$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140514.roa File: AS140514.roa (raw, json) Hash identifier: vh/8DCjRIVjzEFUkqddOPQwuVT3WOmRSPYPiLAPUvNU= Subject key identifier: 9F:08:50:DE:FF:9B:8B:47:A3:5F:DF:6D:75:40:62:EF:8D:42:D2:99 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 37519F6D40C10A8A890335C256D77A04144116E7 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140514.roa Signing time: Thu 28 May 2026 16:11:06 +0000 ROA not before: Thu 28 May 2026 16:06:06 +0000 ROA not after: Thu 27 May 2027 16:11:06 +0000 asID: 140514 IP address blocks: 240e:a7:7fd2::/48 maxlen: 48 240e:a7:7fd3::/48 maxlen: 48 240e:a7:7fd4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:51:9f:6d:40:c1:0a:8a:89:03:35:c2:56:d7:7a:04:14:41:16:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:06:06 2026 GMT Not After : May 27 16:11:06 2027 GMT Subject: CN=9F0850DEFF9B8B47A35FDF6D754062EF8D42D299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:75:7c:a4:7f:44:cd:3d:0d:ba:e6:c3:4c:9d: 8c:4d:42:3f:29:69:1d:ef:b2:3c:a3:ef:3b:1a:58: 6a:0f:60:39:36:50:b2:d2:3f:cb:f9:16:d2:0c:e9: 7c:6e:73:b1:ad:06:4d:6d:57:55:9d:dc:76:d8:5b: 81:6b:ee:29:b6:15:fb:fa:90:75:a0:74:de:e9:94: d4:a5:a0:ce:05:5b:02:c2:0e:b2:8c:b1:71:ce:b7: e1:fd:c4:71:10:e8:ee:39:d1:04:4a:39:b1:e9:96: c6:50:13:db:3b:d7:96:95:f9:01:cd:5e:ec:a5:a3: 3a:3a:7c:2a:e3:b2:b2:46:6d:18:f1:0d:5b:92:22: 11:af:9a:13:11:bf:66:55:97:07:f5:d2:9e:eb:29: 5b:12:d4:3d:48:67:19:73:4a:75:90:95:a4:c0:57: 80:dc:81:7b:76:99:81:9d:83:4d:c9:0f:33:1d:a6: b0:51:56:f2:d9:d5:a1:57:d4:ad:82:c3:88:d2:ba: 93:6a:8f:fd:d5:45:2a:fb:d6:42:3f:74:56:19:4a: 39:9f:aa:de:dd:30:b1:06:05:ed:f6:7e:e0:8e:c9: 90:af:17:84:21:8e:14:4f:45:3e:c4:62:6e:18:c9: 6d:79:a4:83:61:d2:0e:75:a8:12:76:e3:51:c7:07: d6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:08:50:DE:FF:9B:8B:47:A3:5F:DF:6D:75:40:62:EF:8D:42:D2:99 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140514.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:a7:7fd2::-240e:a7:7fd4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 67:6c:94:9c:c7:16:16:5f:c6:a5:00:95:56:8e:d8:da:f6:ee: f2:77:2a:e2:42:a3:c3:8c:9c:0e:74:a6:81:62:1f:d8:ed:7e: 0d:8d:83:9a:31:a7:6a:04:64:2f:79:cd:5e:5f:bf:ce:24:fe: ee:ad:4d:0b:49:47:93:c8:49:2e:c4:1a:be:ca:0e:b1:cd:0d: c2:47:94:2c:59:98:0a:26:03:3b:4e:1d:7c:57:84:84:33:66: 2a:9f:fd:12:36:2c:ca:5d:22:e3:84:4b:36:7e:92:1f:8a:ef: f7:b8:63:e2:8c:90:c2:7b:20:33:20:62:32:4a:ac:d1:4b:41: 2f:f2:3b:f3:04:99:b6:b7:66:1b:81:83:09:28:36:68:d9:2d: 4d:62:49:e9:91:0f:c6:91:e2:da:17:b0:a4:d2:5b:a1:89:2d: a2:b7:24:d3:88:53:53:df:27:96:0e:f4:a1:62:8c:a5:0d:d6: c4:b0:db:0c:6c:2b:22:78:36:29:43:65:ac:69:7a:c6:8f:96: 64:40:dc:07:3a:3f:63:e6:c6:3a:b2:12:e1:c3:e5:db:ee:bb: b8:64:4b:01:fd:cf:c9:eb:88:7f:40:4a:7d:95:b4:09:e8:f5: e4:43:d7:78:ac:c0:69:71:35:dd:ce:d4:9b:14:0e:e8:9b:fb: c4:70:03:7c -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUN1GfbUDBCoqJAzXCVtd6BBRBFucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDYwNloX DTI3MDUyNzE2MTEwNlowMzExMC8GA1UEAxMoOUYwODUwREVGRjlCOEI0N0EzNUZE RjZENzU0MDYyRUY4RDQyRDI5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM11fKR/RM09Dbrmw0ydjE1CPylpHe+yPKPvOxpYag9gOTZQstI/y/kW0gzp fG5zsa0GTW1XVZ3cdthbgWvuKbYV+/qQdaB03umU1KWgzgVbAsIOsoyxcc634f3E cRDo7jnRBEo5semWxlAT2zvXlpX5Ac1e7KWjOjp8KuOyskZtGPENW5IiEa+aExG/ ZlWXB/XSnuspWxLUPUhnGXNKdZCVpMBXgNyBe3aZgZ2DTckPMx2msFFW8tnVoVfU rYLDiNK6k2qP/dVFKvvWQj90VhlKOZ+q3t0wsQYF7fZ+4I7JkK8XhCGOFE9FPsRi bhjJbXmkg2HSDnWoEnbjUccH1mMCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBSfCFDe /5uLR6Nf3211QGLvjULSmTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTE0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEkDgCnf9IDBwAkDgCnf9Qw DQYJKoZIhvcNAQELBQADggEBAGdslJzHFhZfxqUAlVaO2Nr27vJ3KuJCo8OMnA50 poFiH9jtfg2Ng5oxp2oEZC95zV5fv84k/u6tTQtJR5PISS7EGr7KDrHNDcJHlCxZ mAomAztOHXxXhIQzZiqf/RI2LMpdIuOESzZ+kh+K7/e4Y+KMkMJ7IDMgYjJKrNFL QS/yO/MEmba3ZhuBgwkoNmjZLU1iSemRD8aR4toXsKTSW6GJLaK3JNOIU1PfJ5YO 9KFijKUN1sSw2wxsKyJ4NilDZaxpesaPlmRA3Ac6P2PmxjqyEuHD5dvuu7hkSwH9 z8nriH9ASn2VtAno9eRD13iswGlxNd3O1JsUDuib+8RwA3w= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:33 2026 by rpki-client