$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140520.roa File: AS140520.roa (raw, json) Hash identifier: 78nLS+QMcxO3TvrSVd2lW/3gtFMsUIVYC5mHF6HhrsM= Subject key identifier: A3:1A:58:D3:32:C6:ED:A1:55:83:C0:5F:87:0B:B1:4C:1A:FA:4F:34 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 379153A3B2F09989DA0AB5B5481ABCC085553F84 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140520.roa Signing time: Thu 28 May 2026 16:11:59 +0000 ROA not before: Thu 28 May 2026 16:06:59 +0000 ROA not after: Thu 27 May 2027 16:11:59 +0000 asID: 140520 IP address blocks: 240e:a7:7fe4::/48 maxlen: 48 240e:a7:7fe5::/48 maxlen: 48 240e:a7:7fe6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:91:53:a3:b2:f0:99:89:da:0a:b5:b5:48:1a:bc:c0:85:55:3f:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 16:06:59 2026 GMT Not After : May 27 16:11:59 2027 GMT Subject: CN=A31A58D332C6EDA15583C05F870BB14C1AFA4F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f9:34:d0:1d:6d:ec:e7:95:e9:90:6b:b5:38: 2c:e5:b2:1c:b3:76:b4:ad:4c:27:3b:80:93:1a:28: 9b:59:ad:94:ac:ec:8d:1b:ed:2f:78:7f:72:89:e1: 6b:c0:5c:2f:67:b5:6b:1e:f7:11:65:62:be:d2:77: 2f:80:e8:ac:22:63:13:99:25:d4:66:e1:6a:95:f1: 58:df:a3:15:d8:85:fb:c2:78:e1:47:cb:f5:45:ce: ba:a0:01:70:b4:46:12:c4:b7:b1:f3:6e:92:b3:fb: e6:fc:43:46:f7:bf:1d:99:1a:f6:57:0e:0f:b2:d8: aa:00:a4:78:7f:c7:62:e0:72:23:d8:8f:a4:ba:3c: 1b:45:f8:95:78:38:71:ae:ca:04:f2:90:14:a0:d9: 9a:4a:50:ab:8a:f4:52:7d:b3:ef:6c:a4:ec:d9:64: c7:50:b6:34:8f:49:c6:f3:b1:18:e0:44:c9:c6:41: 84:8a:55:4b:29:b8:15:1e:e1:2f:81:41:16:5a:8f: a5:a9:d1:3f:67:a0:f7:3c:be:43:f2:da:84:b0:ff: 80:44:db:4c:ff:42:86:88:71:8b:fb:99:26:f1:02: 33:f4:fd:68:94:96:00:9b:e2:84:6b:32:b4:fd:ee: d5:1b:3d:c2:bd:29:71:76:f0:2c:95:f0:7d:e5:a1: 9d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1A:58:D3:32:C6:ED:A1:55:83:C0:5F:87:0B:B1:4C:1A:FA:4F:34 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:a7:7fe4::-240e:a7:7fe6:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a6:7f:0f:43:eb:e7:66:f9:44:cd:03:6d:ad:94:0c:e6:f7:ea: 92:cf:ba:5f:4e:21:aa:a0:34:df:18:a7:18:1d:da:fd:0e:6a: cc:15:d9:69:28:ec:11:d9:bf:1e:1c:e4:00:48:ba:9a:e3:a8: 44:cf:b6:ac:2c:f4:1b:4c:31:1d:1c:0d:7f:b1:ec:fc:5b:65: bf:ef:12:25:d1:3c:f5:2b:32:19:67:75:32:e7:e3:e9:a7:76: 05:0c:49:3f:e5:98:07:fb:18:f7:ca:6e:0f:38:33:35:57:be: 6c:40:5b:51:38:07:d6:23:d1:7e:ff:db:6d:f3:d6:fe:64:cb: de:0e:df:ce:5b:17:51:88:63:d5:a2:9e:8d:6f:6b:28:ed:7f: 6f:bb:04:64:40:41:07:af:f7:97:10:6d:c8:d0:bf:38:52:75: 87:33:56:05:4c:a1:8b:16:c6:2a:b6:9f:21:e1:69:43:e0:f9: e7:ec:d3:5d:94:fd:9e:72:cb:7d:ef:33:36:32:da:9c:88:0d: 23:a4:5f:78:95:92:c4:db:23:a7:c7:6e:46:c6:06:80:c8:d6: 4c:37:12:08:b6:6e:db:b2:6f:6c:a9:42:f6:d7:aa:e9:bc:fb: c0:71:53:b4:e6:49:2d:01:78:5d:23:04:88:b7:a8:32:1a:98: 66:87:eb:ba -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUN5FTo7LwmYnaCrW1SBq8wIVVP4QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE2MDY1OVoX DTI3MDUyNzE2MTE1OVowMzExMC8GA1UEAxMoQTMxQTU4RDMzMkM2RURBMTU1ODND MDVGODcwQkIxNEMxQUZBNEYzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANX5NNAdbeznlemQa7U4LOWyHLN2tK1MJzuAkxoom1mtlKzsjRvtL3h/conh a8BcL2e1ax73EWVivtJ3L4DorCJjE5kl1GbhapXxWN+jFdiF+8J44UfL9UXOuqAB cLRGEsS3sfNukrP75vxDRve/HZka9lcOD7LYqgCkeH/HYuByI9iPpLo8G0X4lXg4 ca7KBPKQFKDZmkpQq4r0Un2z72yk7Nlkx1C2NI9JxvOxGOBEycZBhIpVSym4FR7h L4FBFlqPpanRP2eg9zy+Q/LahLD/gETbTP9Chohxi/uZJvECM/T9aJSWAJvihGsy tP3u1Rs9wr0pcXbwLJXwfeWhnW0CAwEAAaOCAfIwggHuMB0GA1UdDgQWBBSjGljT MsbtoVWDwF+HC7FMGvpPNDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwIkDgCnf+QDBwAkDgCnf+Yw DQYJKoZIhvcNAQELBQADggEBAKZ/D0Pr52b5RM0Dba2UDOb36pLPul9OIaqgNN8Y pxgd2v0OaswV2Wko7BHZvx4c5ABIuprjqETPtqws9BtMMR0cDX+x7PxbZb/vEiXR PPUrMhlndTLn4+mndgUMST/lmAf7GPfKbg84MzVXvmxAW1E4B9Yj0X7/223z1v5k y94O385bF1GIY9Wino1vayjtf2+7BGRAQQev95cQbcjQvzhSdYczVgVMoYsWxiq2 nyHhaUPg+efs012U/Z5yy33vMzYy2pyIDSOkX3iVksTbI6fHbkbGBoDI1kw3Egi2 btuyb2ypQvbXqum8+8BxU7TmSS0BeF0jBIi3qDIamGaH67o= -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:40 2026 by rpki-client