$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140513.roa File: AS140513.roa (raw, json) Hash identifier: YWsrL/4L4mzpSpNf/XPsLt4ooufLuR5LhAbnhLmqk9c= Subject key identifier: F3:D9:AC:28:EE:93:83:C6:BF:C1:A2:4D:7F:E2:91:D4:06:F7:9C:8E Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 6E8B7F996DBE3DA48FA63C7608AB37321DBC2E19 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140513.roa Signing time: Thu 28 May 2026 16:11:06 +0000 ROA not before: Thu 28 May 2026 16:06:06 +0000 ROA not after: Thu 27 May 2027 16:11:06 +0000 asID: 140513 IP address blocks: 240e:a7:7fcf::/48 maxlen: 48 240e:a7:7fd0::/48 maxlen: 48 240e:a7:7fd1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:8b:7f:99:6d:be:3d:a4:8f:a6:3c:76:08:ab:37:32:1d:bc:2e:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:06:06 2026 GMT Not After : May 27 16:11:06 2027 GMT Subject: CN=F3D9AC28EE9383C6BFC1A24D7FE291D406F79C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:d6:44:f5:c9:a7:74:72:94:84:50:b8:85: 5a:8e:a8:01:31:8e:67:e6:88:59:4a:e4:b8:97:f2: ff:e0:84:c7:10:6b:ff:78:16:2d:be:55:e6:e2:e1: f5:21:bf:09:ee:3a:06:0b:2b:5d:24:30:66:54:bc: 01:b9:f9:f3:7a:61:4a:86:6e:df:6a:7f:04:c1:b0: 6d:97:32:ac:99:15:8c:a6:77:7d:1f:93:dc:11:e7: 79:f5:b2:d5:41:ab:5e:ce:56:7c:64:4d:f2:77:84: 2d:e5:48:2d:32:77:22:f6:53:34:dc:4a:3a:cc:45: 28:cc:e1:a3:2c:db:b6:6a:d1:a8:d8:1f:1b:63:cf: 50:eb:f3:03:36:9f:1d:f4:34:27:5d:c3:d6:8e:38: 31:32:e8:f1:ec:c8:39:d8:23:5e:cf:4a:b3:2b:27: 14:0f:e6:57:2d:8e:0c:b3:7c:ea:d3:ed:f2:fc:cb: 0b:f1:88:42:3a:17:08:a6:ca:b3:ab:f6:13:78:23: 2f:8d:0d:f4:fd:c5:d7:ec:81:e7:4a:81:b2:36:a5: 2f:e4:af:2f:ce:59:17:b7:33:4e:8d:96:89:1f:ff: a8:91:f0:01:68:9e:86:45:96:cc:72:be:57:11:b2: ca:c4:76:1e:52:55:31:00:cf:03:4d:84:a4:70:d0: 9f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D9:AC:28:EE:93:83:C6:BF:C1:A2:4D:7F:E2:91:D4:06:F7:9C:8E X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140513.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:a7:7fcf::-240e:a7:7fd1:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 03:31:9e:b9:7b:d0:fb:e6:6d:71:6a:d1:b7:b0:ed:8f:20:66: 3d:72:9e:92:93:04:ce:98:a6:82:43:49:71:e1:76:a4:c3:dc: 2b:20:e3:72:08:72:b2:11:7b:6e:c6:21:37:4e:06:d4:9a:bc: 2e:91:23:94:d9:82:c9:bf:f5:e4:f3:6c:a3:49:c8:8a:42:25: dc:f2:2b:e2:07:53:09:4c:14:e4:b6:81:1f:15:45:14:2c:c8: 3c:6a:93:b2:70:b1:24:4d:97:b1:73:38:ff:5c:c7:c6:99:43: c3:53:a6:4a:c2:d4:3e:bc:b6:ee:13:d7:1a:1a:01:26:0c:92: f0:a4:2c:1b:62:07:dd:fd:d7:96:bd:6a:4c:1f:28:fd:bf:09: 12:b0:38:7e:5d:89:5e:64:5b:66:61:10:32:f9:1a:31:28:aa: ce:88:f7:b9:57:79:91:ea:b3:4d:be:73:9c:f7:05:44:00:4c: a7:db:9b:c8:2d:99:42:f3:75:c9:f0:e6:2a:eb:d8:da:71:e9: 24:da:4b:f8:6b:f1:a7:3c:90:34:25:cd:9b:e0:ba:9d:86:4c: 9d:a9:42:83:09:e3:7c:f9:6c:4b:70:7f:1a:ce:03:68:35:1e: 17:df:ca:05:85:4f:96:29:b5:96:d4:b8:fc:6d:6c:bf:88:2d: 78:aa:01:52 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUbot/mW2+PaSPpjx2CKs3Mh28LhkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDYwNloX DTI3MDUyNzE2MTEwNlowMzExMC8GA1UEAxMoRjNEOUFDMjhFRTkzODNDNkJGQzFB MjREN0ZFMjkxRDQwNkY3OUM4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9f1kT1yad0cpSEULiFWo6oATGOZ+aIWUrkuJfy/+CExxBr/3gWLb5V5uLh 9SG/Ce46BgsrXSQwZlS8Abn583phSoZu32p/BMGwbZcyrJkVjKZ3fR+T3BHnefWy 1UGrXs5WfGRN8neELeVILTJ3IvZTNNxKOsxFKMzhoyzbtmrRqNgfG2PPUOvzAzaf HfQ0J13D1o44MTLo8ezIOdgjXs9KsysnFA/mVy2ODLN86tPt8vzLC/GIQjoXCKbK s6v2E3gjL40N9P3F1+yB50qBsjalL+SvL85ZF7czTo2WiR//qJHwAWiehkWWzHK+ VxGyysR2HlJVMQDPA02EpHDQn8sCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBTz2awo 7pODxr/Bok1/4pHUBvecjjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCnf88DBwEkDgCnf9Aw DQYJKoZIhvcNAQELBQADggEBAAMxnrl70PvmbXFq0bew7Y8gZj1ynpKTBM6YpoJD SXHhdqTD3Csg43IIcrIRe27GITdOBtSavC6RI5TZgsm/9eTzbKNJyIpCJdzyK+IH UwlMFOS2gR8VRRQsyDxqk7JwsSRNl7FzOP9cx8aZQ8NTpkrC1D68tu4T1xoaASYM kvCkLBtiB93915a9akwfKP2/CRKwOH5diV5kW2ZhEDL5GjEoqs6I97lXeZHqs02+ c5z3BUQATKfbm8gtmULzdcnw5irr2Npx6STaS/hr8ac8kDQlzZvgup2GTJ2pQoMJ 43z5bEtwfxrOA2g1HhffygWFT5YptZbUuPxtbL+ILXiqAVI= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:35 2026 by rpki-client