$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138409.roa File: AS138409.roa (raw, json) Hash identifier: K9F6BszUDoDxr4Pf2FP8msU4iuTxvh8GyXLThVI1XZU= Subject key identifier: 88:7C:8F:42:00:62:6D:CD:E9:B2:F9:CB:E1:D0:A0:8B:0A:EB:EE:94 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 4669E7366B1B1D1596AE4319DAE1668C2CBC82E3 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138409.roa Signing time: Thu 28 May 2026 16:01:18 +0000 ROA not before: Thu 28 May 2026 15:56:18 +0000 ROA not after: Thu 27 May 2027 16:01:18 +0000 asID: 138409 IP address blocks: 240e:bf:b8f8::/48 maxlen: 48 240e:bf:b8f9::/48 maxlen: 48 240e:bf:b8fa::/48 maxlen: 48 240e:bf:b8fb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:69:e7:36:6b:1b:1d:15:96:ae:43:19:da:e1:66:8c:2c:bc:82:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:56:18 2026 GMT Not After : May 27 16:01:18 2027 GMT Subject: CN=887C8F4200626DCDE9B2F9CBE1D0A08B0AEBEE94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:7a:a4:a6:d0:7e:ef:06:e5:6a:0c:d3:24: a0:73:96:e7:2c:30:2f:2e:7f:3c:c5:37:63:23:d8: fd:ae:27:55:23:cf:55:18:0d:a1:fe:48:56:ff:ed: ce:d1:7b:4a:b7:a4:a3:db:4f:6b:07:d5:52:23:68: db:76:de:bb:08:d2:bf:45:50:e6:8c:27:4c:68:de: bc:db:1b:b9:5c:5f:9c:4e:df:25:4a:84:2b:25:b6: 29:55:a7:c9:12:71:65:7d:13:2e:fd:07:09:06:28: f3:e8:e9:4f:1d:30:42:5e:d8:c8:a0:87:49:f6:8d: c2:c2:c2:db:1a:0f:68:41:41:9c:81:76:a3:dc:52: 2d:28:54:0a:f1:ae:2a:9a:8c:c5:e7:e6:3c:18:6f: a5:06:2b:3c:ae:58:3d:cf:6e:8a:77:7f:8e:6d:33: 3b:ea:12:89:b6:e5:f2:37:8a:95:c3:70:98:71:12: 75:dc:79:97:50:89:34:78:be:b5:f6:cc:98:ce:ed: 41:01:c5:69:36:ae:d6:df:ef:9f:28:33:38:4d:77: d0:f9:4c:25:20:d6:5c:46:9a:7c:46:b0:6f:2d:c7: 89:94:3b:cc:2c:a6:38:fb:6c:dc:f7:b9:0e:74:10: 4d:9c:c5:c3:11:a0:57:28:da:bb:f8:c2:79:95:0a: d7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7C:8F:42:00:62:6D:CD:E9:B2:F9:CB:E1:D0:A0:8B:0A:EB:EE:94 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:bf:b8f8::/46 Signature Algorithm: sha256WithRSAEncryption 3b:4b:1a:24:e8:4f:a5:9f:10:cd:17:c2:66:f5:a5:bc:e2:8a: f6:9b:a5:7b:58:12:6f:06:4a:2f:91:5e:a1:49:39:08:a7:21: 7a:0d:cf:56:a5:f8:2f:99:b3:3d:bc:9c:49:78:4a:8a:41:c7: e9:19:84:41:7f:15:3a:2e:f2:dc:61:b9:28:a4:a3:4f:46:bc: 94:c2:79:b4:ce:a7:af:e7:ec:f9:46:d4:e6:54:16:70:27:00: f8:40:f8:7c:4f:78:d0:b7:ae:21:0e:f4:e7:3d:bb:50:39:d1: 7c:ca:cc:5c:b5:b3:e4:ae:0d:f9:e4:4c:f5:00:0f:ff:f5:91: 80:2b:59:a4:4c:56:1d:21:3e:d7:48:3b:53:0a:cc:f2:6c:34: c6:46:8a:a1:3b:1b:5d:fb:43:ad:52:dc:fe:2c:ad:62:cb:9f: 7d:6e:2d:6c:9d:87:40:e0:c7:75:fd:a5:60:09:ac:ed:db:a0: 36:0f:fa:d5:a8:8a:1d:de:5c:2c:7a:4f:95:de:cc:76:59:f6: 03:9f:ce:a9:5b:f3:91:00:f7:6e:c2:3e:b3:e4:f1:f8:50:d0: c1:a5:40:bf:03:8f:1c:31:0a:41:47:15:50:65:7d:8d:8a:60: 2f:41:a1:04:78:2b:de:c2:26:b4:22:48:35:71:73:b2:45:28: 0f:b4:2e:d3 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIURmnnNmsbHRWWrkMZ2uFmjCy8guMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTYxOFoX DTI3MDUyNzE2MDExOFowMzExMC8GA1UEAxMoODg3QzhGNDIwMDYyNkRDREU5QjJG OUNCRTFEMEEwOEIwQUVCRUU5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsYeqSm0H7vBuVqDNMkoHOW5ywwLy5/PMU3YyPY/a4nVSPPVRgNof5IVv/t ztF7Sreko9tPawfVUiNo23beuwjSv0VQ5ownTGjevNsbuVxfnE7fJUqEKyW2KVWn yRJxZX0TLv0HCQYo8+jpTx0wQl7YyKCHSfaNwsLC2xoPaEFBnIF2o9xSLShUCvGu KpqMxefmPBhvpQYrPK5YPc9uind/jm0zO+oSibbl8jeKlcNwmHESddx5l1CJNHi+ tfbMmM7tQQHFaTau1t/vnygzOE130PlMJSDWXEaafEawby3HiZQ7zCymOPts3Pe5 DnQQTZzFwxGgVyjau/jCeZUK17MCAwEAAaOCAecwggHjMB0GA1UdDgQWBBSIfI9C AGJtzemy+cvh0KCLCuvulDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM4NDA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCJA4Av7j4MA0GCSqGSIb3DQEB CwUAA4IBAQA7Sxok6E+lnxDNF8Jm9aW84or2m6V7WBJvBkovkV6hSTkIpyF6Dc9W pfgvmbM9vJxJeEqKQcfpGYRBfxU6LvLcYbkopKNPRryUwnm0zqev5+z5RtTmVBZw JwD4QPh8T3jQt64hDvTnPbtQOdF8ysxctbPkrg355Ez1AA//9ZGAK1mkTFYdIT7X SDtTCszybDTGRoqhOxtd+0OtUtz+LK1iy599bi1snYdA4Md1/aVgCazt26A2D/rV qIod3lwsek+V3sx2WfYDn86pW/ORAPduwj6z5PH4UNDBpUC/A48cMQpBRxVQZX2N imAvQaEEeCvewia0Ikg1cXOyRSgPtC7T -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:37 2026 by rpki-client