$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140300.roa File: AS140300.roa (raw, json) Hash identifier: qCEKYZ55fLtIungw22sWu0BEglf1lOUBlZbDoR2LkGM= Subject key identifier: 51:9E:9B:1F:75:4E:5C:A0:E1:F0:AF:94:72:99:3B:9D:FC:AE:02:3F Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 15B2BA7CC42CA0AC9C28E7F0B5426494CA9D2EC9 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140300.roa Signing time: Thu 11 Jun 2026 15:45:17 +0000 ROA not before: Thu 11 Jun 2026 15:40:17 +0000 ROA not after: Thu 10 Jun 2027 15:45:17 +0000 asID: 140300 IP address blocks: 240e:5a:4780::/42 maxlen: 42 240e:5a:47c0::/42 maxlen: 42 240e:5a:4800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b2:ba:7c:c4:2c:a0:ac:9c:28:e7:f0:b5:42:64:94:ca:9d:2e:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 11 15:40:17 2026 GMT Not After : Jun 10 15:45:17 2027 GMT Subject: CN=519E9B1F754E5CA0E1F0AF9472993B9DFCAE023F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:ed:0e:93:54:d4:b1:b4:78:d1:d0:37:26: 1d:6d:d3:af:00:45:fd:02:0f:72:52:9b:92:8e:0d: 57:ea:bc:69:a0:05:aa:08:60:1e:9a:76:05:fc:cb: 96:9f:75:8a:55:f7:91:3a:38:01:2a:4d:e9:7e:ef: b5:c7:3a:c4:aa:71:1a:35:f9:05:9c:7a:86:52:9f: 15:a5:9a:8b:42:e2:e8:d1:79:4d:8c:0c:65:c7:05: 74:6b:aa:5d:94:c4:f3:3c:32:4a:1f:e0:66:b9:0e: 2b:7d:f6:ee:88:71:dc:ca:72:8c:4b:aa:d3:c8:ba: 5a:c2:b9:a6:4e:72:bc:d5:df:34:18:8f:e1:9b:26: 9c:72:37:eb:46:74:85:ac:4f:6a:14:a2:1d:3e:65: 6a:ad:fa:3e:ee:7c:57:ee:60:7f:d0:64:38:db:01: ca:bb:7f:20:05:4d:3b:d6:30:1b:57:35:d0:cb:a5: a0:26:f0:27:20:64:9a:be:af:57:c8:dc:6a:f0:e7: 7e:94:60:d3:41:55:98:2a:8a:fe:27:38:53:1b:28: 66:6f:52:94:1c:2c:c3:90:8f:72:54:88:1d:ea:23: 72:97:55:04:2a:44:d0:9e:9c:31:49:b9:a0:3f:2b: 91:1f:4d:a5:48:a0:27:d3:6a:1a:4e:16:df:c8:7b: b9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9E:9B:1F:75:4E:5C:A0:E1:F0:AF:94:72:99:3B:9D:FC:AE:02:3F X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140300.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:5a:4780::-240e:5a:483f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 98:bb:48:c3:a4:36:3f:34:8a:78:b5:15:4c:30:94:4e:14:63: 99:80:12:ed:73:5b:e9:13:3f:e1:b0:d8:73:c4:76:28:44:99: d4:ea:12:bb:c3:09:3a:07:73:bf:f0:12:6a:83:ea:46:d6:e7: 0b:8b:6e:e5:12:a1:91:e1:8c:d6:06:9d:6f:00:34:9b:db:91: 13:67:97:b1:0d:a0:2c:32:f7:51:ad:4f:fb:77:1c:e6:5a:94: 94:a8:de:2b:6b:b8:d7:5c:0c:65:b8:8c:14:09:6c:a2:2c:0f: e1:9b:1f:71:9c:a5:ff:77:bf:81:61:93:dd:b1:8f:02:0b:d4: 11:39:c8:c9:9f:5f:ed:0d:91:b2:35:41:ef:fd:0c:f5:9d:e5: 45:7f:d3:b3:61:d8:11:63:c2:85:95:eb:24:2e:9e:0f:d4:7e: 27:aa:f5:e2:2b:4f:83:f2:d9:4d:05:3b:0a:90:8e:9e:6e:ec: 6d:4f:db:5f:09:35:06:92:64:07:c0:14:05:54:aa:30:92:d6: a8:7e:fb:70:b6:48:f3:7b:b0:1a:90:11:0c:26:1b:8d:5f:3c: b7:29:5f:46:31:8e:1c:fe:11:af:cb:33:70:2b:c6:3b:d6:2e: e2:87:fb:40:94:00:42:ca:d1:b7:5d:05:66:7b:00:13:dd:ed: fd:f1:e9:42 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUFbK6fMQsoKycKOfwtUJklMqdLskwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYxMTE1NDAxN1oX DTI3MDYxMDE1NDUxN1owMzExMC8GA1UEAxMoNTE5RTlCMUY3NTRFNUNBMEUxRjBB Rjk0NzI5OTNCOURGQ0FFMDIzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjI7Q6TVNSxtHjR0DcmHW3TrwBF/QIPclKbko4NV+q8aaAFqghgHpp2BfzL lp91ilX3kTo4ASpN6X7vtcc6xKpxGjX5BZx6hlKfFaWai0Li6NF5TYwMZccFdGuq XZTE8zwySh/gZrkOK3327ohx3MpyjEuq08i6WsK5pk5yvNXfNBiP4ZsmnHI360Z0 haxPahSiHT5laq36Pu58V+5gf9BkONsByrt/IAVNO9YwG1c10MuloCbwJyBkmr6v V8jcavDnfpRg00FVmCqK/ic4UxsoZm9SlBwsw5CPclSIHeojcpdVBCpE0J6cMUm5 oD8rkR9NpUigJ9NqGk4W38h7ucMCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBRRnpsf dU5coOHwr5RymTud/K4CPzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwckDgBaR4ADBwYkDgBaSAAw DQYJKoZIhvcNAQELBQADggEBAJi7SMOkNj80ini1FUwwlE4UY5mAEu1zW+kTP+Gw 2HPEdihEmdTqErvDCToHc7/wEmqD6kbW5wuLbuUSoZHhjNYGnW8ANJvbkRNnl7EN oCwy91GtT/t3HOZalJSo3itruNdcDGW4jBQJbKIsD+GbH3Gcpf93v4Fhk92xjwIL 1BE5yMmfX+0NkbI1Qe/9DPWd5UV/07Nh2BFjwoWV6yQung/Ufieq9eIrT4Py2U0F OwqQjp5u7G1P218JNQaSZAfAFAVUqjCS1qh++3C2SPN7sBqQEQwmG41fPLcpX0Yx jhz+Ea/LM3ArxjvWLuKH+0CUAELK0bddBWZ7ABPd7f3x6UI= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:32 2026 by rpki-client