$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140247.roa File: AS140247.roa (raw, json) Hash identifier: dSI2HkG/n5bK1i66VGT/20VDE4xAd4bG5JegFviKMyk= Subject key identifier: 80:E4:A6:52:AB:35:48:CF:A5:A7:5F:22:96:F1:22:36:AE:2D:3F:F5 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 53B1F522775E60BD0F01F5FEBC05F701D2A639A3 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140247.roa Signing time: Thu 28 May 2026 16:08:14 +0000 ROA not before: Thu 28 May 2026 16:03:14 +0000 ROA not after: Thu 27 May 2027 16:08:14 +0000 asID: 140247 IP address blocks: 240e:9b:f006::/48 maxlen: 48 240e:9b:f007::/48 maxlen: 48 240e:9b:f008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b1:f5:22:77:5e:60:bd:0f:01:f5:fe:bc:05:f7:01:d2:a6:39:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:14 2026 GMT Not After : May 27 16:08:14 2027 GMT Subject: CN=80E4A652AB3548CFA5A75F2296F12236AE2D3FF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:10:90:b4:4f:6d:4b:ca:56:5d:e4:60:02:9a: 95:f8:98:db:fc:5f:5f:a3:d7:e1:ae:32:1e:a9:c4: 63:d1:e9:5a:c3:e5:08:ad:28:83:03:61:ad:c5:a8: 0c:cd:64:e5:84:ab:ad:34:21:8c:e3:9d:a3:0c:e1: 99:e3:29:95:26:64:cf:65:fb:25:0d:07:07:ce:b1: b1:42:85:86:c6:47:37:dd:52:e8:ce:1e:b8:57:99: d0:56:a1:ad:2d:ff:3d:c1:aa:76:6a:6e:00:6f:cd: 2c:b8:e4:69:d6:0e:62:76:35:cb:b2:fb:b0:4c:e6: a9:ec:31:f2:2d:47:f7:20:82:01:7c:0a:b5:d9:90: 68:a4:54:b7:27:05:c9:3c:53:e7:3e:ee:ef:ff:00: cb:c4:d9:35:33:80:90:18:cb:91:84:bb:52:68:a6: 15:f7:2f:87:78:42:27:31:74:b7:25:81:67:70:8c: eb:7a:fb:0c:72:f1:a3:fd:cf:04:5b:26:bf:88:64: d8:92:b8:69:aa:a4:39:c4:f6:f4:12:72:b2:27:0e: c7:20:54:c5:7f:39:27:6c:af:a3:55:13:81:06:8e: 8e:f0:d5:a8:2b:96:2f:55:e1:bc:e1:1d:71:c5:41: bf:29:fd:00:0c:9a:27:de:48:a5:59:a8:b9:4b:92: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E4:A6:52:AB:35:48:CF:A5:A7:5F:22:96:F1:22:36:AE:2D:3F:F5 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140247.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f006::-240e:9b:f008:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 06:a0:d2:f2:38:f2:dd:80:c8:67:05:66:d0:9b:5a:21:e4:a8: 2c:94:d5:8f:51:12:4d:83:f8:13:99:33:66:04:5e:35:59:d1: 0c:93:13:d8:5f:85:b3:45:e2:3d:4f:fb:f2:1d:be:55:b2:f3: 01:76:d4:a1:e9:b0:23:68:88:30:69:51:3a:05:5c:66:41:e5: 05:65:89:6f:dd:0e:b0:78:2f:21:d8:0e:44:9b:9d:8b:3e:f9: 4d:e4:ae:d8:1e:3d:29:13:42:44:e3:68:82:46:c6:b9:59:82: 0b:29:e1:25:3e:ed:14:87:13:0d:0c:17:5e:4f:8c:f5:85:13: ac:ce:46:ab:7f:96:4e:42:ca:ca:06:e3:07:16:25:ed:12:d9: 74:33:e6:f3:0e:a4:13:9b:2a:b2:31:b7:7f:72:b0:e9:78:f3: 84:08:e2:43:f4:30:ea:55:3d:fc:1f:57:75:28:00:18:e8:2b: c0:8e:26:cd:7f:32:2f:5d:eb:43:cc:4f:7c:de:6d:57:dd:03: 9a:cf:5d:82:14:39:2d:e0:ac:77:c4:7c:47:5a:ee:be:3c:47: fc:70:b4:cb:c7:01:47:25:30:f5:bb:8b:c4:dd:56:b8:f8:48: 0a:22:53:26:93:47:8a:c3:f0:31:84:d9:dd:6a:59:46:09:28: 14:e4:e6:67 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUU7H1IndeYL0PAfX+vAX3AdKmOaMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDMxNFoX DTI3MDUyNzE2MDgxNFowMzExMC8GA1UEAxMoODBFNEE2NTJBQjM1NDhDRkE1QTc1 RjIyOTZGMTIyMzZBRTJEM0ZGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJkQkLRPbUvKVl3kYAKalfiY2/xfX6PX4a4yHqnEY9HpWsPlCK0ogwNhrcWo DM1k5YSrrTQhjOOdowzhmeMplSZkz2X7JQ0HB86xsUKFhsZHN91S6M4euFeZ0Fah rS3/PcGqdmpuAG/NLLjkadYOYnY1y7L7sEzmqewx8i1H9yCCAXwKtdmQaKRUtycF yTxT5z7u7/8Ay8TZNTOAkBjLkYS7UmimFfcvh3hCJzF0tyWBZ3CM63r7DHLxo/3P BFsmv4hk2JK4aaqkOcT29BJysicOxyBUxX85J2yvo1UTgQaOjvDVqCuWL1XhvOEd ccVBvyn9AAyaJ95IpVmouUuSLpMCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBSA5KZS qzVIz6WnXyKW8SI2ri0/9TAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDgCb8AYDBwAkDgCb8Agw DQYJKoZIhvcNAQELBQADggEBAAag0vI48t2AyGcFZtCbWiHkqCyU1Y9REk2D+BOZ M2YEXjVZ0QyTE9hfhbNF4j1P+/IdvlWy8wF21KHpsCNoiDBpUToFXGZB5QVliW/d DrB4LyHYDkSbnYs++U3krtgePSkTQkTjaIJGxrlZggsp4SU+7RSHEw0MF15PjPWF E6zORqt/lk5CysoG4wcWJe0S2XQz5vMOpBObKrIxt39ysOl484QI4kP0MOpVPfwf V3UoABjoK8COJs1/Mi9d60PMT3zebVfdA5rPXYIUOS3grHfEfEda7r48R/xwtMvH AUclMPW7i8TdVrj4SAoiUyaTR4rD8DGE2d1qWUYJKBTk5mc= -----END CERTIFICATE-----Generated at Sun Jun 14 06:30:56 2026 by rpki-client