$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS137699.roa File: AS137699.roa (raw, json) Hash identifier: r2lPW9EU/wCHLNG4jXpQFov0KWyXtAa40FnC/FwZBOo= Subject key identifier: 8C:14:B7:8D:F4:90:C6:F0:89:A7:F1:DD:8C:56:2F:3F:1D:3A:3F:B1 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 68BA35EC94A334E4908F7405B455C0AED430D393 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS137699.roa Signing time: Tue 26 May 2026 16:38:33 +0000 ROA not before: Tue 26 May 2026 16:33:33 +0000 ROA not after: Tue 25 May 2027 16:38:33 +0000 asID: 137699 IP address blocks: 121.226.193.0/24 maxlen: 24 180.101.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 19:11:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ba:35:ec:94:a3:34:e4:90:8f:74:05:b4:55:c0:ae:d4:30:d3:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 26 16:33:33 2026 GMT Not After : May 25 16:38:33 2027 GMT Subject: CN=8C14B78DF490C6F089A7F1DD8C562F3F1D3A3FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:23:26:d5:3f:4b:6c:83:b1:4a:f4:94:e9:1f: f6:c6:92:3b:9f:5d:79:0a:04:77:c7:df:75:8b:c3: e7:64:3a:ff:cb:c7:9c:9d:f6:dc:59:de:86:9d:2d: 11:8d:ba:27:03:fc:d5:39:38:cb:d4:51:fc:b1:8c: 6b:4f:9d:97:3b:e6:6d:11:63:a7:ce:d7:69:d4:84: b2:4b:f6:97:1f:b7:33:22:fb:2c:74:39:68:b2:3c: fb:fb:c4:01:8b:f3:e5:07:61:0e:29:da:78:a6:16: f0:01:7a:8d:39:c6:cd:b9:d3:e7:53:cc:23:15:00: 11:3f:c2:0d:29:cd:cf:97:11:70:25:ca:b7:e9:d6: d9:09:bb:0a:8f:a0:5c:5c:da:6f:26:a2:92:7a:71: 96:85:84:b5:38:de:35:a1:d8:df:ac:13:89:08:86: 4d:ad:25:31:ea:0a:b4:7a:52:b3:8b:6b:0d:aa:d4: 4c:a9:f0:01:15:49:e7:4a:56:c7:e3:7a:24:07:33: 88:02:b7:63:02:9e:7b:53:53:77:56:0a:0e:b6:d0: 58:2f:d3:da:35:ef:db:83:e2:39:0f:e0:20:cd:f3: 78:88:b6:27:8b:0f:6b:ed:a6:5c:6c:db:bc:4c:dc: 70:01:e4:57:20:58:bd:15:1a:6c:bd:5a:b6:e9:30: 99:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:14:B7:8D:F4:90:C6:F0:89:A7:F1:DD:8C:56:2F:3F:1D:3A:3F:B1 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS137699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.226.193.0/24 180.101.79.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:ee:df:97:6c:e1:b8:95:f8:40:37:85:f7:57:a4:a6:bc:9b: dd:e2:e6:cf:2e:ca:ba:44:6e:82:33:26:d7:dd:ff:c5:7a:a9: 26:9e:f8:72:61:d4:b5:80:6b:40:a8:df:ad:f2:1a:0b:c6:b2: 0f:42:ba:1e:08:61:bc:94:12:91:49:28:f0:76:e6:c4:dd:f5: e6:0c:1f:80:58:06:63:61:3a:3f:86:87:49:83:34:be:f1:b7: 93:f4:fe:ce:0b:80:b1:4f:b8:23:63:a4:ec:ec:64:42:96:95: dd:10:dc:a2:8b:12:80:cd:a3:2b:6b:fb:6d:c5:a8:f8:39:db: fa:d9:78:a2:31:e1:40:3d:17:8a:f8:0e:d9:24:6a:ad:32:9f: 8c:f3:26:b0:68:8c:a5:b9:4a:17:6f:42:66:b8:e7:85:50:9a: 53:e1:fc:50:c7:f9:31:f0:45:05:7a:78:9e:55:99:3d:47:ef: ab:ae:d7:62:4f:7e:30:54:de:5a:76:a9:96:78:11:25:8e:a7: 55:77:14:7e:e3:85:6f:21:e1:a7:37:4d:48:6f:bf:1b:e0:9e: 5e:a6:54:7d:a1:66:ba:36:c9:65:67:53:c0:30:de:66:aa:b8: a7:07:a0:16:63:22:44:cf:18:0f:36:53:ee:1a:31:8d:32:d7: 36:4f:a3:18 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUaLo17JSjNOSQj3QFtFXArtQw05MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNjE2MzMzM1oX DTI3MDUyNTE2MzgzM1owMzExMC8GA1UEAxMoOEMxNEI3OERGNDkwQzZGMDg5QTdG MUREOEM1NjJGM0YxRDNBM0ZCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8jJtU/S2yDsUr0lOkf9saSO59deQoEd8ffdYvD52Q6/8vHnJ323Fnehp0t EY26JwP81Tk4y9RR/LGMa0+dlzvmbRFjp87XadSEskv2lx+3MyL7LHQ5aLI8+/vE AYvz5QdhDinaeKYW8AF6jTnGzbnT51PMIxUAET/CDSnNz5cRcCXKt+nW2Qm7Co+g XFzabyaiknpxloWEtTjeNaHY36wTiQiGTa0lMeoKtHpSs4trDarUTKnwARVJ50pW x+N6JAcziAK3YwKee1NTd1YKDrbQWC/T2jXv24PiOQ/gIM3zeIi2J4sPa+2mXGzb vEzccAHkVyBYvRUabL1atukwmZMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBSMFLeN 9JDG8Imn8d2MVi8/HTo/sTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM3Njk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAeeLBAwQAtGVPMA0GCSqGSIb3 DQEBCwUAA4IBAQCL7t+XbOG4lfhAN4X3V6SmvJvd4ubPLsq6RG6CMybX3f/Feqkm nvhyYdS1gGtAqN+t8hoLxrIPQroeCGG8lBKRSSjwdubE3fXmDB+AWAZjYTo/hodJ gzS+8beT9P7OC4CxT7gjY6Ts7GRClpXdENyiixKAzaMra/ttxaj4Odv62XiiMeFA PReK+A7ZJGqtMp+M8yawaIyluUoXb0JmuOeFUJpT4fxQx/kx8EUFenieVZk9R++r rtdiT34wVN5adqmWeBEljqdVdxR+44VvIeGnN01Ib78b4J5eplR9oWa6NsllZ1PA MN5mqrinB6AWYyJEzxgPNlPuGjGNMtc2T6MY -----END CERTIFICATE-----Generated at Wed Jun 10 05:08:02 2026 by rpki-client