$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e34382e302f32312d3231203d3e20313336313935.roa File: 3134302e3234392e34382e302f32312d3231203d3e20313336313935.roa (raw, json) Hash identifier: KfUkB8HWPohWVL4Ry9macz2Zb8l2URAHKjwKxb/4Ejk= Subject key identifier: 45:24:06:F7:4A:A3:0A:F9:7C:09:00:1E:48:1B:6A:BE:9E:96:B2:25 Certificate issuer: /CN=A914EAE40000/serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Certificate serial: 4BE70289B092697D6D54547A8FDB182D5A1D9447 Authority key identifier: 30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e34382e302f32312d3231203d3e20313336313935.roa Signing time: Wed 03 Jun 2026 17:39:02 +0000 ROA not before: Wed 03 Jun 2026 17:34:02 +0000 ROA not after: Wed 02 Jun 2027 17:39:02 +0000 asID: 136195 IP address blocks: 140.249.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 11:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e7:02:89:b0:92:69:7d:6d:54:54:7a:8f:db:18:2d:5a:1d:94:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=30AE85D3253EA2C99EAF6369615F5BC070CC5FB2 Validity Not Before: Jun 3 17:34:02 2026 GMT Not After : Jun 2 17:39:02 2027 GMT Subject: CN=452406F74AA30AF97C09001E481B6ABE9E96B225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:5b:04:bd:78:14:1e:47:ac:c1:80:fb:06: 6e:4b:00:2c:18:8f:e9:ac:21:74:72:da:05:04:55: a7:81:0b:12:4c:7d:a8:55:f3:e2:7b:a1:4e:17:61: aa:76:57:8b:8e:48:ac:4b:da:38:28:4d:15:49:4c: 02:89:5b:6a:64:96:1a:55:be:ea:c4:10:90:58:ab: 23:3b:ad:ed:68:4a:c7:ce:1f:43:7c:ef:95:67:64: 16:78:2f:7a:83:e0:2e:18:f1:cd:4c:f5:e7:bf:e6: ec:99:dd:c2:4f:fd:1d:67:b7:25:26:31:28:1c:0c: 6e:87:3d:56:ff:4a:1e:9a:9b:e6:ed:a1:f0:31:a1: c8:0d:a7:f0:4f:74:91:ce:2f:a8:1e:3f:8d:46:a0: a1:92:4a:6a:a5:a2:81:5b:75:e7:df:a7:ea:e2:72: 6d:7f:72:ce:27:37:0a:76:6b:b3:d2:e0:7d:f7:82: 1f:03:76:15:08:c6:c7:47:ba:c1:6f:c9:a8:8d:08: 27:83:d8:0e:fd:a7:df:73:59:ca:f8:42:ff:33:c9: f2:c9:62:0b:47:ee:50:5c:2d:65:42:16:92:08:2e: cf:03:99:ca:73:09:71:bc:7e:c2:4e:09:9d:ce:ac: 66:ea:d5:57:f6:97:4f:08:91:1c:41:d1:1b:33:18: f1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:24:06:F7:4A:A3:0A:F9:7C:09:00:1E:48:1B:6A:BE:9E:96:B2:25 X509v3 Authority Key Identifier: keyid:30:AE:85:D3:25:3E:A2:C9:9E:AF:63:69:61:5F:5B:C0:70:CC:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/30AE85D3253EA2C99EAF6369615F5BC070CC5FB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MK6F0yU-osmer2NpYV9bwHDMX7I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/0/3134302e3234392e34382e302f32312d3231203d3e20313336313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.249.48.0/21 