$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233372e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3233372e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: +RraoovWShYiXWkiD9uFsgLW9QaTJKGQzs1EOLbKKGk= Subject key identifier: 63:04:92:10:34:B3:B8:D2:B9:B5:9B:2F:E6:59:9B:65:67:73:42:EE Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 41042F436FC2EBD87EB90ADD3CF67785AD8D2CC6 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233372e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:55 +0000 ROA not before: Sat 09 May 2026 16:10:55 +0000 ROA not after: Sat 08 May 2027 16:15:55 +0000 asID: 4811 IP address blocks: 101.89.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:04:2f:43:6f:c2:eb:d8:7e:b9:0a:dd:3c:f6:77:85:ad:8d:2c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:55 2026 GMT Not After : May 8 16:15:55 2027 GMT Subject: CN=6304921034B3B8D2B9B59B2FE6599B65677342EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:df:85:35:f5:93:7b:e7:46:5e:7c:a6:7f: 80:10:8a:f0:7f:b1:ba:db:07:36:22:49:d8:5d:3b: f4:69:03:a5:10:d8:15:4b:16:9f:74:20:32:67:de: 00:de:a9:db:48:6a:07:2e:35:0b:80:e4:28:e7:e6: 15:34:12:97:69:b5:cb:5e:a6:0d:0e:c3:05:2a:c4: ce:ea:10:ab:75:66:48:d4:cd:ec:79:1a:65:1a:cc: b1:a1:e7:a4:56:68:56:c5:7f:e1:36:27:db:40:f3: a1:96:9f:fb:c4:85:17:81:5e:fd:45:59:0a:a0:30: 66:21:f3:53:98:a7:45:43:0a:40:79:64:0e:2b:a0: ec:cd:81:4e:83:0f:7f:38:f0:fa:09:24:72:c9:d7: 87:84:8d:39:fa:6b:88:97:97:16:41:ec:56:2d:2d: fe:3e:0d:64:20:af:2e:58:fb:1c:20:1c:8a:4b:d0: a5:cc:89:f7:ae:3f:08:6e:24:36:32:87:aa:de:d7: 4f:54:cc:bd:94:b5:62:05:3b:b0:2d:d7:92:b8:29: a8:8a:77:fd:c4:5f:c8:4f:99:26:47:17:56:a4:78: 4f:d3:c9:24:41:dc:ab:7e:e4:08:20:25:63:df:e4: 65:5e:c0:3b:00:5c:8d:04:02:8e:4f:f6:32:89:39: 11:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:04:92:10:34:B3:B8:D2:B9:B5:9B:2F:E6:59:9B:65:67:73:42:EE X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3233372e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.237.0/24 Signature Algorithm: sha256WithRSAEncryption 95:6f:be:54:e0:4d:d9:db:9b:38:5c:34:27:18:a6:dd:06:3e: 27:c7:14:22:f8:f7:81:bc:9e:95:84:0e:b2:a4:72:67:99:8e: 65:7b:c4:93:b9:37:e9:16:ee:e4:6d:e6:1f:69:c1:ef:c5:05: b7:14:db:30:35:08:0d:f2:60:7f:d1:01:0e:5d:e7:03:46:a2: 2c:8f:b3:84:74:60:22:4f:6a:7e:67:f2:c4:4b:e7:ab:18:8b: 56:0b:66:51:fd:88:df:df:7b:9f:44:65:e7:bf:aa:39:18:24: c5:10:da:22:88:ab:3c:b7:20:60:b3:a8:eb:0e:ed:e9:f4:eb: 21:51:65:30:0d:e0:94:51:89:ed:35:01:70:7f:e3:bb:7b:59: 4b:fc:0a:ee:86:83:b3:6d:2e:31:ff:c4:ef:c9:18:b0:c9:34: c7:c1:f4:ba:02:4f:71:62:26:aa:7b:b7:94:77:43:a2:d2:11: 73:91:90:30:33:98:84:8c:e9:dd:2c:30:9f:cb:d3:87:41:12: 65:0e:23:62:39:cd:a4:69:1e:3a:45:e8:8b:e6:a3:03:45:d6: ac:a4:95:f1:db:fe:c0:75:6f:59:d3:3b:2a:04:ff:2f:b5:e6: 7c:80:ea:08:3d:50:4a:a6:6e:47:4f:a8:d1:93:4d:4e:7c:80: 9b:6e:e7:1d -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUQQQvQ2/C69h+uQrdPPZ3ha2NLMYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NVoX DTI3MDUwODE2MTU1NVowMzExMC8GA1UEAxMoNjMwNDkyMTAzNEIzQjhEMkI5QjU5 QjJGRTY1OTlCNjU2NzczNDJFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdT34U19ZN750ZefKZ/gBCK8H+xutsHNiJJ2F079GkDpRDYFUsWn3QgMmfe AN6p20hqBy41C4DkKOfmFTQSl2m1y16mDQ7DBSrEzuoQq3VmSNTN7HkaZRrMsaHn pFZoVsV/4TYn20DzoZaf+8SFF4Fe/UVZCqAwZiHzU5inRUMKQHlkDiug7M2BToMP fzjw+gkkcsnXh4SNOfpriJeXFkHsVi0t/j4NZCCvLlj7HCAcikvQpcyJ964/CG4k NjKHqt7XT1TMvZS1YgU7sC3XkrgpqIp3/cRfyE+ZJkcXVqR4T9PJJEHcq37kCCAl Y9/kZV7AOwBcjQQCjk/2Mok5EU8CAwEAAaOCAhEwggINMB0GA1UdDgQWBBRjBJIQ NLO40rm1my/mWZtlZ3NC7jAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzMzNzJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVntMA0GCSqGSIb3DQEBCwUAA4IB AQCVb75U4E3Z25s4XDQnGKbdBj4nxxQi+PeBvJ6VhA6ypHJnmY5le8STuTfpFu7k beYfacHvxQW3FNswNQgN8mB/0QEOXecDRqIsj7OEdGAiT2p+Z/LES+erGItWC2ZR /Yjf33ufRGXnv6o5GCTFENoiiKs8tyBgs6jrDu3p9OshUWUwDeCUUYntNQFwf+O7 e1lL/AruhoOzbS4x/8TvyRiwyTTHwfS6Ak9xYiaqe7eUd0Oi0hFzkZAwM5iEjOnd LDCfy9OHQRJlDiNiOc2kaR46ReiL5qMDRdaspJXx2/7AdW9Z0zsqBP8vteZ8gOoI PVBKpm5HT6jRk01OfICbbucd -----END CERTIFICATE-----Generated at Wed May 13 13:27:08 2026 by rpki-client