Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134772.roa
File: AS134772.roa (raw, json)
Hash identifier: uCnx+OUClLNu/1j5++yIWfl3dSjWIxa9/JSgqLKnOo4=
Subject key identifier: 65:6A:31:90:84:FA:A9:6D:32:26:9B:69:17:83:36:5E:18:8D:3A:AB
Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Certificate serial: 2B758319B067BCF11CD5939A75B5F10EB9D386D8
Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134772.roa
Signing time: Tue 02 Jun 2026 16:24:36 +0000
ROA not before: Tue 02 Jun 2026 16:19:36 +0000
ROA not after: Tue 01 Jun 2027 16:24:36 +0000
asID: 134772
IP address blocks: 240e:fc:7000::/36 maxlen: 36
240e:fc:8000::/36 maxlen: 36
240e:fc:9000::/36 maxlen: 36
240e:fc:a000::/36 maxlen: 36
240e:fc:b000::/36 maxlen: 36
240e:fc:c000::/36 maxlen: 36
240e:fc:d000::/36 maxlen: 36
240e:fc:e000::/36 maxlen: 36
240e:ff:c004::/48 maxlen: 48
240e:ff:c00c::/48 maxlen: 48
240e:108:4046::/48 maxlen: 48
240e:108:4846::/48 maxlen: 48
240e:3b0:d000::/37 maxlen: 37
240e:3b0:d800::/38 maxlen: 38
240e:3b1:d000::/37 maxlen: 37
240e:3b1:d800::/38 maxlen: 38
240e:3b2:d000::/37 maxlen: 37
240e:3b2:d800::/38 maxlen: 38
240e:3b3:d000::/37 maxlen: 37
240e:3b3:d800::/38 maxlen: 38
240e:3b4:d000::/37 maxlen: 37
240e:3b4:d800::/38 maxlen: 38
240e:3b5:d000::/37 maxlen: 37
240e:3b5:d800::/38 maxlen: 38
240e:3b6:d000::/37 maxlen: 37
240e:3b6:d800::/38 maxlen: 38
240e:3b7:d000::/37 maxlen: 37
240e:3b7:d800::/38 maxlen: 38
240e:3b8:d000::/37 maxlen: 37
240e:3b8:d800::/38 maxlen: 38
240e:3b9:d000::/37 maxlen: 37
240e:3b9:d800::/38 maxlen: 38
240e:3ba:d000::/37 maxlen: 37
240e:3ba:d800::/38 maxlen: 38
240e:3bb:d000::/37 maxlen: 37
240e:3bb:d800::/38 maxlen: 38
240e:3bc:d000::/37 maxlen: 37
240e:3bc:d800::/38 maxlen: 38
240e:3bd:d000::/37 maxlen: 37
240e:3bd:d800::/38 maxlen: 38
240e:3be:d000::/37 maxlen: 37
240e:3be:d800::/38 maxlen: 38
240e:3bf:d000::/37 maxlen: 37
240e:3bf:d800::/38 maxlen: 38
240e:6b2::/36 maxlen: 36
240e:6b2:1000::/36 maxlen: 36
240e:6b2:2000::/36 maxlen: 36
240e:982:e609::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 14 Jun 2026 12:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:75:83:19:b0:67:bc:f1:1c:d5:93:9a:75:b5:f1:0e:b9:d3:86:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Validity
Not Before: Jun 2 16:19:36 2026 GMT
Not After : Jun 1 16:24:36 2027 GMT
Subject: CN=656A319084FAA96D32269B691783365E188D3AAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3c:57:6e:29:cc:e6:f7:b3:74:6e:c5:d0:9a:
0a:92:6d:2e:fc:c6:45:3e:b2:26:87:61:a1:83:42:
62:7a:24:0a:cf:2a:07:70:73:de:ca:f2:1e:37:6d:
25:4f:60:ac:14:17:43:b0:6d:9c:77:49:c3:d2:7e:
78:03:5d:42:ad:a9:c8:12:74:5d:d0:63:3f:63:d8:
78:2a:21:72:9e:aa:7c:ec:01:54:2a:50:72:46:6c:
8b:ef:a3:91:06:a5:e5:e5:94:6f:e3:0f:30:17:dc:
98:a1:e8:61:7f:1c:24:73:1c:dc:d8:8c:db:3b:8c:
