$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140255.roa File: AS140255.roa (raw, json) Hash identifier: NhGSEkadiDBpp7tsFWI6N0nbl3is1diZf9Dr6OZf/mM= Subject key identifier: B6:64:84:6D:69:40:77:73:C4:67:5B:D4:A2:E9:BE:C5:21:15:85:10 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 398A1525C16B8945FE9EB25335CAEA538BBFE76B Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140255.roa Signing time: Thu 28 May 2026 16:08:50 +0000 ROA not before: Thu 28 May 2026 16:03:50 +0000 ROA not after: Thu 27 May 2027 16:08:50 +0000 asID: 140255 IP address blocks: 240e:9b:f01e::/48 maxlen: 48 240e:9b:f01f::/48 maxlen: 48 240e:9b:f020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8a:15:25:c1:6b:89:45:fe:9e:b2:53:35:ca:ea:53:8b:bf:e7:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:50 2026 GMT Not After : May 27 16:08:50 2027 GMT Subject: CN=B664846D69407773C4675BD4A2E9BEC521158510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:dc:1e:4b:ae:58:2a:6b:6c:eb:65:d2:df:2c: b0:ee:1a:95:87:3d:38:6a:2c:f3:8b:28:50:b8:b6: 9b:36:72:a5:26:27:c8:84:0d:7c:9d:6a:c4:1a:eb: 35:50:b0:eb:ee:f8:ca:e0:b3:51:b4:cb:23:3c:d3: b4:7c:61:2a:f8:42:35:ac:f2:40:62:5b:11:f7:86: de:dd:f3:dc:e3:88:a2:82:b7:9e:cc:34:90:1b:8a: 77:b3:71:ca:3b:5d:73:0c:91:67:1e:5c:1a:88:f6: f2:77:da:12:7f:35:e7:41:a4:38:77:79:bd:48:25: 8a:c8:4a:26:4a:45:fd:79:b7:84:6d:e8:93:1d:e8: 6d:e5:b2:3f:29:06:ac:28:24:79:71:00:3c:d9:17: b1:64:2a:2d:b3:d4:ec:a8:ab:6b:b2:a8:99:a2:b9: e7:f1:65:b0:69:53:f6:98:05:22:6f:b6:7f:06:d2: cb:83:9e:77:da:6b:fd:42:b3:61:bc:ea:c7:53:a4: 3e:79:e8:2c:9a:ca:45:1c:a5:8a:c7:b5:8d:fb:76: 55:75:ee:42:f0:25:58:30:9a:15:26:58:29:84:a2: 2b:1c:62:bc:6e:5f:3d:0e:3f:fe:df:e1:85:2f:09: 22:46:6c:33:97:f6:f5:8c:0f:40:3e:92:e7:d1:47: 69:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:64:84:6D:69:40:77:73:C4:67:5B:D4:A2:E9:BE:C5:21:15:85:10 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140255.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f01e::-240e:9b:f020:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8b:87:d4:1d:ed:8d:25:ca:ac:1f:cb:ce:8c:f3:95:05:e0:6c: 9d:22:76:45:7c:53:5f:99:d7:76:11:5f:9c:76:45:8d:e7:18: b3:d5:03:e9:99:4a:f6:78:70:78:4e:e9:81:d1:46:4b:da:03: 62:3d:3b:85:35:12:b7:ad:fe:41:23:c3:b5:2e:d4:8a:1e:5b: 91:3c:cf:89:76:97:51:2a:63:87:30:90:07:4c:41:c2:93:13: 05:f1:66:f4:a2:d0:27:9c:bc:e5:bf:38:9e:5a:7c:cd:29:82: bb:c4:29:ce:00:87:e7:4a:38:73:de:ec:5e:0b:4a:1e:ea:66: 68:28:8b:31:0d:ee:c2:ab:b6:f5:13:4c:db:72:f5:a0:0e:aa: a5:e4:0c:2b:b5:22:48:24:df:bd:e1:1a:73:46:51:06:52:7d: 63:24:56:21:e7:63:2a:78:03:a1:e9:85:53:07:83:89:aa:8e: 3a:fe:d5:1b:8c:da:e2:ea:e1:a4:4d:c5:d2:4a:c4:60:61:8c: 1a:b2:bb:54:a1:ba:ff:41:fc:4f:d8:b5:52:41:29:92:4a:02: b2:83:32:f4:2e:f7:6b:9b:02:2c:ac:76:37:72:e1:b9:92:08: a3:60:17:36:ee:1c:af:ea:46:53:54:60:f1:5e:aa:93:e4:75: 17:cf:dd:6f -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUOYoVJcFriUX+nrJTNcrqU4u/52swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDM1MFoX DTI3MDUyNzE2MDg1MFowMzExMC8GA1UEAxMoQjY2NDg0NkQ2OTQwNzc3M0M0Njc1 QkQ0QTJFOUJFQzUyMTE1ODUxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLcHkuuWCprbOtl0t8ssO4alYc9OGos84soULi2mzZypSYnyIQNfJ1qxBrr NVCw6+74yuCzUbTLIzzTtHxhKvhCNazyQGJbEfeG3t3z3OOIooK3nsw0kBuKd7Nx yjtdcwyRZx5cGoj28nfaEn8150GkOHd5vUglishKJkpF/Xm3hG3okx3obeWyPykG rCgkeXEAPNkXsWQqLbPU7Kira7KomaK55/FlsGlT9pgFIm+2fwbSy4Oed9pr/UKz Ybzqx1OkPnnoLJrKRRylise1jft2VXXuQvAlWDCaFSZYKYSiKxxivG5fPQ4//t/h hS8JIkZsM5f29YwPQD6S59FHaUkCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBS2ZIRt aUB3c8RnW9Si6b7FIRWFEDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDgCb8B4DBwAkDgCb8CAw DQYJKoZIhvcNAQELBQADggEBAIuH1B3tjSXKrB/LzozzlQXgbJ0idkV8U1+Z13YR X5x2RY3nGLPVA+mZSvZ4cHhO6YHRRkvaA2I9O4U1Eret/kEjw7Uu1IoeW5E8z4l2 l1EqY4cwkAdMQcKTEwXxZvSi0CecvOW/OJ5afM0pgrvEKc4Ah+dKOHPe7F4LSh7q ZmgoizEN7sKrtvUTTNty9aAOqqXkDCu1Ikgk373hGnNGUQZSfWMkViHnYyp4A6Hp hVMHg4mqjjr+1RuM2uLq4aRNxdJKxGBhjBqyu1Shuv9B/E/YtVJBKZJKArKDMvQu 92ubAiysdjdy4bmSCKNgFzbuHK/qRlNUYPFeqpPkdRfP3W8= -----END CERTIFICATE-----Generated at Sun Jun 14 06:30:56 2026 by rpki-client