$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/31342e3230342e34302e302f32322d3232203d3e2034383337.roa File: 31342e3230342e34302e302f32322d3232203d3e2034383337.roa (raw, json) Hash identifier: th9V0fquP9LJBswwQ1/iWHBMAtG7X+3ckDztpErzsGU= Subject key identifier: A1:AF:A7:17:E6:6B:06:8B:ED:89:39:38:D1:52:30:39:D0:E8:D5:19 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 680D3E89FCE67663D1D7681F96F358F6DD84D3C3 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/31342e3230342e34302e302f32322d3232203d3e2034383337.roa Signing time: Wed 13 May 2026 02:50:07 +0000 ROA not before: Wed 13 May 2026 02:45:07 +0000 ROA not after: Wed 12 May 2027 02:50:07 +0000 asID: 4837 IP address blocks: 14.204.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0d:3e:89:fc:e6:76:63:d1:d7:68:1f:96:f3:58:f6:dd:84:d3:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: May 13 02:45:07 2026 GMT Not After : May 12 02:50:07 2027 GMT Subject: CN=A1AFA717E66B068BED893938D1523039D0E8D519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:8c:96:13:24:14:2b:41:9e:1c:9e:8f:d1: ac:95:ce:bc:f8:40:2a:42:b6:22:a1:d0:16:ce:61: e9:ff:a9:1a:82:b9:b0:fc:ff:be:0e:3a:c6:c0:07: ef:64:cf:42:05:52:aa:82:d1:26:2a:5b:44:17:90: bd:9b:27:2e:96:5b:1d:a8:c7:b1:f1:ec:9d:7b:01: c1:14:39:9c:a2:c0:f6:e8:44:0f:5a:6e:2e:8a:9d: ba:34:1c:56:d8:ae:4b:8a:d2:e3:8a:00:f7:de:df: 79:88:ab:ae:a1:0e:a8:ea:a9:27:b2:02:b9:95:0e: e8:52:a2:6d:36:ae:ec:49:b3:5c:01:4c:48:4d:c3: bc:d5:6c:8e:1b:5e:5b:fd:39:c9:8f:f0:89:b2:ad: 89:2d:8f:06:75:98:28:e3:7c:3a:5a:ab:f5:7b:8d: 68:ac:e8:b3:9b:7f:2f:d9:64:8a:23:f5:91:73:e4: 25:f1:e1:8a:d5:ae:28:b7:f2:62:7b:7a:98:e3:e4: fc:c2:4a:80:5c:0c:8c:51:ad:d1:3d:5f:6a:de:b5: 57:94:34:bb:37:77:96:1d:9d:9e:b0:84:69:68:8c: 63:6a:ef:73:7d:35:1d:1a:11:dd:8a:9e:73:8a:22: 26:88:f5:d2:8e:a9:cd:18:ae:98:17:cc:7e:a7:56: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AF:A7:17:E6:6B:06:8B:ED:89:39:38:D1:52:30:39:D0:E8:D5:19 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/31342e3230342e34302e302f32322d3232203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.204.40.0/22 Signature Algorithm: sha256WithRSAEncryption a7:4b:dd:1b:f5:e7:b9:9c:99:f9:b9:a0:ca:89:01:17:1b:38: 6b:9b:af:78:1c:bd:61:86:6c:e0:a0:c0:20:e7:ff:56:2e:88: 9e:ae:c8:08:af:cb:df:f4:d2:bf:3a:c5:b3:50:f4:98:96:5c: bb:7c:01:fa:77:86:4e:0c:86:14:4d:30:cf:72:bc:ad:e9:a0: fc:2c:4f:00:ad:48:a0:38:ff:69:12:28:06:d5:27:a0:aa:9d: 27:92:63:82:84:af:69:f9:bb:bd:88:20:e9:77:8d:ca:4a:02: be:94:7e:1a:4f:18:44:79:57:33:63:72:7e:af:09:38:f4:83: c2:41:1c:b8:c8:8d:62:19:89:90:4d:da:66:77:19:ad:95:ef: d8:a3:80:13:a8:0e:a5:f6:aa:76:58:90:ff:b5:14:0e:4e:e8: 00:38:46:fd:8e:7f:10:8c:4a:b7:7d:e4:a1:bc:38:46:96:bf: 06:5a:2e:48:89:d5:4a:17:72:d1:c0:dd:8d:6f:cc:59:3a:a6: 0b:ba:84:f1:3c:43:a5:7b:ee:2c:f6:7a:10:c2:71:c9:63:29: 08:5c:cd:02:61:23:bc:5e:35:c1:75:62:4c:af:de:33:e2:b2: a3:09:a9:3e:5f:36:f4:da:46:b5:37:a2:5b:50:5a:97:a4:dd: 76:93:ae:39 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUaA0+ifzmdmPR12gflvNY9t2E08MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDUxMzAyNDUwN1oX DTI3MDUxMjAyNTAwN1owMzExMC8GA1UEAxMoQTFBRkE3MTdFNjZCMDY4QkVEODkz OTM4RDE1MjMwMzlEMEU4RDUxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9pjJYTJBQrQZ4cno/RrJXOvPhAKkK2IqHQFs5h6f+pGoK5sPz/vg46xsAH 72TPQgVSqoLRJipbRBeQvZsnLpZbHajHsfHsnXsBwRQ5nKLA9uhED1puLoqdujQc VtiuS4rS44oA997feYirrqEOqOqpJ7ICuZUO6FKibTau7EmzXAFMSE3DvNVsjhte W/05yY/wibKtiS2PBnWYKON8Olqr9XuNaKzos5t/L9lkiiP1kXPkJfHhitWuKLfy Ynt6mOPk/MJKgFwMjFGt0T1fat61V5Q0uzd3lh2dnrCEaWiMY2rvc301HRoR3Yqe c4oiJoj10o6pzRiumBfMfqdWEO8CAwEAAaOCAg8wggILMB0GA1UdDgQWBBShr6cX 5msGi+2JOTjRUjA50OjVGTAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUF BzALhmxyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTY3MDQ1OTM2 OTUzNDI1OTMvMS8zMTM0MmUzMjMwMzQyZTM0MzAyZTMwMmYzMjMyMmQzMjMyMjAz ZDNlMjAzNDM4MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAg7MKDANBgkqhkiG9w0BAQsFAAOCAQEA p0vdG/XnuZyZ+bmgyokBFxs4a5uveBy9YYZs4KDAIOf/Vi6Inq7ICK/L3/TSvzrF s1D0mJZcu3wB+neGTgyGFE0wz3K8remg/CxPAK1IoDj/aRIoBtUnoKqdJ5JjgoSv afm7vYgg6XeNykoCvpR+Gk8YRHlXM2Nyfq8JOPSDwkEcuMiNYhmJkE3aZncZrZXv 2KOAE6gOpfaqdliQ/7UUDk7oADhG/Y5/EIxKt33kobw4Rpa/BlouSInVShdy0cDd jW/MWTqmC7qE8TxDpXvuLPZ6EMJxyWMpCFzNAmEjvF41wXViTK/eM+KyowmpPl82 9NpGtTeiW1Bal6TddpOuOQ== -----END CERTIFICATE-----Generated at Wed May 13 07:46:38 2026 by rpki-client