$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140313.roa File: AS140313.roa (raw, json) Hash identifier: QUhcnChNrPcov8sl8F6t/0SZOO52x+piq0brBrfu+l4= Subject key identifier: 98:5F:71:49:1F:92:50:89:0A:A9:21:2F:CD:56:B4:67:FD:7A:F6:42 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 22F071758A98B7497148F81DFB86EC298AF5955B Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140313.roa Signing time: Tue 02 Jun 2026 16:24:37 +0000 ROA not before: Tue 02 Jun 2026 16:19:37 +0000 ROA not after: Tue 01 Jun 2027 16:24:37 +0000 asID: 140313 IP address blocks: 240e:108:4055::/48 maxlen: 48 240e:108:4855::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f0:71:75:8a:98:b7:49:71:48:f8:1d:fb:86:ec:29:8a:f5:95:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 2 16:19:37 2026 GMT Not After : Jun 1 16:24:37 2027 GMT Subject: CN=985F71491F9250890AA9212FCD56B467FD7AF642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:9c:3d:13:63:2a:7c:80:4b:e8:4d:f9:00: b8:72:97:7f:fc:7d:54:07:70:c7:78:8a:a0:d1:32: 91:34:9d:0a:1b:1f:bf:a3:54:4f:2e:26:9c:2b:38: 53:16:11:bf:e7:b5:f9:6f:2b:c1:e9:f7:b1:12:d3: ea:3a:9c:e5:76:20:ef:35:d4:53:45:4c:2c:86:5f: 69:8e:fa:48:d4:42:75:f7:9b:83:3a:d4:17:e5:82: 18:3f:be:02:5e:de:db:8e:da:4a:2f:d3:e3:15:4c: 65:84:e8:44:90:22:82:cc:10:13:cb:ab:41:f7:93: ed:a6:99:ca:ba:a7:51:82:72:98:59:6f:9a:c8:9f: 5f:e4:cd:ee:a4:82:9b:81:b3:1a:17:02:8b:a0:f9: 58:fd:9b:22:9d:f8:ea:74:3f:ff:cf:28:23:a1:ff: b0:f3:92:43:fd:fb:a5:37:28:c3:e0:2f:e3:f1:c3: 10:f8:61:18:ec:e4:11:c1:c3:8c:59:27:0d:a8:e4: 25:2f:58:97:22:68:d9:f2:50:30:6f:fc:04:b8:53: 48:df:32:c6:54:ec:0e:68:13:40:97:50:2d:f8:c2: 65:a7:56:54:05:63:b9:ed:9f:ee:11:77:bc:57:f8: 14:78:27:8c:ad:87:df:19:87:6f:dc:c6:88:f1:1a: df:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:5F:71:49:1F:92:50:89:0A:A9:21:2F:CD:56:B4:67:FD:7A:F6:42 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140313.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:108:4055::/48 240e:108:4855::/48 Signature Algorithm: sha256WithRSAEncryption 60:2d:50:0b:bd:c1:2e:07:dc:bf:56:cd:0a:5c:6a:07:a5:43: 75:6f:7d:dc:2e:a9:b2:f6:03:0d:8c:ab:0a:ce:65:fe:c8:03: 56:0e:43:04:d7:5c:96:5c:2c:e4:2d:56:4f:d0:2f:d8:3f:d6: 4d:71:96:97:de:59:b6:44:27:f0:67:0b:99:66:ec:a3:46:c2: 57:d7:02:2e:da:c9:a2:fe:90:82:f4:36:fc:95:cd:2a:11:b8: 14:09:86:eb:64:ae:e3:21:d4:2c:a0:05:67:1b:5f:10:ae:9c: b8:cc:36:ba:b9:ad:1b:45:13:98:1e:cb:85:a8:7a:ae:b7:ef: e9:c5:00:77:d4:c5:fa:ab:e3:ed:3d:5c:d6:98:2a:8e:cc:e0: 3b:da:95:6e:03:4c:ad:2b:35:0d:6a:ac:44:48:97:01:e6:7e: b3:8d:4a:15:98:27:b8:56:ec:b4:26:0b:f2:69:32:c2:99:46: c3:da:54:a8:6c:29:39:e4:3d:aa:8b:51:00:ca:5a:93:ab:b3: ea:bb:b3:3d:58:9d:ee:11:4a:02:e8:46:da:b8:36:13:9d:0b: 20:0e:71:d7:2d:b8:2c:62:95:e3:9f:a4:46:ed:74:19:c7:b9: 71:82:12:b7:10:ed:b3:9c:bc:84:ac:91:8f:7e:68:aa:21:b6: 97:3a:06:01 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUIvBxdYqYt0lxSPgd+4bsKYr1lVswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMjE2MTkzN1oX DTI3MDYwMTE2MjQzN1owMzExMC8GA1UEAxMoOTg1RjcxNDkxRjkyNTA4OTBBQTky MTJGQ0Q1NkI0NjdGRDdBRjY0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDwnD0TYyp8gEvoTfkAuHKXf/x9VAdwx3iKoNEykTSdChsfv6NUTy4mnCs4 UxYRv+e1+W8rwen3sRLT6jqc5XYg7zXUU0VMLIZfaY76SNRCdfebgzrUF+WCGD++ Al7e247aSi/T4xVMZYToRJAigswQE8urQfeT7aaZyrqnUYJymFlvmsifX+TN7qSC m4GzGhcCi6D5WP2bIp346nQ//88oI6H/sPOSQ/37pTcow+Av4/HDEPhhGOzkEcHD jFknDajkJS9YlyJo2fJQMG/8BLhTSN8yxlTsDmgTQJdQLfjCZadWVAVjue2f7hF3 vFf4FHgnjK2H3xmHb9zGiPEa3xcCAwEAAaOCAfAwggHsMB0GA1UdDgQWBBSYX3FJ H5JQiQqpIS/NVrRn/Xr2QjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAJA4BCEBVAwcAJA4BCEhVMA0G CSqGSIb3DQEBCwUAA4IBAQBgLVALvcEuB9y/Vs0KXGoHpUN1b33cLqmy9gMNjKsK zmX+yANWDkME11yWXCzkLVZP0C/YP9ZNcZaX3lm2RCfwZwuZZuyjRsJX1wIu2smi /pCC9Db8lc0qEbgUCYbrZK7jIdQsoAVnG18Qrpy4zDa6ua0bRROYHsuFqHqut+/p xQB31MX6q+PtPVzWmCqOzOA72pVuA0ytKzUNaqxESJcB5n6zjUoVmCe4Vuy0Jgvy aTLCmUbD2lSobCk55D2qi1EAylqTq7Pqu7M9WJ3uEUoC6EbauDYTnQsgDnHXLbgs YpXjn6RG7XQZx7lxghK3EO2znLyErJGPfmiqIbaXOgYB -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:33 2026 by rpki-client