$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140375.roa File: AS140375.roa (raw, json) Hash identifier: FX0rFVMwZbMRh2ybDMXipB9Lwxin17EZyr6UEkDl4Kg= Subject key identifier: 3D:FE:73:8F:C8:62:2D:18:AF:CF:2B:50:71:F1:EA:0D:A8:EB:15:51 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 79817C2E3E79E07678232EC3162ADEA6788AEA61 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140375.roa Signing time: Mon 01 Jun 2026 16:41:13 +0000 ROA not before: Mon 01 Jun 2026 16:36:13 +0000 ROA not after: Mon 31 May 2027 16:41:13 +0000 asID: 140375 IP address blocks: 240e:96b:6021::/48 maxlen: 48 240e:96b:6022::/48 maxlen: 48 240e:96b:6023::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:81:7c:2e:3e:79:e0:76:78:23:2e:c3:16:2a:de:a6:78:8a:ea:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 1 16:36:13 2026 GMT Not After : May 31 16:41:13 2027 GMT Subject: CN=3DFE738FC8622D18AFCF2B5071F1EA0DA8EB1551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:00:99:c0:59:5f:b3:ea:73:20:83:20:d9:c0: 8f:b6:76:82:a2:65:db:0d:29:80:be:ea:08:72:6b: 70:d0:f5:45:d3:f7:b4:50:a1:42:ca:59:ce:a4:23: d2:92:69:73:fd:80:bc:26:c9:e9:a8:e9:13:5a:04: 43:00:2f:b5:e1:b8:07:6a:a9:c8:61:d5:a2:c5:5f: f8:fd:a1:27:1f:eb:9e:1e:d5:5d:0e:72:8d:42:68: f4:3f:15:94:ed:87:81:a4:f5:a4:2b:be:b5:b6:eb: c5:bd:99:e9:ba:e1:ea:ee:df:f2:59:1a:63:f7:39: 04:98:e7:04:69:99:d8:c8:3f:76:2f:17:c5:20:1c: 0f:d3:cb:97:94:d8:6e:52:7b:20:d3:49:ea:21:97: d6:e1:db:d8:1f:4b:3b:b0:43:ef:08:a1:81:66:b7: a4:7f:d0:97:1f:ca:41:f5:f5:99:f7:46:81:c4:ce: 95:9a:ec:03:29:dc:89:49:4c:4f:31:34:66:9a:05: b5:01:66:0f:a9:54:79:0e:63:aa:24:57:8d:ab:a4: 92:75:eb:34:3e:6f:e4:ed:da:74:f7:26:9f:88:89: d8:84:ab:7c:89:2b:2a:eb:31:1f:e2:46:ce:87:0e: e0:68:19:10:6c:4a:20:37:9a:45:23:6d:9d:c8:74: 8e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:FE:73:8F:C8:62:2D:18:AF:CF:2B:50:71:F1:EA:0D:A8:EB:15:51 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140375.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:96b:6021::-240e:96b:6023:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8a:b5:08:50:b5:df:c8:d1:22:f0:af:df:d7:cd:d1:a9:62:e2: fb:8f:cb:7e:d6:1c:c4:87:52:4b:50:94:d6:c5:19:1b:31:fc: 9b:6e:38:5c:00:08:4d:1a:7d:7b:70:46:78:1b:e5:6a:a4:be: 85:08:fa:f0:cc:2a:5f:1e:23:87:c4:cb:2a:e8:64:9a:40:28: cc:ae:0c:19:a0:3b:05:78:ab:d6:32:5f:50:1f:21:05:7c:70: d8:14:8c:db:c1:b1:cf:b9:6f:63:7b:4a:15:7e:bd:30:01:17: 45:eb:a1:0a:c7:02:fd:01:9b:b2:d3:22:b6:19:54:ad:76:8d: 38:81:44:18:35:f8:d7:e2:b4:bb:61:e4:c8:4b:af:47:75:19: 72:1b:b2:a0:21:d9:b5:89:39:67:0a:d8:e8:e6:49:44:f7:48: 4c:41:12:5b:81:70:e2:a4:18:46:21:8e:77:0d:5d:85:ae:93: a6:b6:07:b6:01:f2:24:f3:29:ea:02:c7:f1:03:78:fd:06:e7: 5a:f4:1f:a4:d3:4b:9e:e8:90:1c:1c:bb:8a:3c:19:7d:a1:6d: f1:fd:75:64:ee:77:ce:5d:fe:4f:86:c5:35:b6:a9:ec:b1:ce: ed:29:a3:13:06:bb:cc:a2:7b:b5:2c:b7:a6:15:48:b3:4d:4f: 73:e3:33:ab -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUeYF8Lj554HZ4Iy7DFirepniK6mEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMTE2MzYxM1oX DTI3MDUzMTE2NDExM1owMzExMC8GA1UEAxMoM0RGRTczOEZDODYyMkQxOEFGQ0Yy QjUwNzFGMUVBMERBOEVCMTU1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0AmcBZX7PqcyCDINnAj7Z2gqJl2w0pgL7qCHJrcND1RdP3tFChQspZzqQj 0pJpc/2AvCbJ6ajpE1oEQwAvteG4B2qpyGHVosVf+P2hJx/rnh7VXQ5yjUJo9D8V lO2HgaT1pCu+tbbrxb2Z6brh6u7f8lkaY/c5BJjnBGmZ2Mg/di8XxSAcD9PLl5TY blJ7INNJ6iGX1uHb2B9LO7BD7wihgWa3pH/Qlx/KQfX1mfdGgcTOlZrsAynciUlM TzE0ZpoFtQFmD6lUeQ5jqiRXjaukknXrND5v5O3adPcmn4iJ2ISrfIkrKusxH+JG zocO4GgZEGxKIDeaRSNtnch0joUCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBQ9/nOP yGItGK/PK1Bx8eoNqOsVUTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDglrYCEDBwIkDglrYCAw DQYJKoZIhvcNAQELBQADggEBAIq1CFC138jRIvCv39fN0ali4vuPy37WHMSHUktQ lNbFGRsx/JtuOFwACE0afXtwRngb5WqkvoUI+vDMKl8eI4fEyyroZJpAKMyuDBmg OwV4q9YyX1AfIQV8cNgUjNvBsc+5b2N7ShV+vTABF0XroQrHAv0Bm7LTIrYZVK12 jTiBRBg1+NfitLth5MhLr0d1GXIbsqAh2bWJOWcK2OjmSUT3SExBEluBcOKkGEYh jncNXYWuk6a2B7YB8iTzKeoCx/EDeP0G51r0H6TTS57okBwcu4o8GX2hbfH9dWTu d85d/k+GxTW2qeyxzu0poxMGu8yie7Ust6YVSLNNT3PjM6s= -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:44 2026 by rpki-client