Signature Algorithm: sha256WithRSAEncryption 14:1f:88:fa:61:8b:36:f6:2d:1c:fa:ce:5e:86:f3:f1:94:2b: a2:12:d6:e9:f8:0d:5a:14:3a:12:ee:f8:ab:86:b0:28:8d:74: bd:ab:10:26:fd:0e:22:1a:a3:f6:4f:c2:34:60:df:77:a7:35: b1:74:19:dd:f4:43:85:c7:32:82:88:c8:7e:7f:ba:f8:d7:27: f8:80:68:95:df:15:ae:98:8c:79:a7:1e:50:f2:04:62:74:b6: 04:c2:42:ce:d6:64:3d:49:2e:17:2f:06:05:6f:87:23:9a:c2: 08:ec:f2:5b:b5:d8:38:85:ae:0e:4c:8c:5a:52:9b:f6:51:36: 0f:dd:8a:26:68:48:18:ad:2b:b3:61:b9:8b:dd:2a:ba:76:00: ce:b1:de:b8:6e:50:d2:4d:49:56:2c:6b:26:51:8a:fb:c2:97: 02:aa:47:45:e6:b7:81:9f:b3:10:42:51:1a:9c:0c:f4:a4:8b: 36:66:03:82:bb:af:1d:76:07:5c:57:2f:4e:19:d5:c5:8b:c6: 63:0a:6c:7f:27:b6:27:c3:7d:94:2f:b4:b1:47:10:8e:d3:15: 20:c0:33:1b:01:a5:69:7b:a7:26:aa:8b:e7:cd:33:7c:a2:9a: cc:f1:d1:5a:68:99:51:a0:bf:9d:7c:03:7f:89:3e:c6:21:4d: 60:15:44:9e -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUS+cCibCSaX1tVFR6j9sYLVodlEcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygzMEFFODVEMzI1 M0VBMkM5OUVBRjYzNjk2MTVGNUJDMDcwQ0M1RkIyMB4XDTI2MDYwMzE3MzQwMloX DTI3MDYwMjE3MzkwMlowMzExMC8GA1UEAxMoNDUyNDA2Rjc0QUEzMEFGOTdDMDkw MDFFNDgxQjZBQkU5RTk2QjIyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjaWwS9eBQeR6zBgPsGbksALBiP6awhdHLaBQRVp4ELEkx9qFXz4nuhThdh qnZXi45IrEvaOChNFUlMAolbamSWGlW+6sQQkFirIzut7WhKx84fQ3zvlWdkFngv eoPgLhjxzUz157/m7Jndwk/9HWe3JSYxKBwMboc9Vv9KHpqb5u2h8DGhyA2n8E90 kc4vqB4/jUagoZJKaqWigVt159+n6uJybX9yzic3CnZrs9LgffeCHwN2FQjGx0e6 wW/JqI0IJ4PYDv2n33NZyvhC/zPJ8sliC0fuUFwtZUIWkgguzwOZynMJcbx+wk4J nc6sZurVV/aXTwiRHEHRGzMY8dsCAwEAAaOCAhcwggITMB0GA1UdDgQWBBRFJAb3 SqMK+XwJAB5IG2q+npayJTAfBgNVHSMEGDAWgBQwroXTJT6iyZ6vY2lhX1vAcMxf sjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzAvMzBBRTg1 RDMyNTNFQTJDOTlFQUY2MzY5NjE1RjVCQzA3MENDNUZCMi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvTUs2RjB5VS1v c21lcjJOcFlWOWJ3SERNWDdJLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQw MjkwNTk3NjgzNS8wLzMxMzQzMDJlMzIzNDM5MmUzNDM4MmUzMDJmMzIzMTJkMzIz MTIwM2QzZTIwMzEzMzM2MzEzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjPkwMA0GCSqGSIb3DQEB CwUAA4IBAQAUH4j6YYs29i0c+s5ehvPxlCuiEtbp+A1aFDoS7virhrAojXS9qxAm /Q4iGqP2T8I0YN93pzWxdBnd9EOFxzKCiMh+f7r41yf4gGiV3xWumIx5px5Q8gRi dLYEwkLO1mQ9SS4XLwYFb4cjmsII7PJbtdg4ha4OTIxaUpv2UTYP3YomaEgYrSuz YbmL3Sq6dgDOsd64blDSTUlWLGsmUYr7wpcCqkdF5reBn7MQQlEanAz0pIs2ZgOC u68ddgdcVy9OGdXFi8ZjCmx/J7Ynw32UL7SxRxCO0xUgwDMbAaVpe6cmqovnzTN8 oprM8dFaaJlRoL+dfAN/iT7GIU1gFUSe -----END CERTIFICATE-----Generated at Sun Jun 14 03:36:33 2026 by rpki-client