$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140310.roa File: AS140310.roa (raw, json) Hash identifier: cpbHg7JKIUb+8O0Ulofnnulmal4MsfWBnRKFFNbx0i4= Subject key identifier: C0:1B:4B:E7:9C:A5:FA:4D:5B:E8:55:41:99:2C:AE:72:90:91:62:A1 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 25DE53C832BE6A021A9F64BBC95BECA2F2FB7201 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140310.roa Signing time: Tue 02 Jun 2026 16:24:37 +0000 ROA not before: Tue 02 Jun 2026 16:19:37 +0000 ROA not after: Tue 01 Jun 2027 16:24:37 +0000 asID: 140310 IP address blocks: 240e:108:4052::/48 maxlen: 48 240e:108:4852::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:de:53:c8:32:be:6a:02:1a:9f:64:bb:c9:5b:ec:a2:f2:fb:72:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 2 16:19:37 2026 GMT Not After : Jun 1 16:24:37 2027 GMT Subject: CN=C01B4BE79CA5FA4D5BE85541992CAE72909162A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:80:c7:e7:52:9f:f6:0d:6d:34:ea:ed:cb:12: df:c5:c0:d5:9e:d1:11:1e:7c:fc:c5:ce:ef:fd:4d: af:40:1f:fb:7f:4c:e4:4e:5e:49:da:ff:07:e0:c2: a9:3a:8c:73:37:e5:e7:ab:11:1f:ed:39:4a:3c:7f: 01:91:8b:f6:4a:36:1f:d5:55:60:e7:e5:6f:a7:d1: 84:43:a1:36:a8:50:69:84:12:82:fc:ec:0a:c2:50: f8:5b:bf:7e:7e:b6:01:c6:f9:2e:d3:11:a1:ad:e5: b5:93:3b:d2:e4:96:bd:77:83:f1:20:f3:c5:8d:eb: fd:b6:ea:65:31:13:48:e9:d5:a1:f4:6a:47:9a:65: 14:b3:93:cb:77:54:0e:45:6c:30:0a:41:9c:86:ce: 57:82:a0:4d:09:61:37:e2:80:c7:a6:fd:00:fd:0e: 39:0e:b2:fe:a0:af:b6:7b:b5:64:71:16:dd:c3:84: 95:f1:c7:b0:13:79:27:92:37:ce:49:94:40:35:76: 02:e8:89:3f:10:f3:87:4c:dd:61:04:02:18:0f:51: 43:4f:7a:9d:b5:3b:b5:7a:78:25:14:a1:c6:8a:43: bb:df:a0:88:78:c0:6c:99:94:f6:59:f1:46:d9:bf: 87:f8:23:f4:88:7a:40:ba:85:52:e8:c8:ea:dc:35: 41:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1B:4B:E7:9C:A5:FA:4D:5B:E8:55:41:99:2C:AE:72:90:91:62:A1 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:108:4052::/48 240e:108:4852::/48 Signature Algorithm: sha256WithRSAEncryption 23:29:68:a7:38:df:a1:d0:b7:26:31:39:30:cc:62:2e:47:28: 28:b3:7c:ee:d3:f2:ff:f8:a1:ad:e1:9d:5d:21:55:31:91:e6: 57:f1:6e:d1:85:41:b6:a1:ca:b9:5e:93:2e:ac:c1:20:d6:78: 62:14:66:59:27:ac:b3:37:35:49:7f:96:aa:4f:47:e8:72:5f: 75:a1:dd:cb:d6:7f:e3:7e:52:2e:ed:d5:51:b8:23:e0:57:fa: b2:43:b1:bc:6d:0f:11:37:23:b9:78:00:40:0d:87:f4:6d:bd: 61:72:29:7d:59:eb:cf:fb:cd:eb:4b:24:63:42:42:fc:d8:57: db:65:52:73:52:63:83:48:68:4c:2b:2b:05:c7:e6:f9:d9:dc: bd:6a:0d:3f:ed:03:f2:ec:30:e9:08:22:d9:b3:a1:6c:6d:0b: 4e:90:7c:07:f6:94:59:9f:a1:97:7c:a9:0b:6c:15:fe:b5:e9: ee:70:77:69:88:e4:ab:9f:66:b4:bf:1d:db:40:3d:e6:65:4e: c9:c9:88:5e:ca:35:ef:ca:76:3b:08:0a:24:29:c5:c0:9f:6c: 84:f9:1b:f0:d3:ab:f9:33:53:b4:66:2f:73:fc:ce:8e:c7:e8: 45:2d:d1:98:d6:73:50:f2:5b:e1:d7:80:ef:21:3d:d9:14:66: 8c:76:4c:36 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUJd5TyDK+agIan2S7yVvsovL7cgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMjE2MTkzN1oX DTI3MDYwMTE2MjQzN1owMzExMC8GA1UEAxMoQzAxQjRCRTc5Q0E1RkE0RDVCRTg1 NTQxOTkyQ0FFNzI5MDkxNjJBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWAx+dSn/YNbTTq7csS38XA1Z7RER58/MXO7/1Nr0Af+39M5E5eSdr/B+DC qTqMczfl56sRH+05Sjx/AZGL9ko2H9VVYOflb6fRhEOhNqhQaYQSgvzsCsJQ+Fu/ fn62Acb5LtMRoa3ltZM70uSWvXeD8SDzxY3r/bbqZTETSOnVofRqR5plFLOTy3dU DkVsMApBnIbOV4KgTQlhN+KAx6b9AP0OOQ6y/qCvtnu1ZHEW3cOElfHHsBN5J5I3 zkmUQDV2AuiJPxDzh0zdYQQCGA9RQ096nbU7tXp4JRShxopDu9+giHjAbJmU9lnx Rtm/h/gj9Ih6QLqFUujI6tw1QWkCAwEAAaOCAfAwggHsMB0GA1UdDgQWBBTAG0vn nKX6TVvoVUGZLK5ykJFioTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzEwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAJA4BCEBSAwcAJA4BCEhSMA0G CSqGSIb3DQEBCwUAA4IBAQAjKWinON+h0LcmMTkwzGIuRygos3zu0/L/+KGt4Z1d IVUxkeZX8W7RhUG2ocq5XpMurMEg1nhiFGZZJ6yzNzVJf5aqT0focl91od3L1n/j flIu7dVRuCPgV/qyQ7G8bQ8RNyO5eABADYf0bb1hcil9WevP+83rSyRjQkL82Ffb ZVJzUmODSGhMKysFx+b52dy9ag0/7QPy7DDpCCLZs6FsbQtOkHwH9pRZn6GXfKkL bBX+tenucHdpiOSrn2a0vx3bQD3mZU7JyYheyjXvynY7CAokKcXAn2yE+Rvw06v5 M1O0Zi9z/M6Ox+hFLdGY1nNQ8lvh14DvIT3ZFGaMdkw2 -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:35 2026 by rpki-client