$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140517.roa File: AS140517.roa (raw, json) Hash identifier: dX3/un8bkzA2lbweCRlUDG7XSqCLrpsqMVX9t8WmyXk= Subject key identifier: 29:33:20:E2:1E:25:52:73:B7:B2:47:9D:04:A4:93:6F:B6:E2:B9:8F Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 387E587A0625631A61130DBBBC66725BFEF341D2 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140517.roa Signing time: Thu 28 May 2026 16:11:59 +0000 ROA not before: Thu 28 May 2026 16:06:59 +0000 ROA not after: Thu 27 May 2027 16:11:59 +0000 asID: 140517 IP address blocks: 240e:a7:7fdb::/48 maxlen: 48 240e:a7:7fdc::/48 maxlen: 48 240e:a7:7fdd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7e:58:7a:06:25:63:1a:61:13:0d:bb:bc:66:72:5b:fe:f3:41:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:06:59 2026 GMT Not After : May 27 16:11:59 2027 GMT Subject: CN=293320E21E255273B7B2479D04A4936FB6E2B98F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:10:f3:5f:46:e0:8b:9e:de:32:74:5c:88:13: c6:b7:4a:fa:f3:73:eb:28:ef:ea:3a:17:7c:54:08: 99:6d:06:37:1d:fe:00:f5:64:bc:5d:0b:79:b2:6a: 0b:3c:fd:fe:49:e5:0b:bf:57:7f:03:9f:d6:ce:e2: d7:d2:5e:f1:51:1b:49:aa:6c:b0:28:42:93:be:03: 35:7b:74:62:57:ff:4f:70:4f:76:26:8e:0d:42:77: 09:cf:dd:22:8a:b0:fb:50:a6:fd:19:34:d4:4c:48: 3b:78:2e:14:c2:f7:fc:78:2a:0b:01:54:32:08:64: 4c:b3:98:b3:2c:12:3e:00:b2:73:7f:f5:c8:a4:0e: b6:12:17:e0:b9:b4:2c:90:37:25:38:43:ea:5b:09: 78:80:2d:ff:cd:0d:e1:f5:17:b3:2d:47:d5:71:63: c3:1f:7c:dc:3e:02:41:54:9b:c8:3d:59:f6:c4:11: b3:3e:1d:9b:18:3f:f5:22:34:6a:11:df:c9:7d:1d: f4:44:e9:10:cd:36:61:63:7d:15:76:b6:26:c0:89: 07:43:7f:31:85:ac:dc:20:fb:99:95:e2:ce:ad:1f: 60:52:8e:03:e3:c5:f9:9a:b3:33:8a:6d:85:2d:86: dd:ee:95:98:2e:f0:b1:4e:5b:42:d6:5b:94:44:a6: 43:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:33:20:E2:1E:25:52:73:B7:B2:47:9D:04:A4:93:6F:B6:E2:B9:8F X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:a7:7fdb::-240e:a7:7fdd:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1f:3d:62:6f:9a:32:6f:d1:6a:c5:2f:1a:04:0c:f7:c7:f8:3b: 9e:6c:4b:e9:87:b6:9f:a3:1c:81:4a:1e:ac:cf:fd:db:d6:70: 33:db:22:3b:65:c6:f6:16:9e:d6:30:a1:df:41:79:51:18:06: b0:5a:7b:09:53:48:f4:35:91:bf:ec:ea:1f:1f:2f:84:24:2b: 3c:01:3e:ed:99:ae:3e:bf:db:de:ae:6c:f5:b4:84:c9:05:74: 99:45:4d:33:5b:7c:ee:d2:fb:d1:d9:83:12:01:4c:64:2e:f3: 47:54:4e:1f:64:b5:40:9a:7b:85:f6:61:b6:6c:3f:11:ab:76: 7d:1d:76:88:06:b7:ab:93:42:4b:04:bc:da:76:03:4f:29:77: e3:72:8f:e8:ad:b6:b6:51:c4:d8:ee:07:d9:8a:d2:19:70:3c: 9f:3b:32:11:a0:e3:ce:77:a9:d2:f2:1a:9b:3d:4e:0c:f3:8a: 27:7a:c6:49:5e:6a:33:23:67:50:7e:be:b1:db:c1:39:84:67: 0e:4b:cd:14:3f:a2:28:2d:7a:4c:dc:f2:19:fd:c2:b2:b2:0f: 0a:32:9c:ac:b4:38:11:09:8b:3b:e1:9c:34:af:27:5c:eb:e4: 79:f9:bc:50:ce:be:26:f5:47:e2:1e:b2:b9:7a:b3:64:80:85: cb:59:e9:98 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUOH5YegYlYxphEw27vGZyW/7zQdIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDY1OVoX DTI3MDUyNzE2MTE1OVowMzExMC8GA1UEAxMoMjkzMzIwRTIxRTI1NTI3M0I3QjI0 NzlEMDRBNDkzNkZCNkUyQjk4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8Q819G4Iue3jJ0XIgTxrdK+vNz6yjv6joXfFQImW0GNx3+APVkvF0LebJq Czz9/knlC79XfwOf1s7i19Je8VEbSapssChCk74DNXt0Ylf/T3BPdiaODUJ3Cc/d Ioqw+1Cm/Rk01ExIO3guFML3/HgqCwFUMghkTLOYsywSPgCyc3/1yKQOthIX4Lm0 LJA3JThD6lsJeIAt/80N4fUXsy1H1XFjwx983D4CQVSbyD1Z9sQRsz4dmxg/9SI0 ahHfyX0d9ETpEM02YWN9FXa2JsCJB0N/MYWs3CD7mZXizq0fYFKOA+PF+ZqzM4pt hS2G3e6VmC7wsU5bQtZblESmQ7ECAwEAAaOCAfIwggHuMB0GA1UdDgQWBBQpMyDi HiVSc7eyR50EpJNvtuK5jzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAkDgCnf9sDBwEkDgCnf9ww DQYJKoZIhvcNAQELBQADggEBAB89Ym+aMm/RasUvGgQM98f4O55sS+mHtp+jHIFK HqzP/dvWcDPbIjtlxvYWntYwod9BeVEYBrBaewlTSPQ1kb/s6h8fL4QkKzwBPu2Z rj6/296ubPW0hMkFdJlFTTNbfO7S+9HZgxIBTGQu80dUTh9ktUCae4X2YbZsPxGr dn0ddogGt6uTQksEvNp2A08pd+Nyj+ittrZRxNjuB9mK0hlwPJ87MhGg4853qdLy Gps9Tgzziid6xkleajMjZ1B+vrHbwTmEZw5LzRQ/oigtekzc8hn9wrKyDwoynKy0 OBEJizvhnDSvJ1zr5Hn5vFDOvib1R+Iesrl6s2SAhctZ6Zg= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:36 2026 by rpki-client