$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233332e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3233332e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: LlATOtnSVza9UQ2o3evCGAWbiglXiG4LDJPosgsPZrg= Subject key identifier: FB:35:5C:49:5A:34:AB:DF:21:B4:E9:A9:1A:46:16:8F:58:B8:84:2E Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 2328AF92734424F63F82DD11651AB83FB6E6E98A Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233332e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:56 +0000 ROA not before: Sat 09 May 2026 16:10:56 +0000 ROA not after: Sat 08 May 2027 16:15:56 +0000 asID: 4811 IP address blocks: 101.89.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:28:af:92:73:44:24:f6:3f:82:dd:11:65:1a:b8:3f:b6:e6:e9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:56 2026 GMT Not After : May 8 16:15:56 2027 GMT Subject: CN=FB355C495A34ABDF21B4E9A91A46168F58B8842E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7b:bb:b3:f9:a3:6d:81:83:60:cf:9d:96:e2: 88:05:42:e9:df:f6:6e:a7:11:20:8e:42:a5:1f:00: e2:b4:77:18:e0:ce:49:0a:55:db:bf:0f:c9:b2:41: 64:3c:5b:3b:5b:22:93:7a:41:8e:94:c9:29:1b:46: a6:e4:da:bd:50:c0:fe:01:0f:4b:9e:41:77:63:f7: 16:14:fd:35:b4:4c:5b:6d:b6:1a:7d:b6:b4:e2:57: 99:60:ac:d0:84:64:34:65:ce:31:aa:13:cc:61:89: 80:aa:ee:c4:2e:d4:e4:e0:18:4c:76:0b:8c:42:27: e1:cf:88:96:57:8f:8c:d6:52:25:c6:b0:ca:08:5d: 83:b5:73:af:f4:e5:99:5a:6c:8f:df:79:67:0a:c8: 7a:83:3d:72:b4:2d:04:10:fd:9d:38:bb:5d:80:53: 99:7e:e5:71:c8:3e:a3:09:85:93:5f:fe:56:22:07: a0:9d:58:35:f1:de:ad:d9:0e:30:45:36:e1:26:9b: 7b:24:34:57:d8:e2:58:bf:77:85:fb:6a:48:d4:40: 77:44:7f:92:95:e4:ef:c4:a3:de:73:fa:e4:35:3c: b0:3b:7a:51:9a:1c:f8:0e:4e:a0:02:ea:69:f7:3a: 7e:ee:52:b6:2e:35:b8:62:e2:07:18:83:42:be:7c: a5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:35:5C:49:5A:34:AB:DF:21:B4:E9:A9:1A:46:16:8F:58:B8:84:2E X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233332e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.233.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d1:b1:8a:b7:17:ab:d8:0d:42:b4:4b:6f:26:13:b1:64:0a: 66:e9:1c:ce:2a:20:21:07:6f:52:88:74:fc:68:00:f3:c3:ff: 95:b4:d8:f1:99:9a:de:4e:fb:cb:2b:02:3d:91:61:0d:d9:19: a5:83:7a:2c:cc:77:23:dd:9f:b9:5b:93:7d:5f:12:68:bf:7a: aa:72:80:05:36:29:19:59:55:14:96:db:1c:94:51:41:a4:d3: 5a:be:08:09:1a:85:5d:72:d3:77:d5:d8:e1:dc:6f:77:5d:1f: 58:3a:e0:b2:e1:f2:a4:0e:84:f8:f0:47:d5:13:56:f1:0f:f1: 23:7c:20:81:b3:c4:6b:1d:6d:bc:de:46:5c:c3:02:36:26:97: cb:4f:6c:e4:72:84:2d:da:37:b1:0d:4a:5c:16:3f:e8:91:30: 54:2e:a2:98:93:f1:e2:e5:d8:75:47:18:a1:38:ed:c0:c3:e9: 25:0e:91:18:bc:b5:c8:93:e5:e6:c2:17:51:84:42:60:12:9d: 2a:79:d0:ca:38:6f:83:85:ef:d6:27:30:19:56:4a:32:89:70: 9f:1a:ce:2c:e8:c7:0b:43:60:ea:c0:28:9f:42:de:02:49:e0: 42:55:6a:92:87:5f:42:c1:df:9f:48:96:05:8c:1d:e9:86:e8: 55:68:17:c5 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUIyivknNEJPY/gt0RZRq4P7bm6YowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NloX DTI3MDUwODE2MTU1NlowMzExMC8GA1UEAxMoRkIzNTVDNDk1QTM0QUJERjIxQjRF OUE5MUE0NjE2OEY1OEI4ODQyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZ7u7P5o22Bg2DPnZbiiAVC6d/2bqcRII5CpR8A4rR3GODOSQpV278PybJB ZDxbO1sik3pBjpTJKRtGpuTavVDA/gEPS55Bd2P3FhT9NbRMW222Gn22tOJXmWCs 0IRkNGXOMaoTzGGJgKruxC7U5OAYTHYLjEIn4c+IllePjNZSJcawyghdg7Vzr/Tl mVpsj995ZwrIeoM9crQtBBD9nTi7XYBTmX7lccg+owmFk1/+ViIHoJ1YNfHerdkO MEU24SabeyQ0V9jiWL93hftqSNRAd0R/kpXk78Sj3nP65DU8sDt6UZoc+A5OoALq afc6fu5Sti41uGLiBxiDQr58pRUCAwEAAaOCAhEwggINMB0GA1UdDgQWBBT7NVxJ WjSr3yG06akaRhaPWLiELjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzMzMzJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVnpMA0GCSqGSIb3DQEBCwUAA4IB AQAG0bGKtxer2A1CtEtvJhOxZApm6RzOKiAhB29SiHT8aADzw/+VtNjxmZreTvvL KwI9kWEN2Rmlg3oszHcj3Z+5W5N9XxJov3qqcoAFNikZWVUUltsclFFBpNNavggJ GoVdctN31djh3G93XR9YOuCy4fKkDoT48EfVE1bxD/EjfCCBs8RrHW283kZcwwI2 JpfLT2zkcoQt2jexDUpcFj/okTBULqKYk/Hi5dh1RxihOO3Aw+klDpEYvLXIk+Xm whdRhEJgEp0qedDKOG+Dhe/WJzAZVkoyiXCfGs4s6McLQ2DqwCifQt4CSeBCVWqS h19Cwd+fSJYFjB3phuhVaBfF -----END CERTIFICATE-----Generated at Wed May 13 16:42:07 2026 by rpki-client