$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138635.roa File: AS138635.roa (raw, json) Hash identifier: E1rkhko9YFb4s4IDgSt230VhjsUrPq0VacOjpgg4PFU= Subject key identifier: 86:FF:78:B0:32:B7:15:B9:78:88:23:61:8A:19:10:16:1B:3C:8B:1F Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 7932F5F5B61590354D00A9F3548827A6C4B7FB76 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138635.roa Signing time: Thu 28 May 2026 16:01:18 +0000 ROA not before: Thu 28 May 2026 15:56:18 +0000 ROA not after: Thu 27 May 2027 16:01:18 +0000 asID: 138635 IP address blocks: 240e:bf:b8e8::/48 maxlen: 48 240e:bf:b8e9::/48 maxlen: 48 240e:bf:b8ea::/48 maxlen: 48 240e:bf:b8eb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:32:f5:f5:b6:15:90:35:4d:00:a9:f3:54:88:27:a6:c4:b7:fb:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:56:18 2026 GMT Not After : May 27 16:01:18 2027 GMT Subject: CN=86FF78B032B715B9788823618A1910161B3C8B1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:0c:21:44:11:0d:a0:53:fa:48:4d:aa:e4:c7: 6c:07:bb:90:1d:28:1d:b9:0d:32:a2:08:31:45:c0: c6:09:d3:2a:a3:de:d3:1d:2f:a6:77:f6:e4:80:b0: 39:9e:57:9c:4c:a2:33:88:49:a1:fa:eb:2d:aa:29: 39:cd:37:dc:5a:be:52:82:7f:12:19:ab:a3:4d:1a: bd:2e:2d:67:06:e9:38:f4:32:0b:e5:bd:a1:7a:69: a0:96:cf:5b:5f:e4:fe:30:61:79:f5:3d:13:01:3a: 58:3e:8a:4d:7e:0f:3a:19:c5:01:c0:79:2e:6c:a6: 0c:41:2f:85:1c:e7:fe:c4:b4:cf:56:3f:64:0a:03: 92:83:d9:51:82:bb:65:98:93:f6:11:4b:2c:0f:a5: 51:f4:8d:aa:b5:aa:35:02:ae:b3:2c:5e:69:05:08: fc:c9:a1:1e:41:42:51:b0:e0:3b:4e:4e:48:44:7f: 24:c8:3e:d0:34:a7:7d:ae:19:39:98:bb:e3:50:bb: e0:d3:54:8d:ba:0b:88:f1:a1:27:53:eb:bc:79:5f: b0:22:9a:7c:2e:33:b1:5d:c3:7c:1f:94:1e:14:f6: 34:ed:6a:2b:4c:39:6d:3d:dc:ee:a0:14:84:4a:ef: ef:10:5b:52:aa:68:b0:af:37:e7:c8:94:58:2c:4e: ff:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FF:78:B0:32:B7:15:B9:78:88:23:61:8A:19:10:16:1B:3C:8B:1F X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS138635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:bf:b8e8::/46 Signature Algorithm: sha256WithRSAEncryption 92:c9:08:ff:0f:45:62:a1:fb:50:a8:b2:a5:3f:fa:9c:41:7b: 59:54:38:ba:93:87:c0:66:c0:19:f7:49:fe:6a:b6:0d:10:c2: c9:04:e8:63:6c:15:1e:12:b4:74:7f:48:ae:ca:8e:5e:1f:77: 4a:e1:bb:f8:c0:cc:81:74:43:67:4d:77:38:f3:d8:b9:5d:cb: 96:8a:48:dc:7a:ab:ca:0e:11:db:61:4b:39:a3:12:2a:50:47: 32:70:2b:0b:6e:7d:e6:0b:16:74:b5:51:68:17:ae:8d:14:50: 20:fc:dc:c4:ed:5f:e5:8c:57:3c:f3:33:b3:10:83:a9:64:15: 0f:cb:7a:ea:b0:fd:96:e5:ba:32:31:c3:dc:98:6e:b5:24:67: 0e:43:5a:78:b9:91:c6:d2:e7:1c:15:c8:93:e8:92:8e:68:6f: 09:d2:b1:ea:0d:b9:00:55:83:0c:e2:db:c7:5f:de:e7:fb:fd: 61:04:88:60:28:ab:9c:80:75:20:8b:45:58:c6:f9:07:fc:df: 78:fa:ce:13:16:bc:89:c1:fd:3b:f4:f3:ea:a9:a6:b9:16:d5: bf:5f:bd:7e:e4:64:17:60:b9:38:b4:ca:6d:71:1c:70:3b:a2: c8:8f:24:bb:a2:69:5f:1c:ff:7d:54:f9:b6:db:5b:20:74:a3: dc:8a:d5:99 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUeTL19bYVkDVNAKnzVIgnpsS3+3YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTYxOFoX DTI3MDUyNzE2MDExOFowMzExMC8GA1UEAxMoODZGRjc4QjAzMkI3MTVCOTc4ODgy MzYxOEExOTEwMTYxQjNDOEIxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI8MIUQRDaBT+khNquTHbAe7kB0oHbkNMqIIMUXAxgnTKqPe0x0vpnf25ICw OZ5XnEyiM4hJofrrLaopOc033Fq+UoJ/Ehmro00avS4tZwbpOPQyC+W9oXppoJbP W1/k/jBhefU9EwE6WD6KTX4POhnFAcB5LmymDEEvhRzn/sS0z1Y/ZAoDkoPZUYK7 ZZiT9hFLLA+lUfSNqrWqNQKusyxeaQUI/MmhHkFCUbDgO05OSER/JMg+0DSnfa4Z OZi741C74NNUjboLiPGhJ1PrvHlfsCKafC4zsV3DfB+UHhT2NO1qK0w5bT3c7qAU hErv7xBbUqposK8358iUWCxO/zcCAwEAAaOCAecwggHjMB0GA1UdDgQWBBSG/3iw MrcVuXiII2GKGRAWGzyLHzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTM4NjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCJA4Av7joMA0GCSqGSIb3DQEB CwUAA4IBAQCSyQj/D0VioftQqLKlP/qcQXtZVDi6k4fAZsAZ90n+arYNEMLJBOhj bBUeErR0f0iuyo5eH3dK4bv4wMyBdENnTXc489i5XcuWikjceqvKDhHbYUs5oxIq UEcycCsLbn3mCxZ0tVFoF66NFFAg/NzE7V/ljFc88zOzEIOpZBUPy3rqsP2W5boy McPcmG61JGcOQ1p4uZHG0uccFciT6JKOaG8J0rHqDbkAVYMM4tvHX97n+/1hBIhg KKucgHUgi0VYxvkH/N94+s4TFryJwf079PPqqaa5FtW/X71+5GQXYLk4tMptcRxw O6LIjyS7omlfHP99VPm221sgdKPcitWZ -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:40 2026 by rpki-client