$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3134382e372e302f32342d3234203d3e2039333934.roa File: 3131312e3134382e372e302f32342d3234203d3e2039333934.roa (raw, json) Hash identifier: w2uww8qPFWUazWwuGCK8/yWvvowTyGEwvF8hvt38JPM= Subject key identifier: 3E:F6:B4:59:7C:1D:ED:BB:20:F9:45:43:C6:56:4B:68:08:35:00:2B Certificate issuer: /CN=A9185BF00000/serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Certificate serial: 5611530E8E9C1CD0FD8F770053A0DDE401CB75E8 Authority key identifier: 5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3134382e372e302f32342d3234203d3e2039333934.roa Signing time: Sun 31 May 2026 23:09:44 +0000 ROA not before: Sun 31 May 2026 23:04:44 +0000 ROA not after: Sun 30 May 2027 23:09:44 +0000 asID: 9394 IP address blocks: 111.148.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 14:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:11:53:0e:8e:9c:1c:d0:fd:8f:77:00:53:a0:dd:e4:01:cb:75:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185BF00000, serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Validity Not Before: May 31 23:04:44 2026 GMT Not After : May 30 23:09:44 2027 GMT Subject: CN=3EF6B4597C1DEDBB20F94543C6564B680835002B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:eb:e8:b8:81:f0:d3:4f:78:38:5d:83:df: a0:03:2d:9c:31:1c:8b:46:78:66:fd:ab:d6:c0:84: a6:15:3f:e0:e4:27:02:0f:77:dd:88:f9:0a:69:96: 76:74:b1:13:b1:b9:36:bd:ab:8c:fe:0f:39:9c:38: 27:cd:ca:03:80:3b:86:e0:b3:14:b9:90:fc:27:a6: e9:a4:7b:43:41:74:30:cf:35:9b:70:8e:ab:79:e1: a5:54:a5:63:8f:a1:e4:be:0a:81:0e:1e:20:f5:fd: 0d:27:64:2f:1d:86:7b:d8:44:e5:3b:26:e9:71:3d: 39:f6:d5:b9:6e:67:7d:b2:02:53:3c:49:9e:4f:fc: bd:94:a5:21:24:bd:ee:72:7b:7b:87:69:21:5d:82: 12:d8:b8:2c:78:dc:5b:c8:b4:f5:bd:fd:97:f9:dd: c3:1c:b3:de:43:e5:a0:a1:b9:da:82:5b:51:19:fe: 8d:52:9f:14:8c:83:b2:e5:ad:30:2f:9c:ed:30:dc: 68:b4:82:0e:59:7b:ed:5f:26:da:a2:3a:15:54:04: b4:f0:48:e0:58:3c:91:ac:a9:fe:dd:11:8b:2b:80: a4:d2:ed:b1:be:76:b4:29:a5:b5:d4:9d:f5:08:d7: 7d:64:e0:15:52:fd:5e:ea:7b:73:09:1e:0e:09:d9: 03:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F6:B4:59:7C:1D:ED:BB:20:F9:45:43:C6:56:4B:68:08:35:00:2B X509v3 Authority Key Identifier: keyid:5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3134382e372e302f32342d3234203d3e2039333934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.148.7.