$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233342e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3233342e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: 17myarFVJ4OLfC0y9+Qha0STYI7tmAk6R0XsSih/t2M= Subject key identifier: 67:BF:16:C2:61:A4:55:FE:5D:19:D4:FD:4A:9C:CA:E1:E7:E7:12:F4 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 5749814981A4BABBDFA5BA09D616884750D15B4D Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233342e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:55 +0000 ROA not before: Sat 09 May 2026 16:10:55 +0000 ROA not after: Sat 08 May 2027 16:15:55 +0000 asID: 4811 IP address blocks: 101.89.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:49:81:49:81:a4:ba:bb:df:a5:ba:09:d6:16:88:47:50:d1:5b:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:55 2026 GMT Not After : May 8 16:15:55 2027 GMT Subject: CN=67BF16C261A455FE5D19D4FD4A9CCAE1E7E712F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:aa:73:64:27:5c:e8:25:4d:bd:42:c2:86:71: 8d:40:81:d8:c2:55:4d:47:1e:ce:0b:44:03:84:2e: 3b:f3:c6:8f:8e:37:16:62:71:1e:1a:43:47:91:39: b2:dc:3d:c0:d6:61:48:bc:7c:39:1a:f7:1d:e1:d9: 36:c5:b4:ae:3b:b4:c6:26:09:e2:d6:49:af:bf:64: 25:7b:e5:43:e3:8d:57:5a:7e:ee:7a:1b:b0:de:d7: 0f:d7:fd:67:55:df:7a:80:40:2c:e4:d4:65:1d:3a: d7:61:bb:11:36:d3:c6:62:1b:15:a2:69:85:cd:55: 74:17:e3:2a:9f:6f:26:3b:5a:60:06:1c:bb:8b:9f: 6b:07:29:2a:14:c8:c5:a0:29:32:f5:1c:72:9e:f0: c7:7b:bb:84:7b:6a:b8:11:e1:24:01:89:f6:a9:bc: 91:c8:da:6b:1b:3e:52:15:c8:64:db:d7:61:17:ac: 3a:a1:37:56:89:c0:4f:b7:0c:5a:3c:00:5d:c2:e0: d4:97:90:bc:81:92:a4:a7:6f:9f:54:ef:dc:a6:84: 8b:e2:5b:31:9b:e8:c6:17:32:3b:08:7b:da:65:47: b0:eb:99:07:4c:bf:9b:d6:6f:65:9b:b8:8b:04:b1: e2:af:19:db:70:a3:2e:37:e1:a8:08:db:3c:1c:9f: 9d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:BF:16:C2:61:A4:55:FE:5D:19:D4:FD:4A:9C:CA:E1:E7:E7:12:F4 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233342e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.234.0/24 Signature Algorithm: sha256WithRSAEncryption 91:b5:91:3f:0f:1e:9d:43:71:35:53:83:9b:ef:ae:8e:a5:79: 81:a0:f6:61:68:41:87:96:1c:c3:62:fc:12:e7:ac:58:e3:f8: 5e:0c:31:94:1b:18:e8:8e:6a:f7:60:77:5e:35:12:59:2a:c1: ea:b7:fd:8a:fd:1e:62:05:a9:d5:c9:3c:74:c2:9c:14:76:e2: c0:44:2c:dc:ba:2d:2f:60:2d:20:d8:79:62:67:97:df:f0:64: 75:2c:0b:6a:ae:42:9e:89:a9:c7:e6:37:fc:0d:39:d5:f0:0c: 3a:6c:44:28:f3:9d:b2:ca:85:8a:36:35:88:cb:42:ee:06:36: b2:8b:d9:22:f5:d0:69:e7:18:d2:85:a3:f8:ac:0c:44:9d:ca: be:55:a5:43:60:3a:7b:b1:ae:58:2d:c9:05:31:cf:0a:34:9a: 54:ca:9d:d2:e5:cb:47:81:a6:7e:6d:5b:f1:f9:0e:55:93:68: 80:bd:7d:c6:a7:fd:03:60:73:0a:39:2f:ef:ec:2e:ad:0b:db: 18:32:b9:36:ed:99:a3:99:0c:5c:b9:af:5a:43:57:44:56:fa: a4:ca:22:28:b2:21:38:6d:d3:eb:be:67:de:67:13:52:54:d4: 58:5c:46:49:25:50:82:aa:0c:9b:af:c9:08:0a:02:f5:04:24: cd:17:d5:61 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUV0mBSYGkurvfpboJ1haIR1DRW00wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NVoX DTI3MDUwODE2MTU1NVowMzExMC8GA1UEAxMoNjdCRjE2QzI2MUE0NTVGRTVEMTlE NEZENEE5Q0NBRTFFN0U3MTJGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSqc2QnXOglTb1CwoZxjUCB2MJVTUcezgtEA4QuO/PGj443FmJxHhpDR5E5 stw9wNZhSLx8ORr3HeHZNsW0rju0xiYJ4tZJr79kJXvlQ+ONV1p+7nobsN7XD9f9 Z1XfeoBALOTUZR0612G7ETbTxmIbFaJphc1VdBfjKp9vJjtaYAYcu4ufawcpKhTI xaApMvUccp7wx3u7hHtquBHhJAGJ9qm8kcjaaxs+UhXIZNvXYResOqE3VonAT7cM WjwAXcLg1JeQvIGSpKdvn1Tv3KaEi+JbMZvoxhcyOwh72mVHsOuZB0y/m9ZvZZu4 iwSx4q8Z23CjLjfhqAjbPByfne8CAwEAAaOCAhEwggINMB0GA1UdDgQWBBRnvxbC YaRV/l0Z1P1KnMrh5+cS9DAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzMzNDJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVnqMA0GCSqGSIb3DQEBCwUAA4IB AQCRtZE/Dx6dQ3E1U4Ob766OpXmBoPZhaEGHlhzDYvwS56xY4/heDDGUGxjojmr3 YHdeNRJZKsHqt/2K/R5iBanVyTx0wpwUduLARCzcui0vYC0g2HliZ5ff8GR1LAtq rkKeianH5jf8DTnV8Aw6bEQo852yyoWKNjWIy0LuBjayi9ki9dBp5xjShaP4rAxE ncq+VaVDYDp7sa5YLckFMc8KNJpUyp3S5ctHgaZ+bVvx+Q5Vk2iAvX3Gp/0DYHMK OS/v7C6tC9sYMrk27ZmjmQxcua9aQ1dEVvqkyiIosiE4bdPrvmfeZxNSVNRYXEZJ JVCCqgybr8kICgL1BCTNF9Vh -----END CERTIFICATE-----Generated at Wed May 13 08:40:06 2026 by rpki-client