$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140252.roa File: AS140252.roa (raw, json) Hash identifier: l8DTqEhoXFeUmbU5fz5ANDh4qi2Eixxj5CKPIKpRJ+E= Subject key identifier: 5C:21:A6:FF:AC:EB:35:C4:80:A5:66:D6:A8:A8:52:C6:4B:8D:4D:7A Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 6DF9DBF047C3A2AEC3B559E218295A275A4FD403 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140252.roa Signing time: Thu 28 May 2026 16:08:14 +0000 ROA not before: Thu 28 May 2026 16:03:14 +0000 ROA not after: Thu 27 May 2027 16:08:14 +0000 asID: 140252 IP address blocks: 240e:9b:f015::/48 maxlen: 48 240e:9b:f016::/48 maxlen: 48 240e:9b:f017::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f9:db:f0:47:c3:a2:ae:c3:b5:59:e2:18:29:5a:27:5a:4f:d4:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:14 2026 GMT Not After : May 27 16:08:14 2027 GMT Subject: CN=5C21A6FFACEB35C480A566D6A8A852C64B8D4D7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:39:58:77:79:d9:c3:47:8a:15:c4:ae:74: a5:c0:71:2a:4d:04:81:8a:17:a4:91:84:f0:4b:3a: a8:43:de:5c:d0:20:1b:e8:c4:14:67:4a:cd:34:da: 55:ad:8a:f4:cf:12:93:d9:01:c3:eb:61:01:6e:ad: 70:c0:59:fc:45:d2:0d:e6:f5:5f:ac:61:77:56:2d: d1:9b:3f:69:33:27:1b:00:0c:b8:66:6e:1c:a5:69: 93:9e:24:49:a4:83:67:90:bf:d4:bd:99:56:a6:59: 7d:ed:98:58:38:a7:6a:f1:bd:47:80:2d:6e:fc:49: 34:d1:4d:f4:9e:3b:37:89:15:55:28:87:58:49:10: a1:c9:94:a8:f8:22:37:a1:d6:7d:83:72:66:16:43: 73:81:2d:25:06:ab:b6:44:9c:6c:47:f1:a5:c5:39: 83:b0:db:a3:bd:e0:0f:8a:8a:c1:6b:9b:01:6e:cc: cd:46:2e:24:cb:14:dc:1f:de:24:24:71:7e:a2:71: 14:4d:90:bc:f8:1c:ee:86:c5:1d:41:2c:3c:2a:1c: fc:33:21:49:8a:5a:ae:c6:5c:4b:a5:b5:d4:db:e4: 48:08:a1:05:2b:0a:ea:ee:2c:3e:af:0c:ba:f8:57: db:a8:02:fc:2a:94:86:60:36:de:48:1e:73:fd:0d: 58:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:21:A6:FF:AC:EB:35:C4:80:A5:66:D6:A8:A8:52:C6:4B:8D:4D:7A X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140252.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f015::-240e:9b:f017:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 68:24:65:55:31:3e:67:c7:30:75:c8:a8:6d:9d:95:6b:4f:3e: 70:78:7d:a1:aa:97:fa:b5:b8:13:28:77:a9:2a:35:26:35:70: 4d:e5:fc:0a:82:96:63:74:ab:50:fa:1e:c2:18:4a:6b:75:fd: 02:ba:f8:80:d7:0d:49:c5:03:92:b4:c7:d2:b3:41:ec:8d:b7: 2b:82:d5:06:6a:cc:be:78:14:4d:85:b6:65:06:a2:ad:13:0f: 76:36:57:42:f5:c3:3f:70:32:ea:20:3d:42:9c:ea:9c:8c:d0: f4:82:ab:7e:f7:5b:dc:49:90:12:a8:b8:6b:a3:79:aa:83:2f: 98:f5:c4:34:c0:7f:3e:d2:84:db:2e:b3:e6:bd:4d:44:d9:ca: bb:16:b3:8d:2f:93:4b:26:fd:35:dd:d1:4e:50:c2:3a:54:35: d2:83:51:b9:df:59:45:74:b8:e8:3c:49:99:01:a8:ca:40:17: 14:4a:82:0e:03:cf:b0:8d:66:4f:38:bd:a3:a4:ce:1b:d4:ed: 0a:75:0b:7a:f5:4b:af:b7:df:06:c0:6d:d7:76:96:0e:4c:d4: 29:72:6d:f4:09:77:d1:26:9f:65:71:0b:a1:ff:48:47:44:db: 7d:a8:d4:d3:2b:26:cd:11:5d:7e:27:e3:2d:22:2f:7c:5f:98: 38:83:46:5b -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUbfnb8EfDoq7DtVniGClaJ1pP1AMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDMxNFoX DTI3MDUyNzE2MDgxNFowMzExMC8GA1UEAxMoNUMyMUE2RkZBQ0VCMzVDNDgwQTU2 NkQ2QThBODUyQzY0QjhENEQ3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuZOVh3ednDR4oVxK50pcBxKk0EgYoXpJGE8Es6qEPeXNAgG+jEFGdKzTTa Va2K9M8Sk9kBw+thAW6tcMBZ/EXSDeb1X6xhd1Yt0Zs/aTMnGwAMuGZuHKVpk54k SaSDZ5C/1L2ZVqZZfe2YWDinavG9R4AtbvxJNNFN9J47N4kVVSiHWEkQocmUqPgi N6HWfYNyZhZDc4EtJQartkScbEfxpcU5g7Dbo73gD4qKwWubAW7MzUYuJMsU3B/e JCRxfqJxFE2QvPgc7obFHUEsPCoc/DMhSYparsZcS6W11NvkSAihBSsK6u4sPq8M uvhX26gC/CqUhmA23kgec/0NWIkCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBRcIab/ rOs1xIClZtaoqFLGS41NejAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCb8BUDBwMkDgCb8BAw DQYJKoZIhvcNAQELBQADggEBAGgkZVUxPmfHMHXIqG2dlWtPPnB4faGql/q1uBMo d6kqNSY1cE3l/AqClmN0q1D6HsIYSmt1/QK6+IDXDUnFA5K0x9KzQeyNtyuC1QZq zL54FE2FtmUGoq0TD3Y2V0L1wz9wMuogPUKc6pyM0PSCq373W9xJkBKouGujeaqD L5j1xDTAfz7ShNsus+a9TUTZyrsWs40vk0sm/TXd0U5QwjpUNdKDUbnfWUV0uOg8 SZkBqMpAFxRKgg4Dz7CNZk84vaOkzhvU7Qp1C3r1S6+33wbAbdd2lg5M1ClybfQJ d9Emn2VxC6H/SEdE232o1NMrJs0RXX4n4y0iL3xfmDiDRls= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:45 2026 by rpki-client