$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134766.roa File: AS134766.roa (raw, json) Hash identifier: pNzDKGxemP1Xvdb3fHOs1/tP7/HoxVoMG4hrfVx8L/I= Subject key identifier: 9A:ED:D8:40:2C:06:72:B9:9A:15:92:8E:A1:2B:42:79:3A:ED:29:24 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 33F8859ACD8A5CCF6D7B621E5241F2ED1800FB43 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134766.roa Signing time: Thu 21 May 2026 16:11:00 +0000 ROA not before: Thu 21 May 2026 16:06:00 +0000 ROA not after: Thu 20 May 2027 16:11:00 +0000 asID: 134766 IP address blocks: 240e:12:9000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f8:85:9a:cd:8a:5c:cf:6d:7b:62:1e:52:41:f2:ed:18:00:fb:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 21 16:06:00 2026 GMT Not After : May 20 16:11:00 2027 GMT Subject: CN=9AEDD8402C0672B99A15928EA12B42793AED2924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:42:06:15:58:5d:36:e6:cf:28:90:3d:00:1f: 91:99:35:10:4d:29:99:34:34:fc:79:6c:76:ef:82: 99:80:e8:61:73:18:5b:e0:4d:f4:75:ca:c8:56:0b: 85:10:a1:3a:40:5e:01:15:60:fb:c5:22:b2:50:f5: 2c:d4:ee:54:61:05:9e:40:a2:17:87:5c:7b:71:87: 9f:7c:f6:93:25:04:dc:3f:e8:73:a4:2f:2e:41:fd: 58:c1:22:48:2e:80:22:bb:74:79:2b:8e:1a:4e:a6: bd:56:87:2c:d0:0a:50:e2:78:ec:0a:28:4a:56:fe: 7b:96:f6:8e:34:db:1c:e3:3a:bf:91:ba:b5:88:3d: c4:16:72:6f:8d:10:de:e2:0a:e9:6e:11:77:37:18: 88:0c:f4:4c:77:77:c7:93:ae:31:e5:c0:08:64:c6: b7:2a:30:be:8e:9f:e0:8b:21:b6:e5:8e:87:ba:15: e4:98:e5:81:66:99:a3:24:03:73:5d:cb:f8:de:28: d0:8c:a7:27:c0:00:48:ed:df:02:1a:42:86:6c:53: 27:7a:63:ed:85:c5:e1:1c:60:b2:35:02:7a:82:a1: 69:78:88:5c:77:1d:3a:73:05:cf:30:88:c9:d1:79: 00:93:b1:0c:2d:2d:20:5b:ce:37:08:93:7e:7a:27: 66:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:ED:D8:40:2C:06:72:B9:9A:15:92:8E:A1:2B:42:79:3A:ED:29:24 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:12:9000::/37 Signature Algorithm: sha256WithRSAEncryption 91:12:16:3b:cb:4b:fb:04:69:c5:54:45:53:09:e0:bd:09:74: 38:54:55:7d:45:0f:0c:cc:7e:4a:4e:72:1c:e1:30:6f:5c:27: f9:70:15:ca:68:9c:37:96:0a:37:50:99:a1:f3:a7:de:6e:27: 99:fe:e5:12:d1:3a:cb:ac:b7:c5:7d:eb:48:fd:1e:dd:62:c2: 60:4e:40:95:51:18:b5:22:7b:c7:4c:d7:7e:4a:34:7e:f3:b7: a2:0e:a1:2f:10:cc:0a:5f:2d:27:05:d9:87:26:75:c7:ff:c0: cd:61:3e:38:36:d4:f0:3c:15:24:15:39:21:ce:9b:5f:d3:4c: 81:0b:36:5d:41:c8:51:da:0c:7d:6f:6a:93:13:ae:89:2e:da: 78:7e:6a:cf:2b:03:c5:4a:3b:32:00:ca:34:44:43:bd:2a:8e: 9c:4b:b6:84:c4:d7:e2:ad:8c:0c:b8:93:69:8f:64:8f:c3:47: 37:3c:9c:57:0d:c3:83:29:77:56:be:fc:53:0c:2c:e5:bf:82: 05:69:8f:34:ed:3a:4f:6a:6d:90:ce:b8:46:e9:ea:be:b4:28: de:63:ed:63:1f:71:07:52:db:e4:84:84:37:2d:66:be:aa:02: 83:b8:42:3f:7c:4c:40:3b:12:bc:c4:fc:08:13:9a:8a:b4:de: 67:fc:32:d6 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUM/iFms2KXM9te2IeUkHy7RgA+0MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMTE2MDYwMFoX DTI3MDUyMDE2MTEwMFowMzExMC8GA1UEAxMoOUFFREQ4NDAyQzA2NzJCOTlBMTU5 MjhFQTEyQjQyNzkzQUVEMjkyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtCBhVYXTbmzyiQPQAfkZk1EE0pmTQ0/Hlsdu+CmYDoYXMYW+BN9HXKyFYL hRChOkBeARVg+8UislD1LNTuVGEFnkCiF4dce3GHn3z2kyUE3D/oc6QvLkH9WMEi SC6AIrt0eSuOGk6mvVaHLNAKUOJ47AooSlb+e5b2jjTbHOM6v5G6tYg9xBZyb40Q 3uIK6W4RdzcYiAz0THd3x5OuMeXACGTGtyowvo6f4IshtuWOh7oV5JjlgWaZoyQD c13L+N4o0IynJ8AASO3fAhpChmxTJ3pj7YXF4RxgsjUCeoKhaXiIXHcdOnMFzzCI ydF5AJOxDC0tIFvONwiTfnonZoMCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSa7dhA LAZyuZoVko6hK0J5Ou0pJDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM0NzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYDJA4AEpAwDQYJKoZIhvcNAQEL BQADggEBAJESFjvLS/sEacVURVMJ4L0JdDhUVX1FDwzMfkpOchzhMG9cJ/lwFcpo nDeWCjdQmaHzp95uJ5n+5RLROsust8V960j9Ht1iwmBOQJVRGLUie8dM135KNH7z t6IOoS8QzApfLScF2Ycmdcf/wM1hPjg21PA8FSQVOSHOm1/TTIELNl1ByFHaDH1v apMTroku2nh+as8rA8VKOzIAyjREQ70qjpxLtoTE1+KtjAy4k2mPZI/DRzc8nFcN w4Mpd1a+/FMMLOW/ggVpjzTtOk9qbZDOuEbp6r60KN5j7WMfcQdS2+SEhDctZr6q AoO4Qj98TEA7ErzE/AgTmoq03mf8MtY= -----END CERTIFICATE-----Generated at Sat May 23 07:08:24 2026 by rpki-client