$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140374.roa File: AS140374.roa (raw, json) Hash identifier: gBjlAhQ5UCjDb4tLcDd+1WepSjT8Yq4Dpuooknr4WAA= Subject key identifier: C7:8F:8F:9B:59:FD:10:72:5E:83:B3:8B:FE:E0:EE:AD:35:34:40:AA Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 1FFE86776C72E8848CBC72B16C677BFFAE5EDDEC Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140374.roa Signing time: Mon 01 Jun 2026 16:31:26 +0000 ROA not before: Mon 01 Jun 2026 16:26:26 +0000 ROA not after: Mon 31 May 2027 16:31:26 +0000 asID: 140374 IP address blocks: 240e:96b:601e::/48 maxlen: 48 240e:96b:601f::/48 maxlen: 48 240e:96b:6020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:fe:86:77:6c:72:e8:84:8c:bc:72:b1:6c:67:7b:ff:ae:5e:dd:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 1 16:26:26 2026 GMT Not After : May 31 16:31:26 2027 GMT Subject: CN=C78F8F9B59FD10725E83B38BFEE0EEAD353440AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e8:5d:ba:d2:af:01:f5:3c:eb:5b:ee:df:e2: a0:fa:9e:45:cf:90:b0:78:92:f3:6b:58:a0:19:d1: a5:8e:16:96:40:f8:35:e5:bb:f6:6a:7f:dd:bf:7e: 6a:88:13:de:62:dd:22:c7:22:65:9c:ae:05:8e:72: e5:26:36:ad:f0:f5:78:c7:19:60:36:a5:00:e0:86: e6:34:50:1e:79:47:a8:e5:b0:5f:f4:72:42:de:71: 93:0b:c9:f7:56:00:b1:37:f1:ee:3e:b3:39:bb:40: b0:51:d3:8e:1a:ee:35:45:90:0f:b0:00:5f:f8:40: 40:b2:bf:48:59:f3:ac:61:50:f0:28:a2:b2:5b:6b: f8:13:97:ad:2f:9e:ee:2d:6e:88:82:7e:51:15:ec: 50:5f:68:60:71:7d:82:57:a2:05:e9:d3:5b:e9:23: 6f:3c:74:50:16:00:ac:d8:9b:07:1b:74:51:46:af: 43:3f:b2:39:8e:83:2b:74:25:e6:db:8d:23:c9:5d: cf:52:21:66:81:d0:31:ac:bb:ea:f9:b8:cf:1e:2e: df:9f:96:94:d0:c5:76:d9:42:50:a6:aa:d0:c0:aa: 74:a9:14:4e:39:ef:42:7b:ce:b6:c2:6c:23:f4:6f: 54:e6:5c:6d:e4:e9:c1:89:81:10:8f:16:82:09:92: c2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:8F:8F:9B:59:FD:10:72:5E:83:B3:8B:FE:E0:EE:AD:35:34:40:AA X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:96b:601e::-240e:96b:6020:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 20:32:f9:d0:0c:0f:82:14:0d:53:59:f4:11:35:c4:6e:e5:48: 48:09:d0:8b:90:b8:05:73:d4:9b:cb:96:2b:7a:c6:11:8e:0f: 95:00:7e:90:22:8c:04:af:22:da:87:20:30:d6:2b:ed:c6:c2: 4c:96:94:6a:67:59:4b:e7:4b:17:fa:68:b9:80:f9:ba:d8:8c: fe:c7:c0:ae:91:d3:0c:17:a4:da:97:86:65:17:8c:40:f3:a2: dc:eb:ee:08:10:fe:2c:1e:d9:da:70:06:f8:04:9c:37:4e:93: 84:7a:2e:49:f6:c0:09:fb:56:12:35:5d:b8:d8:cc:a6:4f:2f: 16:48:a3:4c:58:a4:a9:b0:05:6d:14:a4:4f:0b:9b:85:c2:0e: 5e:4a:92:86:ee:5c:d4:81:c9:6b:30:93:83:dd:9b:08:36:71: eb:f9:50:c2:1a:3f:be:ff:04:7a:b0:93:88:48:2b:ac:5d:0d: ff:ca:f3:c5:59:fe:0a:ce:2d:3a:68:3a:fc:d2:ba:2b:97:0a: de:59:da:45:4b:3b:58:e5:7e:69:a4:72:d2:e9:4c:c5:8d:da: e8:a9:ab:d7:bf:86:12:52:dd:fb:fe:4a:de:40:72:92:cd:72: 9f:b1:76:48:34:0b:ea:9b:12:e1:bd:f0:7f:90:ed:6a:09:2f: e1:23:38:9e -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUH/6Gd2xy6ISMvHKxbGd7/65e3ewwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMTE2MjYyNloX DTI3MDUzMTE2MzEyNlowMzExMC8GA1UEAxMoQzc4RjhGOUI1OUZEMTA3MjVFODNC MzhCRkVFMEVFQUQzNTM0NDBBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO3oXbrSrwH1POtb7t/ioPqeRc+QsHiS82tYoBnRpY4WlkD4NeW79mp/3b9+ aogT3mLdIsciZZyuBY5y5SY2rfD1eMcZYDalAOCG5jRQHnlHqOWwX/RyQt5xkwvJ 91YAsTfx7j6zObtAsFHTjhruNUWQD7AAX/hAQLK/SFnzrGFQ8Ciisltr+BOXrS+e 7i1uiIJ+URXsUF9oYHF9gleiBenTW+kjbzx0UBYArNibBxt0UUavQz+yOY6DK3Ql 5tuNI8ldz1IhZoHQMay76vm4zx4u35+WlNDFdtlCUKaq0MCqdKkUTjnvQnvOtsJs I/RvVOZcbeTpwYmBEI8WggmSwq8CAwEAAaOCAfIwggHuMB0GA1UdDgQWBBTHj4+b Wf0Qcl6Ds4v+4O6tNTRAqjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDglrYB4DBwAkDglrYCAw DQYJKoZIhvcNAQELBQADggEBACAy+dAMD4IUDVNZ9BE1xG7lSEgJ0IuQuAVz1JvL lit6xhGOD5UAfpAijASvItqHIDDWK+3GwkyWlGpnWUvnSxf6aLmA+brYjP7HwK6R 0wwXpNqXhmUXjEDzotzr7ggQ/iwe2dpwBvgEnDdOk4R6Lkn2wAn7VhI1XbjYzKZP LxZIo0xYpKmwBW0UpE8Lm4XCDl5KkobuXNSByWswk4Pdmwg2cev5UMIaP77/BHqw k4hIK6xdDf/K88VZ/grOLTpoOvzSuiuXCt5Z2kVLO1jlfmmkctLpTMWN2uipq9e/ hhJS3fv+St5AcpLNcp+xdkg0C+qbEuG98H+Q7WoJL+EjOJ4= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:40 2026 by rpki-client