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:83:16:13:43:84:86:27:92:26:39:52:3b:0c:57:bd:5e:5f: 28:15:d6:fd:70:97:d7:df:72:3a:b8:89:28:3e:49:52:3b:4e: 10:fe:23:cc:89:a3:f7:f6:c9:d4:6f:0c:4d:99:02:da:a8:73: e5:65:f9:fb:7a:e0:64:65:c6:c0:05:89:2e:31:18:e8:3b:cc: 19:c5:d6:39:ea:b9:b8:94:14:50:a4:12:be:b2:5b:b5:98:3d: c2:94:84:43:7d:3f:1f:b8:5e:37:18:14:67:75:11:f1:2a:84: 30:f3:0a:cc:8c:71:28:6e:6a:00:6c:f7:b8:26:8a:39:58:29: 71:a8:17:df:5b:7c:20:8a:c0:60:8d:2a:b8:a2:4a:87:8a:2d: 3b:b9:bb:d3:ec:4d:3f:39:20:8d:c0:d0:68:48:b1:66:b3:49: 35:35:fc:be:25:ac:27:ed:8c:cb:f9:74:e1:d4:54:fa:27:77: 00:7e:7b:05:0a:ff:f7:7a:0c:6c:29:e8:45:3c:10:50:6c:fd: eb:be:2b:d0:00:a2:4d:a3:e2:e3:87:4c:62:e5:ed:85:19:a9: cd:b0:d9:b4:b4:da:51:18:69:07:c0:fb:cb:50:32:f9:c9:89: e8:ff:90:d8:6a:af:0a:29:b2:7b:ed:ce:7f:99:1e:39:54:e2: 31:38:d1:ee -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUVhFTDo6cHND9j3cAU6Dd5AHLdegwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODVCRjAwMDAwMTEwLwYDVQQFEyg1RjNENjREQ0Yx MzE5NEZCMEQ3MUYyOUZCMzdDMkQ5M0Y4RDQ4NzIwMB4XDTI2MDUzMTIzMDQ0NFoX DTI3MDUzMDIzMDk0NFowMzExMC8GA1UEAxMoM0VGNkI0NTk3QzFERURCQjIwRjk0 NTQzQzY1NjRCNjgwODM1MDAyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTR6+i4gfDTT3g4XYPfoAMtnDEci0Z4Zv2r1sCEphU/4OQnAg933Yj5CmmW dnSxE7G5Nr2rjP4POZw4J83KA4A7huCzFLmQ/Cem6aR7Q0F0MM81m3COq3nhpVSl Y4+h5L4KgQ4eIPX9DSdkLx2Ge9hE5Tsm6XE9OfbVuW5nfbICUzxJnk/8vZSlISS9 7nJ7e4dpIV2CEti4LHjcW8i09b39l/ndwxyz3kPloKG52oJbURn+jVKfFIyDsuWt MC+c7TDcaLSCDll77V8m2qI6FVQEtPBI4Fg8kayp/t0RiyuApNLtsb52tCmltdSd 9QjXfWTgFVL9Xup7cwkeDgnZAzsCAwEAAaOCAg8wggILMB0GA1UdDgQWBBQ+9rRZ fB3tuyD5RUPGVktoCDUAKzAfBgNVHSMEGDAWgBRfPWTc8TGU+w1x8p+zfC2T+NSH IDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTA5NzQ2MzA3NDE4ODE2NTMzLzAvNUYzRDY0 RENGMTMxOTRGQjBENzFGMjlGQjM3QzJEOTNGOEQ0ODcyMC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvWHoxazNQRXhs UHNOY2ZLZnMzd3RrX2pVaHlBLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUF BzALhmxyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTExMDk3NDYzMDc0 MTg4MTY1MzMvMC8zMTMxMzEyZTMxMzQzODJlMzcyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzOTMzMzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG+UBzANBgkqhkiG9w0BAQsFAAOCAQEA aoMWE0OEhieSJjlSOwxXvV5fKBXW/XCX199yOriJKD5JUjtOEP4jzImj9/bJ1G8M TZkC2qhz5WX5+3rgZGXGwAWJLjEY6DvMGcXWOeq5uJQUUKQSvrJbtZg9wpSEQ30/ H7heNxgUZ3UR8SqEMPMKzIxxKG5qAGz3uCaKOVgpcagX31t8IIrAYI0quKJKh4ot O7m70+xNPzkgjcDQaEixZrNJNTX8viWsJ+2My/l04dRU+id3AH57BQr/93oMbCno RTwQUGz9674r0ACiTaPi44dMYuXthRmpzbDZtLTaURhpB8D7y1Ay+cmJ6P+Q2Gqv Cimye+3Of5keOVTiMTjR7g== -----END CERTIFICATE-----Generated at Sun Jun 14 06:53:31 2026 by rpki-client