$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234302e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3234302e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: 2UiK3XGsL7hdgUkqP0ZnTb0tdV6lXrPq49CPh43as+U= Subject key identifier: E9:B3:4D:0B:86:B4:1E:13:39:36:0F:FE:6F:21:35:E3:98:17:2D:37 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 4BDF71B99BA405E5DC21022B78DA3DB1F006AA28 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234302e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:55 +0000 ROA not before: Sat 09 May 2026 16:10:55 +0000 ROA not after: Sat 08 May 2027 16:15:55 +0000 asID: 4811 IP address blocks: 101.89.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:df:71:b9:9b:a4:05:e5:dc:21:02:2b:78:da:3d:b1:f0:06:aa:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:55 2026 GMT Not After : May 8 16:15:55 2027 GMT Subject: CN=E9B34D0B86B41E1339360FFE6F2135E398172D37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:33:f2:af:8e:54:57:ad:6a:fc:48:bb:fb:62: 11:c4:4e:06:ed:33:99:d8:80:ca:67:ce:d2:d3:b9: 48:6d:92:e8:77:00:0f:2a:e5:4b:27:0b:3b:38:b4: 6b:86:aa:fc:92:17:de:fb:f0:30:0b:79:c5:aa:57: 99:21:87:28:4c:41:97:5c:84:db:45:9e:7b:78:1e: eb:a2:e8:76:c4:26:cc:1b:10:f2:bf:aa:31:7b:00: fd:9e:75:31:9c:7e:62:d1:b1:76:bc:f2:38:a9:7e: 15:61:09:bc:29:35:12:cf:65:94:e8:93:d2:0b:c2: 9a:4f:e8:7c:30:1f:99:09:ae:7b:9d:45:4b:63:58: dc:b8:40:9b:6e:4e:8c:a2:81:39:06:7a:04:4c:e3: 40:c0:b4:3b:bf:76:66:b4:6d:ee:be:1c:5b:a3:d3: 40:6d:12:77:57:ac:be:9d:46:4f:5a:8f:3a:63:7b: 8b:c5:2b:11:b5:98:37:fd:23:1f:e6:53:b4:7d:50: 8a:be:4f:03:d5:4d:ca:3a:bc:bc:bb:1e:81:0b:f5: 43:66:6f:1e:95:f3:b5:2b:2d:2f:95:94:88:1d:60: b7:ff:eb:09:fe:27:08:75:6c:aa:2c:21:13:40:2e: 4c:33:ee:5d:74:40:0e:c2:5f:63:ed:1c:68:66:c2: 4a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B3:4D:0B:86:B4:1E:13:39:36:0F:FE:6F:21:35:E3:98:17:2D:37 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234302e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.240.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:84:c5:59:11:6b:4f:29:51:22:ef:10:c8:56:63:74:84:38: 94:26:ed:c6:b3:36:40:b6:4e:74:07:c5:61:7a:dc:ee:3b:2b: ca:e6:ab:c5:63:b7:3a:20:ee:7a:3a:1d:4b:9c:8a:1d:c0:3a: e2:dd:3d:c0:d5:1d:90:88:59:1d:a6:04:bc:a4:34:07:8c:c4: 3f:b3:e6:5b:f4:dd:9f:33:25:a3:16:99:a0:1f:1d:00:3c:5e: a9:97:0a:c6:fa:8f:fc:df:ad:38:c7:83:ca:10:b3:d4:38:57: 36:a3:0e:7b:ec:da:2e:c6:1b:c8:9f:2b:2e:80:f8:8a:3f:18: b5:31:a3:d9:dd:74:15:67:37:b4:a4:ad:19:5f:ad:19:86:e1: e6:c5:23:ac:eb:6e:6f:66:28:92:59:1d:61:59:c5:e0:a0:d9: d4:24:71:ce:85:a1:5e:c4:e6:c7:54:a0:6a:08:72:06:63:57: 32:42:13:fe:93:ae:6f:c4:15:5c:fb:ee:dc:d3:3a:db:dc:49: 99:07:ac:33:36:5e:5d:48:59:e3:99:11:96:81:15:36:4e:ba: d0:3f:a7:36:a0:1f:f2:6a:85:87:e4:56:b5:f4:aa:13:6f:f7: c5:8e:bc:25:a1:8f:38:51:6c:92:8b:7a:ec:4e:26:41:a8:74: 03:43:6e:9b -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUS99xuZukBeXcIQIreNo9sfAGqigwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NVoX DTI3MDUwODE2MTU1NVowMzExMC8GA1UEAxMoRTlCMzREMEI4NkI0MUUxMzM5MzYw RkZFNkYyMTM1RTM5ODE3MkQzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOEz8q+OVFetavxIu/tiEcROBu0zmdiAymfO0tO5SG2S6HcADyrlSycLOzi0 a4aq/JIX3vvwMAt5xapXmSGHKExBl1yE20Wee3ge66LodsQmzBsQ8r+qMXsA/Z51 MZx+YtGxdrzyOKl+FWEJvCk1Es9llOiT0gvCmk/ofDAfmQmue51FS2NY3LhAm25O jKKBOQZ6BEzjQMC0O792ZrRt7r4cW6PTQG0Sd1esvp1GT1qPOmN7i8UrEbWYN/0j H+ZTtH1Qir5PA9VNyjq8vLsegQv1Q2ZvHpXztSstL5WUiB1gt//rCf4nCHVsqiwh E0AuTDPuXXRADsJfY+0caGbCSgsCAwEAAaOCAhEwggINMB0GA1UdDgQWBBTps00L hrQeEzk2D/5vITXjmBctNzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzQzMDJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVnwMA0GCSqGSIb3DQEBCwUAA4IB AQAuhMVZEWtPKVEi7xDIVmN0hDiUJu3GszZAtk50B8VhetzuOyvK5qvFY7c6IO56 Oh1LnIodwDri3T3A1R2QiFkdpgS8pDQHjMQ/s+Zb9N2fMyWjFpmgHx0APF6plwrG +o/83604x4PKELPUOFc2ow577NouxhvInysugPiKPxi1MaPZ3XQVZze0pK0ZX60Z huHmxSOs625vZiiSWR1hWcXgoNnUJHHOhaFexObHVKBqCHIGY1cyQhP+k65vxBVc ++7c0zrb3EmZB6wzNl5dSFnjmRGWgRU2TrrQP6c2oB/yaoWH5Fa19KoTb/fFjrwl oY84UWySi3rsTiZBqHQDQ26b -----END CERTIFICATE-----Generated at Wed May 13 15:07:00 2026 by rpki-client