$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140511.roa File: AS140511.roa (raw, json) Hash identifier: VJ6DBFKq3k+LbVN0IGzkCgnKoFcPGYGCBMWtX+pRRbg= Subject key identifier: 2E:57:BB:A8:7F:32:9C:87:D1:53:FE:C6:2C:F1:FE:AE:76:B7:3E:4B Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 03357A6553B3F06B5255A60D800CCF0F44190A96 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140511.roa Signing time: Thu 28 May 2026 16:11:06 +0000 ROA not before: Thu 28 May 2026 16:06:06 +0000 ROA not after: Thu 27 May 2027 16:11:06 +0000 asID: 140511 IP address blocks: 240e:a7:7fc9::/48 maxlen: 48 240e:a7:7fca::/48 maxlen: 48 240e:a7:7fcb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:35:7a:65:53:b3:f0:6b:52:55:a6:0d:80:0c:cf:0f:44:19:0a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:06:06 2026 GMT Not After : May 27 16:11:06 2027 GMT Subject: CN=2E57BBA87F329C87D153FEC62CF1FEAE76B73E4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6b:a4:55:6a:3b:18:44:2d:06:6f:36:01:65: 64:1c:93:be:8f:0c:89:ac:d8:7c:f1:7d:0f:b3:8f: b6:2f:c6:8c:95:8c:70:88:82:5b:58:df:25:ae:c6: 4f:90:40:c0:d1:bc:84:55:e8:ce:05:2d:b0:cc:0c: 99:02:16:d7:34:cf:ce:41:23:fb:dd:06:cb:e5:12: 94:02:e1:00:f8:b9:fa:f4:54:f8:87:4e:a2:93:12: c0:83:ec:18:bf:51:b1:93:d1:72:d8:04:f5:4d:ce: c1:8c:41:53:f4:07:f9:ba:7a:2d:5d:65:fb:88:94: aa:5a:fe:30:e7:75:96:42:d1:09:7d:32:35:12:d3: 5a:21:ff:a4:7b:01:2d:61:8c:ba:f4:c7:26:db:6a: 57:1e:24:11:d4:67:d5:6d:77:09:c5:33:e0:1b:73: ab:16:52:55:ce:94:dd:09:56:5c:d5:26:e5:3e:57: 2e:9b:fc:f5:b0:7e:46:c4:2b:db:14:80:2a:a8:3e: 1c:b7:fb:68:2f:4e:75:ba:39:68:7f:c6:1d:2b:a4: bd:bf:6f:7f:9f:49:27:d9:79:e1:82:f2:3a:0f:38: bd:34:ad:44:51:ad:35:62:4d:77:a2:fe:de:c4:48: 62:7c:f3:ce:45:93:fb:4b:b7:8a:90:15:4c:ec:77: da:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:57:BB:A8:7F:32:9C:87:D1:53:FE:C6:2C:F1:FE:AE:76:B7:3E:4B X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140511.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:a7:7fc9::-240e:a7:7fcb:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 5a:45:56:58:92:3d:8b:f8:61:ab:69:d7:74:ed:ff:ac:29:72: 4b:b9:2d:5f:8c:3a:40:58:ed:24:5a:45:18:1a:21:1c:a4:29: 87:7d:ff:ee:38:e1:f5:19:55:70:7c:75:65:de:31:e3:72:f4: 2e:63:4c:fa:14:82:6b:99:22:55:8c:ad:2f:5b:a2:94:c4:31: 77:c4:b6:25:5d:69:fa:d6:80:ba:15:ee:91:3b:f9:2d:fd:61: 2e:fa:90:cf:0b:6e:66:be:94:11:23:6a:d1:cc:1c:78:b6:ed: 6a:d1:82:79:8c:16:1f:cd:74:ee:9a:7a:56:b9:ad:b6:7e:2c: 56:ff:a1:10:0e:37:84:76:ba:e4:55:e9:1c:3d:22:ec:7c:e9: 6a:11:16:30:8d:16:63:65:1b:a7:e2:1d:27:78:8d:e5:67:bb: 70:a7:a3:fe:b1:14:fe:38:b0:d7:b2:9f:db:da:d9:e7:90:a1: 00:4b:26:28:41:59:4f:81:7f:15:28:75:15:7e:a7:aa:10:46: 78:25:dd:94:c1:11:13:01:27:c2:3a:4f:47:17:bf:20:20:b9: 34:d1:22:ce:85:e9:33:b4:64:d4:66:45:d0:4a:a1:a8:56:fa: 13:3a:58:b7:d2:1b:f0:d0:6c:e8:54:00:59:58:37:62:92:33: af:19:fa:32 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUAzV6ZVOz8GtSVaYNgAzPD0QZCpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDYwNloX DTI3MDUyNzE2MTEwNlowMzExMC8GA1UEAxMoMkU1N0JCQTg3RjMyOUM4N0QxNTNG RUM2MkNGMUZFQUU3NkI3M0U0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxrpFVqOxhELQZvNgFlZByTvo8MiazYfPF9D7OPti/GjJWMcIiCW1jfJa7G T5BAwNG8hFXozgUtsMwMmQIW1zTPzkEj+90Gy+USlALhAPi5+vRU+IdOopMSwIPs GL9RsZPRctgE9U3OwYxBU/QH+bp6LV1l+4iUqlr+MOd1lkLRCX0yNRLTWiH/pHsB LWGMuvTHJttqVx4kEdRn1W13CcUz4BtzqxZSVc6U3QlWXNUm5T5XLpv89bB+RsQr 2xSAKqg+HLf7aC9Odbo5aH/GHSukvb9vf59JJ9l54YLyOg84vTStRFGtNWJNd6L+ 3sRIYnzzzkWT+0u3ipAVTOx32v0CAwEAAaOCAfIwggHuMB0GA1UdDgQWBBQuV7uo fzKch9FT/sYs8f6udrc+SzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTExLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCnf8kDBwIkDgCnf8gw DQYJKoZIhvcNAQELBQADggEBAFpFVliSPYv4Yatp13Tt/6wpcku5LV+MOkBY7SRa RRgaIRykKYd9/+444fUZVXB8dWXeMeNy9C5jTPoUgmuZIlWMrS9bopTEMXfEtiVd afrWgLoV7pE7+S39YS76kM8Lbma+lBEjatHMHHi27WrRgnmMFh/NdO6aela5rbZ+ LFb/oRAON4R2uuRV6Rw9Iux86WoRFjCNFmNlG6fiHSd4jeVnu3Cno/6xFP44sNey n9va2eeQoQBLJihBWU+BfxUodRV+p6oQRngl3ZTBERMBJ8I6T0cXvyAguTTRIs6F 6TO0ZNRmRdBKoahW+hM6WLfSG/DQbOhUAFlYN2KSM68Z+jI= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:36 2026 by rpki-client