$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140248.roa File: AS140248.roa (raw, json) Hash identifier: iuIirPg71I66Q3lTmdII5h2MHAhk2fdYkpAkeWTe5Cs= Subject key identifier: 59:79:CC:0E:15:34:50:06:AC:F1:84:4A:00:27:FC:65:77:9A:BC:31 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3A145BD8B6A4BC422C9184523751DE7EBDDFF5B2 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140248.roa Signing time: Thu 28 May 2026 16:08:14 +0000 ROA not before: Thu 28 May 2026 16:03:14 +0000 ROA not after: Thu 27 May 2027 16:08:14 +0000 asID: 140248 IP address blocks: 240e:9b:f009::/48 maxlen: 48 240e:9b:f00a::/48 maxlen: 48 240e:9b:f00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:14:5b:d8:b6:a4:bc:42:2c:91:84:52:37:51:de:7e:bd:df:f5:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:14 2026 GMT Not After : May 27 16:08:14 2027 GMT Subject: CN=5979CC0E15345006ACF1844A0027FC65779ABC31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:79:94:68:9c:b1:8e:8a:04:c8:c8:99:73:e7: 33:23:18:83:4e:1c:bf:fa:95:6a:08:ff:06:cf:63: 99:2a:31:0d:28:78:2e:ba:28:8c:26:8b:6a:c1:35: b0:f4:6d:b1:f0:2f:be:f8:24:83:fc:e5:c2:6f:ae: 5b:2b:6c:bf:b2:3a:ad:a5:bf:ae:fc:af:c3:24:34: 0f:19:15:d7:5c:02:84:8c:9c:fd:67:05:c5:4b:08: 12:58:59:40:dd:6a:2b:69:4f:70:42:1a:61:bf:5b: ec:d3:9d:a2:20:6e:64:fc:d4:05:93:b3:18:4f:27: 40:ca:aa:86:c9:42:17:0f:91:a7:3b:6d:7a:f4:fe: 56:73:2f:b4:9a:d2:46:4c:49:0a:5e:b6:29:76:4f: 27:76:ba:c4:87:86:8d:a1:61:5c:95:05:60:14:05: 8b:7d:d2:c1:d6:a3:62:39:81:c8:5f:08:21:23:0d: 4f:26:d0:69:dd:7e:fb:61:ff:9f:12:68:44:41:b4: 64:22:d4:b6:09:9b:be:dc:8d:12:9d:e6:86:7d:50: 79:65:2f:64:35:55:0c:ba:9c:06:7e:36:07:71:f0: 3e:9f:86:11:f1:22:e4:2a:a7:e9:a6:6f:b3:93:f0: 84:39:b6:1c:b6:c2:18:50:96:6f:64:12:3d:c0:43: 24:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:79:CC:0E:15:34:50:06:AC:F1:84:4A:00:27:FC:65:77:9A:BC:31 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140248.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f009::-240e:9b:f00b:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 89:b5:b2:da:fc:0d:9c:88:d9:96:43:a7:40:7a:67:b9:65:29: f6:5f:2e:fe:6d:19:fc:41:c1:fe:d2:0d:80:d0:df:fa:66:16: 39:61:07:0c:f1:54:11:ca:2e:b9:f6:50:e5:0e:65:7d:22:b3: 18:f3:02:4b:27:1d:8c:97:38:c0:86:35:c1:ae:ec:f0:7c:c7: 10:42:b8:c4:a5:eb:e1:66:e5:c3:3c:f0:9f:f9:c8:88:e0:97: e0:ec:66:e0:c0:4d:c6:29:d7:a2:d1:6b:9c:04:09:8f:a0:93: 43:78:41:04:a9:c0:b0:72:62:a4:16:29:f9:97:0b:e7:0d:c9: d0:09:f3:bc:7d:2d:b2:ae:cb:88:b3:bf:75:7d:43:c4:b1:24: bf:c4:21:93:95:34:3b:f4:d2:16:f1:08:40:03:80:cb:12:f6: 18:26:7a:82:f7:84:4f:e5:42:0a:89:62:bb:a0:35:62:8e:a3: 15:8d:6e:a0:c1:05:50:5a:a4:6b:2a:49:38:cb:f1:cc:08:4c: 5b:1c:30:07:9a:93:81:b7:c7:9e:7d:82:f1:ed:75:44:33:1a: 38:f0:4e:27:66:e0:7d:89:41:d9:d5:82:fd:c8:2c:8c:aa:d6: 4a:84:78:a3:07:38:4f:a2:b8:4c:e4:54:2f:dc:3a:1a:40:80: df:c1:7b:db -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUOhRb2LakvEIskYRSN1Hefr3f9bIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDMxNFoX DTI3MDUyNzE2MDgxNFowMzExMC8GA1UEAxMoNTk3OUNDMEUxNTM0NTAwNkFDRjE4 NDRBMDAyN0ZDNjU3NzlBQkMzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJ5lGicsY6KBMjImXPnMyMYg04cv/qVagj/Bs9jmSoxDSh4LroojCaLasE1 sPRtsfAvvvgkg/zlwm+uWytsv7I6raW/rvyvwyQ0DxkV11wChIyc/WcFxUsIElhZ QN1qK2lPcEIaYb9b7NOdoiBuZPzUBZOzGE8nQMqqhslCFw+RpzttevT+VnMvtJrS RkxJCl62KXZPJ3a6xIeGjaFhXJUFYBQFi33SwdajYjmByF8IISMNTybQad1++2H/ nxJoREG0ZCLUtgmbvtyNEp3mhn1QeWUvZDVVDLqcBn42B3HwPp+GEfEi5Cqn6aZv s5PwhDm2HLbCGFCWb2QSPcBDJEsCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBRZecwO FTRQBqzxhEoAJ/xld5q8MTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCb8AkDBwIkDgCb8Agw DQYJKoZIhvcNAQELBQADggEBAIm1str8DZyI2ZZDp0B6Z7llKfZfLv5tGfxBwf7S DYDQ3/pmFjlhBwzxVBHKLrn2UOUOZX0isxjzAksnHYyXOMCGNcGu7PB8xxBCuMSl 6+Fm5cM88J/5yIjgl+DsZuDATcYp16LRa5wECY+gk0N4QQSpwLByYqQWKfmXC+cN ydAJ87x9LbKuy4izv3V9Q8SxJL/EIZOVNDv00hbxCEADgMsS9hgmeoL3hE/lQgqJ YrugNWKOoxWNbqDBBVBapGsqSTjL8cwITFscMAeak4G3x559gvHtdUQzGjjwTidm 4H2JQdnVgv3ILIyq1kqEeKMHOE+iuEzkVC/cOhpAgN/Be9s= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:35 2026 by rpki-client