$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/AS134542.roa File: AS134542.roa (raw, json) Hash identifier: ADVR8ueWWmnL/BnAMH2xwlbpXlPH+uvuUrFjG926ChY= Subject key identifier: 3F:CA:0F:E3:50:39:FD:C4:8E:3E:4B:F7:A4:75:C4:CA:86:BC:84:02 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 0D5C5647C6C36B8880464011E02ABE529B93DF35 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/AS134542.roa Signing time: Thu 11 Jun 2026 12:18:41 +0000 ROA not before: Thu 11 Jun 2026 12:13:41 +0000 ROA not after: Thu 10 Jun 2027 12:18:41 +0000 asID: 134542 IP address blocks: 2408:877f::/32 maxlen: 32 2408:877f:31::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:5c:56:47:c6:c3:6b:88:80:46:40:11:e0:2a:be:52:9b:93:df:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: Jun 11 12:13:41 2026 GMT Not After : Jun 10 12:18:41 2027 GMT Subject: CN=3FCA0FE35039FDC48E3E4BF7A475C4CA86BC8402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f7:51:32:69:59:64:1a:1e:f0:cd:4a:ef:d0: ae:cc:bc:ca:88:20:e0:5b:a4:8e:ae:9e:37:09:f4: b5:e7:65:51:35:10:52:92:4d:64:5b:cb:66:6e:11: 6a:0b:c9:78:6e:e5:44:1d:3c:fb:21:e1:ae:a0:26: 92:09:58:94:19:61:d6:a4:39:c5:fa:85:8a:87:3e: ed:aa:2a:fb:a5:cc:aa:bf:9c:6b:b8:02:da:49:34: 8e:98:c9:8d:f9:a3:06:a8:9a:50:da:ea:e6:57:d1: d2:69:54:a5:23:d2:9e:c3:3c:f7:8b:f1:ad:ed:23: fa:c8:fe:78:46:b1:97:56:8c:23:8d:f2:74:3e:2c: 58:39:72:72:43:47:85:56:31:36:46:08:27:db:01: 19:50:02:8f:af:64:73:81:24:4d:7a:c8:79:3e:75: 2e:b2:cd:87:0a:a0:85:88:17:5c:5f:f3:3f:6c:84: 12:71:8f:15:5f:58:f6:7b:b5:de:85:cc:af:57:16: 5b:7d:45:54:da:79:ea:f1:65:d3:ef:98:34:37:cb: 67:53:63:0a:15:2d:87:33:e7:ea:7b:a7:ed:f0:45: 5b:b2:2b:85:9b:16:1e:1b:04:67:0e:81:c3:a3:53: da:18:ce:52:e6:33:70:a6:3c:f4:0e:31:27:5e:8b: ba:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:CA:0F:E3:50:39:FD:C4:8E:3E:4B:F7:A4:75:C4:CA:86:BC:84:02 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/AS134542.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2408:877f::/32 Signature Algorithm: sha256WithRSAEncryption 14:46:44:99:b4:3d:3d:f9:81:b5:a9:99:bb:79:8a:73:b6:c0: 22:3f:c9:21:c1:67:85:56:4c:9b:ea:a3:c1:a6:64:d0:39:eb: 81:2a:98:e8:d0:16:9e:b4:f8:b6:ff:3c:c8:13:8d:90:8d:9a: 8d:67:c2:37:49:b8:f8:60:fe:56:67:bc:4e:88:5a:8d:dd:69: c4:f6:c3:a3:31:82:a7:2a:a2:49:13:e2:bf:48:9d:0b:9d:4b: 81:f7:c8:1f:b7:a9:b0:09:24:e4:e7:39:92:10:8d:ce:e1:be: 40:5c:7c:d1:69:41:02:f6:a7:83:3a:85:71:af:ba:b0:27:47: c5:42:72:42:9f:d9:74:c4:1a:f5:5a:64:30:af:40:74:ef:70: 4e:5d:f4:4b:0a:9b:18:fb:4e:ba:4d:25:88:fa:f5:a6:1b:85: 9f:23:b9:84:b8:a0:95:0f:01:9e:8e:81:39:5b:1e:b3:5f:71: 95:5b:0a:5b:45:be:ce:15:a5:58:1e:33:0a:18:92:55:35:ad: 46:94:18:08:b8:91:98:32:b8:83:55:24:2c:0d:e0:8a:8c:32: ab:d0:b3:c9:f6:71:ea:b3:b1:88:30:85:e1:84:39:17:b4:fe: 76:9e:d5:d6:19:82:a6:43:38:41:36:85:00:8a:15:b9:c9:f6: b9:33:b1:01 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUDVxWR8bDa4iARkAR4Cq+UpuT3zUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDYxMTEyMTM0MVoX DTI3MDYxMDEyMTg0MVowMzExMC8GA1UEAxMoM0ZDQTBGRTM1MDM5RkRDNDhFM0U0 QkY3QTQ3NUM0Q0E4NkJDODQwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKT3UTJpWWQaHvDNSu/Qrsy8yogg4Fukjq6eNwn0tedlUTUQUpJNZFvLZm4R agvJeG7lRB08+yHhrqAmkglYlBlh1qQ5xfqFioc+7aoq+6XMqr+ca7gC2kk0jpjJ jfmjBqiaUNrq5lfR0mlUpSPSnsM894vxre0j+sj+eEaxl1aMI43ydD4sWDlyckNH hVYxNkYIJ9sBGVACj69kc4EkTXrIeT51LrLNhwqghYgXXF/zP2yEEnGPFV9Y9nu1 3oXMr1cWW31FVNp56vFl0++YNDfLZ1NjChUthzPn6nun7fBFW7IrhZsWHhsEZw6B w6NT2hjOUuYzcKY89A4xJ16LunsCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQ/yg/j UDn9xI4+S/ekdcTKhryEAjAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NjcwNDU5MzY5 NTM0MjU5My8xL0FTMTM0NTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAiHfzANBgkqhkiG9w0BAQsF AAOCAQEAFEZEmbQ9PfmBtamZu3mKc7bAIj/JIcFnhVZMm+qjwaZk0DnrgSqY6NAW nrT4tv88yBONkI2ajWfCN0m4+GD+Vme8Tohajd1pxPbDozGCpyqiSRPiv0idC51L gffIH7epsAkk5Oc5khCNzuG+QFx80WlBAvangzqFca+6sCdHxUJyQp/ZdMQa9Vpk MK9AdO9wTl30SwqbGPtOuk0liPr1phuFnyO5hLiglQ8Bno6BOVses19xlVsKW0W+ zhWlWB4zChiSVTWtRpQYCLiRmDK4g1UkLA3giowyq9CzyfZx6rOxiDCF4YQ5F7T+ dp7V1hmCpkM4QTaFAIoVucn2uTOxAQ== -----END CERTIFICATE-----Generated at Sat Jun 13 10:17:13 2026 by rpki-client