$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3232392e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3232392e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: SoMdm7dHu45SxzvL+KmOkgJYztelD4Km5PfLnhDx32U= Subject key identifier: 69:1B:4F:BF:13:31:F5:F0:1E:0E:36:4B:36:2A:03:97:A9:36:03:83 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 14FC685AD6F81F01FC6000D96BBEC79182AFE44E Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3232392e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:55 +0000 ROA not before: Sat 09 May 2026 16:10:55 +0000 ROA not after: Sat 08 May 2027 16:15:55 +0000 asID: 4811 IP address blocks: 101.89.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fc:68:5a:d6:f8:1f:01:fc:60:00:d9:6b:be:c7:91:82:af:e4:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:55 2026 GMT Not After : May 8 16:15:55 2027 GMT Subject: CN=691B4FBF1331F5F01E0E364B362A0397A9360383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:05:14:a6:f2:74:ee:53:e6:2e:47:df:9c: fe:69:62:a2:e3:a7:39:cf:cd:d1:12:1b:ee:91:2c: 6d:04:f6:d1:b7:91:f1:4f:36:02:a0:92:ed:66:dd: c9:69:35:1b:f3:c5:88:5e:c8:21:4c:1d:1a:9c:15: 05:d6:a1:7e:5d:68:05:ae:3c:a8:72:af:45:4f:a4: 40:52:80:20:3a:70:9a:3f:8a:9f:d3:1c:b9:e8:6a: a9:14:4b:8f:89:78:9c:db:75:55:4c:40:48:e9:55: cb:c9:0c:f7:1d:c6:b6:d5:97:51:30:55:cb:38:a4: 10:61:2b:50:b7:f5:ad:8c:ce:81:7e:c1:a4:0a:d9: 2b:45:02:8c:8c:23:61:0e:ab:cc:88:e7:5a:3f:c8: 74:b8:ae:fb:1d:15:ac:9f:bc:d7:52:46:95:c7:21: 32:a4:1b:49:8f:20:5a:b3:1c:a1:70:e6:fe:35:fb: 96:e1:ec:c6:0f:c6:40:24:3f:2a:fa:20:f6:9c:27: cf:80:a4:92:11:20:60:0e:47:97:c9:91:45:7a:f7: 72:39:72:7a:6b:0e:b3:05:5d:58:f9:6f:b3:07:4e: c0:ec:32:67:1b:bc:e1:2b:80:46:5c:7c:d6:43:8d: d2:ef:f9:e0:7d:1b:ce:3a:85:96:92:4c:df:1c:e0: f0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1B:4F:BF:13:31:F5:F0:1E:0E:36:4B:36:2A:03:97:A9:36:03:83 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3232392e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.229.0/24 Signature Algorithm: sha256WithRSAEncryption 03:54:b6:42:ee:2e:a9:76:ee:93:b7:d8:a6:a3:3b:5c:26:4d: e0:ac:78:4f:22:bd:0c:64:f9:27:a0:2a:31:3f:e7:71:4e:3f: 87:42:d1:8f:76:43:5e:42:af:bd:8b:e0:0d:3d:01:fd:41:22: 70:9a:e0:95:06:c4:d1:36:67:01:f9:29:e4:1f:83:1b:1b:a5: ef:b2:5e:44:ab:e2:ad:ce:3b:54:b9:6c:9c:a1:8c:08:f4:68: 1f:1d:dd:a1:29:51:d5:db:3d:84:2d:fe:d1:82:2d:8e:2c:9d: 60:8d:61:73:91:51:9a:e5:55:c8:ed:3a:36:70:e7:0f:7d:91: 4d:e1:b1:21:e7:01:26:39:5b:ee:27:86:81:7e:71:87:47:46: c8:8a:7c:76:64:3b:26:36:a7:59:26:b0:84:6d:82:15:18:a9: 02:9d:65:aa:d6:c7:7f:81:34:c9:57:8a:8b:34:d3:ce:27:1b: a3:fd:72:3e:ff:c2:42:5d:f5:cb:d5:ec:07:05:3d:ed:3b:fd: 6e:cc:9e:13:57:c4:51:ba:33:c7:29:f8:1c:b8:50:91:2d:da: e2:63:89:3e:ab:53:d1:01:cc:a5:62:76:fa:f9:14:49:fc:7e: 6e:0d:f5:b2:1a:e6:84:04:f8:1f:76:a3:a3:9d:2e:89:a1:93: 3d:5b:b6:40 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUFPxoWtb4HwH8YADZa77HkYKv5E4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NVoX DTI3MDUwODE2MTU1NVowMzExMC8GA1UEAxMoNjkxQjRGQkYxMzMxRjVGMDFFMEUz NjRCMzYyQTAzOTdBOTM2MDM4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALraBRSm8nTuU+YuR9+c/mliouOnOc/N0RIb7pEsbQT20beR8U82AqCS7Wbd yWk1G/PFiF7IIUwdGpwVBdahfl1oBa48qHKvRU+kQFKAIDpwmj+Kn9McuehqqRRL j4l4nNt1VUxASOlVy8kM9x3GttWXUTBVyzikEGErULf1rYzOgX7BpArZK0UCjIwj YQ6rzIjnWj/IdLiu+x0VrJ+811JGlcchMqQbSY8gWrMcoXDm/jX7luHsxg/GQCQ/ Kvog9pwnz4CkkhEgYA5Hl8mRRXr3cjlyemsOswVdWPlvswdOwOwyZxu84SuARlx8 1kON0u/54H0bzjqFlpJM3xzg8MsCAwEAAaOCAhEwggINMB0GA1UdDgQWBBRpG0+/ EzH18B4ONks2KgOXqTYDgzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzIzOTJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVnlMA0GCSqGSIb3DQEBCwUAA4IB AQADVLZC7i6pdu6Tt9imoztcJk3grHhPIr0MZPknoCoxP+dxTj+HQtGPdkNeQq+9 i+ANPQH9QSJwmuCVBsTRNmcB+SnkH4MbG6Xvsl5Eq+KtzjtUuWycoYwI9GgfHd2h KVHV2z2ELf7Rgi2OLJ1gjWFzkVGa5VXI7To2cOcPfZFN4bEh5wEmOVvuJ4aBfnGH R0bIinx2ZDsmNqdZJrCEbYIVGKkCnWWq1sd/gTTJV4qLNNPOJxuj/XI+/8JCXfXL 1ewHBT3tO/1uzJ4TV8RRujPHKfgcuFCRLdriY4k+q1PRAcylYnb6+RRJ/H5uDfWy GuaEBPgfdqOjnS6JoZM9W7ZA -----END CERTIFICATE-----Generated at Wed May 13 13:46:07 2026 by rpki-client