$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140350.roa File: AS140350.roa (raw, json) Hash identifier: Lkeohw7wTnVLjuP5WukQhaT9pI8M66LIRHk1lTkUO9U= Subject key identifier: 71:16:9D:C6:C3:FD:40:7D:C9:A2:55:0E:40:DB:4E:AD:40:37:33:7E Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 6B610C6C4C6C96D2046DA0A1CC0CA923B9FE93F4 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140350.roa Signing time: Tue 26 May 2026 16:19:18 +0000 ROA not before: Tue 26 May 2026 16:14:18 +0000 ROA not after: Tue 25 May 2027 16:19:18 +0000 asID: 140350 IP address blocks: 240e:44d:5740::/42 maxlen: 42 240e:44d:5840::/42 maxlen: 42 240e:44d:5940::/42 maxlen: 42 240e:44d:5a40::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:61:0c:6c:4c:6c:96:d2:04:6d:a0:a1:cc:0c:a9:23:b9:fe:93:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 26 16:14:18 2026 GMT Not After : May 25 16:19:18 2027 GMT Subject: CN=71169DC6C3FD407DC9A2550E40DB4EAD4037337E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a4:0d:49:82:bf:c5:37:a1:9c:e2:31:f1:5f: 44:9b:e4:fd:c8:85:11:7b:98:ab:2f:8e:4c:ea:16: e0:d1:c8:cf:95:ae:98:92:80:34:a3:1d:a1:c0:f3: ed:ce:c4:1d:28:0c:32:f2:c1:d0:52:c3:89:db:34: de:a9:65:7e:69:e4:01:9d:e9:84:ec:21:64:6f:d2: fd:c2:40:c3:14:a4:fd:15:2d:c5:30:d2:72:e1:b0: d3:57:a9:e5:02:be:b7:09:30:56:31:56:50:d5:49: bd:75:f3:13:c0:6f:6a:87:35:00:e1:53:db:c5:38: ee:67:0a:97:78:54:f8:c5:b5:d1:a5:da:97:6f:c9: 89:43:79:6c:9f:b8:c2:16:14:04:e8:84:b7:84:eb: 56:a0:9e:c3:d2:35:fb:de:34:7d:2e:54:03:57:e1: 83:73:8f:7a:53:f3:1c:0e:b1:a2:77:a4:34:06:30: b3:f6:d4:56:c8:c6:6b:f3:9d:e8:c7:01:e2:6c:ff: a4:eb:0b:82:26:f7:ee:59:64:99:d6:68:9d:ba:01: b0:37:b5:1c:4f:12:33:1b:0d:39:13:40:0e:27:41: 51:47:bf:70:6c:58:fa:db:5f:6a:80:e1:27:58:ee: a3:88:f6:cc:c4:04:81:66:80:a9:a2:33:18:b1:5b: a3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:16:9D:C6:C3:FD:40:7D:C9:A2:55:0E:40:DB:4E:AD:40:37:33:7E X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140350.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:44d:5740::/42 240e:44d:5840::/42 240e:44d:5940::/42 240e:44d:5a40::/42 Signature Algorithm: sha256WithRSAEncryption 2f:2f:65:04:ca:e9:91:c5:8a:41:68:f0:cf:c0:0e:8f:94:67: 99:3a:0e:ae:88:11:fc:ea:2c:32:e9:e3:49:44:26:28:35:1f: fd:3f:85:38:cf:f5:b3:a8:89:52:37:50:e8:d5:60:b7:6c:73: 0e:6b:1d:f1:d1:5d:20:61:1b:95:2f:6e:29:98:6e:5a:dd:c0: 52:35:cc:49:b2:80:b0:66:e6:d9:a5:5d:30:e6:28:cc:f9:a4: 32:56:f4:4f:a1:35:f2:2c:da:fd:3d:96:38:6a:52:c1:99:bf: 12:97:5c:46:4a:79:b8:c9:88:04:e8:f6:79:f8:b1:71:21:15: 8f:9f:a0:a2:05:cf:df:24:01:e8:1e:87:82:37:92:6f:77:e9: dc:b5:70:b6:be:3a:3f:4f:2d:08:33:2d:5e:05:f5:47:91:e0: 87:0b:c0:08:f8:e4:c5:1c:f1:ed:9f:79:a9:ef:63:4e:f4:91: 56:60:e6:13:ee:f4:2c:2e:29:79:bc:05:de:77:26:73:62:90: e8:9a:b8:57:2a:51:03:12:19:40:35:9b:d8:25:5d:43:18:b2: 76:77:1d:2e:f7:b8:eb:17:9f:d0:db:b6:21:b4:a9:67:4d:45: dc:d3:30:43:05:51:9e:dd:73:38:89:db:64:4c:4d:ba:09:00: 7d:ba:c2:75 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUa2EMbExsltIEbaChzAypI7n+k/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNjE2MTQxOFoX DTI3MDUyNTE2MTkxOFowMzExMC8GA1UEAxMoNzExNjlEQzZDM0ZENDA3REM5QTI1 NTBFNDBEQjRFQUQ0MDM3MzM3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ2kDUmCv8U3oZziMfFfRJvk/ciFEXuYqy+OTOoW4NHIz5WumJKANKMdocDz 7c7EHSgMMvLB0FLDids03qllfmnkAZ3phOwhZG/S/cJAwxSk/RUtxTDScuGw01ep 5QK+twkwVjFWUNVJvXXzE8Bvaoc1AOFT28U47mcKl3hU+MW10aXal2/JiUN5bJ+4 whYUBOiEt4TrVqCew9I1+940fS5UA1fhg3OPelPzHA6xonekNAYws/bUVsjGa/Od 6McB4mz/pOsLgib37llkmdZonboBsDe1HE8SMxsNORNADidBUUe/cGxY+ttfaoDh J1juo4j2zMQEgWaAqaIzGLFbo80CAwEAAaOCAgIwggH+MB0GA1UdDgQWBBRxFp3G w/1AfcmiVQ5A206tQDczfjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAAjAkAwcGJA4ETVdAAwcGJA4ETVhAAwcG JA4ETVlAAwcGJA4ETVpAMA0GCSqGSIb3DQEBCwUAA4IBAQAvL2UEyumRxYpBaPDP wA6PlGeZOg6uiBH86iwy6eNJRCYoNR/9P4U4z/WzqIlSN1Do1WC3bHMOax3x0V0g YRuVL24pmG5a3cBSNcxJsoCwZubZpV0w5ijM+aQyVvRPoTXyLNr9PZY4alLBmb8S l1xGSnm4yYgE6PZ5+LFxIRWPn6CiBc/fJAHoHoeCN5Jvd+nctXC2vjo/Ty0IMy1e BfVHkeCHC8AI+OTFHPHtn3mp72NO9JFWYOYT7vQsLil5vAXedyZzYpDomrhXKlED EhlANZvYJV1DGLJ2dx0u97jrF5/Q27YhtKlnTUXc0zBDBVGe3XM4idtkTE26CQB9 usJ1 -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:39 2026 by rpki-client