$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134765.roa File: AS134765.roa (raw, json) Hash identifier: PI3XJZV9Gvqg7s853dmhiLV3A1G2HYh3JP/LMpmGFGE= Subject key identifier: 38:CF:B1:9A:77:AC:80:96:43:E2:D8:5F:D8:4F:88:1A:21:39:CE:20 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 0B99E560923275478F0089AC19622BCE83A4BAFA Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134765.roa Signing time: Thu 21 May 2026 16:11:00 +0000 ROA not before: Thu 21 May 2026 16:06:00 +0000 ROA not after: Thu 20 May 2027 16:11:00 +0000 asID: 134765 IP address blocks: 240e:12:800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:99:e5:60:92:32:75:47:8f:00:89:ac:19:62:2b:ce:83:a4:ba:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 21 16:06:00 2026 GMT Not After : May 20 16:11:00 2027 GMT Subject: CN=38CFB19A77AC809643E2D85FD84F881A2139CE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0b:7d:c6:9f:f0:7d:7f:69:77:fa:90:bb:77: 29:82:bc:fe:5c:09:7c:b0:2f:16:f5:98:09:89:b6: 28:f9:f8:5a:a0:1c:d1:84:b4:5a:55:e3:b1:af:6e: 94:35:98:12:e1:e2:3b:23:a0:03:8e:b6:07:ae:df: c8:fd:ee:fb:33:21:5a:53:21:b3:f0:bf:22:63:01: c1:c0:db:6f:23:19:88:5d:11:2d:17:df:aa:11:bb: 78:a4:f8:fb:b6:f2:4b:cc:bb:f1:62:ef:9a:01:71: fd:ec:c8:d9:e0:94:a2:f2:9a:79:23:6f:d4:a7:5b: 6e:b6:dd:29:84:41:35:ee:d8:b1:df:a8:01:a5:b9: 7c:7b:46:e1:72:d9:33:21:5a:cf:cf:94:fe:ac:5f: fc:06:16:ee:cf:1b:9b:e7:a1:17:83:ed:c4:c0:6d: 97:9f:39:89:f1:d6:51:99:38:2f:57:b1:d9:9d:ae: a9:fe:a4:05:7d:bc:20:da:c5:03:7c:32:78:ab:4a: 55:4a:f4:d8:9e:b6:5b:1c:d0:ad:8a:99:a8:d8:da: 86:6c:e0:a4:0b:c5:63:77:c2:94:7f:f8:2a:05:13: 99:9d:28:b5:7f:b5:64:2b:61:50:a6:ed:59:a5:89: 3f:48:88:b7:a6:e2:47:44:01:dc:47:26:b3:87:55: 88:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CF:B1:9A:77:AC:80:96:43:E2:D8:5F:D8:4F:88:1A:21:39:CE:20 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:12:800::/37 Signature Algorithm: sha256WithRSAEncryption 85:5b:23:97:b1:f8:68:b9:a7:ce:c0:c7:eb:10:c5:95:79:e8: 2c:81:96:04:8b:36:4f:9e:d2:53:dc:49:17:cd:37:47:d1:64: 3c:72:66:01:29:70:df:29:a7:5a:8c:a3:4d:4e:48:89:fb:6b: 92:85:e9:8b:e1:46:3c:0c:2d:11:9b:d9:45:f5:7b:2c:1a:1d: ba:34:b2:4c:71:5c:7f:2f:2b:3d:e6:44:58:07:6f:31:0b:41: cb:ae:44:ea:61:7a:fb:37:24:c6:87:9c:28:dc:e3:29:77:5c: 6e:bf:d8:7c:cb:6c:be:ca:a6:15:4e:eb:71:50:79:8a:5c:11: b5:e2:64:41:19:12:00:69:b5:73:bb:2e:b2:aa:8f:01:23:62: 83:d1:3d:3a:16:da:95:90:99:74:63:b2:ba:46:bb:d2:00:69: 30:99:a8:4d:f3:54:a7:da:6a:57:af:cc:30:dd:69:9c:27:55: 45:a7:4c:7d:55:96:62:21:16:1a:3a:bc:6d:0f:6f:22:6c:a9: fb:2c:a6:07:a4:36:6c:dd:85:fc:f1:41:d4:0c:78:50:3f:ef: 5c:f0:79:7a:51:fa:48:9e:86:78:22:43:1d:26:c3:34:16:2b: f4:d8:48:e3:a7:e9:3d:07:b8:2d:f5:a1:3a:6a:4d:8b:80:c6: 0b:0c:7e:18 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUC5nlYJIydUePAImsGWIrzoOkuvowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMTE2MDYwMFoX DTI3MDUyMDE2MTEwMFowMzExMC8GA1UEAxMoMzhDRkIxOUE3N0FDODA5NjQzRTJE ODVGRDg0Rjg4MUEyMTM5Q0UyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALELfcaf8H1/aXf6kLt3KYK8/lwJfLAvFvWYCYm2KPn4WqAc0YS0WlXjsa9u lDWYEuHiOyOgA462B67fyP3u+zMhWlMhs/C/ImMBwcDbbyMZiF0RLRffqhG7eKT4 +7byS8y78WLvmgFx/ezI2eCUovKaeSNv1KdbbrbdKYRBNe7Ysd+oAaW5fHtG4XLZ MyFaz8+U/qxf/AYW7s8bm+ehF4PtxMBtl585ifHWUZk4L1ex2Z2uqf6kBX28INrF A3wyeKtKVUr02J62WxzQrYqZqNjahmzgpAvFY3fClH/4KgUTmZ0otX+1ZCthUKbt WaWJP0iIt6biR0QB3Ecms4dViC8CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQ4z7Ga d6yAlkPi2F/YT4gaITnOIDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM0NzY1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYDJA4AEggwDQYJKoZIhvcNAQEL BQADggEBAIVbI5ex+Gi5p87Ax+sQxZV56CyBlgSLNk+e0lPcSRfNN0fRZDxyZgEp cN8pp1qMo01OSIn7a5KF6YvhRjwMLRGb2UX1eywaHbo0skxxXH8vKz3mRFgHbzEL QcuuROphevs3JMaHnCjc4yl3XG6/2HzLbL7KphVO63FQeYpcEbXiZEEZEgBptXO7 LrKqjwEjYoPRPToW2pWQmXRjsrpGu9IAaTCZqE3zVKfaalevzDDdaZwnVUWnTH1V lmIhFho6vG0PbyJsqfsspgekNmzdhfzxQdQMeFA/71zweXpR+kiehngiQx0mwzQW K/TYSOOn6T0HuC31oTpqTYuAxgsMfhg= -----END CERTIFICATE-----Generated at Sat May 23 07:08:25 2026 by rpki-client