9:b3:19:7f: 7f:57:11:e8:71:e9:25:bc:fe:3c:2f:9f:03:4d:06: 6a:79:41:5c:ea:5c:b1:96:1e:af:ec:81:31:ab:9a: 73:09:fc:25:22:6d:9e:90:3d:e4:c3:35:68:b5:f4: c6:01:85:7a:98:f2:ec:5d:6b:1a:52:a4:2f:b3:ee: fc:e6:e7:87:06:55:c7:bc:83:2b:7d:ca:62:09:b7: 11:0c:c4:1a:0a:dc:de:68:ab:a9:27:7f:d1:69:c7: 32:29:aa:01:c7:c7:5f:5b:c0:0b:32:7d:75:46:19: 86:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:77:D1:61:D8:39:93:96:33:93:C4:3E:BC:8B:58:BB:B4:2F:3F:E0 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e35322e302f32322d3232203d3e203538353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.52.0/22 Signature Algorithm: sha256WithRSAEncryption d9:28:a4:bb:21:bb:a7:0f:c2:3f:63:03:ff:c9:56:83:58:62: f0:07:db:5e:6c:73:1b:50:6b:51:c0:7c:21:52:5b:a0:3f:35: 6a:15:a4:bf:3c:2f:82:8e:d2:49:c1:1a:4a:ad:6a:32:80:7f: 62:32:03:a0:68:5b:ad:8b:a6:06:a2:bc:eb:c4:8a:34:30:11: 25:ec:5f:72:34:2e:7c:4a:da:56:b8:c6:c6:6f:72:48:7a:15: a8:dc:89:51:f6:78:d3:36:f1:b5:25:6b:70:c7:73:a3:3c:93: c5:ff:86:fc:5e:28:8b:90:6a:6d:5b:dd:ee:d5:85:5d:a5:d5: 78:4c:b0:be:3b:55:be:53:84:7d:ef:62:67:4f:3a:88:bc:7b: ac:ca:11:43:e4:89:cb:38:1d:2a:3b:7a:61:5b:b6:f5:1b:b8: 92:1a:ff:d1:29:99:fa:4c:b5:5c:cb:80:18:e3:4e:1d:39:5a: d3:fc:ab:23:74:64:57:5c:a5:48:21:31:e5:38:1c:11:01:11: fc:2d:0b:63:10:15:61:53:b3:56:8c:65:b0:74:a0:c0:73:ab: a9:41:cd:89:be:a4:26:c3:32:b6:28:c4:c8:4f:7c:57:c9:cb: 5f:c2:39:86:82:6e:60:03:22:9c:ce:6b:1c:48:58:8d:e9:c1: c7:6c:ba:a7 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUelEDuRAuHJWAdTviT3KJvEOVnpUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDcwMVoX DTI3MDUyNzE2MTIwMVowMzExMC8GA1UEAxMoQkU3N0QxNjFEODM5OTM5NjMzOTND NDNFQkM4QjU4QkJCNDJGM0ZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+qnfF16V55c7HLeTM4BiPPMpTMF2vgrN78XNInqNpkOrwqrWu+DmLTt5TO Zzrv/9k/6kNLL1MIFHmyz5awCN+eZYg6GQVvxq97kicf8wY6d/umhCoDOnFgVF1O gLENwcldZ4W0+e01qBsrZdXU4IpZ15USR8aowic4+RJVKvbGeiQ3xMZI66JhAEu1 QTML4mW5sxl/f1cR6HHpJbz+PC+fA00GanlBXOpcsZYer+yBMauacwn8JSJtnpA9 5MM1aLX0xgGFepjy7F1rGlKkL7Pu/ObnhwZVx7yDK33KYgm3EQzEGgrc3mirqSd/ 0WnHMimqAcfHX1vACzJ9dUYZhosCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBS+d9Fh 2DmTljOTxD68i1i7tC8/4DAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAy OTA1OTc2ODM1LzAvMzEzNDMwMmUzMjM0MzkyZTM1MzIyZTMwMmYzMjMyMmQzMjMy MjAzZDNlMjAzNTM4MzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjPk0MA0GCSqGSIb3DQEBCwUA A4IBAQDZKKS7IbunD8I/YwP/yVaDWGLwB9tebHMbUGtRwHwhUlugPzVqFaS/PC+C jtJJwRpKrWoygH9iMgOgaFuti6YGorzrxIo0MBEl7F9yNC58StpWuMbGb3JIehWo 3IlR9njTNvG1JWtwx3OjPJPF/4b8XiiLkGptW93u1YVdpdV4TLC+O1W+U4R972Jn TzqIvHusyhFD5InLOB0qO3phW7b1G7iSGv/RKZn6TLVcy4AY404dOVrT/KsjdGRX XKVIITHlOBwRARH8LQtjEBVhU7NWjGWwdKDAc6upQc2JvqQmwzK2KMTIT3xXyctf wjmGgm5gAyKczmscSFiN6cHHbLqn -----END CERTIFICATE-----Generated at Sat May 30 02:40:50 2026 by rpki-client