$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140259.roa File: AS140259.roa (raw, json) Hash identifier: dRoOl5cFWjsKvJqJ4WFTMmPV5dN9O95fu3AceDRgOlc= Subject key identifier: 1F:93:CA:CD:DA:85:00:36:C2:41:D7:54:C8:A7:5B:B2:60:6A:B5:54 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 521160CF977291D1905C0EB752256FD6F94DF3C8 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140259.roa Signing time: Thu 28 May 2026 16:08:51 +0000 ROA not before: Thu 28 May 2026 16:03:51 +0000 ROA not after: Thu 27 May 2027 16:08:51 +0000 asID: 140259 IP address blocks: 240e:9b:f02a::/48 maxlen: 48 240e:9b:f02b::/48 maxlen: 48 240e:9b:f02c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:11:60:cf:97:72:91:d1:90:5c:0e:b7:52:25:6f:d6:f9:4d:f3:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:03:51 2026 GMT Not After : May 27 16:08:51 2027 GMT Subject: CN=1F93CACDDA850036C241D754C8A75BB2606AB554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1c:92:eb:e7:46:fb:ed:33:ed:12:6a:29:05: 0d:ad:88:16:e0:06:c0:a6:31:cc:5e:b9:82:6c:ec: 85:06:53:f7:7f:f7:bc:c7:ef:2d:ee:6a:fb:ea:f2: 1f:aa:d7:ed:95:ed:dd:95:65:a0:56:68:10:ce:fc: d8:26:f8:59:30:a7:b0:0c:65:af:b4:37:bf:40:36: ee:6c:2b:97:cd:69:90:04:3c:dc:48:42:27:25:f2: 81:7c:ab:25:1d:a7:3a:43:ee:f1:e9:d4:9e:84:99: 53:c0:8d:5b:3a:8f:f4:d9:f6:cc:3a:e0:fc:aa:a6: 14:87:2e:f7:6a:0f:b4:89:3a:5b:f4:54:a3:75:56: 06:b7:1d:13:c5:3f:52:d2:ef:2b:66:4d:4c:e4:b0: 95:ff:12:51:98:e5:70:73:bd:12:80:36:08:43:f3: 95:3d:3e:cf:84:6b:ba:ee:e0:c3:ce:53:52:7b:81: c9:b9:3c:2f:9c:48:d9:f0:9c:d1:85:53:ce:08:6f: 1d:6f:e9:2c:33:17:fc:32:04:04:8b:86:d7:b9:9d: 59:0f:34:e4:99:15:49:a1:1c:a4:20:38:9a:c4:d3: b4:8d:cd:a0:cf:26:4b:a7:6f:35:a4:1f:c7:f4:c5: a0:91:0d:e5:89:cb:26:3d:9d:f1:bf:a5:08:11:3a: 89:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:93:CA:CD:DA:85:00:36:C2:41:D7:54:C8:A7:5B:B2:60:6A:B5:54 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140259.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:9b:f02a::-240e:9b:f02c:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 73:d4:4b:2b:50:e7:b6:55:10:8a:b8:85:ea:74:19:4c:fe:1c: 24:e8:b8:fb:50:ba:c1:71:70:1d:7c:f6:49:05:eb:c8:54:6f: 52:08:1f:2a:29:20:73:93:aa:95:f0:6b:3f:a4:66:3e:36:16: 59:a9:4b:7e:96:7e:e7:b3:44:c2:34:67:c4:d0:f4:26:c2:ce: af:81:a5:e0:bd:23:57:d1:7e:a3:ba:d1:eb:a1:62:f0:db:be: db:fa:0a:f9:a8:be:1b:b6:6c:17:02:48:b9:64:a5:47:ba:34: 43:fa:7d:01:8c:6f:da:75:4c:d8:c4:7d:a9:e2:88:df:05:c2: 92:c0:6a:2b:d0:24:2d:0e:9e:65:b8:d6:98:de:c4:30:24:b1: f3:d3:fc:f5:59:93:51:b2:31:18:a0:80:e3:5f:ed:91:86:dd: 11:66:1b:c3:31:77:5e:92:4e:95:4b:f4:5c:ac:96:cb:6f:b3: fd:31:70:24:53:2a:45:c7:00:ee:9e:91:7c:27:c9:5c:5b:96: 9b:60:69:27:d4:d2:8d:70:fb:73:23:74:9a:7e:06:62:9e:54: fc:9b:8f:01:cb:7a:21:23:e7:87:82:1b:44:62:7f:1e:57:7d: bd:85:01:88:07:3c:39:49:19:42:b4:ec:8b:29:7b:90:3d:80: 36:3a:4e:08 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUUhFgz5dykdGQXA63UiVv1vlN88gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDM1MVoX DTI3MDUyNzE2MDg1MVowMzExMC8GA1UEAxMoMUY5M0NBQ0REQTg1MDAzNkMyNDFE NzU0QzhBNzVCQjI2MDZBQjU1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ0ckuvnRvvtM+0SaikFDa2IFuAGwKYxzF65gmzshQZT93/3vMfvLe5q++ry H6rX7ZXt3ZVloFZoEM782Cb4WTCnsAxlr7Q3v0A27mwrl81pkAQ83EhCJyXygXyr JR2nOkPu8enUnoSZU8CNWzqP9Nn2zDrg/KqmFIcu92oPtIk6W/RUo3VWBrcdE8U/ UtLvK2ZNTOSwlf8SUZjlcHO9EoA2CEPzlT0+z4Rruu7gw85TUnuBybk8L5xI2fCc 0YVTzghvHW/pLDMX/DIEBIuG17mdWQ805JkVSaEcpCA4msTTtI3NoM8mS6dvNaQf x/TFoJEN5YnLJj2d8b+lCBE6iTkCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBQfk8rN 2oUANsJB11TIp1uyYGq1VDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDgCb8CoDBwAkDgCb8Cww DQYJKoZIhvcNAQELBQADggEBAHPUSytQ57ZVEIq4hep0GUz+HCTouPtQusFxcB18 9kkF68hUb1IIHyopIHOTqpXwaz+kZj42FlmpS36WfuezRMI0Z8TQ9CbCzq+BpeC9 I1fRfqO60euhYvDbvtv6Cvmovhu2bBcCSLlkpUe6NEP6fQGMb9p1TNjEfaniiN8F wpLAaivQJC0OnmW41pjexDAksfPT/PVZk1GyMRiggONf7ZGG3RFmG8Mxd16STpVL 9Fyslstvs/0xcCRTKkXHAO6ekXwnyVxblptgaSfU0o1w+3MjdJp+BmKeVPybjwHL eiEj54eCG0Rifx5Xfb2FAYgHPDlJGUK07Ispe5A9gDY6Tgg= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:41 2026 by rpki-client