$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234332e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3234332e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: eYj/OBJP9EW3rVBpjQy/NVQlf+h4WssENnGKk4pG+04= Subject key identifier: 28:DD:C4:90:3D:68:8C:93:36:2D:F1:6F:8C:B2:F5:FE:EB:16:45:F5 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 0E36C30AF215DC6F772969A5F0815837C8DF10DD Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234332e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:55 +0000 ROA not before: Sat 09 May 2026 16:10:55 +0000 ROA not after: Sat 08 May 2027 16:15:55 +0000 asID: 4811 IP address blocks: 101.89.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:36:c3:0a:f2:15:dc:6f:77:29:69:a5:f0:81:58:37:c8:df:10:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:55 2026 GMT Not After : May 8 16:15:55 2027 GMT Subject: CN=28DDC4903D688C93362DF16F8CB2F5FEEB1645F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:3b:44:37:e3:62:ca:fa:f5:d5:1e:5a:dd: 2d:3a:b5:59:90:29:1d:dc:fd:72:35:fb:f2:51:0a: 05:d9:b7:44:22:a8:78:e2:fe:42:48:08:78:48:16: 14:21:94:fb:c5:21:e6:d8:c8:2f:4a:df:a5:5d:7e: 42:e3:4b:c9:41:7f:98:20:a3:51:13:ae:c5:5c:17: fb:63:e0:97:ba:f1:17:3b:f0:7c:af:af:76:e3:78: fd:04:90:06:b0:50:8d:43:ac:82:85:5e:24:27:8e: 3b:07:a4:66:d6:66:fe:e1:92:b2:04:cd:d6:01:4c: f9:0b:45:b1:b1:ad:22:f3:01:72:08:ee:f1:29:1a: be:9f:39:f6:72:f6:a0:fc:e3:9b:0a:15:c1:74:55: b0:1f:65:48:15:c7:28:82:02:24:74:16:24:c3:05: b2:cc:54:c4:89:84:88:f7:78:10:5e:17:26:8a:04: 97:5e:14:16:27:ab:01:0c:1f:fa:86:27:28:62:11: 71:cc:e6:93:2d:a6:a5:3d:95:92:02:c4:82:47:26: ef:f3:40:94:77:8a:71:41:af:b6:7c:50:c4:cc:08: 20:ae:09:db:61:e3:11:3f:05:35:a4:90:29:6a:8c: a8:2f:71:d5:d1:62:ee:84:f7:ff:96:6a:3b:c8:35: ca:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DD:C4:90:3D:68:8C:93:36:2D:F1:6F:8C:B2:F5:FE:EB:16:45:F5 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234332e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.243.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:50:c3:02:27:fe:58:f8:48:6f:56:2e:cf:c5:62:14:5c:bd: 34:62:21:bb:4a:18:ae:c6:ff:b5:77:41:da:9f:52:31:f0:9e: 3a:ba:15:ed:f7:59:7e:b3:bb:da:ed:23:6f:13:ff:45:de:73: 48:a8:19:29:ee:49:bb:84:63:55:4a:14:d5:6c:6c:4b:f6:d2: 36:fd:1a:68:d6:cf:dd:6d:fd:15:51:23:19:0f:13:e7:b5:f7: f3:a6:b0:01:c3:6d:ef:39:41:04:50:cf:f4:7e:ad:9b:ac:3a: d4:78:fd:06:28:9e:d0:cd:b7:fc:de:2e:fc:23:8f:de:3f:c2: 71:ad:f9:30:cb:ae:be:8d:af:50:d6:e9:6e:c0:7e:e3:7a:c4: d4:27:5c:df:15:59:ff:68:2f:13:ed:89:5d:84:21:73:68:28: 9a:5d:66:d3:c6:ee:92:5a:3b:85:2e:e7:ad:00:5f:81:0b:a1: 6e:c7:3a:2a:e0:92:4e:8c:37:e9:4e:99:14:b8:78:75:c0:b7: 69:e4:16:23:7d:b4:1e:76:98:28:c8:c5:7e:5a:d4:55:37:68: fe:42:e0:17:ae:72:0f:1d:b2:53:ec:75:85:6b:8e:59:18:fb: b2:62:cb:35:13:dd:c7:10:01:f8:ba:75:e0:63:85:73:af:f3: 95:94:ae:8e -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUDjbDCvIV3G93KWml8IFYN8jfEN0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NVoX DTI3MDUwODE2MTU1NVowMzExMC8GA1UEAxMoMjhEREM0OTAzRDY4OEM5MzM2MkRG MTZGOENCMkY1RkVFQjE2NDVGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6kO0Q342LK+vXVHlrdLTq1WZApHdz9cjX78lEKBdm3RCKoeOL+QkgIeEgW FCGU+8Uh5tjIL0rfpV1+QuNLyUF/mCCjUROuxVwX+2Pgl7rxFzvwfK+vduN4/QSQ BrBQjUOsgoVeJCeOOwekZtZm/uGSsgTN1gFM+QtFsbGtIvMBcgju8Skavp859nL2 oPzjmwoVwXRVsB9lSBXHKIICJHQWJMMFssxUxImEiPd4EF4XJooEl14UFierAQwf +oYnKGIRcczmky2mpT2VkgLEgkcm7/NAlHeKcUGvtnxQxMwIIK4J22HjET8FNaSQ KWqMqC9x1dFi7oT3/5ZqO8g1yicCAwEAAaOCAhEwggINMB0GA1UdDgQWBBQo3cSQ PWiMkzYt8W+MsvX+6xZF9TAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzQzMzJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVnzMA0GCSqGSIb3DQEBCwUAA4IB AQA8UMMCJ/5Y+EhvVi7PxWIUXL00YiG7Shiuxv+1d0Han1Ix8J46uhXt91l+s7va 7SNvE/9F3nNIqBkp7km7hGNVShTVbGxL9tI2/Rpo1s/dbf0VUSMZDxPntffzprAB w23vOUEEUM/0fq2brDrUeP0GKJ7Qzbf83i78I4/eP8Jxrfkwy66+ja9Q1uluwH7j esTUJ1zfFVn/aC8T7YldhCFzaCiaXWbTxu6SWjuFLuetAF+BC6Fuxzoq4JJOjDfp TpkUuHh1wLdp5BYjfbQedpgoyMV+WtRVN2j+QuAXrnIPHbJT7HWFa45ZGPuyYss1 E93HEAH4unXgY4Vzr/OVlK6O -----END CERTIFICATE-----Generated at Wed May 13 13:45:31 2026 by rpki-client