$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140516.roa File: AS140516.roa (raw, json) Hash identifier: 2u/jjNfviyl0B9AniJSz2HMcP9RnZuaWraUz1gyb5wg= Subject key identifier: BB:C9:32:CE:AD:9D:56:BD:C5:74:22:95:27:8F:3D:D7:B1:02:39:B4 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 4496F6037E8654644AD940DEC41983808DC05410 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140516.roa Signing time: Thu 28 May 2026 16:11:58 +0000 ROA not before: Thu 28 May 2026 16:06:58 +0000 ROA not after: Thu 27 May 2027 16:11:58 +0000 asID: 140516 IP address blocks: 240e:a7:7fd8::/48 maxlen: 48 240e:a7:7fd9::/48 maxlen: 48 240e:a7:7fda::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:96:f6:03:7e:86:54:64:4a:d9:40:de:c4:19:83:80:8d:c0:54:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:06:58 2026 GMT Not After : May 27 16:11:58 2027 GMT Subject: CN=BBC932CEAD9D56BDC5742295278F3DD7B10239B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:e0:30:b4:c8:fc:cf:f0:61:20:3c:13:68:5b: a0:c9:c3:b2:35:c0:f6:6b:bb:0b:12:66:7d:b1:0e: a2:44:bc:fd:07:42:05:f8:31:b2:58:c4:b9:eb:80: 60:b0:78:46:bc:87:43:27:cb:a0:cd:5d:da:48:49: 67:c6:c1:68:9b:be:53:fb:ba:60:42:e5:04:27:4d: 72:0b:44:78:22:33:35:e7:25:e7:63:2a:7c:cb:d4: 94:2f:8c:ee:84:b4:d8:bb:50:d3:0d:23:cd:07:94: 2e:81:9f:b5:11:7e:7b:0b:e4:f2:fa:89:ae:39:25: f6:0f:3e:35:02:44:52:93:03:9c:82:1b:09:d6:62: b6:1b:cf:0d:f6:57:4f:7a:5a:6b:bd:3b:5d:32:fd: ff:bf:8e:a6:2d:4c:8c:db:ac:d3:9d:3c:23:09:9e: 21:04:ee:22:f5:18:82:3c:2b:8e:97:8e:bb:a0:74: ad:53:ca:e8:68:d1:d0:40:73:d5:db:76:39:4e:10: 6f:3b:1e:6a:4f:49:4d:72:de:71:b9:e8:25:b8:5c: 6c:ca:5b:a9:7e:94:f0:d4:28:10:4e:fd:83:3e:b3: b4:88:6e:aa:51:d4:2a:fc:35:48:d5:45:01:2a:00: cf:42:b0:1d:da:bf:3f:b7:e2:15:f8:b2:81:93:b8: 7b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C9:32:CE:AD:9D:56:BD:C5:74:22:95:27:8F:3D:D7:B1:02:39:B4 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140516.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:a7:7fd8::-240e:a7:7fda:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 48:27:f6:0e:8d:18:16:20:e7:74:a9:1d:82:f9:d8:55:1c:77: a2:e8:aa:9f:84:10:63:8b:b0:5c:0b:6a:7e:c2:00:2e:ad:c5: d2:60:ab:15:02:31:af:00:a2:39:da:28:0a:2e:9a:c9:7c:07: d1:ae:db:10:e0:b2:36:a0:21:88:59:cf:41:2b:0b:1a:d7:f3: 77:9b:39:de:5c:73:22:0e:3c:0f:b3:e3:31:1c:ab:0c:a3:71: e5:b5:ee:e5:4b:06:7d:d4:14:ca:bc:c9:6a:ae:48:5e:eb:5c: 9b:c0:65:6b:5a:6e:f9:27:24:3e:76:f3:c9:f3:76:28:60:4f: 7c:59:ee:1f:5a:63:6c:d0:bd:fd:eb:06:30:25:e5:7d:2f:c4: 0c:c8:39:c5:94:04:90:49:a4:81:99:e5:a8:56:0b:81:fa:6d: 2e:29:2a:27:71:fe:92:3d:53:8c:b6:53:00:14:a0:49:47:d2: 2e:e9:96:29:63:a1:0e:0a:03:d1:3b:5e:59:8d:ac:1d:68:a7: e1:81:12:1e:5f:75:84:72:ad:15:70:1c:f3:a2:94:b7:f2:9c: 44:eb:52:53:05:a8:5a:55:14:53:00:f4:25:c7:c9:1c:ff:2c: 74:6d:34:88:6f:c1:fd:23:6d:71:49:18:c3:d8:a5:12:e4:19: 65:46:0c:ae -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIURJb2A36GVGRK2UDexBmDgI3AVBAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDY1OFoX DTI3MDUyNzE2MTE1OFowMzExMC8GA1UEAxMoQkJDOTMyQ0VBRDlENTZCREM1NzQy Mjk1Mjc4RjNERDdCMTAyMzlCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAITgMLTI/M/wYSA8E2hboMnDsjXA9mu7CxJmfbEOokS8/QdCBfgxsljEueuA YLB4RryHQyfLoM1d2khJZ8bBaJu+U/u6YELlBCdNcgtEeCIzNecl52MqfMvUlC+M 7oS02LtQ0w0jzQeULoGftRF+ewvk8vqJrjkl9g8+NQJEUpMDnIIbCdZithvPDfZX T3paa707XTL9/7+Opi1MjNus0508IwmeIQTuIvUYgjwrjpeOu6B0rVPK6GjR0EBz 1dt2OU4Qbzseak9JTXLecbnoJbhcbMpbqX6U8NQoEE79gz6ztIhuqlHUKvw1SNVF ASoAz0KwHdq/P7fiFfiygZO4ezkCAwEAAaOCAfIwggHuMB0GA1UdDgQWBBS7yTLO rZ1WvcV0IpUnjz3XsQI5tDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTE2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwMkDgCnf9gDBwAkDgCnf9ow DQYJKoZIhvcNAQELBQADggEBAEgn9g6NGBYg53SpHYL52FUcd6Loqp+EEGOLsFwL an7CAC6txdJgqxUCMa8AojnaKAoumsl8B9Gu2xDgsjagIYhZz0ErCxrX83ebOd5c cyIOPA+z4zEcqwyjceW17uVLBn3UFMq8yWquSF7rXJvAZWtabvknJD5288nzdihg T3xZ7h9aY2zQvf3rBjAl5X0vxAzIOcWUBJBJpIGZ5ahWC4H6bS4pKidx/pI9U4y2 UwAUoElH0i7pliljoQ4KA9E7XlmNrB1op+GBEh5fdYRyrRVwHPOilLfynETrUlMF qFpVFFMA9CXHyRz/LHRtNIhvwf0jbXFJGMPYpRLkGWVGDK4= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:37 2026 by rpki-client