d5:7c:3b:89:60:a3:72:6f:92:c9:96:ff:21:80:62:
d6:13:fa:08:ee:da:25:4f:b6:49:3c:7c:5b:6d:8c:
b8:2c:b8:7b:60:d3:dd:6e:9f:52:ff:a9:29:49:1b:
65:27:54:0e:e9:9b:9e:83:f9:1d:03:af:0d:ee:f1:
00:54:85:28:e1:ac:e5:f9:07:8a:9c:7e:e0:a0:b1:
15:6f:4c:54:62:bd:41:a7:c2:94:18:07:2f:18:00:
81:00:c4:75:a4:b2:0f:3b:c2:9b:f2:da:43:62:59:
47:92:68:71:bb:c5:1f:a9:1b:f8:f0:73:ea:20:ca:
56:49:d3:c4:10:ab:58:85:0e:4e:bf:da:5e:b9:14:
1b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6A:31:90:84:FA:A9:6D:32:26:9B:69:17:83:36:5E:18:8D:3A:AB
X509v3 Authority Key Identifier:
keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS134772.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240e:fc:7000::-240e:fc:efff:ffff:ffff:ffff:ffff:ffff
240e:ff:c004::/48
240e:ff:c00c::/48
240e:108:4046::/48
240e:108:4846::/48
240e:3b0:d000::-240e:3b0:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b1:d000::-240e:3b1:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b2:d000::-240e:3b2:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b3:d000::-240e:3b3:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b4:d000::-240e:3b4:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b5:d000::-240e:3b5:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b6:d000::-240e:3b6:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b7:d000::-240e:3b7:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b8:d000::-240e:3b8:dbff:ffff:ffff:ffff:ffff:ffff
240e:3b9:d000::-240e:3b9:dbff:ffff:ffff:ffff:ffff:ffff
240e:3ba:d000::-240e:3ba:dbff:ffff:ffff:ffff:ffff:ffff
240e:3bb:d000::-240e:3bb:dbff:ffff:ffff:ffff:ffff:ffff
240e:3bc:d000::-240e:3bc:dbff:ffff:ffff:ffff:ffff:ffff
240e:3bd:d000::-240e:3bd:dbff:ffff:ffff:ffff:ffff:ffff
240e:3be:d000::-240e:3be:dbff:ffff:ffff:ffff:ffff:ffff
240e:3bf:d000::-240e:3bf:dbff:ffff:ffff:ffff:ffff:ffff
240e:6b2::-240e:6b2:2fff:ffff:ffff:ffff:ffff:ffff
240e:982:e609::/48
Signature Algorithm: sha256WithRSAEncryption
8d:f0:03:f6:59:ee:01:5b:db:61:f3:1b:38:5a:7d:d6:5d:08:
7f:17:b9:53:38:5c:80:5c:77:e2:9d:bf:46:c1:b4:0d:12:67:
10:30:f6:9d:b1:a5:42:c9:e7:3c:59:97:4c:41:03:f9:5b:33:
0a:52:07:05:2c:8d:fa:2b:bf:f8:40:ca:8d:da:1b:df:79:03:
e0:8a:52:9d:be:ea:58:0d:a4:8a:58:3e:da:5a:00:e4:7a:e5:
ba:19:8c:3b:0d:ad:ba:b6:e0:ed:78:ff:e8:d3:97:44:34:c5:
13:78:49:56:5c:5e:d2:1c:92:84:15:cc:0e:1f:65:4b:e1:8b:
d5:2f:6d:b0:ce:7f:3c:55:7d:40:5b:01:39:f0:c3:55:3f:15:
e4:84:d8:43:00:05:cf:8f:18:65:1c:1f:63:38:eb:48:9f:ac:
e5:16:3c:eb:b0:76:a0:81:d4:f6:84:78:e3:fb:83:8d:28:26:
c5:ff:42:6a:b0:28:47:25:12:b1:ae:31:9e:ef:47:9b:3a:38:
cc:1b:10:47:cc:3d:16:a9:3b:6d:73:09:7b:65:ac:20:0e:c0:
18:e9:f1:da:1f:20:28:e1:e3:6a:9f:db:ad:d0:c1:95:92:77:
6b:6f:3b:ca:48:91:6e:69:54:52:91:fb:d3:ee:b3:06:fa:31:
c8:25:a3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:17:33 2026 by rpki-client