$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140301.roa File: AS140301.roa (raw, json) Hash identifier: 5cVaoFINcoPLmnf3EhtMRUhZnXXYxvL7GHriqBbajBA= Subject key identifier: CE:E2:5B:BB:15:F8:62:B0:7F:95:AE:4F:E6:F0:69:2C:1C:D6:25:4F Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 0E7AF0EEFBA4A06A4DED0633774D3B7478828BDA Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140301.roa Signing time: Thu 11 Jun 2026 15:45:17 +0000 ROA not before: Thu 11 Jun 2026 15:40:17 +0000 ROA not after: Thu 10 Jun 2027 15:45:17 +0000 asID: 140301 IP address blocks: 240e:5a:4840::/42 maxlen: 42 240e:5a:4880::/42 maxlen: 42 240e:5a:48c0::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:7a:f0:ee:fb:a4:a0:6a:4d:ed:06:33:77:4d:3b:74:78:82:8b:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 11 15:40:17 2026 GMT Not After : Jun 10 15:45:17 2027 GMT Subject: CN=CEE25BBB15F862B07F95AE4FE6F0692C1CD6254F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:09:29:ab:b1:c7:1a:de:db:b6:81:98:45:d1: 31:b4:10:21:8f:19:e7:35:b0:47:81:2c:7f:a5:eb: c8:d4:83:59:af:45:36:d9:c1:4f:a0:a1:73:43:b6: 59:82:e5:b2:4f:02:57:4a:22:2e:06:de:cc:22:0c: df:68:07:b0:2a:70:44:b2:92:10:e8:8c:94:60:8f: 60:75:1e:63:5e:7a:fd:2a:63:a9:0a:cf:3c:ee:59: 47:18:a8:c7:1e:48:db:17:44:9a:3b:e7:3e:97:55: 23:36:db:c7:2f:5c:02:59:d4:f8:61:03:7c:87:06: bd:0e:24:48:50:44:84:e5:f8:71:49:e7:6b:90:0e: 9e:e1:6e:6d:ea:d8:23:66:ca:e3:84:74:3d:97:05: 57:c2:42:cc:49:37:53:04:06:46:97:38:8e:76:e1: f0:ee:e8:a0:50:5b:cb:5b:be:55:4f:8c:c2:2e:ae: a5:09:e1:03:c1:74:e8:30:56:1e:56:5d:a5:d4:d9: dd:d7:5f:f8:6e:de:a8:24:66:9b:c0:05:be:50:ec: e1:09:7e:e6:30:db:b4:79:d3:9c:a2:76:a3:06:40: e7:ad:0a:ce:0c:b4:ab:cf:2b:b6:16:66:59:ee:4c: 6d:29:f1:03:c7:ca:24:40:fc:7f:68:f9:70:94:65: e4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E2:5B:BB:15:F8:62:B0:7F:95:AE:4F:E6:F0:69:2C:1C:D6:25:4F X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140301.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:5a:4840::-240e:5a:48ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 84:95:53:27:39:a3:2f:8f:94:60:cb:2b:25:2f:36:39:05:b5: d4:2c:cb:cc:5e:1c:0b:a0:cf:04:ce:1f:3a:86:50:04:03:45: 4e:8d:8d:07:9a:c2:b9:35:6e:c8:48:b0:e5:f6:c9:58:a7:e4: 77:36:3f:be:bb:ec:02:18:c8:cd:8f:fd:77:e3:98:0e:31:f8: 29:55:55:10:7d:8f:ae:3d:61:5b:ae:0b:bf:94:40:ba:bb:55: 16:6f:91:48:25:af:19:22:2e:97:b8:44:0c:8c:ec:0d:f9:ad: 98:ae:cf:d1:1a:eb:d6:51:3e:30:62:c2:b1:53:a5:64:07:5b: 7f:4b:93:45:9e:0b:71:2e:50:95:8e:fb:f6:db:e5:74:38:11: b4:1d:09:76:41:df:5c:97:1e:b3:a7:7d:4c:44:b0:52:e8:d8: 44:20:de:c9:b5:d4:35:37:48:8e:aa:b4:65:ed:6b:07:a1:91: 24:d5:61:f2:b5:be:a2:98:a1:4b:32:ec:35:ce:de:ff:5f:61: 30:3f:66:71:29:fe:ab:43:7a:55:a3:42:91:fa:e5:fc:03:e7: 44:ad:f9:41:ed:93:ea:5a:98:ec:e9:89:c2:7c:43:a3:4f:2a: 8b:9f:d4:b0:93:bf:16:34:c4:a8:a2:88:f4:30:61:b7:7d:1c: 41:27:83:35 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUDnrw7vukoGpN7QYzd007dHiCi9owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYxMTE1NDAxN1oX DTI3MDYxMDE1NDUxN1owMzExMC8GA1UEAxMoQ0VFMjVCQkIxNUY4NjJCMDdGOTVB RTRGRTZGMDY5MkMxQ0Q2MjU0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOYJKauxxxre27aBmEXRMbQQIY8Z5zWwR4Esf6XryNSDWa9FNtnBT6Chc0O2 WYLlsk8CV0oiLgbezCIM32gHsCpwRLKSEOiMlGCPYHUeY156/SpjqQrPPO5ZRxio xx5I2xdEmjvnPpdVIzbbxy9cAlnU+GEDfIcGvQ4kSFBEhOX4cUnna5AOnuFuberY I2bK44R0PZcFV8JCzEk3UwQGRpc4jnbh8O7ooFBby1u+VU+Mwi6upQnhA8F06DBW HlZdpdTZ3ddf+G7eqCRmm8AFvlDs4Ql+5jDbtHnTnKJ2owZA560Kzgy0q88rthZm We5MbSnxA8fKJED8f2j5cJRl5AUCAwEAAaOCAfEwggHtMB0GA1UdDgQWBBTO4lu7 FfhisH+Vrk/m8GksHNYlTzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATMBEDBwYkDgBaSEADBgAkDgBaSDAN BgkqhkiG9w0BAQsFAAOCAQEAhJVTJzmjL4+UYMsrJS82OQW11CzLzF4cC6DPBM4f OoZQBANFTo2NB5rCuTVuyEiw5fbJWKfkdzY/vrvsAhjIzY/9d+OYDjH4KVVVEH2P rj1hW64Lv5RAurtVFm+RSCWvGSIul7hEDIzsDfmtmK7P0Rrr1lE+MGLCsVOlZAdb f0uTRZ4LcS5QlY779tvldDgRtB0JdkHfXJces6d9TESwUujYRCDeybXUNTdIjqq0 Ze1rB6GRJNVh8rW+opihSzLsNc7e/19hMD9mcSn+q0N6VaNCkfrl/APnRK35Qe2T 6lqY7OmJwnxDo08qi5/UsJO/FjTEqKKI9DBht30cQSeDNQ== -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:44 2026 by rpki-client