$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3235322e302f32322d3232203d3e2034383131.roa File: 3130312e38392e3235322e302f32322d3232203d3e2034383131.roa (raw, json) Hash identifier: js24MWFzEl12Wy8tv6vNnhCqbERO1wjZ57M35ixvZF8= Subject key identifier: FB:F8:BE:75:CB:B9:2E:28:66:3B:96:14:AA:6E:D9:F2:83:60:23:DB Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3D921E350B930FDFB266F3F52435EB54BF47AC7F Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3235322e302f32322d3232203d3e2034383131.roa Signing time: Sat 09 May 2026 16:15:55 +0000 ROA not before: Sat 09 May 2026 16:10:55 +0000 ROA not after: Sat 08 May 2027 16:15:55 +0000 asID: 4811 IP address blocks: 101.89.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:92:1e:35:0b:93:0f:df:b2:66:f3:f5:24:35:eb:54:bf:47:ac:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 9 16:10:55 2026 GMT Not After : May 8 16:15:55 2027 GMT Subject: CN=FBF8BE75CBB92E28663B9614AA6ED9F2836023DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:23:72:91:63:a6:72:54:71:69:dd:39:0f:cc: b5:bf:6d:0e:e8:8b:96:10:30:01:12:d1:f5:4d:44: 5b:47:f2:ea:49:d6:d6:70:36:45:82:0b:fb:f9:fa: 85:7b:0c:40:69:8d:cc:fe:33:ed:d1:33:07:2a:36: cc:50:2e:17:81:b1:a6:33:d7:58:0b:f3:9b:d2:15: 34:06:0b:fa:27:e3:8c:5e:0a:34:3b:fb:f4:31:b8: 20:31:64:2a:f1:49:26:a7:ab:53:89:cd:53:b0:b0: 99:d1:36:9d:65:45:20:c8:26:4c:9b:ac:ff:23:81: 8a:ab:82:94:8b:92:3e:0c:65:5b:33:72:44:01:44: ff:0d:4b:2f:c2:70:56:72:4a:83:01:f1:eb:2d:75: 91:91:ed:fa:98:92:26:60:f2:05:76:8a:95:f0:a4: 58:4d:00:93:41:86:53:2f:e8:53:ed:8d:3e:4b:1e: 59:02:63:50:87:9b:ac:ef:0e:07:d7:76:ae:d2:e5: f8:b1:29:94:75:4f:f9:89:cd:db:ef:35:ff:45:d4: 7e:bf:08:32:32:5d:14:4b:6e:6c:82:1e:30:cf:9f: 62:f9:03:80:88:c4:8e:32:82:30:0f:51:b6:75:7c: 91:d3:a5:51:75:ae:4d:93:0e:7a:c0:39:52:19:4d: 55:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F8:BE:75:CB:B9:2E:28:66:3B:96:14:AA:6E:D9:F2:83:60:23:DB X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3130312e38392e3235322e302f32322d3232203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.89.252.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:3e:7e:b7:ee:72:ec:fb:a0:c9:67:75:fb:e8:e0:44:c5:46: 6b:63:0a:2b:10:db:77:45:8d:ec:a7:59:53:65:4a:ef:fe:43: fc:5d:cb:1a:cf:7f:6e:f0:91:b6:89:1a:29:d4:b8:12:72:ed: c7:af:5f:e5:6c:ae:4b:1a:d3:c7:68:44:65:be:79:99:64:0d: f1:5f:a4:ad:cf:14:ed:92:35:cf:4f:08:58:18:20:1a:88:a7: 85:fd:7c:90:b0:d8:ba:73:2b:bb:48:eb:62:a3:a1:c7:ba:35: af:75:60:6f:7b:73:27:d9:ac:09:fa:d0:e7:81:b4:b2:ed:10: eb:a5:ab:aa:d6:e5:4a:33:a6:7f:fc:b5:80:e4:64:8f:d5:93: 45:5d:20:6a:72:2a:0d:52:42:8a:12:f1:7a:38:c9:92:38:f7: 14:dd:fc:3a:55:0d:e3:dd:e1:2c:15:3a:91:e3:83:fc:60:24: 99:99:51:5b:83:c6:1e:78:4b:4d:62:ee:54:90:a1:5f:81:49: 9d:8f:19:6a:63:9c:7c:17:a7:c9:82:0f:ef:50:d5:2b:bc:c0: 96:18:b0:89:fc:c6:79:33:9b:4f:ba:e9:e5:26:7f:5b:64:02: d8:ac:a8:61:ea:4f:88:49:1b:a7:eb:3f:98:a2:a3:7b:ab:a5: f8:32:ad:a0 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUPZIeNQuTD9+yZvP1JDXrVL9HrH8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUwOTE2MTA1NVoX DTI3MDUwODE2MTU1NVowMzExMC8GA1UEAxMoRkJGOEJFNzVDQkI5MkUyODY2M0I5 NjE0QUE2RUQ5RjI4MzYwMjNEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEjcpFjpnJUcWndOQ/Mtb9tDuiLlhAwARLR9U1EW0fy6knW1nA2RYIL+/n6 hXsMQGmNzP4z7dEzByo2zFAuF4GxpjPXWAvzm9IVNAYL+ifjjF4KNDv79DG4IDFk KvFJJqerU4nNU7CwmdE2nWVFIMgmTJus/yOBiquClIuSPgxlWzNyRAFE/w1LL8Jw VnJKgwHx6y11kZHt+piSJmDyBXaKlfCkWE0Ak0GGUy/oU+2NPkseWQJjUIebrO8O B9d2rtLl+LEplHVP+YnN2+81/0XUfr8IMjJdFEtubIIeMM+fYvkDgIjEjjKCMA9R tnV8kdOlUXWuTZMOesA5UhlNVT0CAwEAAaOCAhEwggINMB0GA1UdDgQWBBT7+L51 y7kuKGY7lhSqbtnyg2Aj2zAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMwMzEyZTM4MzkyZTMyMzUzMjJlMzAyZjMyMzIyZDMyMzIy MDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZVn8MA0GCSqGSIb3DQEBCwUAA4IB AQBcPn637nLs+6DJZ3X76OBExUZrYworENt3RY3sp1lTZUrv/kP8Xcsaz39u8JG2 iRop1LgScu3Hr1/lbK5LGtPHaERlvnmZZA3xX6StzxTtkjXPTwhYGCAaiKeF/XyQ sNi6cyu7SOtio6HHujWvdWBve3Mn2awJ+tDngbSy7RDrpauq1uVKM6Z//LWA5GSP 1ZNFXSBqcioNUkKKEvF6OMmSOPcU3fw6VQ3j3eEsFTqR44P8YCSZmVFbg8YeeEtN Yu5UkKFfgUmdjxlqY5x8F6fJgg/vUNUrvMCWGLCJ/MZ5M5tPuunlJn9bZALYrKhh 6k+ISRun6z+YoqN7q6X4Mq2g -----END CERTIFICATE-----Generated at Wed May 13 13:48:42 2026 by rpki-client