$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140302.roa File: AS140302.roa (raw, json) Hash identifier: QGHckpSgnqEOKDPA1Nk7ch5WOEkFqeRXnaFoDIKEQpg= Subject key identifier: B3:06:1C:6B:DF:19:AF:3E:4B:28:9F:A7:FD:4E:74:A5:E4:F2:BA:94 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 16C836739F0739FB374C9C1FFC66EE3E9008AFF7 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140302.roa Signing time: Thu 11 Jun 2026 15:45:17 +0000 ROA not before: Thu 11 Jun 2026 15:40:17 +0000 ROA not after: Thu 10 Jun 2027 15:45:17 +0000 asID: 140302 IP address blocks: 240e:5a:4900::/42 maxlen: 42 240e:5a:4940::/42 maxlen: 42 240e:5a:4980::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:c8:36:73:9f:07:39:fb:37:4c:9c:1f:fc:66:ee:3e:90:08:af:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 11 15:40:17 2026 GMT Not After : Jun 10 15:45:17 2027 GMT Subject: CN=B3061C6BDF19AF3E4B289FA7FD4E74A5E4F2BA94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ac:47:3d:ef:45:99:ea:58:1e:a6:1e:8d:26: 95:44:23:59:f5:12:b2:a7:88:0d:a6:69:b7:c5:72: 2d:9f:2a:6f:f2:fc:c3:2f:55:59:bd:83:5e:da:f7: aa:92:a3:70:33:dc:bb:ca:ca:0c:bf:41:4d:0a:9d: f8:dc:83:d7:60:cf:10:ef:1f:dc:c0:46:9d:f9:27: a3:a1:92:52:d2:a9:05:d1:6a:0a:c3:59:5c:a8:56: 10:c4:72:3a:c7:6c:92:73:d9:54:0e:41:79:83:32: 00:be:e9:12:85:ed:e1:a0:49:fb:af:c8:5d:7c:a3: 2c:08:19:eb:2f:1f:1a:c5:d3:a1:e8:f0:7f:38:a5: 6a:f5:f6:40:68:28:5b:21:68:b4:47:38:de:c4:69: dc:ab:e6:74:f3:88:f9:8c:aa:4f:f1:bc:69:91:84: bf:eb:52:d0:6f:93:a3:fe:9b:70:12:f3:8f:88:a0: eb:06:69:c4:a1:d3:77:d6:6c:7b:d0:5e:35:cb:0b: aa:49:b6:15:98:77:9d:6f:2f:2d:0a:f6:56:94:c3: f1:fa:b7:a9:ea:19:a6:de:56:d7:25:a2:40:18:ec: 9a:1d:8e:fe:b6:25:f1:13:d8:3e:8e:a3:f1:5e:20: f2:2a:47:ca:3d:2a:64:d5:7c:35:82:5b:e0:64:6b: 66:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:06:1C:6B:DF:19:AF:3E:4B:28:9F:A7:FD:4E:74:A5:E4:F2:BA:94 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140302.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:5a:4900::-240e:5a:49bf:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 2b:46:1f:bc:7e:a1:0a:96:2e:54:b8:a2:3a:69:6f:a8:78:91: 39:39:9b:03:a5:0a:6c:5f:c5:2b:d8:88:d5:2d:d6:f3:db:54: 2f:a2:71:97:94:17:36:75:a1:b0:93:2f:7b:c5:01:92:4b:9f: 43:e4:15:40:23:d8:80:a4:97:79:b7:ca:5e:c1:2b:bc:25:72: a3:09:cc:68:a7:92:8f:3a:e9:07:c8:81:f6:f3:c4:9c:c8:eb: 52:98:fb:76:42:1e:11:dd:c3:76:d3:af:c9:21:1d:46:fa:5e: c7:fa:2a:a7:c5:80:eb:a0:be:b6:67:46:ef:14:a9:22:f2:f4: 44:16:20:eb:e6:7a:e7:2a:6f:fd:d5:e4:7c:da:6f:e2:f8:21: e1:db:54:1d:9a:79:0a:e8:9e:b3:f2:08:b8:3c:4a:45:4d:ec: b0:c6:f1:6b:bb:a7:70:7c:8c:bb:fd:cf:e2:f0:da:07:33:61: 16:01:83:80:fe:0b:2c:cc:04:13:28:f5:16:f9:db:9a:90:56: 1a:70:ed:5f:a9:1b:7a:b1:05:b2:5c:42:16:24:3f:32:5f:bc: d0:dc:a9:29:0b:03:78:94:cc:19:a1:31:5f:fc:c7:9a:61:51: 93:02:2a:2d:49:c5:d8:66:96:30:24:68:e8:6b:bc:fc:66:05: 42:11:86:29 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUFsg2c58HOfs3TJwf/GbuPpAIr/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYxMTE1NDAxN1oX DTI3MDYxMDE1NDUxN1owMzExMC8GA1UEAxMoQjMwNjFDNkJERjE5QUYzRTRCMjg5 RkE3RkQ0RTc0QTVFNEYyQkE5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMusRz3vRZnqWB6mHo0mlUQjWfUSsqeIDaZpt8VyLZ8qb/L8wy9VWb2DXtr3 qpKjcDPcu8rKDL9BTQqd+NyD12DPEO8f3MBGnfkno6GSUtKpBdFqCsNZXKhWEMRy OsdsknPZVA5BeYMyAL7pEoXt4aBJ+6/IXXyjLAgZ6y8fGsXToejwfzilavX2QGgo WyFotEc43sRp3KvmdPOI+YyqT/G8aZGEv+tS0G+To/6bcBLzj4ig6wZpxKHTd9Zs e9BeNcsLqkm2FZh3nW8vLQr2VpTD8fq3qeoZpt5W1yWiQBjsmh2O/rYl8RPYPo6j 8V4g8ipHyj0qZNV8NYJb4GRrZu8CAwEAAaOCAfEwggHtMB0GA1UdDgQWBBSzBhxr 3xmvPkson6f9TnSl5PK6lDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzAyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATMBEDBgAkDgBaSQMHBiQOAFpJgDAN BgkqhkiG9w0BAQsFAAOCAQEAK0YfvH6hCpYuVLiiOmlvqHiROTmbA6UKbF/FK9iI 1S3W89tUL6Jxl5QXNnWhsJMve8UBkkufQ+QVQCPYgKSXebfKXsErvCVyownMaKeS jzrpB8iB9vPEnMjrUpj7dkIeEd3DdtOvySEdRvpex/oqp8WA66C+tmdG7xSpIvL0 RBYg6+Z65ypv/dXkfNpv4vgh4dtUHZp5Cuies/IIuDxKRU3ssMbxa7uncHyMu/3P 4vDaBzNhFgGDgP4LLMwEEyj1FvnbmpBWGnDtX6kberEFslxCFiQ/Ml+80NypKQsD eJTMGaExX/zHmmFRkwIqLUnF2GaWMCRo6Gu8/GYFQhGGKQ== -----END CERTIFICATE-----Generated at Sun Jun 14 06:30:56 2026 by rpki-client