$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140353.roa File: AS140353.roa (raw, json) Hash identifier: 3Ra2bAn2QKm59VwY9Im+gs2JH13UM/6ykllXl5JBopw= Subject key identifier: 81:9D:9A:34:DF:08:C0:A5:79:8C:E1:3D:C0:1B:32:60:98:0A:FE:20 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3D42503FD4C8FDCF30BCB716B0589CCCB293E691 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140353.roa Signing time: Sun 24 May 2026 16:14:37 +0000 ROA not before: Sun 24 May 2026 16:09:37 +0000 ROA not after: Sun 23 May 2027 16:14:37 +0000 asID: 140353 IP address blocks: 240e:44d:3540::/42 maxlen: 42 240e:44d:3640::/42 maxlen: 42 240e:44d:3740::/42 maxlen: 42 240e:44d:3840::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:42:50:3f:d4:c8:fd:cf:30:bc:b7:16:b0:58:9c:cc:b2:93:e6:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 24 16:09:37 2026 GMT Not After : May 23 16:14:37 2027 GMT Subject: CN=819D9A34DF08C0A5798CE13DC01B3260980AFE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6b:f8:ea:d0:7e:7d:db:d9:d7:86:43:b2:93: 63:44:51:53:01:a7:34:18:cc:ea:8a:a0:96:ed:a4: 43:46:6a:85:65:31:af:bc:f4:6d:5b:2e:8a:46:e8: a7:fd:1a:40:b2:ff:18:7e:7b:a1:b2:04:9e:2b:1a: fb:d7:d6:79:57:f2:16:e1:13:be:e4:36:57:39:fa: 83:28:54:e3:62:4a:34:77:5f:99:0e:f8:6b:6e:1d: ae:7d:f5:f1:6d:63:34:82:52:cd:9d:2a:77:55:b5: 18:e6:49:11:3a:9a:ee:d5:20:3e:99:19:f0:30:cf: 61:15:44:bb:02:8d:f4:7e:3b:c5:22:1d:65:03:80: 57:8b:4c:ae:b4:04:d5:4b:51:09:f7:fa:22:cd:72: 44:02:c9:d6:ee:c7:33:15:14:3c:cb:10:e0:34:27: 26:09:ab:14:98:0c:99:f8:be:00:0b:d7:20:3f:ac: 7f:05:2b:84:0d:85:ab:2f:01:6d:bf:00:cb:9f:e4: f8:12:a3:9c:ec:68:06:5c:d3:96:70:1c:bb:b1:95: 23:2b:8b:91:f1:fd:66:75:81:64:e4:8c:0e:f1:49: b7:dd:0a:dc:12:c8:7d:5b:96:7d:8e:06:1c:3a:32: 7c:4c:e8:a1:54:59:85:05:bb:f7:64:9a:bd:39:95: 6c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9D:9A:34:DF:08:C0:A5:79:8C:E1:3D:C0:1B:32:60:98:0A:FE:20 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140353.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:44d:3540::/42 240e:44d:3640::/42 240e:44d:3740::/42 240e:44d:3840::/42 Signature Algorithm: sha256WithRSAEncryption 01:eb:71:d0:b3:a7:93:39:a6:ed:15:f6:bb:13:df:f9:79:f5: f2:a8:73:69:b9:83:10:bd:c3:06:f1:40:f6:31:ff:46:e3:0c: f9:8e:54:65:70:82:2b:58:b5:14:c7:76:f1:bf:61:41:0d:5c: f6:fd:48:18:e4:f7:02:22:65:d2:bc:b2:a1:0e:dc:f4:4d:13: 2e:36:0e:c8:ac:0d:04:0e:63:e3:56:60:b0:7e:89:0e:a3:10: d5:35:5c:a8:1f:d4:c5:80:8d:74:6f:02:27:dd:da:31:d2:bc: d9:37:42:08:46:24:c9:cc:30:e6:b6:a0:95:e4:7c:4b:0b:eb: 4c:f4:3c:d1:d0:8e:e2:03:e4:61:2b:b7:26:91:92:28:d8:aa: f7:c5:cf:39:df:d4:3a:e5:2e:17:48:53:eb:63:cc:4e:43:0f: 2d:b9:8c:77:9f:d5:85:2b:46:f3:82:4f:c2:5b:e1:f0:65:90: 2f:07:d9:a6:16:42:3f:0e:ce:bf:8d:cb:e6:be:72:49:b6:16: db:23:d5:05:e2:9e:65:3f:ee:09:91:53:65:f5:19:3e:5b:eb: 0b:26:82:21:ad:0f:36:86:1a:1b:22:00:a4:9e:36:a0:bb:4b: 6e:49:c7:c4:cf:0e:42:cf:35:d1:b2:eb:3c:14:56:72:88:07: ad:ae:2f:b1 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUPUJQP9TI/c8wvLcWsFiczLKT5pEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNDE2MDkzN1oX DTI3MDUyMzE2MTQzN1owMzExMC8GA1UEAxMoODE5RDlBMzRERjA4QzBBNTc5OENF MTNEQzAxQjMyNjA5ODBBRkUyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM5r+OrQfn3b2deGQ7KTY0RRUwGnNBjM6oqglu2kQ0ZqhWUxr7z0bVsuikbo p/0aQLL/GH57obIEnisa+9fWeVfyFuETvuQ2Vzn6gyhU42JKNHdfmQ74a24drn31 8W1jNIJSzZ0qd1W1GOZJETqa7tUgPpkZ8DDPYRVEuwKN9H47xSIdZQOAV4tMrrQE 1UtRCff6Is1yRALJ1u7HMxUUPMsQ4DQnJgmrFJgMmfi+AAvXID+sfwUrhA2Fqy8B bb8Ay5/k+BKjnOxoBlzTlnAcu7GVIyuLkfH9ZnWBZOSMDvFJt90K3BLIfVuWfY4G HDoyfEzooVRZhQW792SavTmVbFMCAwEAAaOCAgIwggH+MB0GA1UdDgQWBBSBnZo0 3wjApXmM4T3AGzJgmAr+IDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzUzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAAjAkAwcGJA4ETTVAAwcGJA4ETTZAAwcG JA4ETTdAAwcGJA4ETThAMA0GCSqGSIb3DQEBCwUAA4IBAQAB63HQs6eTOabtFfa7 E9/5efXyqHNpuYMQvcMG8UD2Mf9G4wz5jlRlcIIrWLUUx3bxv2FBDVz2/UgY5PcC ImXSvLKhDtz0TRMuNg7IrA0EDmPjVmCwfokOoxDVNVyoH9TFgI10bwIn3dox0rzZ N0IIRiTJzDDmtqCV5HxLC+tM9DzR0I7iA+RhK7cmkZIo2Kr3xc8539Q65S4XSFPr Y8xOQw8tuYx3n9WFK0bzgk/CW+HwZZAvB9mmFkI/Ds6/jcvmvnJJthbbI9UF4p5l P+4JkVNl9Rk+W+sLJoIhrQ82hhobIgCknjagu0tuScfEzw5CzzXRsus8FFZyiAet ri+x -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:34 2026 by rpki-client