$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140258.roa File: AS140258.roa (raw, json) Hash identifier: K5O3J9zHX4Wxqn7+Vkh/VbW/ImMf3fIYZ/Qg3C0rnv4= Subject key identifier: CC:E9:07:09:29:8B:CE:8C:A6:6C:74:96:CD:BB:F6:7B:8A:AE:ED:5A Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 2F19DCB827A6ED2006C590BD101CFB0AADE4C0D5 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140258.roa Signing time: Thu 28 May 2026 16:08:51 +0000 ROA not before: Thu 28 May 2026 16:03:51 +0000 ROA not after: Thu 27 May 2027 16:08:51 +0000 asID: 140258 IP address blocks: 240e:9b:f027::/48 maxlen: 48 240e:9b:f028::/48 maxlen: 48 240e:9b:f029::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:19:dc:b8:27:a6:ed:20:06:c5:90:bd:10:1c:fb:0a:ad:e4:c0:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:51 2026 GMT Not After : May 27 16:08:51 2027 GMT Subject: CN=CCE90709298BCE8CA66C7496CDBBF67B8AAEED5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:03:b6:7e:0c:9b:d2:e3:3d:73:e6:8c:e5:da: 65:1c:b8:39:e1:28:76:97:d1:83:1a:3d:91:3f:2d: 76:55:52:78:04:ab:e2:f4:b3:db:fc:f2:88:08:6e: 0f:ef:b4:0a:09:51:04:72:08:20:6f:9a:dc:c9:64: 7f:4b:fa:39:49:3e:ba:6b:00:ac:d0:fe:a4:34:eb: 9d:0e:ef:63:98:09:51:fa:aa:ad:96:d0:9d:6c:89: 73:ef:a0:7f:f3:b6:56:70:c2:06:86:df:28:fa:39: 7e:7e:5f:b1:c6:a7:66:41:52:bf:57:09:b4:e7:9d: 2a:83:97:9a:ad:bc:2c:1a:3e:d3:75:87:9a:92:41: 39:10:ec:be:3b:f2:c5:18:84:a6:4c:6b:bd:72:9c: 70:1e:d3:6d:3e:15:8a:6b:90:49:13:b1:24:26:30: 0c:22:15:95:b6:b1:70:51:82:3d:1c:19:71:b7:0b: d9:91:42:59:61:ac:bc:70:da:36:53:3d:80:a0:33: b5:c7:64:e0:9b:72:8b:a4:e8:11:a6:97:72:0e:e6: c0:78:67:63:97:ff:4d:8a:83:fb:dc:1e:6d:49:f4: 7f:44:32:31:bb:e7:c9:6c:ee:56:7f:cb:bb:7c:f8: e1:fc:4a:e2:98:5c:ca:5e:e2:2b:75:98:6d:a7:0f: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E9:07:09:29:8B:CE:8C:A6:6C:74:96:CD:BB:F6:7B:8A:AE:ED:5A X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140258.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f027::-240e:9b:f029:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 50:83:53:5e:66:41:4b:8e:0e:bd:39:55:df:4a:31:35:12:25: 38:d4:4a:84:79:5a:c2:d3:e0:25:e4:79:9f:ce:25:4e:b8:c4: 5d:8d:75:af:30:85:c4:7a:66:62:e8:0d:f8:7e:d7:eb:d5:5f: 06:00:48:f2:b1:37:7b:c3:36:92:dd:18:f5:1c:6d:63:a5:15: 70:64:50:59:d6:8b:52:c3:01:ac:9a:4e:ec:4e:8d:fe:70:66: 1c:9d:39:d6:0e:f6:4b:81:fd:a3:58:c3:be:de:fb:64:41:21: a7:4b:9a:be:66:10:6e:11:8c:ca:a9:7d:04:0f:e2:ee:c4:fe: 87:14:f0:bd:8a:b2:6a:79:ed:92:b4:a9:61:d9:cb:4f:56:9c: 2a:75:31:10:0a:e8:44:ef:29:00:8a:0d:30:1c:84:e1:7b:a8: d7:9d:a2:3c:4a:5a:95:de:26:60:06:0f:f0:40:86:4f:4c:5f: b1:25:23:c1:e4:79:79:14:64:43:37:be:4e:a9:bf:53:96:58: df:a2:eb:e7:4d:64:6a:2f:40:65:e3:31:16:9a:e3:cc:3f:13: 23:1b:a9:b7:39:72:a2:33:66:b5:91:be:06:0e:75:5f:b7:d9: 36:c4:fa:96:a3:7d:32:c5:3f:97:0b:13:9f:af:2d:2f:26:65: 74:38:8b:46 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIULxncuCem7SAGxZC9EBz7Cq3kwNUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDM1MVoX DTI3MDUyNzE2MDg1MVowMzExMC8GA1UEAxMoQ0NFOTA3MDkyOThCQ0U4Q0E2NkM3 NDk2Q0RCQkY2N0I4QUFFRUQ1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOoDtn4Mm9LjPXPmjOXaZRy4OeEodpfRgxo9kT8tdlVSeASr4vSz2/zyiAhu D++0CglRBHIIIG+a3Mlkf0v6OUk+umsArND+pDTrnQ7vY5gJUfqqrZbQnWyJc++g f/O2VnDCBobfKPo5fn5fscanZkFSv1cJtOedKoOXmq28LBo+03WHmpJBORDsvjvy xRiEpkxrvXKccB7TbT4VimuQSROxJCYwDCIVlbaxcFGCPRwZcbcL2ZFCWWGsvHDa NlM9gKAztcdk4Jtyi6ToEaaXcg7mwHhnY5f/TYqD+9webUn0f0QyMbvnyWzuVn/L u3z44fxK4phcyl7iK3WYbacPgkMCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBTM6QcJ KYvOjKZsdJbNu/Z7iq7tWjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCb8CcDBwEkDgCb8Cgw DQYJKoZIhvcNAQELBQADggEBAFCDU15mQUuODr05Vd9KMTUSJTjUSoR5WsLT4CXk eZ/OJU64xF2Nda8whcR6ZmLoDfh+1+vVXwYASPKxN3vDNpLdGPUcbWOlFXBkUFnW i1LDAayaTuxOjf5wZhydOdYO9kuB/aNYw77e+2RBIadLmr5mEG4RjMqpfQQP4u7E /ocU8L2Ksmp57ZK0qWHZy09WnCp1MRAK6ETvKQCKDTAchOF7qNedojxKWpXeJmAG D/BAhk9MX7ElI8HkeXkUZEM3vk6pv1OWWN+i6+dNZGovQGXjMRaa48w/EyMbqbc5 cqIzZrWRvgYOdV+32TbE+pajfTLFP5cLE5+vLS8mZXQ4i0Y= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:45 2026 by rpki-client