$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134342e3132332e32352e302f32342d3234203d3e20313339383837.roa File: 3134342e3132332e32352e302f32342d3234203d3e20313339383837.roa (raw, json) Hash identifier: bm0XbrBYrzvvXkPZtMsqWNn4+crtSIopHtbwBVo+XDU= Subject key identifier: F9:FF:E0:20:54:B7:12:B4:2F:7C:E1:BA:17:39:98:7C:8B:A4:9F:D2 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 06ED348E62507EDC2527500C2E535C25EDE1C6C0 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134342e3132332e32352e302f32342d3234203d3e20313339383837.roa Signing time: Thu 28 May 2026 16:05:39 +0000 ROA not before: Thu 28 May 2026 16:00:39 +0000 ROA not after: Thu 27 May 2027 16:05:39 +0000 asID: 139887 IP address blocks: 144.123.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ed:34:8e:62:50:7e:dc:25:27:50:0c:2e:53:5c:25:ed:e1:c6:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: May 28 16:00:39 2026 GMT Not After : May 27 16:05:39 2027 GMT Subject: CN=F9FFE02054B712B42F7CE1BA1739987C8BA49FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d6:ba:f7:6b:ac:7b:20:b6:b6:23:89:82:27: 02:30:1c:94:56:5f:6e:ca:97:a9:fa:45:78:13:00: 6e:bc:39:81:60:72:cb:41:1f:69:62:e4:d8:ca:65: fa:c0:77:85:1c:33:b7:cd:7a:78:46:b7:dc:bd:48: 4c:f3:01:01:37:b7:25:5a:3d:40:a1:c3:b2:eb:64: b6:eb:a9:b3:a0:84:c2:a7:6a:f4:0e:3e:38:b9:ba: 9e:df:3e:82:07:fe:db:a7:a2:19:88:1e:51:2e:37: c1:d1:2b:0a:30:00:40:fb:c4:a5:72:d0:5d:bc:c0: d6:75:10:4a:ac:ed:ff:58:c5:8b:b2:f4:e9:f7:64: 28:e0:9b:f0:6c:d5:05:49:73:8b:86:bc:6b:5d:1d: 55:a2:1a:a4:24:a7:d4:8b:53:06:71:8c:b4:a2:32: a4:58:af:94:40:50:90:2f:71:6a:60:a3:13:7c:2b: 07:ac:20:d2:6f:44:bb:77:3a:15:7e:f3:b7:61:cd: 57:6b:42:1b:ab:fa:52:d0:5b:ca:f2:b8:61:69:2f: b0:0b:3d:c0:d1:05:1d:45:03:bb:ab:32:ac:a6:8d: 22:f2:72:6e:de:e9:97:13:3f:b0:4e:7c:a8:9f:7d: 2a:6c:31:0a:aa:11:86:bf:f3:b5:f4:0d:32:0b:25: 43:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:FF:E0:20:54:B7:12:B4:2F:7C:E1:BA:17:39:98:7C:8B:A4:9F:D2 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134342e3132332e32352e302f32342d3234203d3e20313339383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.123.25.0/24 Signature Algorithm: sha256WithRSAEncryption 09:6e:f3:8f:f4:8d:f0:55:ba:ab:07:67:74:0f:0d:f6:ce:75: 0a:3e:8d:0d:9e:48:4b:16:a6:06:ef:83:cd:42:84:45:d1:81: 4d:79:15:b6:3e:26:ea:1c:53:de:c6:e2:27:99:92:88:82:8a: 08:b3:8b:cc:21:27:0b:e0:f9:49:d6:be:6a:34:65:ce:12:66: 48:80:df:df:8b:2d:1f:2d:6e:d1:80:36:94:0c:9e:b4:75:f4: de:5e:56:09:3d:be:eb:9d:ab:60:83:70:1d:7f:1c:b7:a5:54: f0:51:2c:84:36:9d:1a:6f:07:6b:6a:70:13:68:c5:f8:ff:e2: 76:22:6b:c7:cc:e7:68:95:5d:47:a2:3d:a8:ce:e6:36:a3:b2: c7:a3:dc:49:86:f8:0a:23:9d:59:ff:64:a5:0f:9e:c1:43:9a: 96:f9:e8:2a:a9:79:b0:bb:c2:8e:25:40:59:64:90:13:47:b4: 46:52:26:44:3e:f3:c6:2e:e5:17:63:6c:6b:fd:2d:aa:b3:54: 88:36:d0:a5:ad:69:43:6a:aa:0d:06:df:0e:c1:83:56:61:b4: 38:b5:1b:ee:1a:fd:02:cc:86:7a:bb:55:d7:11:74:27:39:5e: 8c:6f:82:e3:c3:70:ae:58:0e:b5:64:6b:28:70:db:b0:83:00: 62:ba:a9:7a -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUBu00jmJQftwlJ1AMLlNcJe3hxsAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDUyODE2MDAzOVoX DTI3MDUyNzE2MDUzOVowMzExMC8GA1UEAxMoRjlGRkUwMjA1NEI3MTJCNDJGN0NF MUJBMTczOTk4N0M4QkE0OUZEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJvWuvdrrHsgtrYjiYInAjAclFZfbsqXqfpFeBMAbrw5gWByy0EfaWLk2Mpl +sB3hRwzt816eEa33L1ITPMBATe3JVo9QKHDsutktuups6CEwqdq9A4+OLm6nt8+ ggf+26eiGYgeUS43wdErCjAAQPvEpXLQXbzA1nUQSqzt/1jFi7L06fdkKOCb8GzV BUlzi4a8a10dVaIapCSn1ItTBnGMtKIypFivlEBQkC9xamCjE3wrB6wg0m9Eu3c6 FX7zt2HNV2tCG6v6UtBbyvK4YWkvsAs9wNEFHUUDu6syrKaNIvJybt7plxM/sE58 qJ99KmwxCqoRhr/ztfQNMgslQ1ECAwEAAaOCAhcwggITMB0GA1UdDgQWBBT5/+Ag VLcStC984boXOZh8i6Sf0jAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzNDJlMzEzMjMzMmUzMjM1MmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzEzMzM5MzgzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkHsZMA0GCSqGSIb3DQEB CwUAA4IBAQAJbvOP9I3wVbqrB2d0Dw32znUKPo0NnkhLFqYG74PNQoRF0YFNeRW2 PibqHFPexuInmZKIgooIs4vMIScL4PlJ1r5qNGXOEmZIgN/fiy0fLW7RgDaUDJ60 dfTeXlYJPb7rnatgg3Adfxy3pVTwUSyENp0abwdranATaMX4/+J2ImvHzOdolV1H oj2ozuY2o7LHo9xJhvgKI51Z/2SlD57BQ5qW+egqqXmwu8KOJUBZZJATR7RGUiZE PvPGLuUXY2xr/S2qs1SINtClrWlDaqoNBt8OwYNWYbQ4tRvuGv0CzIZ6u1XXEXQn OV6Mb4Ljw3CuWA61ZGsocNuwgwBiuql6 -----END CERTIFICATE-----Generated at Sat May 30 02:41:26 2026 by rpki-client