$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134766.roa File: AS134766.roa (raw, json) Hash identifier: 8MbNy1cDCWQzEWC8wTSes4eLHcMGfpCrAfj4A6lgEVU= Subject key identifier: 0B:2D:53:56:FC:94:7E:32:8F:DC:C5:C7:60:15:9B:4C:CC:23:07:08 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3A7CF9ED245017D0479C41D588E702D197EB6EC8 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134766.roa Signing time: Tue 26 May 2026 16:21:52 +0000 ROA not before: Tue 26 May 2026 16:16:52 +0000 ROA not after: Tue 25 May 2027 16:21:52 +0000 asID: 134766 IP address blocks: 240e:12:9000::/37 maxlen: 37 240e:983:1200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7c:f9:ed:24:50:17:d0:47:9c:41:d5:88:e7:02:d1:97:eb:6e:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 26 16:16:52 2026 GMT Not After : May 25 16:21:52 2027 GMT Subject: CN=0B2D5356FC947E328FDCC5C760159B4CCC230708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:df:74:9f:b6:3d:0f:84:2d:43:93:39:33:a0: d5:f2:1a:c4:e4:85:8e:52:be:5f:c3:00:fa:61:83: 4e:10:49:02:2a:a5:26:73:45:36:c1:c6:95:84:0e: 67:95:b5:36:43:6e:03:c4:a4:72:28:23:92:af:be: ea:15:5f:43:e9:8b:10:db:ee:4f:b3:23:d5:5b:a9: 4a:d1:e0:ba:1c:86:cb:bd:c2:4b:72:f0:1b:33:90: 9e:9a:a2:75:74:5f:72:69:b0:46:38:49:3b:4a:d6: 66:72:7f:cd:37:f3:7e:7b:40:9d:b9:f8:25:8b:f5: 01:d2:38:40:9b:55:40:03:ea:a1:3f:23:c6:58:0e: 52:ef:76:a8:1a:5b:92:a4:58:63:5e:a6:0f:1f:38: a1:3e:5e:85:6d:be:eb:ac:9b:79:6b:9a:84:da:0a: 61:63:59:e2:8f:db:d7:c9:b3:67:c8:c9:d1:3b:fb: 3f:74:79:e3:4c:27:1e:1e:06:3a:81:52:67:c0:b4: b0:46:83:d0:ef:02:8f:96:79:0c:09:66:93:57:4d: 5f:7f:f3:3c:80:83:19:cf:5a:ba:1c:ba:b2:4e:dd: 7c:fd:5c:23:3d:36:5b:44:50:87:c8:d3:d5:36:5a: db:b0:89:04:f1:6b:07:c1:ae:b9:1c:f5:cd:ad:58: 0f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2D:53:56:FC:94:7E:32:8F:DC:C5:C7:60:15:9B:4C:CC:23:07:08 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:12:9000::/37 240e:983:1200::/48 Signature Algorithm: sha256WithRSAEncryption 13:5e:7b:c8:d0:9a:7f:ec:e7:97:29:71:f0:58:28:31:a6:97: b1:46:c0:63:98:f2:f2:04:36:2f:f0:96:5e:64:92:bb:dc:a7: 57:5f:f0:7f:4c:2f:7e:e5:ea:9a:30:b1:da:12:02:b1:5f:85: 91:38:b0:9c:34:29:2b:58:a7:95:6f:65:96:77:78:55:bc:a4: 74:c6:09:38:fd:4b:d9:0c:5d:38:38:7b:9b:fb:32:4d:b1:b2: 57:0c:43:d7:35:7c:4e:76:86:63:09:47:95:12:03:12:44:79: 30:1c:70:8f:3a:07:37:07:b0:03:2e:01:2e:ee:9f:16:6c:66: c8:d5:0d:db:fb:c3:e3:48:db:9f:1c:d0:ff:17:f3:0f:40:48: be:35:15:70:d2:e4:e4:0c:8a:9c:74:58:2d:98:c3:a3:da:b1: 76:80:32:7a:cd:48:94:be:87:1c:1d:f1:f4:a3:e0:45:5a:e3: d4:73:f5:a9:88:7d:01:5e:16:6a:c1:51:8b:5d:37:0a:d2:47: d0:d0:bc:1b:06:79:07:1a:06:2f:56:df:d3:6d:7a:03:9b:55: 86:b4:12:87:27:96:a5:11:c4:42:3b:c1:bd:7f:f4:d2:ea:0d: 23:85:8b:85:ab:ac:d0:cb:24:b9:70:4f:63:55:32:5f:4a:03: ed:85:41:b9 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUOnz57SRQF9BHnEHViOcC0ZfrbsgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNjE2MTY1MloX DTI3MDUyNTE2MjE1MlowMzExMC8GA1UEAxMoMEIyRDUzNTZGQzk0N0UzMjhGREND NUM3NjAxNTlCNENDQzIzMDcwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJvfdJ+2PQ+ELUOTOTOg1fIaxOSFjlK+X8MA+mGDThBJAiqlJnNFNsHGlYQO Z5W1NkNuA8Skcigjkq++6hVfQ+mLENvuT7Mj1VupStHguhyGy73CS3LwGzOQnpqi dXRfcmmwRjhJO0rWZnJ/zTfzfntAnbn4JYv1AdI4QJtVQAPqoT8jxlgOUu92qBpb kqRYY16mDx84oT5ehW2+66ybeWuahNoKYWNZ4o/b18mzZ8jJ0Tv7P3R540wnHh4G OoFSZ8C0sEaD0O8Cj5Z5DAlmk1dNX3/zPICDGc9auhy6sk7dfP1cIz02W0RQh8jT 1TZa27CJBPFrB8GuuRz1za1YD2kCAwEAAaOCAe8wggHrMB0GA1UdDgQWBBQLLVNW /JR+Mo/cxcdgFZtMzCMHCDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM0NzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYDJA4AEpADBwAkDgmDEgAwDQYJ KoZIhvcNAQELBQADggEBABNee8jQmn/s55cpcfBYKDGml7FGwGOY8vIENi/wll5k krvcp1df8H9ML37l6powsdoSArFfhZE4sJw0KStYp5VvZZZ3eFW8pHTGCTj9S9kM XTg4e5v7Mk2xslcMQ9c1fE52hmMJR5USAxJEeTAccI86BzcHsAMuAS7unxZsZsjV Ddv7w+NI258c0P8X8w9ASL41FXDS5OQMipx0WC2Yw6PasXaAMnrNSJS+hxwd8fSj 4EVa49Rz9amIfQFeFmrBUYtdNwrSR9DQvBsGeQcaBi9W39NtegObVYa0EocnlqUR xEI7wb1/9NLqDSOFi4WrrNDLJLlwT2NVMl9KA+2FQbk= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:38 2026 by rpki-client