$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140371.roa File: AS140371.roa (raw, json) Hash identifier: AayXo025lZog9ljLTiibscG/Uo1DI0BMN8aqahXXHeQ= Subject key identifier: 36:2A:D4:A5:A0:C4:77:EA:43:D1:6C:87:A3:22:33:8B:75:BC:2F:28 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 27E2D7F76F0E30FF5DAC213B1453535679C97E93 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140371.roa Signing time: Mon 01 Jun 2026 16:31:26 +0000 ROA not before: Mon 01 Jun 2026 16:26:26 +0000 ROA not after: Mon 31 May 2027 16:31:26 +0000 asID: 140371 IP address blocks: 240e:96b:6015::/48 maxlen: 48 240e:96b:6016::/48 maxlen: 48 240e:96b:6017::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e2:d7:f7:6f:0e:30:ff:5d:ac:21:3b:14:53:53:56:79:c9:7e:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 1 16:26:26 2026 GMT Not After : May 31 16:31:26 2027 GMT Subject: CN=362AD4A5A0C477EA43D16C87A322338B75BC2F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:aa:9a:79:9d:3c:1b:3b:76:30:59:f8:ef:ff: 42:a1:0a:ae:62:ee:da:56:6b:fe:33:b6:42:2f:de: 00:8f:25:39:e7:75:ad:90:1e:83:34:c8:80:5b:e2: af:de:ee:63:84:ea:ba:19:96:8c:02:f9:9a:81:54: a0:d4:38:ff:0f:91:fc:b0:77:39:49:07:fa:a8:92: 70:36:e3:65:ca:95:e0:5d:ec:2a:76:36:54:ad:ac: 48:fb:1b:fb:a2:59:f2:09:9b:e8:e5:23:7b:2c:b8: d5:33:2a:df:4c:69:da:fb:e3:b0:2a:17:f6:99:4b: 44:f7:f6:83:64:55:47:88:a5:08:ff:f2:a5:1d:ce: 1b:5b:54:8c:1c:be:02:b3:18:98:eb:b3:1c:3c:8e: 5e:78:f8:cf:9b:89:e7:5e:d8:c0:49:ff:ee:7c:b3: 64:47:d2:85:97:ab:80:a4:1a:d4:2c:39:0d:8b:e2: 57:d1:8b:3f:92:fc:7f:e6:39:1f:34:89:18:a1:04: 7f:70:d1:c0:49:2b:71:8e:a7:1b:d5:4d:00:2f:73: 2e:5d:bc:01:59:0e:bd:eb:7a:39:37:f5:9f:a4:c4: 25:52:78:d0:1b:1e:94:b2:d2:ab:6f:1c:2d:df:f8: 29:24:8f:e4:43:f6:d0:1d:03:68:0f:a8:f0:33:f1: fa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:2A:D4:A5:A0:C4:77:EA:43:D1:6C:87:A3:22:33:8B:75:BC:2F:28 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140371.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:96b:6015::-240e:96b:6017:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 6c:35:ce:4d:27:e4:af:ae:d6:b7:74:53:03:95:93:c3:bd:6f: b0:36:ee:e8:ad:54:0d:58:20:6f:7f:05:4c:29:a7:df:19:53: 63:34:6f:4b:d4:8b:21:4c:f8:62:05:c3:0a:27:43:49:e3:ce: 1b:d8:05:0e:3f:87:e8:3c:73:36:f6:38:7b:44:35:ad:33:b8: 97:47:fb:b0:dc:c5:a5:4f:a4:e8:16:01:47:a1:2d:7e:00:6e: 62:35:5a:47:01:31:cb:b2:02:d7:c4:12:7b:7f:9a:08:c1:bc: 2d:06:87:95:41:bd:d5:e5:5a:c3:55:a8:6d:ec:ca:f1:fc:99: 1a:ab:f8:ed:9f:08:93:99:f8:e1:95:67:98:84:a3:d4:7b:04: bd:d6:82:80:9c:27:49:a1:0d:df:d4:83:77:fc:ba:39:fa:3f: 00:79:81:9a:53:44:14:fe:71:08:d9:c6:6c:a3:0b:de:f6:d8: 1f:c9:fa:46:d0:15:f9:97:98:1a:d2:2e:43:90:1f:fb:25:dc: 02:4c:bb:e6:99:e4:b3:c6:ab:b3:4f:b9:b0:e5:4d:02:40:d2: c4:de:bb:48:e6:59:0c:4d:8c:87:03:b3:af:67:fc:da:b1:fe: d8:4e:72:b1:e1:9f:ca:0f:2f:b1:dc:52:32:74:66:cc:f3:8a: 0e:37:9a:76 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUJ+LX928OMP9drCE7FFNTVnnJfpMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMTE2MjYyNloX DTI3MDUzMTE2MzEyNlowMzExMC8GA1UEAxMoMzYyQUQ0QTVBMEM0NzdFQTQzRDE2 Qzg3QTMyMjMzOEI3NUJDMkYyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaqmnmdPBs7djBZ+O//QqEKrmLu2lZr/jO2Qi/eAI8lOed1rZAegzTIgFvi r97uY4TquhmWjAL5moFUoNQ4/w+R/LB3OUkH+qiScDbjZcqV4F3sKnY2VK2sSPsb +6JZ8gmb6OUjeyy41TMq30xp2vvjsCoX9plLRPf2g2RVR4ilCP/ypR3OG1tUjBy+ ArMYmOuzHDyOXnj4z5uJ517YwEn/7nyzZEfShZergKQa1Cw5DYviV9GLP5L8f+Y5 HzSJGKEEf3DRwEkrcY6nG9VNAC9zLl28AVkOvet6OTf1n6TEJVJ40BselLLSq28c Ld/4KSSP5EP20B0DaA+o8DPx+hMCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBQ2KtSl oMR36kPRbIejIjOLdbwvKDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDglrYBUDBwMkDglrYBAw DQYJKoZIhvcNAQELBQADggEBAGw1zk0n5K+u1rd0UwOVk8O9b7A27uitVA1YIG9/ BUwpp98ZU2M0b0vUiyFM+GIFwwonQ0njzhvYBQ4/h+g8czb2OHtENa0zuJdH+7Dc xaVPpOgWAUehLX4AbmI1WkcBMcuyAtfEEnt/mgjBvC0Gh5VBvdXlWsNVqG3syvH8 mRqr+O2fCJOZ+OGVZ5iEo9R7BL3WgoCcJ0mhDd/Ug3f8ujn6PwB5gZpTRBT+cQjZ xmyjC9722B/J+kbQFfmXmBrSLkOQH/sl3AJMu+aZ5LPGq7NPubDlTQJA0sTeu0jm WQxNjIcDs69n/Nqx/thOcrHhn8oPL7HcUjJ0Zszzig43mnY= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:42 2026 by rpki-client