$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS135089.roa File: AS135089.roa (raw, json) Hash identifier: cKKdM3xi67SHlnySyWw/vmXk0YYWlsztydo6AXzCqZY= Subject key identifier: 34:A9:23:5D:F9:F3:63:0C:9F:19:2F:7C:10:56:9A:59:DB:69:AF:8D Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 2719F6D96180AFD48769ED8AB542EC2222500A3D Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS135089.roa Signing time: Thu 21 May 2026 16:28:17 +0000 ROA not before: Thu 21 May 2026 16:23:17 +0000 ROA not after: Thu 20 May 2027 16:28:17 +0000 asID: 135089 IP address blocks: 183.56.252.0/22 maxlen: 22 183.56.252.0/24 maxlen: 24 183.56.253.0/24 maxlen: 24 183.56.254.0/24 maxlen: 24 203.32.68.0/23 maxlen: 23 203.32.84.0/23 maxlen: 23 203.32.205.0/24 maxlen: 24 203.33.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:19:f6:d9:61:80:af:d4:87:69:ed:8a:b5:42:ec:22:22:50:0a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 21 16:23:17 2026 GMT Not After : May 20 16:28:17 2027 GMT Subject: CN=34A9235DF9F3630C9F192F7C10569A59DB69AF8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7f:38:bb:c1:72:4b:6f:9e:0b:b2:b1:c6:5d: 6b:78:02:a0:7c:8b:31:40:e3:c6:e7:cc:51:64:7a: b2:61:80:d6:6c:7e:6e:40:ba:3c:60:36:0d:c1:db: 2c:04:9e:2e:2d:3b:36:27:37:a5:c0:eb:71:bf:ee: 29:7e:be:87:63:01:47:9a:04:f2:8f:4d:be:8c:73: 93:77:fc:13:a6:ee:c2:6b:d2:0f:73:b6:8d:05:12: 24:15:9b:6d:72:b3:71:a2:96:d9:1b:f9:c3:c9:32: b6:22:d3:71:89:55:43:30:7c:5c:d0:15:5f:8a:d1: be:59:85:3c:fe:6b:a9:d8:63:97:7c:04:4c:1d:b4: 77:2d:65:ec:ea:63:94:e7:34:ef:73:d6:24:eb:d1: 62:87:e0:41:1a:41:a7:cc:98:fa:c6:90:7c:d6:db: 1c:27:24:21:6f:1c:0d:31:7a:4a:1c:98:e6:c5:87: 0f:16:c1:b8:29:d4:8c:57:49:fe:b1:da:f4:75:9d: d9:11:7a:cb:fd:b2:66:6d:09:77:5f:83:e2:d8:94: 94:0e:0c:90:9e:11:a3:60:c7:4d:a6:6e:bc:82:77: 4b:b8:cb:43:b2:dc:c7:49:f7:c4:e7:ad:bf:8c:7b: 7b:dd:0d:c2:de:7f:a3:88:55:26:ec:12:0c:d1:4a: 95:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A9:23:5D:F9:F3:63:0C:9F:19:2F:7C:10:56:9A:59:DB:69:AF:8D X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS135089.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 183.56.252.0/22 203.32.68.0/23 203.32.84.0/23 203.32.205.0/24 203.33.158.0/23 Signature Algorithm: sha256WithRSAEncryption a7:eb:9f:3a:92:88:5e:b1:08:14:68:87:f1:34:50:f0:f3:e0: f5:df:74:f0:08:0c:00:dc:21:39:fb:66:b5:1f:e3:fe:fe:76: 67:be:55:4d:6b:54:eb:68:3f:48:b0:f7:b6:fc:2b:2c:91:eb: 00:ca:a0:20:8e:10:ed:b0:f4:c3:21:46:da:32:7b:56:46:28: c8:64:c6:7f:78:df:5c:2d:c7:1a:fd:57:37:c9:89:c4:c8:84: bb:5d:1e:a0:54:53:31:01:a7:1e:a4:c1:59:00:91:d8:58:99: b4:c7:38:18:e0:8b:a2:5d:cc:7a:ff:1c:13:19:05:4e:35:fd: ba:a7:86:dc:67:a6:d0:ec:84:fa:f6:e5:f9:5b:8a:03:55:c8: 59:5b:8c:2e:5c:e3:c1:bf:84:bc:0c:eb:2b:16:0b:0d:a3:6a: 0d:1f:bd:08:ca:13:3a:7e:70:41:69:5b:ae:c4:10:04:82:29: 20:10:6c:cb:dc:8f:0c:c2:d8:27:e7:85:15:66:e3:3b:c3:7b: e3:55:6e:23:dc:3e:dd:32:bc:19:b0:d8:1e:bc:a4:dc:0f:f3: 84:6c:d3:16:ce:1f:a2:3f:3d:d4:a1:e8:6e:c0:10:0c:86:7f: c2:27:5c:dc:1d:4d:a8:6a:a8:92:53:4b:4b:99:d3:64:69:42: ad:b9:53:8c -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIUJxn22WGAr9SHae2KtULsIiJQCj0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMTE2MjMxN1oX DTI3MDUyMDE2MjgxN1owMzExMC8GA1UEAxMoMzRBOTIzNURGOUYzNjMwQzlGMTky RjdDMTA1NjlBNTlEQjY5QUY4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMt/OLvBcktvnguyscZda3gCoHyLMUDjxufMUWR6smGA1mx+bkC6PGA2DcHb LASeLi07Nic3pcDrcb/uKX6+h2MBR5oE8o9Nvoxzk3f8E6buwmvSD3O2jQUSJBWb bXKzcaKW2Rv5w8kytiLTcYlVQzB8XNAVX4rRvlmFPP5rqdhjl3wETB20dy1l7Opj lOc073PWJOvRYofgQRpBp8yY+saQfNbbHCckIW8cDTF6ShyY5sWHDxbBuCnUjFdJ /rHa9HWd2RF6y/2yZm0Jd1+D4tiUlA4MkJ4Ro2DHTaZuvIJ3S7jLQ7Lcx0n3xOet v4x7e90Nwt5/o4hVJuwSDNFKlZUCAwEAAaOCAfwwggH4MB0GA1UdDgQWBBQ0qSNd +fNjDJ8ZL3wQVppZ22mvjTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM1MDg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCtzj8AwQByyBEAwQByyBUAwQA yyDNAwQByyGeMA0GCSqGSIb3DQEBCwUAA4IBAQCn6586kohesQgUaIfxNFDw8+D1 33TwCAwA3CE5+2a1H+P+/nZnvlVNa1TraD9IsPe2/CsskesAyqAgjhDtsPTDIUba MntWRijIZMZ/eN9cLcca/Vc3yYnEyIS7XR6gVFMxAacepMFZAJHYWJm0xzgY4Iui Xcx6/xwTGQVONf26p4bcZ6bQ7IT69uX5W4oDVchZW4wuXOPBv4S8DOsrFgsNo2oN H70IyhM6fnBBaVuuxBAEgikgEGzL3I8Mwtgn54UVZuM7w3vjVW4j3D7dMrwZsNge vKTcD/OEbNMWzh+iPz3UoehuwBAMhn/CJ1zcHU2oaqiSU0tLmdNkaUKtuVOM -----END CERTIFICATE-----Generated at Sat May 23 07:08:25 2026 by rpki-client