$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140290.roa File: AS140290.roa (raw, json) Hash identifier: VEXSOsyMr+vnxrBYc4L1tp+5/NbVyVafc2ZgyG+loA4= Subject key identifier: 88:E4:2F:39:E3:28:43:F0:A5:E4:05:BB:A0:9C:97:25:1C:25:00:E9 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 25F32F46A53CD128A445D5D19289BA2BB3950524 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140290.roa Signing time: Thu 11 Jun 2026 15:45:06 +0000 ROA not before: Thu 11 Jun 2026 15:40:06 +0000 ROA not after: Thu 10 Jun 2027 15:45:06 +0000 asID: 140290 IP address blocks: 240e:5a:4000::/42 maxlen: 42 240e:5a:4040::/42 maxlen: 42 240e:5a:4080::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f3:2f:46:a5:3c:d1:28:a4:45:d5:d1:92:89:ba:2b:b3:95:05:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 11 15:40:06 2026 GMT Not After : Jun 10 15:45:06 2027 GMT Subject: CN=88E42F39E32843F0A5E405BBA09C97251C2500E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:36:07:78:06:61:c8:1a:68:2f:77:02:89: 74:01:51:f7:e6:50:53:50:f6:58:58:bd:7f:92:ce: 83:c0:64:f0:1f:49:e6:f4:ae:d9:b4:c8:92:d9:08: be:c7:af:d5:d5:f7:a9:6b:8d:d2:3c:d9:9a:69:f1: 49:70:67:d8:49:f4:81:c9:6e:6b:eb:3e:fd:63:cb: 9e:01:41:6c:7b:83:58:df:68:16:86:9a:1d:0e:05: df:dc:80:32:8d:57:19:de:ba:8e:98:12:cf:fc:15: 82:60:bb:27:d3:92:a1:24:9a:7c:02:11:c3:6c:57: 48:9c:ec:21:3a:40:28:79:5f:bd:1a:ab:20:4c:a8: d1:9f:4b:84:0c:1e:6d:f2:7e:c2:9b:1f:91:93:1d: a8:7b:01:7a:d4:07:74:f7:3d:b8:e9:c5:57:cf:e4: 4f:64:67:a4:4f:e8:6e:e7:6f:ec:84:8e:c4:c7:a8: 06:fe:0c:57:7c:61:29:53:c6:3f:a5:3c:4b:9f:6b: b2:39:cc:ba:a0:61:be:b6:a4:f1:31:c1:d7:d3:d3: 3c:dd:a2:d3:73:f4:11:53:d0:07:ff:bc:2e:13:13: 8c:67:74:5a:87:77:d1:a3:9f:eb:c4:c5:61:81:0b: 97:d0:97:ba:e4:e8:ff:f2:36:54:31:fc:79:90:fe: 44:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E4:2F:39:E3:28:43:F0:A5:E4:05:BB:A0:9C:97:25:1C:25:00:E9 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140290.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:5a:4000::-240e:5a:40bf:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 19:21:db:18:08:da:16:bf:b0:11:dd:7a:7f:20:3e:3f:5f:d1: 82:28:e0:c4:1c:54:8d:5e:15:9a:d1:d6:72:1a:c9:3d:cf:74: 38:78:0e:b5:3b:2e:6e:3c:e5:bb:0e:04:5b:19:39:18:88:63: 25:03:28:2b:f7:50:af:e7:73:38:34:e1:90:02:dd:92:6a:68: df:07:5f:c6:8d:af:cf:dd:ce:ab:02:c2:9b:2e:98:2f:98:38: 4b:62:ae:01:b9:45:ed:98:38:16:f1:ff:fd:a6:7f:ad:ce:b6: 23:b5:d7:14:5f:75:66:31:e5:5a:f1:3a:fa:ff:f1:ba:74:2a: f0:23:32:78:ab:cd:05:63:a1:17:78:2d:6b:3e:54:88:0d:f7: 37:a8:a9:69:31:b2:d1:89:14:64:dc:5e:68:8c:fe:de:94:67: b1:cf:e1:a9:b9:c7:a8:78:c6:ef:a8:d1:4b:99:22:8b:d8:cb: 5b:4f:d3:c0:86:09:01:5c:67:fd:d9:65:fa:32:97:92:72:9a: 53:66:42:fa:f7:a0:93:9d:57:89:de:0c:c1:73:6c:44:2a:f9: bd:70:9b:7d:8c:69:6d:ec:72:80:a2:00:a3:05:31:e2:90:7e: f4:32:27:f9:a3:e7:ad:54:2e:f1:aa:0d:04:07:72:7b:de:6e: e2:7c:a7:62 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUJfMvRqU80SikRdXRkom6K7OVBSQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYxMTE1NDAwNloX DTI3MDYxMDE1NDUwNlowMzExMC8GA1UEAxMoODhFNDJGMzlFMzI4NDNGMEE1RTQw NUJCQTA5Qzk3MjUxQzI1MDBFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMONNgd4BmHIGmgvdwKJdAFR9+ZQU1D2WFi9f5LOg8Bk8B9J5vSu2bTIktkI vsev1dX3qWuN0jzZmmnxSXBn2En0gclua+s+/WPLngFBbHuDWN9oFoaaHQ4F39yA Mo1XGd66jpgSz/wVgmC7J9OSoSSafAIRw2xXSJzsITpAKHlfvRqrIEyo0Z9LhAwe bfJ+wpsfkZMdqHsBetQHdPc9uOnFV8/kT2RnpE/obudv7ISOxMeoBv4MV3xhKVPG P6U8S59rsjnMuqBhvrak8THB19PTPN2i03P0EVPQB/+8LhMTjGd0Wod30aOf68TF YYELl9CXuuTo//I2VDH8eZD+RPsCAwEAAaOCAfEwggHtMB0GA1UdDgQWBBSI5C85 4yhD8KXkBbugnJclHCUA6TAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMjkwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATMBEDBgYkDgBaQAMHBiQOAFpAgDAN BgkqhkiG9w0BAQsFAAOCAQEAGSHbGAjaFr+wEd16fyA+P1/RgijgxBxUjV4VmtHW chrJPc90OHgOtTsubjzluw4EWxk5GIhjJQMoK/dQr+dzODThkALdkmpo3wdfxo2v z93OqwLCmy6YL5g4S2KuAblF7Zg4FvH//aZ/rc62I7XXFF91ZjHlWvE6+v/xunQq 8CMyeKvNBWOhF3gtaz5UiA33N6ipaTGy0YkUZNxeaIz+3pRnsc/hqbnHqHjG76jR S5kii9jLW0/TwIYJAVxn/dll+jKXknKaU2ZC+vegk51Xid4MwXNsRCr5vXCbfYxp bexygKIAowUx4pB+9DIn+aPnrVQu8aoNBAdye95u4nynYg== -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:42 2026 by rpki-client