$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138514.roa File: AS138514.roa (raw, json) Hash identifier: NDdfZKtx84b1Mqn11AQhKsKcTbalSiuaWdeWbt5S94U= Subject key identifier: 5D:E5:ED:96:6D:04:52:92:8A:B7:D4:C9:6C:8A:2B:CB:88:6E:7E:7D Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 37DD5DDCD922CE6A880926CB63BAA12334A3B06F Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138514.roa Signing time: Thu 28 May 2026 16:01:18 +0000 ROA not before: Thu 28 May 2026 15:56:18 +0000 ROA not after: Thu 27 May 2027 16:01:18 +0000 asID: 138514 IP address blocks: 240e:bf:b8f0::/48 maxlen: 48 240e:bf:b8f1::/48 maxlen: 48 240e:bf:b8f2::/48 maxlen: 48 240e:bf:b8f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:dd:5d:dc:d9:22:ce:6a:88:09:26:cb:63:ba:a1:23:34:a3:b0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:56:18 2026 GMT Not After : May 27 16:01:18 2027 GMT Subject: CN=5DE5ED966D0452928AB7D4C96C8A2BCB886E7E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:d7:b2:2c:d2:12:1f:08:ba:e3:02:e8:24: 78:fd:c4:8e:74:02:94:45:93:cb:f8:b0:e9:f9:31: 80:ff:d0:67:9e:a9:7f:f4:6b:b0:96:c7:48:46:0c: 31:06:9c:e9:46:6d:85:55:5d:50:de:93:2f:3f:14: ea:06:73:3d:28:e8:55:a0:c8:60:e5:d9:c6:9f:ef: 84:a5:dd:5b:c4:5f:b7:3e:db:c6:bb:f9:eb:91:27: 8f:f9:58:26:44:28:ff:37:e7:ab:05:7d:a6:a8:6a: 02:bf:9c:dc:96:4c:86:ff:30:05:e7:9f:ff:b2:48: 39:d7:0e:0e:1b:5f:ce:78:bf:d3:ec:92:39:0b:a3: 7c:c6:25:27:5e:0e:c8:10:cc:0f:c8:f4:c4:90:d6: ef:55:a3:39:0d:b7:85:f3:6d:e0:ed:3a:b1:1a:f6: 89:68:47:07:ac:85:a3:55:c7:42:ef:e1:c1:f8:49: 9e:be:0a:b8:45:71:5c:fb:cf:d5:0c:01:f0:0a:ec: f4:f7:31:b0:e2:ff:61:ee:71:da:96:28:2d:2b:64: 71:cb:c9:f1:0b:22:8c:d4:7a:1b:38:3a:b0:b1:ae: 74:3e:31:c0:ef:e9:be:19:de:95:30:fe:0a:d2:d7: 7a:8b:f8:f0:ea:d3:01:2b:f8:3a:5e:4f:bf:bb:5d: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E5:ED:96:6D:04:52:92:8A:B7:D4:C9:6C:8A:2B:CB:88:6E:7E:7D X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138514.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:bf:b8f0::/46 Signature Algorithm: sha256WithRSAEncryption 88:3c:b4:a3:a9:47:44:70:52:f7:f0:69:ef:74:05:5e:a9:eb: 6c:5a:77:4d:b1:48:30:f1:21:40:42:68:70:cb:05:a8:53:32: 45:86:c1:bd:d1:fb:c3:64:e2:e7:c2:77:61:3a:79:0c:a4:64: b0:b7:c8:d0:53:59:33:68:e7:e2:ab:4a:49:0a:d4:77:c7:84: 8b:48:63:04:4c:d7:31:8d:e2:0a:4a:e5:35:3e:ac:22:43:01: 7f:e9:7f:fc:19:30:5e:5f:81:76:04:a6:3b:be:fb:98:0d:8d: b3:76:a2:61:77:77:c9:f3:48:0b:f2:ab:4e:bf:f9:26:3b:17: ef:b3:8d:bc:b6:58:c1:ea:8d:75:43:c9:62:fb:b0:2d:71:76: b4:4f:85:27:94:7f:d3:3a:0a:93:9a:d2:51:2f:ee:c9:d4:d3: 3e:bf:c9:ed:87:a4:96:11:b1:d0:a5:0c:75:81:e5:f6:b5:e0: a7:6f:b7:e9:5f:57:29:a7:74:ad:9d:f7:a4:f9:78:f8:75:3a: dc:6f:12:7a:6f:9c:2d:09:b3:22:a5:15:0c:ba:7c:79:6f:45: 68:f7:1a:36:68:e5:48:73:94:7f:f5:3a:e5:ab:f4:46:0d:50: 2d:58:b8:69:2b:e8:61:67:fd:45:76:66:9c:0c:62:f8:39:6d: ec:e7:b7:74 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUN91d3NkizmqICSbLY7qhIzSjsG8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTYxOFoX DTI3MDUyNzE2MDExOFowMzExMC8GA1UEAxMoNURFNUVEOTY2RDA0NTI5MjhBQjdE NEM5NkM4QTJCQ0I4ODZFN0U3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7I17Is0hIfCLrjAugkeP3EjnQClEWTy/iw6fkxgP/QZ56pf/RrsJbHSEYM MQac6UZthVVdUN6TLz8U6gZzPSjoVaDIYOXZxp/vhKXdW8Rftz7bxrv565Enj/lY JkQo/zfnqwV9pqhqAr+c3JZMhv8wBeef/7JIOdcODhtfzni/0+ySOQujfMYlJ14O yBDMD8j0xJDW71WjOQ23hfNt4O06sRr2iWhHB6yFo1XHQu/hwfhJnr4KuEVxXPvP 1QwB8Ars9PcxsOL/Ye5x2pYoLStkccvJ8QsijNR6Gzg6sLGudD4xwO/pvhnelTD+ CtLXeov48OrTASv4Ol5Pv7tdQzUCAwEAAaOCAecwggHjMB0GA1UdDgQWBBRd5e2W bQRSkoq31MlsiivLiG5+fTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM4NTE0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCJA4Av7jwMA0GCSqGSIb3DQEB CwUAA4IBAQCIPLSjqUdEcFL38GnvdAVeqetsWndNsUgw8SFAQmhwywWoUzJFhsG9 0fvDZOLnwndhOnkMpGSwt8jQU1kzaOfiq0pJCtR3x4SLSGMETNcxjeIKSuU1Pqwi QwF/6X/8GTBeX4F2BKY7vvuYDY2zdqJhd3fJ80gL8qtOv/kmOxfvs428tljB6o11 Q8li+7AtcXa0T4UnlH/TOgqTmtJRL+7J1NM+v8nth6SWEbHQpQx1geX2teCnb7fp X1cpp3Stnfek+Xj4dTrcbxJ6b5wtCbMipRUMunx5b0Vo9xo2aOVIc5R/9Trlq/RG DVAtWLhpK+hhZ/1FdmacDGL4OW3s57d0 -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:41 2026 by rpki-client