$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138513.roa File: AS138513.roa (raw, json) Hash identifier: GtItsLZz7I8IjlX8xfjEKa+5I5EBLyqbjtXFWtZPJFM= Subject key identifier: 13:5A:38:10:62:0E:7E:22:D2:11:5D:15:58:5D:25:CF:CE:25:BB:90 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 29374C60E78C4CCC57BA9C07D84FD00B209D66C6 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138513.roa Signing time: Thu 28 May 2026 16:01:18 +0000 ROA not before: Thu 28 May 2026 15:56:18 +0000 ROA not after: Thu 27 May 2027 16:01:18 +0000 asID: 138513 IP address blocks: 240e:bf:b8f4::/48 maxlen: 48 240e:bf:b8f5::/48 maxlen: 48 240e:bf:b8f6::/48 maxlen: 48 240e:bf:b8f7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:37:4c:60:e7:8c:4c:cc:57:ba:9c:07:d8:4f:d0:0b:20:9d:66:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:56:18 2026 GMT Not After : May 27 16:01:18 2027 GMT Subject: CN=135A3810620E7E22D2115D15585D25CFCE25BB90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4e:2b:8a:1f:b1:69:0c:15:2e:cc:b5:74:95: c5:ff:26:27:85:79:0b:92:b2:a2:ed:a7:73:30:35: 0e:1e:e7:56:63:8e:5d:af:1e:c9:33:9a:20:cc:19: 6f:bb:eb:59:c0:41:7d:0d:97:20:aa:e5:25:61:5d: eb:d3:a9:62:62:45:11:08:ae:aa:58:a4:0e:9e:18: 54:f8:c9:b0:99:a8:41:55:af:5a:d9:55:33:67:ca: 7a:3a:e7:fd:88:a0:5e:13:a9:57:98:ea:c2:f4:fe: 98:2b:59:6e:34:62:6e:67:9f:be:63:1f:9b:85:d7: e1:05:2b:ea:ed:01:e3:81:e7:ff:74:16:63:28:3f: 25:a5:7e:c4:91:52:c1:42:1a:67:bd:e9:b4:94:4b: ab:e8:39:f5:be:3b:dc:84:81:72:7f:ae:2d:5d:64: 1e:c0:ca:20:4f:6a:9c:32:38:13:4f:5f:17:12:57: 56:fe:0d:e9:9c:dc:68:7a:44:ce:f6:23:65:2a:02: ae:74:a9:28:60:52:66:33:14:39:d2:f2:62:ac:5c: 34:a9:3c:47:ae:92:02:88:b8:2a:6b:f3:61:d6:99: f8:10:a9:fc:08:92:ca:f4:a7:f9:40:5a:9f:c5:72: cf:f7:98:7b:f8:c0:02:da:a2:b8:8f:c0:62:18:ca: a3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5A:38:10:62:0E:7E:22:D2:11:5D:15:58:5D:25:CF:CE:25:BB:90 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138513.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:bf:b8f4::/46 Signature Algorithm: sha256WithRSAEncryption 61:4d:3a:92:54:ba:f0:e6:e4:2a:37:41:47:b0:a7:9f:d2:b2: 7f:d5:d3:64:de:c9:c0:04:12:36:f5:14:ae:fe:14:13:c4:87: 63:82:7a:22:db:74:f7:d3:d4:3d:1f:09:a0:30:08:8d:f7:c5: 69:72:6a:7c:d3:25:fb:de:44:39:2b:42:06:37:21:8d:24:09: f4:76:89:72:e3:08:ab:96:1f:f7:05:6e:b7:b4:48:70:0b:22: 4f:51:76:ee:49:1b:ad:05:28:4b:da:2a:5e:1d:f3:db:05:0e: a5:d9:1b:cb:3c:0c:44:3c:77:e7:11:95:5e:d4:e2:af:72:e1: 1f:02:48:7b:e5:31:5c:b0:ef:da:0d:f7:ee:b9:3b:18:4b:57: f5:e9:63:bf:0b:a3:03:6a:dd:84:5d:fb:0d:f5:b9:17:b6:28: d3:9b:52:f7:ba:ae:1c:e3:af:c4:49:4b:bd:f9:90:30:a7:7d: 4e:12:fc:9b:30:1d:d0:1d:58:94:20:ca:11:97:7b:9e:a1:38: ec:17:21:dd:3e:54:46:17:3d:e7:c2:0d:c4:e7:43:0d:81:6c: a6:bd:65:65:fa:13:95:3a:70:89:cc:93:c1:8b:25:67:83:3c: da:c4:2e:60:76:93:c2:99:d3:34:32:16:9a:5e:4d:92:b7:16: 42:ec:7e:25 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUKTdMYOeMTMxXupwH2E/QCyCdZsYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTYxOFoX DTI3MDUyNzE2MDExOFowMzExMC8GA1UEAxMoMTM1QTM4MTA2MjBFN0UyMkQyMTE1 RDE1NTg1RDI1Q0ZDRTI1QkI5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxOK4ofsWkMFS7MtXSVxf8mJ4V5C5Kyou2nczA1Dh7nVmOOXa8eyTOaIMwZ b7vrWcBBfQ2XIKrlJWFd69OpYmJFEQiuqlikDp4YVPjJsJmoQVWvWtlVM2fKejrn /YigXhOpV5jqwvT+mCtZbjRibmefvmMfm4XX4QUr6u0B44Hn/3QWYyg/JaV+xJFS wUIaZ73ptJRLq+g59b473ISBcn+uLV1kHsDKIE9qnDI4E09fFxJXVv4N6ZzcaHpE zvYjZSoCrnSpKGBSZjMUOdLyYqxcNKk8R66SAoi4KmvzYdaZ+BCp/AiSyvSn+UBa n8Vyz/eYe/jAAtqiuI/AYhjKo4MCAwEAAaOCAecwggHjMB0GA1UdDgQWBBQTWjgQ Yg5+ItIRXRVYXSXPziW7kDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM4NTEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCJA4Av7j0MA0GCSqGSIb3DQEB CwUAA4IBAQBhTTqSVLrw5uQqN0FHsKef0rJ/1dNk3snABBI29RSu/hQTxIdjgnoi 23T309Q9HwmgMAiN98Vpcmp80yX73kQ5K0IGNyGNJAn0doly4wirlh/3BW63tEhw CyJPUXbuSRutBShL2ipeHfPbBQ6l2RvLPAxEPHfnEZVe1OKvcuEfAkh75TFcsO/a DffuuTsYS1f16WO/C6MDat2EXfsN9bkXtijTm1L3uq4c46/ESUu9+ZAwp31OEvyb MB3QHViUIMoRl3ueoTjsFyHdPlRGFz3nwg3E50MNgWymvWVl+hOVOnCJzJPBiyVn gzzaxC5gdpPCmdM0MhaaXk2StxZC7H4l -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:38 2026 by rpki-client