$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140256.roa File: AS140256.roa (raw, json) Hash identifier: uWjDq10bPWqhY5hjyMoxfeFmIJ24nP+UIaiDR1bcNBs= Subject key identifier: D1:26:8E:0C:C3:B5:AE:EC:43:E7:BD:CC:D9:FD:9F:16:2F:E9:F5:91 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 4911B8E912AAB6C4532545A2788FC5EEB3565335 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140256.roa Signing time: Thu 28 May 2026 16:08:51 +0000 ROA not before: Thu 28 May 2026 16:03:51 +0000 ROA not after: Thu 27 May 2027 16:08:51 +0000 asID: 140256 IP address blocks: 240e:9b:f021::/48 maxlen: 48 240e:9b:f022::/48 maxlen: 48 240e:9b:f023::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:11:b8:e9:12:aa:b6:c4:53:25:45:a2:78:8f:c5:ee:b3:56:53:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:51 2026 GMT Not After : May 27 16:08:51 2027 GMT Subject: CN=D1268E0CC3B5AEEC43E7BDCCD9FD9F162FE9F591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:72:43:7a:22:f6:7a:97:09:94:6c:f1:18: 9a:72:ed:32:4a:ef:03:d1:02:fa:ee:b0:e6:12:ac: 89:47:a0:92:59:b1:dc:34:2b:89:19:ea:07:32:61: 1c:ca:83:1f:88:d6:1d:46:55:d8:36:75:73:20:17: 0f:d8:6d:65:c4:5a:57:91:d1:70:86:43:32:00:ff: 9e:8b:00:e0:d5:97:45:0d:ad:79:8a:24:bb:6a:30: 43:8e:d2:87:fa:78:92:aa:1c:fd:21:ac:8a:6c:f9: 7c:b2:9e:9a:0b:4f:8a:b2:97:67:2a:94:77:5a:74: d0:53:e7:c0:d8:10:c0:bc:62:fb:a8:59:33:80:68: 70:df:e3:d1:26:ea:94:93:5e:53:a6:ad:0f:cb:a1: 90:2a:63:63:b4:f2:ab:4a:be:06:57:a0:47:57:ee: e7:4d:76:11:d7:8c:55:1a:0e:b0:54:e8:9d:6f:2b: ad:75:61:5e:96:68:d2:e1:b0:18:5b:07:d4:85:31: 04:51:62:cd:34:00:a2:95:48:16:a5:08:a6:66:26: 8a:ef:3b:31:9f:52:94:11:81:a2:95:74:dd:29:47: c4:8f:8d:92:cc:e2:f2:8d:60:c7:81:5b:5b:86:22: e5:62:3d:48:05:64:e1:03:4b:c2:6b:fb:da:ba:4d: 13:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:26:8E:0C:C3:B5:AE:EC:43:E7:BD:CC:D9:FD:9F:16:2F:E9:F5:91 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140256.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f021::-240e:9b:f023:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9a:ab:cc:a5:8a:c2:57:c7:44:9f:9e:95:ab:b2:5b:7b:10:fb: de:10:a5:dd:7e:47:48:47:12:fb:c1:22:39:14:19:27:f8:36: 7a:33:a8:69:1a:3b:61:4c:0a:b5:20:aa:a4:6f:ae:bb:96:a0: de:33:6a:a9:49:bb:b3:72:84:83:ca:fa:6e:d5:3a:14:dc:e1: 45:1d:d4:10:1e:d1:b2:48:40:29:71:4c:c5:6a:c8:52:91:4d: 1f:72:12:08:05:78:16:c2:8f:cd:74:6a:ea:12:e6:aa:a9:87: ad:4f:87:4e:ad:43:4b:ff:08:7b:25:1c:fb:73:eb:3d:1f:02: d0:a3:89:df:17:54:b0:3d:03:f8:9c:f0:fc:38:a3:94:ff:73: d0:00:5a:07:39:00:0e:ef:72:fe:e2:bb:14:6e:cf:42:2b:6f: 0f:f5:6d:de:48:c4:0e:84:85:22:e6:fe:6a:b9:2c:ec:fb:01: 3d:87:b6:d5:6c:8a:e5:f9:6c:20:0a:f2:27:cc:84:f3:1a:5f: ee:c1:5f:a3:08:f1:06:d7:9d:e7:47:39:c0:b1:fe:ba:2d:1f: fa:28:17:4a:32:1b:9b:1b:f8:04:5e:70:c5:d1:4c:70:c0:6f: 09:4c:3c:da:1e:d2:9a:7c:8f:ca:4f:b4:1c:fc:ec:10:44:bb: 02:27:c9:36 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUSRG46RKqtsRTJUWieI/F7rNWUzUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDM1MVoX DTI3MDUyNzE2MDg1MVowMzExMC8GA1UEAxMoRDEyNjhFMENDM0I1QUVFQzQzRTdC RENDRDlGRDlGMTYyRkU5RjU5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKzAckN6IvZ6lwmUbPEYmnLtMkrvA9EC+u6w5hKsiUegklmx3DQriRnqBzJh HMqDH4jWHUZV2DZ1cyAXD9htZcRaV5HRcIZDMgD/nosA4NWXRQ2teYoku2owQ47S h/p4kqoc/SGsimz5fLKemgtPirKXZyqUd1p00FPnwNgQwLxi+6hZM4BocN/j0Sbq lJNeU6atD8uhkCpjY7Tyq0q+BlegR1fu5012EdeMVRoOsFTonW8rrXVhXpZo0uGw GFsH1IUxBFFizTQAopVIFqUIpmYmiu87MZ9SlBGBopV03SlHxI+Nkszi8o1gx4Fb W4Yi5WI9SAVk4QNLwmv72rpNE60CAwEAAaOCAfIwggHuMB0GA1UdDgQWBBTRJo4M w7Wu7EPnvczZ/Z8WL+n1kTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjU2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCb8CEDBwIkDgCb8CAw DQYJKoZIhvcNAQELBQADggEBAJqrzKWKwlfHRJ+elauyW3sQ+94Qpd1+R0hHEvvB IjkUGSf4NnozqGkaO2FMCrUgqqRvrruWoN4zaqlJu7NyhIPK+m7VOhTc4UUd1BAe 0bJIQClxTMVqyFKRTR9yEggFeBbCj810auoS5qqph61Ph06tQ0v/CHslHPtz6z0f AtCjid8XVLA9A/ic8Pw4o5T/c9AAWgc5AA7vcv7iuxRuz0Irbw/1bd5IxA6EhSLm /mq5LOz7AT2HttVsiuX5bCAK8ifMhPMaX+7BX6MI8QbXnedHOcCx/rotH/ooF0oy G5sb+ARecMXRTHDAbwlMPNoe0pp8j8pPtBz87BBEuwInyTY= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:44 2026 by rpki-client