$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234392e302f32342d3234203d3e2034383131.roa File: 3130312e38392e3234392e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: womU+ed9LjGkx4mMorxpp9hw/odt/qOljtmAYt7yrzc= Subject key identifier: 14:3B:C0:20:FC:EA:18:87:0B:FC:86:B3:CD:12:91:91:BB:1B:7D:21 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3036D1CCE9A7C86193EFC5C5D270064C80925EA1 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234392e302f32342d3234203d3e2034383131.roa Signing time: Sat 09 May 2026 16:01:19 +0000 ROA not before: Sat 09 May 2026 15:56:19 +0000 ROA not after: Sat 08 May 2027 16:01:19 +0000 asID: 4811 IP address blocks: 101.89.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:36:d1:cc:e9:a7:c8:61:93:ef:c5:c5:d2:70:06:4c:80:92:5e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 15:56:19 2026 GMT Not After : May 8 16:01:19 2027 GMT Subject: CN=143BC020FCEA18870BFC86B3CD129191BB1B7D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:41:0c:b3:18:0a:0a:2d:de:12:95:d0:8f:65: 09:54:2d:fc:b1:0b:c5:b8:ba:0a:c9:6e:7c:0a:2d: c1:61:91:4e:e1:43:1d:bc:bc:30:1d:43:c8:f4:1f: c1:55:3e:53:34:9e:be:f3:da:be:64:f5:c3:35:6c: 20:e1:34:70:2c:2f:d4:b9:72:f5:02:e2:48:25:0b: 15:84:18:aa:af:1d:7d:c0:90:53:b5:7e:bf:f7:59: a2:03:bf:0d:17:a1:87:d4:47:fa:6f:f7:75:c0:07: ec:85:86:0d:cf:85:06:22:d2:20:35:a4:35:bf:23: 2a:62:5a:75:b5:bc:6e:ad:86:fe:2f:26:3d:cd:3f: 2e:df:a9:24:21:67:a2:de:16:36:9c:81:ff:a7:35: 27:79:1d:03:4d:d5:35:6e:f6:ae:ca:af:10:b1:04: 0c:ba:48:df:af:a1:a3:63:19:32:b1:00:e9:84:d8: 81:b7:6c:b1:f0:7a:50:8d:30:a0:8c:28:0f:9b:95: 6e:12:78:3c:e4:b5:26:75:65:9c:fa:a2:a4:18:ce: 10:b2:6d:56:4b:73:54:44:51:2f:da:0d:e7:8f:5a: 07:c5:af:a6:91:bd:4b:ae:a6:c1:57:2f:17:c6:ae: ed:1d:b3:c7:d0:b4:83:7a:fa:fd:42:87:06:e2:b7: 87:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3B:C0:20:FC:EA:18:87:0B:FC:86:B3:CD:12:91:91:BB:1B:7D:21 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3234392e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.249.0/24 Signature Algorithm: sha256WithRSAEncryption 90:14:a6:20:1e:12:6f:0d:40:f7:4a:70:b1:d6:cf:b7:d1:a0: 30:61:77:bd:76:a3:cb:74:90:7d:4d:03:86:66:12:fa:96:00: 8b:77:7c:24:39:cb:6e:a0:b8:d2:f2:cf:a7:6f:a4:f1:f6:bc: 36:e3:83:20:50:f8:6f:4c:2e:b6:b2:f6:14:bf:31:ef:d8:11: 93:f3:db:e9:c1:24:d8:6f:43:dc:be:69:bd:87:af:7f:a1:88: 0c:c4:8c:f3:39:5b:37:4d:ef:da:2c:1f:7b:ec:a4:f3:65:9d: d7:3a:95:29:e6:a1:8b:b7:bc:70:0e:b5:2a:70:c6:af:5a:2a: bb:80:67:ec:58:ba:28:c6:da:f8:c4:db:32:fa:ca:45:55:72: 48:ad:45:c1:07:64:84:60:67:34:48:25:d9:99:5e:27:25:d5: 19:62:83:84:be:76:85:9b:04:04:1f:28:65:98:0d:19:df:d0: 9f:22:c1:14:46:f0:ad:87:8f:44:b6:86:eb:7a:c5:de:fb:c1: 27:d8:c7:81:a1:ce:67:a1:3d:10:39:6a:49:4c:02:58:a0:8f: 91:c1:9f:01:f6:e0:2e:d4:28:5e:a1:1c:08:11:1b:ec:12:97: 8a:a8:06:ac:dc:e0:5a:e3:14:b1:c7:14:08:2e:71:f5:1d:66: 7e:61:18:80 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUMDbRzOmnyGGT78XF0nAGTICSXqEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE1NTYxOVoX DTI3MDUwODE2MDExOVowMzExMC8GA1UEAxMoMTQzQkMwMjBGQ0VBMTg4NzBCRkM4 NkIzQ0QxMjkxOTFCQjFCN0QyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBBDLMYCgot3hKV0I9lCVQt/LELxbi6CslufAotwWGRTuFDHby8MB1DyPQf wVU+UzSevvPavmT1wzVsIOE0cCwv1Lly9QLiSCULFYQYqq8dfcCQU7V+v/dZogO/ DRehh9RH+m/3dcAH7IWGDc+FBiLSIDWkNb8jKmJadbW8bq2G/i8mPc0/Lt+pJCFn ot4WNpyB/6c1J3kdA03VNW72rsqvELEEDLpI36+ho2MZMrEA6YTYgbdssfB6UI0w oIwoD5uVbhJ4POS1JnVlnPqipBjOELJtVktzVERRL9oN549aB8WvppG9S66mwVcv F8au7R2zx9C0g3r6/UKHBuK3h/0CAwEAAaOCAhEwggINMB0GA1UdDgQWBBQUO8Ag /OoYhwv8hrPNEpGRuxt9ITAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzQzOTJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZVn5MA0GCSqGSIb3DQEBCwUAA4IB AQCQFKYgHhJvDUD3SnCx1s+30aAwYXe9dqPLdJB9TQOGZhL6lgCLd3wkOctuoLjS 8s+nb6Tx9rw244MgUPhvTC62svYUvzHv2BGT89vpwSTYb0Pcvmm9h69/oYgMxIzz OVs3Te/aLB977KTzZZ3XOpUp5qGLt7xwDrUqcMavWiq7gGfsWLooxtr4xNsy+spF VXJIrUXBB2SEYGc0SCXZmV4nJdUZYoOEvnaFmwQEHyhlmA0Z39CfIsEURvCth49E tobresXe+8En2MeBoc5noT0QOWpJTAJYoI+RwZ8B9uAu1CheoRwIERvsEpeKqAas 3OBa4xSxxxQILnH1HWZ+YRiA -----END CERTIFICATE-----Generated at Wed May 13 15:36:48 2026 by rpki-client