$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140370.roa File: AS140370.roa (raw, json) Hash identifier: LUM7WH7E8Vflc9OJb4jOPT/g5rQrZWZX4UtoKAVpeeI= Subject key identifier: E6:76:A5:72:47:CD:45:11:62:33:0A:02:BD:99:55:9D:18:2D:08:B6 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 46E1FF90D312F8B539DFCA644BB4BE27372E2AA5 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140370.roa Signing time: Mon 01 Jun 2026 16:31:26 +0000 ROA not before: Mon 01 Jun 2026 16:26:26 +0000 ROA not after: Mon 31 May 2027 16:31:26 +0000 asID: 140370 IP address blocks: 240e:96b:6012::/48 maxlen: 48 240e:96b:6013::/48 maxlen: 48 240e:96b:6014::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e1:ff:90:d3:12:f8:b5:39:df:ca:64:4b:b4:be:27:37:2e:2a:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 1 16:26:26 2026 GMT Not After : May 31 16:31:26 2027 GMT Subject: CN=E676A57247CD451162330A02BD99559D182D08B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b2:7d:70:87:a6:dc:0e:40:4a:e8:35:bf:f0: aa:b6:86:7c:c0:34:99:1f:79:ec:d2:bd:48:92:43: ea:59:74:40:07:69:6e:b1:38:bf:65:30:08:ab:ec: 38:fd:17:e1:d1:46:ff:d0:30:e5:9f:bf:30:46:24: 1c:40:e6:2e:e1:cd:6b:6c:42:6f:25:39:f5:9f:24: d0:c0:c3:8a:43:35:ab:36:7e:60:6e:9d:2a:b3:92: 34:33:e1:1a:96:cc:ec:a0:bc:cf:ec:14:0b:e6:26: a9:dc:90:9a:ad:6b:4a:81:aa:ca:b6:48:24:b3:00: d8:88:5a:24:df:01:4a:80:bc:1e:62:0b:df:34:16: 21:53:6d:90:a6:f5:b8:a9:a9:43:ab:95:ff:95:05: 1d:a5:7f:97:d8:82:09:60:36:d0:0a:8e:d0:91:b0: 53:29:53:f0:63:25:e7:9f:45:a2:22:d1:a3:e2:a4: 6a:de:f1:92:79:c1:a7:0f:1d:3c:94:a4:23:c7:50: 7d:1d:07:f7:b0:22:a7:f9:c7:dd:d0:55:30:c0:f6: 22:30:35:1c:78:2c:4c:9d:a2:78:a4:1c:bf:59:1f: 51:b5:96:24:2f:19:b0:d1:67:89:04:c4:25:08:65: ea:f0:7a:30:20:fd:8e:f4:15:41:33:55:54:4c:89: cf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:76:A5:72:47:CD:45:11:62:33:0A:02:BD:99:55:9D:18:2D:08:B6 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140370.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:96b:6012::-240e:96b:6014:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1b:77:e3:5b:fa:f7:d4:b0:02:c0:62:b2:86:dc:b4:42:f2:b6: ff:8f:08:e8:5c:ab:0d:6c:5d:ff:d6:05:e4:1a:73:c9:ce:88: 61:26:ac:74:9a:8b:fb:61:81:06:14:61:c5:c7:22:33:28:fd: 3b:73:7c:cf:25:cd:88:98:e7:b5:12:4e:92:4b:93:1e:0a:66: 80:83:93:c0:ab:43:51:d8:47:11:1a:ba:80:85:69:0a:ba:b0: c2:51:8c:b6:91:02:30:cd:57:75:b9:15:03:ec:97:51:89:9a: 02:4a:bf:67:7b:4e:b5:66:d8:07:e7:85:18:14:b1:5e:4e:3c: eb:77:cb:30:47:55:d5:68:68:e0:70:57:fa:a0:b0:5b:55:b3: 58:74:33:22:ab:ef:a7:62:54:3c:93:cb:5d:73:68:54:63:82: 27:bc:ca:7f:fa:a5:bf:40:42:26:bd:db:c0:3d:51:5d:23:de: 6e:46:79:f6:22:f5:bf:6b:f8:3f:8e:f4:d9:5b:ee:de:b2:85: ac:83:cd:78:f8:fd:9c:ad:59:9f:5c:53:05:ba:4b:11:e3:d2: 8f:03:89:ab:5d:04:26:ff:9b:26:20:fe:db:de:42:5b:4c:eb: d5:99:1f:63:43:01:67:b7:29:c5:c2:a0:aa:6e:8f:d2:d7:95: 83:3e:c3:12 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIURuH/kNMS+LU538pkS7S+JzcuKqUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMTE2MjYyNloX DTI3MDUzMTE2MzEyNlowMzExMC8GA1UEAxMoRTY3NkE1NzI0N0NENDUxMTYyMzMw QTAyQkQ5OTU1OUQxODJEMDhCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKyyfXCHptwOQEroNb/wqraGfMA0mR957NK9SJJD6ll0QAdpbrE4v2UwCKvs OP0X4dFG/9Aw5Z+/MEYkHEDmLuHNa2xCbyU59Z8k0MDDikM1qzZ+YG6dKrOSNDPh GpbM7KC8z+wUC+YmqdyQmq1rSoGqyrZIJLMA2IhaJN8BSoC8HmIL3zQWIVNtkKb1 uKmpQ6uV/5UFHaV/l9iCCWA20AqO0JGwUylT8GMl559FoiLRo+Kkat7xknnBpw8d PJSkI8dQfR0H97Aip/nH3dBVMMD2IjA1HHgsTJ2ieKQcv1kfUbWWJC8ZsNFniQTE JQhl6vB6MCD9jvQVQTNVVEyJz30CAwEAAaOCAfIwggHuMB0GA1UdDgQWBBTmdqVy R81FEWIzCgK9mVWdGC0ItjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzcwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDglrYBIDBwAkDglrYBQw DQYJKoZIhvcNAQELBQADggEBABt341v699SwAsBisobctELytv+PCOhcqw1sXf/W BeQac8nOiGEmrHSai/thgQYUYcXHIjMo/TtzfM8lzYiY57USTpJLkx4KZoCDk8Cr Q1HYRxEauoCFaQq6sMJRjLaRAjDNV3W5FQPsl1GJmgJKv2d7TrVm2AfnhRgUsV5O POt3yzBHVdVoaOBwV/qgsFtVs1h0MyKr76diVDyTy11zaFRjgie8yn/6pb9AQia9 28A9UV0j3m5GefYi9b9r+D+O9Nlb7t6yhayDzXj4/ZytWZ9cUwW6SxHj0o8Diatd BCb/myYg/tveQltM69WZH2NDAWe3KcXCoKpuj9LXlYM+wxI= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:35 2026 by rpki-client