$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS137401.roa File: AS137401.roa (raw, json) Hash identifier: 6ufxJXuUoR2pq8R0vJ72V3quRoFZQFpvGCMGVu2H2Cc= Subject key identifier: 51:ED:B1:75:67:BE:8A:90:1A:DF:A1:DA:35:02:3E:0D:0A:E5:19:97 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3517E588D78540B5832C826A520B86FDE45AA992 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS137401.roa Signing time: Thu 28 May 2026 16:02:33 +0000 ROA not before: Thu 28 May 2026 15:57:33 +0000 ROA not after: Thu 27 May 2027 16:02:33 +0000 asID: 137401 IP address blocks: 240e:45c:1b00::/40 maxlen: 40 240e:45c:1d00::/40 maxlen: 40 240e:45c:1f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:17:e5:88:d7:85:40:b5:83:2c:82:6a:52:0b:86:fd:e4:5a:a9:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:57:33 2026 GMT Not After : May 27 16:02:33 2027 GMT Subject: CN=51EDB17567BE8A901ADFA1DA35023E0D0AE51997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:f7:1f:6e:98:bc:10:fa:98:e6:9e:f3:1c: 69:63:c9:1b:b0:33:72:3f:34:59:ed:8b:4f:07:60: 31:bb:3b:56:f7:f6:31:c3:63:cb:73:59:7a:97:15: 81:7a:ae:18:e9:8e:a7:11:cd:fa:01:ce:60:c4:df: 95:e5:77:43:d9:71:83:92:bc:4d:c2:a0:c8:08:55: a5:d7:c9:bd:7c:b3:99:bf:d3:90:40:46:e7:b7:e9: 08:70:15:45:46:0b:34:90:cc:37:0e:66:e9:79:0d: 6e:25:a5:89:e5:c3:9d:70:96:f6:c2:b8:1f:8e:72: c7:08:e5:9b:1b:c7:d9:90:1f:7a:56:cc:ea:81:25: 4d:df:c8:a6:04:30:83:72:cf:5b:32:1b:d2:fe:99: 14:21:57:62:dc:c7:4b:1a:b8:a9:da:39:a4:4d:51: 5f:d0:2c:ac:ae:85:0a:81:0a:d8:63:df:af:b5:82: 29:64:0a:7c:fd:44:6f:42:20:ad:13:f4:e7:41:bf: cd:32:81:c7:49:24:44:12:57:5c:53:06:3c:23:38: 13:03:48:c3:50:17:ff:3c:ea:cd:da:a4:97:c0:18: 3b:18:9a:84:59:3d:94:96:7c:5e:9b:6c:97:0b:63: 77:98:2d:ab:81:77:8c:8f:fd:76:9e:a0:2e:24:ca: a3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:ED:B1:75:67:BE:8A:90:1A:DF:A1:DA:35:02:3E:0D:0A:E5:19:97 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS137401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:45c:1b00::/40 240e:45c:1d00::/40 240e:45c:1f00::/40 Signature Algorithm: sha256WithRSAEncryption 68:58:f5:a2:0f:fc:d1:d9:ff:fd:58:72:d5:fd:86:08:ea:34: 78:71:9f:f2:8b:21:bc:f5:e6:52:8b:86:0e:6a:9b:5a:04:88: ae:f9:ca:e7:7a:e5:ab:df:3b:ac:fc:3a:8e:4b:e2:08:5c:07: 11:21:55:41:97:b7:0b:2a:5d:ac:bf:98:67:ee:98:9b:7c:63: ab:13:77:1b:77:11:fa:e1:e5:21:4e:ac:29:7a:be:55:bd:3c: aa:bb:36:bd:a0:86:06:f3:40:54:2c:2a:15:f5:8d:fc:b0:66: b1:61:19:d5:c9:5c:07:13:84:89:3d:d2:a2:43:19:5b:31:2c: f5:90:6a:3f:79:f1:61:8b:78:89:14:da:d9:09:f8:e2:1a:48: 66:e6:01:b4:73:6c:0b:a4:13:08:c6:0d:d0:0e:b5:4f:35:83: 73:7e:78:9d:bd:dd:66:bd:29:5e:60:92:12:17:28:25:38:8e: 52:34:ab:0f:bd:43:a3:da:b3:0a:9b:c9:da:a1:56:9a:a3:43: 0f:25:a4:20:12:e6:de:39:d2:50:5a:21:99:97:5c:35:1c:f6: 7e:28:9c:19:23:80:7b:b1:fb:ca:20:52:7f:8e:49:60:24:60: 89:c4:10:d2:8d:32:f2:23:fd:e3:a6:ef:56:8a:0a:bc:3f:7e: d5:a5:1d:02 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUNRfliNeFQLWDLIJqUguG/eRaqZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTczM1oX DTI3MDUyNzE2MDIzM1owMzExMC8GA1UEAxMoNTFFREIxNzU2N0JFOEE5MDFBREZB MURBMzUwMjNFMEQwQUU1MTk5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMU9x9umLwQ+pjmnvMcaWPJG7Azcj80We2LTwdgMbs7Vvf2McNjy3NZepcV gXquGOmOpxHN+gHOYMTfleV3Q9lxg5K8TcKgyAhVpdfJvXyzmb/TkEBG57fpCHAV RUYLNJDMNw5m6XkNbiWlieXDnXCW9sK4H45yxwjlmxvH2ZAfelbM6oElTd/IpgQw g3LPWzIb0v6ZFCFXYtzHSxq4qdo5pE1RX9AsrK6FCoEK2GPfr7WCKWQKfP1Eb0Ig rRP050G/zTKBx0kkRBJXXFMGPCM4EwNIw1AX/zzqzdqkl8AYOxiahFk9lJZ8Xpts lwtjd5gtq4F3jI/9dp6gLiTKow8CAwEAAaOCAfYwggHyMB0GA1UdDgQWBBRR7bF1 Z76KkBrfodo1Aj4NCuUZlzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM3NDAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAAjAYAwYAJA4EXBsDBgAkDgRcHQMGACQO BFwfMA0GCSqGSIb3DQEBCwUAA4IBAQBoWPWiD/zR2f/9WHLV/YYI6jR4cZ/yiyG8 9eZSi4YOaptaBIiu+crneuWr3zus/DqOS+IIXAcRIVVBl7cLKl2sv5hn7pibfGOr E3cbdxH64eUhTqwper5VvTyquza9oIYG80BULCoV9Y38sGaxYRnVyVwHE4SJPdKi QxlbMSz1kGo/efFhi3iJFNrZCfjiGkhm5gG0c2wLpBMIxg3QDrVPNYNzfnidvd1m vSleYJISFyglOI5SNKsPvUOj2rMKm8naoVaao0MPJaQgEubeOdJQWiGZl1w1HPZ+ KJwZI4B7sfvKIFJ/jklgJGCJxBDSjTLyI/3jpu9Wigq8P37VpR0C -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:40 2026 by rpki-client