$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140529.roa File: AS140529.roa (raw, json) Hash identifier: 7qGCuAp1vwbUcpiOUczvLOpa0Lh/XNi0dH874Jb9SE0= Subject key identifier: 11:65:A5:BC:8D:62:C2:63:D3:16:FF:4B:D9:0A:58:69:0E:ED:3D:57 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 3B3CA32BB6868F68ECEFAC5432EDD6D8CFBA24E5 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140529.roa Signing time: Thu 28 May 2026 16:02:32 +0000 ROA not before: Thu 28 May 2026 15:57:32 +0000 ROA not after: Thu 27 May 2027 16:02:32 +0000 asID: 140529 IP address blocks: 240e:45c:5100::/40 maxlen: 40 240e:45c:5300::/40 maxlen: 40 240e:45c:5500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3c:a3:2b:b6:86:8f:68:ec:ef:ac:54:32:ed:d6:d8:cf:ba:24:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:57:32 2026 GMT Not After : May 27 16:02:32 2027 GMT Subject: CN=1165A5BC8D62C263D316FF4BD90A58690EED3D57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a4:2b:1a:38:4e:8a:76:a0:04:24:07:85:59: 88:6a:45:71:b1:98:a8:54:10:83:ec:1e:bb:66:d1: 9a:15:41:d6:3c:d1:46:55:9b:eb:a4:d0:6b:38:4a: b2:68:1f:80:e6:6e:0d:e6:ff:bc:bb:71:50:21:5b: f1:02:05:16:c1:0a:4d:f2:d2:2d:64:64:d0:04:0d: 0a:58:23:97:8f:ab:7e:a2:13:9f:36:f4:eb:a5:b1: 03:71:d9:ed:de:bf:e5:ee:d0:08:6f:e9:68:27:82: 92:5b:c5:a7:55:bb:d8:42:d1:d9:87:49:27:e2:d1: df:28:07:6b:56:05:a2:4d:14:6e:3e:d9:f6:69:1a: 45:3b:03:cd:82:07:76:ba:c8:1d:cc:59:c8:cf:cd: 67:16:72:55:76:41:53:55:07:65:65:14:11:c0:74: 30:e1:7d:7b:09:ca:88:90:66:24:b3:9d:2f:41:bc: f8:3a:15:b1:1a:eb:c6:6e:c1:51:e8:2f:44:36:bb: fc:bd:63:70:4a:4b:f2:51:d9:0d:b4:fe:cc:65:15: 67:5b:3e:12:c7:89:75:81:55:64:be:93:e7:77:b5: 16:87:a8:98:a8:cd:03:9f:28:e2:e6:1f:da:c6:5e: f7:6f:24:6c:2e:c0:9f:65:c6:5d:54:80:c3:cb:9f: b2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:65:A5:BC:8D:62:C2:63:D3:16:FF:4B:D9:0A:58:69:0E:ED:3D:57 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140529.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:45c:5100::/40 240e:45c:5300::/40 240e:45c:5500::/40 Signature Algorithm: sha256WithRSAEncryption 1e:5e:00:ba:d9:67:40:9c:ac:57:e5:ab:a2:db:53:62:7c:91: 61:94:26:55:23:bd:ce:30:08:6e:99:4c:10:a2:f2:71:bc:6b: 92:48:ad:ec:05:0a:e2:32:1a:28:a8:54:fe:cc:92:66:ea:cd: 55:0a:66:a6:a8:ed:9e:68:b1:fa:d1:58:97:97:05:ed:7e:b6: 98:ce:e5:c1:27:9c:c3:24:c5:b1:ad:c8:36:d5:13:35:7c:ec: 65:2e:00:ac:14:f5:53:59:e5:34:78:1d:3b:8e:fa:6c:a2:8c: d2:73:30:7d:26:24:0c:4f:dc:17:ce:26:e9:f4:89:02:e5:07: 17:54:04:59:fc:8e:12:a3:34:84:29:35:3e:16:7e:66:e7:05: 1c:31:c5:cb:27:ce:3f:39:fd:46:bd:3d:41:e1:d6:ca:a3:ad: 78:51:03:61:5f:88:ac:0d:35:ac:64:5b:9f:72:bf:45:cd:dd: de:dd:c1:79:6d:54:08:59:a4:75:76:1e:87:a8:d4:1f:df:9e: 78:d0:20:6b:e8:07:76:4a:fb:bb:76:45:5f:e4:75:16:d4:f1: 1c:fa:d5:44:38:e1:b1:e1:61:c2:1f:ce:cf:5a:f2:86:48:78: 60:41:e3:61:79:ee:9b:56:e0:0a:65:a5:f3:87:18:90:14:f2: ed:3e:31:d7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUOzyjK7aGj2js76xUMu3W2M+6JOUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTczMloX DTI3MDUyNzE2MDIzMlowMzExMC8GA1UEAxMoMTE2NUE1QkM4RDYyQzI2M0QzMTZG RjRCRDkwQTU4NjkwRUVEM0Q1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+kKxo4Top2oAQkB4VZiGpFcbGYqFQQg+weu2bRmhVB1jzRRlWb66TQazhK smgfgOZuDeb/vLtxUCFb8QIFFsEKTfLSLWRk0AQNClgjl4+rfqITnzb066WxA3HZ 7d6/5e7QCG/paCeCklvFp1W72ELR2YdJJ+LR3ygHa1YFok0Ubj7Z9mkaRTsDzYIH drrIHcxZyM/NZxZyVXZBU1UHZWUUEcB0MOF9ewnKiJBmJLOdL0G8+DoVsRrrxm7B UegvRDa7/L1jcEpL8lHZDbT+zGUVZ1s+EseJdYFVZL6T53e1FoeomKjNA58o4uYf 2sZe928kbC7An2XGXVSAw8ufsucCAwEAAaOCAfYwggHyMB0GA1UdDgQWBBQRZaW8 jWLCY9MW/0vZClhpDu09VzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAAjAYAwYAJA4EXFEDBgAkDgRcUwMGACQO BFxVMA0GCSqGSIb3DQEBCwUAA4IBAQAeXgC62WdAnKxX5aui21NifJFhlCZVI73O MAhumUwQovJxvGuSSK3sBQriMhooqFT+zJJm6s1VCmamqO2eaLH60ViXlwXtfraY zuXBJ5zDJMWxrcg21RM1fOxlLgCsFPVTWeU0eB07jvpsoozSczB9JiQMT9wXzibp 9IkC5QcXVARZ/I4SozSEKTU+Fn5m5wUcMcXLJ84/Of1GvT1B4dbKo614UQNhX4is DTWsZFufcr9Fzd3e3cF5bVQIWaR1dh6HqNQf35540CBr6Ad2Svu7dkVf5HUW1PEc +tVEOOGx4WHCH87PWvKGSHhgQeNhee6bVuAKZaXzhxiQFPLtPjHX -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:44 2026 by rpki-client