$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140528.roa File: AS140528.roa (raw, json) Hash identifier: IWqRWu5ZCiE83MaF9HO9klC0bQG0Qae+XiMsfOQZRuQ= Subject key identifier: 84:F1:A4:B7:85:05:AF:08:E9:C5:2E:52:F4:B1:AB:98:35:99:EE:DE Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 03B907F3DE094F2F407987D766D67C44DC716E10 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140528.roa Signing time: Thu 28 May 2026 16:02:32 +0000 ROA not before: Thu 28 May 2026 15:57:32 +0000 ROA not after: Thu 27 May 2027 16:02:32 +0000 asID: 140528 IP address blocks: 240e:45c:3700::/40 maxlen: 40 240e:45c:3900::/40 maxlen: 40 240e:45c:3b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b9:07:f3:de:09:4f:2f:40:79:87:d7:66:d6:7c:44:dc:71:6e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:57:32 2026 GMT Not After : May 27 16:02:32 2027 GMT Subject: CN=84F1A4B78505AF08E9C52E52F4B1AB983599EEDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ae:5e:d1:c9:5c:bc:24:eb:fb:6b:39:93:7e: 4f:e7:c1:28:3a:61:cd:03:c9:6a:55:7b:fb:d9:64: 48:05:d3:8c:f8:e6:4a:e9:24:c9:57:78:e1:21:99: 04:c7:87:3e:1e:07:bb:5f:f2:b8:1e:95:69:78:c4: 6d:d5:36:42:d5:a4:04:58:26:c0:ad:48:bb:1f:20: 22:e8:fe:af:c2:5e:0f:6c:a3:39:ea:37:c7:4f:54: 86:99:81:44:4f:18:a1:6f:70:34:2c:5d:5f:ee:97: 81:cd:5e:92:9c:de:34:0e:14:00:9a:3b:da:72:16: bc:33:b4:b8:f2:40:02:62:2b:ce:45:25:57:17:6e: 8b:8e:d8:e1:4b:11:03:0e:78:8a:09:52:18:f0:c4: 6b:1a:21:43:05:55:ec:07:21:39:29:8c:aa:8a:34: 6a:74:d3:92:ab:5e:8c:0e:30:03:92:e3:54:77:59: 49:e1:41:ca:6e:27:cc:11:53:df:1c:55:09:2e:b2: 98:b8:4c:f5:3c:51:b9:1d:2e:c8:3e:43:be:16:e8: 44:50:69:e6:6a:7b:df:94:3b:b0:c7:00:17:9e:29: 5a:8c:7c:44:90:75:eb:ca:79:99:4b:37:e9:48:0c: 3c:85:9b:a6:3e:cd:3b:ee:d9:a5:e2:07:a3:72:38: 74:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F1:A4:B7:85:05:AF:08:E9:C5:2E:52:F4:B1:AB:98:35:99:EE:DE X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140528.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:45c:3700::/40 240e:45c:3900::/40 240e:45c:3b00::/40 Signature Algorithm: sha256WithRSAEncryption 14:4c:33:ee:89:fa:48:69:05:78:a8:0b:8f:88:c1:f9:72:4b: 76:9c:13:60:15:b5:f3:af:0f:e5:16:cf:cc:84:a1:92:3d:bb: 44:f4:28:c9:cd:30:75:a6:2e:5b:62:31:16:43:b8:3d:2c:95: dd:d0:43:60:7d:24:d2:f9:79:f2:08:d5:ab:a8:85:6d:a3:47: 5a:3a:07:fe:77:3e:9d:db:10:50:48:5c:3b:72:ce:85:5f:18: 09:4d:2f:0a:4a:c8:34:b2:1f:0e:47:ca:8b:fe:0f:b5:f5:13: 8e:13:93:33:b5:a7:6b:4b:d2:6a:37:5a:db:82:d6:d1:1f:2b: 94:62:91:3e:4e:3c:5b:86:42:7d:de:4e:f8:c0:cf:87:80:44: 5c:f3:3d:6d:f4:ce:b2:c6:72:23:14:14:f6:43:a6:b8:28:a3: 61:d1:db:75:a7:13:31:4d:9f:4f:1f:b6:21:38:cb:53:bd:47: af:48:a3:64:bf:6b:f2:0d:ba:2e:95:32:bd:95:47:bc:b8:52: e9:90:2f:e3:42:2d:a4:f8:a6:1e:7d:f3:42:dc:92:68:fe:68: 8f:93:f0:c4:43:39:b8:7d:fc:8f:3d:36:86:e5:44:3c:25:f1: ce:e3:17:55:9a:68:a4:52:ec:af:6a:1f:0a:09:f3:43:89:eb: 42:0e:c3:08 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUA7kH894JTy9AeYfXZtZ8RNxxbhAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTczMloX DTI3MDUyNzE2MDIzMlowMzExMC8GA1UEAxMoODRGMUE0Qjc4NTA1QUYwOEU5QzUy RTUyRjRCMUFCOTgzNTk5RUVERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKquXtHJXLwk6/trOZN+T+fBKDphzQPJalV7+9lkSAXTjPjmSukkyVd44SGZ BMeHPh4Hu1/yuB6VaXjEbdU2QtWkBFgmwK1Iux8gIuj+r8JeD2yjOeo3x09UhpmB RE8YoW9wNCxdX+6Xgc1ekpzeNA4UAJo72nIWvDO0uPJAAmIrzkUlVxdui47Y4UsR Aw54iglSGPDEaxohQwVV7AchOSmMqoo0anTTkqtejA4wA5LjVHdZSeFBym4nzBFT 3xxVCS6ymLhM9TxRuR0uyD5DvhboRFBp5mp735Q7sMcAF54pWox8RJB168p5mUs3 6UgMPIWbpj7NO+7ZpeIHo3I4dAsCAwEAAaOCAfYwggHyMB0GA1UdDgQWBBSE8aS3 hQWvCOnFLlL0sauYNZnu3jAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTI4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAAjAYAwYAJA4EXDcDBgAkDgRcOQMGACQO BFw7MA0GCSqGSIb3DQEBCwUAA4IBAQAUTDPuifpIaQV4qAuPiMH5ckt2nBNgFbXz rw/lFs/MhKGSPbtE9CjJzTB1pi5bYjEWQ7g9LJXd0ENgfSTS+XnyCNWrqIVto0da Ogf+dz6d2xBQSFw7cs6FXxgJTS8KSsg0sh8OR8qL/g+19ROOE5MztadrS9JqN1rb gtbRHyuUYpE+TjxbhkJ93k74wM+HgERc8z1t9M6yxnIjFBT2Q6a4KKNh0dt1pxMx TZ9PH7YhOMtTvUevSKNkv2vyDboulTK9lUe8uFLpkC/jQi2k+KYeffNC3JJo/miP k/DEQzm4ffyPPTaG5UQ8JfHO4xdVmmikUuyvah8KCfNDietCDsMI -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:40 2026 by rpki-client