$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140312.roa File: AS140312.roa (raw, json) Hash identifier: aZBN7NEqEICKlVI8yDyt3WI/tIZ8rZ8wJjRt9VKDzdM= Subject key identifier: 37:38:EE:35:EC:1A:E2:7A:F8:E5:C4:A0:8E:39:05:64:03:FD:78:BB Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 0238E65F870CC74C6ABF1DB6589742884D3E9E98 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140312.roa Signing time: Tue 02 Jun 2026 16:24:36 +0000 ROA not before: Tue 02 Jun 2026 16:19:36 +0000 ROA not after: Tue 01 Jun 2027 16:24:36 +0000 asID: 140312 IP address blocks: 240e:108:404e::/48 maxlen: 48 240e:108:484e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:38:e6:5f:87:0c:c7:4c:6a:bf:1d:b6:58:97:42:88:4d:3e:9e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 2 16:19:36 2026 GMT Not After : Jun 1 16:24:36 2027 GMT Subject: CN=3738EE35EC1AE27AF8E5C4A08E39056403FD78BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a7:11:13:39:bc:f7:41:85:7e:26:ff:7e:09: 0e:04:18:75:ca:88:ae:a2:99:ef:65:cd:1b:26:20: ca:1e:c6:8a:77:46:a2:46:8c:f2:8f:dc:82:79:a6: 74:72:ce:18:ef:4d:89:c9:3d:ce:5b:03:22:f4:0f: 86:da:8d:7c:8d:39:1b:ca:52:71:75:28:95:ca:58: 67:4c:a5:4f:06:a5:25:c7:55:be:2f:ac:86:5d:4f: 20:03:59:47:ea:f7:18:f3:e2:48:72:d8:f9:c3:a9: 71:86:d9:1d:6c:bf:89:08:18:a7:9f:c5:d9:04:e0: ed:fd:26:b3:1c:51:c9:47:d2:84:d9:58:6f:27:55: 5f:5f:95:67:6b:cd:39:77:b7:7c:8e:a7:0c:05:a7: 7f:12:73:02:f2:9e:16:ba:ac:d1:14:c7:20:ab:56: 74:0a:10:40:30:f1:5c:e2:4f:e5:67:89:93:57:9c: 10:91:f7:46:63:bb:b7:df:8f:d6:dc:f8:fe:5b:6c: c5:e7:83:d6:2a:f1:94:a6:a8:af:54:c1:3d:3d:c9: 8a:a0:6e:94:05:fe:6b:7f:d6:ad:4c:6f:8d:7c:33: 42:da:82:21:71:2a:06:b9:81:91:d4:d3:af:a1:bf: 6d:7f:9b:31:5a:2e:68:24:d4:1e:a1:19:27:12:d2: 4e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:38:EE:35:EC:1A:E2:7A:F8:E5:C4:A0:8E:39:05:64:03:FD:78:BB X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140312.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:108:404e::/48 240e:108:484e::/48 Signature Algorithm: sha256WithRSAEncryption 2f:81:72:93:4c:3d:dc:12:af:ef:2d:22:88:a3:56:03:7e:65: 0e:71:7b:0a:89:3a:22:28:df:4d:6d:e8:bb:24:d0:2f:8a:62: 76:f6:a6:35:5d:d4:f6:06:3f:94:c2:55:61:b4:c7:7d:83:bd: 5c:cc:ec:9d:9e:b8:dc:f7:50:f0:88:14:87:6f:94:73:1a:71: d4:42:9a:3d:97:93:e1:8a:56:8d:5d:1d:bb:9c:a8:cf:85:14: 35:06:93:3e:34:a3:5b:22:1b:ae:18:42:61:4d:0d:ef:b7:49: 28:aa:46:be:3e:a5:de:56:98:65:1a:74:11:ca:fa:57:ad:86: 50:8b:7c:ed:ab:d0:96:f1:67:86:a8:77:b6:41:34:9d:00:20: a1:b1:6c:71:16:ce:0a:0c:6f:e5:9f:7c:93:b4:f4:6d:85:00: 07:5f:b6:62:58:29:03:ab:f2:34:a2:7b:d1:28:b1:90:d9:2f: c3:22:46:cd:2a:60:a8:56:69:34:5e:88:24:4b:e8:25:1c:ed: 1c:70:d9:ef:bb:65:37:33:f1:e5:7c:3d:d9:bb:00:3e:1f:e1: aa:8f:7e:d1:fd:3b:f0:f1:79:9d:a3:a1:dc:64:b3:4a:43:db: cd:3f:34:75:6e:8f:9d:58:3e:f7:23:c6:10:6d:e8:7a:5f:9a: 65:f3:5a:d4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUAjjmX4cMx0xqvx22WJdCiE0+npgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMjE2MTkzNloX DTI3MDYwMTE2MjQzNlowMzExMC8GA1UEAxMoMzczOEVFMzVFQzFBRTI3QUY4RTVD NEEwOEUzOTA1NjQwM0ZENzhCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO2nERM5vPdBhX4m/34JDgQYdcqIrqKZ72XNGyYgyh7GindGokaM8o/cgnmm dHLOGO9Nick9zlsDIvQPhtqNfI05G8pScXUolcpYZ0ylTwalJcdVvi+shl1PIANZ R+r3GPPiSHLY+cOpcYbZHWy/iQgYp5/F2QTg7f0msxxRyUfShNlYbydVX1+VZ2vN OXe3fI6nDAWnfxJzAvKeFrqs0RTHIKtWdAoQQDDxXOJP5WeJk1ecEJH3RmO7t9+P 1tz4/ltsxeeD1irxlKaor1TBPT3JiqBulAX+a3/WrUxvjXwzQtqCIXEqBrmBkdTT r6G/bX+bMVouaCTUHqEZJxLSTjsCAwEAAaOCAfAwggHsMB0GA1UdDgQWBBQ3OO41 7BrievjlxKCOOQVkA/14uzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAJA4BCEBOAwcAJA4BCEhOMA0G CSqGSIb3DQEBCwUAA4IBAQAvgXKTTD3cEq/vLSKIo1YDfmUOcXsKiToiKN9Nbei7 JNAvimJ29qY1XdT2Bj+UwlVhtMd9g71czOydnrjc91DwiBSHb5RzGnHUQpo9l5Ph ilaNXR27nKjPhRQ1BpM+NKNbIhuuGEJhTQ3vt0koqka+PqXeVphlGnQRyvpXrYZQ i3ztq9CW8WeGqHe2QTSdACChsWxxFs4KDG/ln3yTtPRthQAHX7ZiWCkDq/I0onvR KLGQ2S/DIkbNKmCoVmk0XogkS+glHO0ccNnvu2U3M/HlfD3ZuwA+H+Gqj37R/Tvw 8Xmdo6HcZLNKQ9vNPzR1bo+dWD73I8YQbeh6X5pl81rU -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:34 2026 by rpki-client