$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140254.roa File: AS140254.roa (raw, json) Hash identifier: Lz5bHOo8AONwsVr3Sr94kh4iC5M/NN2DSfD8/znGuwg= Subject key identifier: A5:E2:C9:4B:58:C2:1E:8E:9F:50:3A:53:31:A0:49:6A:6B:45:27:27 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 4A42938BEB520E123DE561B02B8E5E4997EF5346 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140254.roa Signing time: Thu 28 May 2026 16:08:13 +0000 ROA not before: Thu 28 May 2026 16:03:13 +0000 ROA not after: Thu 27 May 2027 16:08:13 +0000 asID: 140254 IP address blocks: 240e:9b:f01b::/48 maxlen: 48 240e:9b:f01c::/48 maxlen: 48 240e:9b:f01d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:42:93:8b:eb:52:0e:12:3d:e5:61:b0:2b:8e:5e:49:97:ef:53:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:13 2026 GMT Not After : May 27 16:08:13 2027 GMT Subject: CN=A5E2C94B58C21E8E9F503A5331A0496A6B452727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:46:7a:c2:7e:b2:b6:d6:82:16:70:a1:2b: 16:c2:67:09:74:de:65:a1:03:25:05:62:c6:6f:90: 9d:f8:71:0c:38:75:e7:8a:c6:d8:f4:66:c8:61:e3: 8b:9f:1a:2f:06:29:f0:35:19:75:12:ba:3d:6a:36: f4:7b:ea:f8:50:f1:e1:f0:69:27:8c:31:b4:bd:3a: 2b:ce:e4:3d:9b:82:7b:dd:13:9a:22:48:d6:c6:8a: fc:f3:01:3e:39:df:af:26:0e:88:a0:14:4f:df:86: f8:e5:72:f8:ae:74:9a:89:62:4b:c1:e0:5c:5e:da: 84:c5:78:89:ad:6e:77:31:81:6d:65:74:3b:a1:bf: ba:dc:b1:ab:5a:44:6a:b3:39:86:9f:ee:99:f6:45: 6a:0f:73:d6:bb:78:ba:68:cf:0f:37:f4:c7:8f:46: fb:b0:13:ea:8d:d0:12:93:84:d0:4d:54:26:15:16: 70:c6:2c:c1:43:7f:b5:32:4a:2d:73:42:34:76:62: f9:11:af:00:69:28:52:13:88:bd:c3:8a:5f:90:59: 9b:54:5b:7e:08:6a:cc:e3:05:10:32:22:7f:d1:e2: 54:c6:97:99:81:95:d0:05:f1:96:51:dd:35:ce:f4: be:b7:a0:78:06:75:fd:b5:5f:fb:d3:bd:bf:7a:88: f6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E2:C9:4B:58:C2:1E:8E:9F:50:3A:53:31:A0:49:6A:6B:45:27:27 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140254.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f01b::-240e:9b:f01d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 94:90:20:69:aa:ec:d6:76:70:95:3e:b8:2c:07:25:cc:f5:a6: 3c:bf:e4:a7:25:a0:b8:07:b7:19:c1:52:59:8b:e1:62:22:30: 3c:15:ec:a1:12:ed:c3:d0:d5:40:ce:14:0b:97:de:a1:5a:d0: 21:1e:8c:fe:f1:73:a4:7d:f4:d4:c1:1e:33:f5:79:3e:68:42: 44:d8:fa:ba:12:ba:36:33:fa:7b:99:28:ea:de:b9:04:0b:51: 4b:d3:56:2e:87:72:39:3b:16:55:29:b4:2d:05:6c:34:00:3d: d7:58:60:09:c3:20:c9:9b:f8:27:69:4d:e3:10:a4:25:3e:4d: 49:71:4b:75:a5:5e:b5:26:ee:11:1f:3b:eb:6b:62:ed:36:12: d3:d6:0a:4d:9b:93:64:95:ce:63:26:2e:cd:b5:0b:cf:88:92: 1b:d1:02:67:ee:cf:5a:28:b7:e9:0e:fb:bb:e2:7e:e8:26:e9: 07:34:4b:5e:e9:91:40:d8:b8:5c:ec:ed:a3:6f:0b:b8:a1:b3: 2e:76:98:6c:b3:c2:78:90:ca:84:de:28:72:94:8d:00:4a:9c: fc:2b:5f:57:bc:19:3f:4e:0d:de:e1:b9:b4:3b:d4:5a:72:b9: 75:f5:06:f6:46:f7:e4:29:83:81:6b:1f:c1:59:58:1b:80:ed: f1:e7:73:b0 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUSkKTi+tSDhI95WGwK45eSZfvU0YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDMxM1oX DTI3MDUyNzE2MDgxM1owMzExMC8GA1UEAxMoQTVFMkM5NEI1OEMyMUU4RTlGNTAz QTUzMzFBMDQ5NkE2QjQ1MjcyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALC5RnrCfrK21oIWcKErFsJnCXTeZaEDJQVixm+QnfhxDDh154rG2PRmyGHj i58aLwYp8DUZdRK6PWo29Hvq+FDx4fBpJ4wxtL06K87kPZuCe90TmiJI1saK/PMB PjnfryYOiKAUT9+G+OVy+K50moliS8HgXF7ahMV4ia1udzGBbWV0O6G/utyxq1pE arM5hp/umfZFag9z1rt4umjPDzf0x49G+7AT6o3QEpOE0E1UJhUWcMYswUN/tTJK LXNCNHZi+RGvAGkoUhOIvcOKX5BZm1RbfghqzOMFEDIif9HiVMaXmYGV0AXxllHd Nc70vregeAZ1/bVf+9O9v3qI9mECAwEAAaOCAfIwggHuMB0GA1UdDgQWBBSl4slL WMIejp9QOlMxoElqa0UnJzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCb8BsDBwEkDgCb8Bww DQYJKoZIhvcNAQELBQADggEBAJSQIGmq7NZ2cJU+uCwHJcz1pjy/5KcloLgHtxnB UlmL4WIiMDwV7KES7cPQ1UDOFAuX3qFa0CEejP7xc6R99NTBHjP1eT5oQkTY+roS ujYz+nuZKOreuQQLUUvTVi6Hcjk7FlUptC0FbDQAPddYYAnDIMmb+CdpTeMQpCU+ TUlxS3WlXrUm7hEfO+trYu02EtPWCk2bk2SVzmMmLs21C8+IkhvRAmfuz1oot+kO +7vifugm6Qc0S17pkUDYuFzs7aNvC7ihsy52mGyzwniQyoTeKHKUjQBKnPwrX1e8 GT9ODd7hubQ71FpyuXX1BvZG9+Qpg4FrH8FZWBuA7fHnc7A= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:42 2026 by rpki-client