$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140358.roa File: AS140358.roa (raw, json) Hash identifier: uTM+HYqwzBnqOMtuVWuicFclesFI0akia1tyx0mbPdw= Subject key identifier: 03:94:0E:76:FB:22:6C:AE:47:94:83:D8:99:B5:23:B6:25:E7:02:F6 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 39400E99A0CC32DDFA53EC48463BA509ED6AD8E1 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140358.roa Signing time: Sun 24 May 2026 16:12:59 +0000 ROA not before: Sun 24 May 2026 16:07:59 +0000 ROA not after: Sun 23 May 2027 16:12:59 +0000 asID: 140358 IP address blocks: 240e:44d:e40::/42 maxlen: 42 240e:44d:f40::/42 maxlen: 42 240e:44d:1040::/42 maxlen: 42 240e:44d:1140::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:40:0e:99:a0:cc:32:dd:fa:53:ec:48:46:3b:a5:09:ed:6a:d8:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 24 16:07:59 2026 GMT Not After : May 23 16:12:59 2027 GMT Subject: CN=03940E76FB226CAE479483D899B523B625E702F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:21:58:3d:9c:80:41:48:63:02:79:e8:44:0c: a5:74:21:2a:9c:19:e7:dd:02:b4:c3:20:bd:63:82: 54:bb:60:50:02:13:b2:5e:87:e0:c5:7b:f7:a2:a6: 93:82:f9:a2:47:ea:01:b2:d2:be:2f:3f:61:2f:ec: d6:d9:97:c6:15:a0:d8:96:ab:b9:35:63:11:7a:f5: 31:34:fb:55:b4:31:1f:fd:f3:91:f3:e3:79:ec:c3: 2d:6b:4d:5e:0d:8e:9a:a1:5d:b6:ec:21:ba:ea:5f: c5:ca:e3:2c:7a:a2:5a:04:a5:4c:5e:a4:79:e2:06: 14:9b:e6:56:77:a6:a3:54:68:73:5b:90:09:16:78: 1d:81:7f:dd:8d:e4:74:f9:ba:e6:56:e0:63:fc:34: 5d:ad:1e:e0:a4:95:ac:ac:f7:1e:16:00:19:e9:70: 2f:65:a6:2e:ee:ef:d0:5e:44:75:7b:94:53:41:5b: ed:ed:7a:5e:4f:0d:bd:7e:e2:7e:0e:25:ac:27:b4: 8b:39:6a:6f:f6:96:6a:2c:99:dd:a2:ea:40:ea:d9: 40:7b:31:6e:7c:a6:31:bd:6f:4b:65:6e:4e:2e:3b: 18:5d:99:94:c7:2f:f4:fb:94:3d:ea:91:ac:53:1e: 23:14:cc:0f:ff:b1:a2:01:dd:61:10:d8:fa:e6:62: a0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:94:0E:76:FB:22:6C:AE:47:94:83:D8:99:B5:23:B6:25:E7:02:F6 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:44d:e40::/42 240e:44d:f40::/42 240e:44d:1040::/42 240e:44d:1140::/42 Signature Algorithm: sha256WithRSAEncryption 50:87:4a:7e:ed:5b:dc:88:da:e8:c7:d1:ec:72:a6:5e:c8:ee: 74:08:24:d0:93:7a:5f:ac:d8:44:2d:95:8c:c9:d7:9f:29:64: f9:76:07:dd:8b:ad:0d:ff:c9:bc:18:4b:c3:50:bd:2c:72:e5: 6d:77:64:23:a6:9d:c4:03:ea:a6:ac:68:28:6a:35:39:23:09: a5:d1:57:f5:c3:5a:84:5f:3e:36:c1:68:ae:59:e4:4d:c2:53: 5a:6b:9d:fb:d1:da:39:67:f9:aa:15:fb:15:5f:75:78:14:a6: 56:d3:12:f0:82:a9:f4:eb:8b:f2:44:e6:c6:99:bc:b4:9c:85: 1a:cd:ef:eb:86:a2:9a:db:5b:96:15:99:61:31:1b:cc:44:1b: 1a:43:ea:c6:43:8e:97:cd:b8:ed:a2:61:50:dd:58:c6:09:c4: b6:e7:b1:d4:8d:67:39:79:1d:8d:5d:cf:21:d0:33:d5:bc:c0: 2f:92:ed:64:f4:d9:6b:3e:ea:89:8a:66:b5:1a:b7:f9:a6:8a: 60:a7:6c:89:dc:08:59:2b:5a:10:88:f9:37:3c:95:5f:a7:67: 22:94:fc:00:1c:5b:d6:64:27:4b:b8:1e:bd:90:66:ac:2d:1a: 07:0c:c0:83:a0:4a:fe:a8:8b:ff:a5:3d:f6:a4:10:1e:bb:8c: cb:60:a2:59 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUOUAOmaDMMt36U+xIRjulCe1q2OEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNDE2MDc1OVoX DTI3MDUyMzE2MTI1OVowMzExMC8GA1UEAxMoMDM5NDBFNzZGQjIyNkNBRTQ3OTQ4 M0Q4OTlCNTIzQjYyNUU3MDJGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMghWD2cgEFIYwJ56EQMpXQhKpwZ590CtMMgvWOCVLtgUAITsl6H4MV796Km k4L5okfqAbLSvi8/YS/s1tmXxhWg2JaruTVjEXr1MTT7VbQxH/3zkfPjeezDLWtN Xg2OmqFdtuwhuupfxcrjLHqiWgSlTF6keeIGFJvmVnemo1Roc1uQCRZ4HYF/3Y3k dPm65lbgY/w0Xa0e4KSVrKz3HhYAGelwL2WmLu7v0F5EdXuUU0Fb7e16Xk8NvX7i fg4lrCe0izlqb/aWaiyZ3aLqQOrZQHsxbnymMb1vS2VuTi47GF2ZlMcv9PuUPeqR rFMeIxTMD/+xogHdYRDY+uZioP0CAwEAAaOCAgIwggH+MB0GA1UdDgQWBBQDlA52 +yJsrkeUg9iZtSO2JecC9jAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAAjAkAwcGJA4ETQ5AAwcGJA4ETQ9AAwcG JA4ETRBAAwcGJA4ETRFAMA0GCSqGSIb3DQEBCwUAA4IBAQBQh0p+7VvciNrox9Hs cqZeyO50CCTQk3pfrNhELZWMydefKWT5dgfdi60N/8m8GEvDUL0scuVtd2Qjpp3E A+qmrGgoajU5Iwml0Vf1w1qEXz42wWiuWeRNwlNaa5370do5Z/mqFfsVX3V4FKZW 0xLwgqn064vyRObGmby0nIUaze/rhqKa21uWFZlhMRvMRBsaQ+rGQ46XzbjtomFQ 3VjGCcS257HUjWc5eR2NXc8h0DPVvMAvku1k9NlrPuqJima1Grf5popgp2yJ3AhZ K1oQiPk3PJVfp2cilPwAHFvWZCdLuB69kGasLRoHDMCDoEr+qIv/pT32pBAeu4zL YKJZ -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:38 2026 by rpki-client