$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3132382e302f31392d3139203d3e20313336313935.roa File: 3134302e3234392e3132382e302f31392d3139203d3e20313336313935.roa (raw, json) Hash identifier: obpOVbavjyXikVZSPcxopB99/5Y5SsJA8yZIESRzYKY= Subject key identifier: 6C:85:EC:D3:7C:DB:14:0C:77:71:DE:A2:65:D6:14:BD:D0:91:EB:20 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 3E46960EF1EB668020C36EA38485C041B1BE1CA7 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3132382e302f31392d3139203d3e20313336313935.roa Signing time: Wed 03 Jun 2026 17:39:02 +0000 ROA not before: Wed 03 Jun 2026 17:34:02 +0000 ROA not after: Wed 02 Jun 2027 17:39:02 +0000 asID: 136195 IP address blocks: 140.249.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 11:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:46:96:0e:f1:eb:66:80:20:c3:6e:a3:84:85:c0:41:b1:be:1c:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 17:34:02 2026 GMT Not After : Jun 2 17:39:02 2027 GMT Subject: CN=6C85ECD37CDB140C7771DEA265D614BDD091EB20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:d2:58:cc:00:fc:ff:0a:7a:fb:65:31:63: 33:34:a8:a4:9b:d3:ae:4e:f4:19:45:ed:34:4b:c1: fa:6a:ba:cc:71:9f:7c:43:7a:6d:eb:df:0d:bb:ea: 72:c9:30:b7:3c:00:62:34:46:5f:52:b0:b3:61:a6: bf:56:f0:a7:f3:bd:4e:a0:80:31:f0:e1:cb:b3:5b: a5:6d:c0:bf:e8:d8:bc:36:21:fb:1b:3f:9e:53:6b: b8:d5:a2:09:07:71:0e:2e:1e:99:c1:2c:a5:60:27: da:20:0d:97:de:91:3d:8a:f9:a7:a8:bf:f3:e7:25: 51:2f:80:73:52:70:a3:1c:bf:bd:41:30:b8:7a:42: 05:db:61:04:0a:12:fa:42:80:d4:81:3b:26:d5:1a: ea:15:ec:e7:76:1c:2f:51:eb:57:4c:cd:93:c3:da: bb:6a:a2:54:ce:26:d5:f7:db:09:17:b4:ff:c6:25: 48:c5:9b:f8:bb:8e:d7:6d:e3:a1:87:9c:21:ed:c9: 18:46:9b:3d:7e:c4:30:bb:f1:df:f4:d6:31:99:2d: 31:da:ef:20:15:da:90:aa:cb:72:ff:0a:e2:12:b4: ed:02:91:8e:4f:28:4b:8f:3e:6a:ef:b6:3f:f9:d1: f2:0d:1e:00:f2:13:19:8b:c4:27:1c:5e:60:1e:73: db:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:85:EC:D3:7C:DB:14:0C:77:71:DE:A2:65:D6:14:BD:D0:91:EB:20 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e3132382e302f31392d3139203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.128.0/19 Signature Algorithm: sha256WithRSAEncryption c8:fe:44:05:b5:ec:42:4c:9f:c5:97:46:d0:5a:ae:44:9f:d7: a7:a1:f6:1d:1c:6b:56:50:47:5d:d3:10:d9:53:0b:3d:8d:58: 6f:a2:63:0f:62:90:2c:31:c6:dd:a1:6f:e3:01:20:26:53:50: cd:dc:23:60:b1:36:14:6f:0c:02:2b:21:2f:d1:37:19:77:8e: eb:a1:4d:e5:98:9f:0e:85:24:f6:f2:b6:e1:84:58:b6:c9:44: 4d:a0:c4:e5:58:ff:ee:8a:d1:db:32:47:6a:29:64:60:fc:62: 5f:9a:42:53:4c:0f:46:b5:f7:30:8c:b8:93:f9:79:56:e7:70: d6:4c:f7:68:24:38:54:c3:5d:05:8d:2d:13:eb:9f:47:4f:ca: b3:b5:df:76:bc:1d:88:ae:6e:52:13:ab:24:5f:f7:22:2f:d0: 2c:c8:73:ac:bb:d0:27:5d:bc:e9:1a:4b:b0:02:c2:68:93:9d: a1:91:00:0c:92:fd:43:9d:9f:85:24:c0:26:d4:f8:c0:c5:a3: 72:63:e9:8d:c7:2e:89:40:80:99:98:4f:00:a9:4e:03:fa:e1: 96:c7:5d:72:00:a3:36:2c:f7:81:5e:d4:fc:cd:1d:a6:7d:3d: 1f:f6:ee:4b:01:d4:38:fd:64:3e:ff:88:87:33:a4:4c:d0:99: 27:6d:20:43 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUPkaWDvHrZoAgw26jhIXAQbG+HKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE3MzQwMloX DTI3MDYwMjE3MzkwMlowMzExMC8GA1UEAxMoNkM4NUVDRDM3Q0RCMTQwQzc3NzFE RUEyNjVENjE0QkREMDkxRUIyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmC0ljMAPz/Cnr7ZTFjMzSopJvTrk70GUXtNEvB+mq6zHGffEN6bevfDbvq cskwtzwAYjRGX1Kws2Gmv1bwp/O9TqCAMfDhy7NbpW3Av+jYvDYh+xs/nlNruNWi CQdxDi4emcEspWAn2iANl96RPYr5p6i/8+clUS+Ac1Jwoxy/vUEwuHpCBdthBAoS +kKA1IE7JtUa6hXs53YcL1HrV0zNk8Pau2qiVM4m1ffbCRe0/8YlSMWb+LuO123j oYecIe3JGEabPX7EMLvx3/TWMZktMdrvIBXakKrLcv8K4hK07QKRjk8oS48+au+2 P/nR8g0eAPITGYvEJxxeYB5z24ECAwEAAaOCAhowggIWMB0GA1UdDgQWBBRshezT fNsUDHdx3qJl1hS90JHrIDAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0 MDI5MDU5NzY4MzUvMC8zMTM0MzAyZTMyMzQzOTJlMzEzMjM4MmUzMDJmMzEzOTJk MzEzOTIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFjPmAMA0GCSqGSIb3 DQEBCwUAA4IBAQDI/kQFtexCTJ/Fl0bQWq5En9enofYdHGtWUEdd0xDZUws9jVhv omMPYpAsMcbdoW/jASAmU1DN3CNgsTYUbwwCKyEv0TcZd47roU3lmJ8OhST28rbh hFi2yURNoMTlWP/uitHbMkdqKWRg/GJfmkJTTA9GtfcwjLiT+XlW53DWTPdoJDhU w10FjS0T659HT8qztd92vB2Irm5SE6skX/ciL9AsyHOsu9AnXbzpGkuwAsJok52h kQAMkv1DnZ+FJMAm1PjAxaNyY+mNxy6JQICZmE8AqU4D+uGWx11yAKM2LPeBXtT8 zR2mfT0f9u5LAdQ4/WQ+/4iHM6RM0JknbSBD -----END CERTIFICATE-----Generated at Sun Jun 14 01:10:56 2026 by rpki-client