$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140537.roa File: AS140537.roa (raw, json) Hash identifier: ijb2hjD5cpYyqyntrhEJjzJwtTdE79oOV1RoMmE1OX4= Subject key identifier: 59:68:04:CC:96:B8:21:92:D5:CF:AE:1F:5C:9E:7A:0B:9F:67:28:45 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: C5DF4AE5AC83AC8BA5D2DE3953F67005A7DC01 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140537.roa Signing time: Thu 28 May 2026 16:02:33 +0000 ROA not before: Thu 28 May 2026 15:57:33 +0000 ROA not after: Thu 27 May 2027 16:02:33 +0000 asID: 140537 IP address blocks: 240e:45c:b100::/40 maxlen: 40 240e:45c:b300::/40 maxlen: 40 240e:45c:b500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: c5:df:4a:e5:ac:83:ac:8b:a5:d2:de:39:53:f6:70:05:a7:dc:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:57:33 2026 GMT Not After : May 27 16:02:33 2027 GMT Subject: CN=596804CC96B82192D5CFAE1F5C9E7A0B9F672845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d6:9c:c5:0f:bb:4c:c3:9b:39:64:e8:79:2d: 73:99:a6:b6:5a:0b:79:cd:09:37:40:07:2c:48:88: 3c:3e:dd:87:ff:15:45:45:54:13:2c:61:2e:78:55: 13:7c:6a:03:34:a7:ce:e1:47:3b:d0:3d:f2:e6:bc: 15:f4:d4:eb:72:e1:e5:e6:7e:9d:5e:bb:28:ad:5a: d1:b4:21:e7:5d:1e:35:c0:14:dc:e0:1b:df:de:d2: 9a:00:4b:ed:39:bc:63:a0:5e:32:43:fa:15:f1:64: e7:df:be:9b:68:59:c5:77:9b:8c:d9:a0:ab:b2:32: bd:28:e6:b9:43:92:2b:d2:99:6d:30:85:94:68:f7: a4:47:47:26:b1:1e:69:35:2f:8c:39:a8:91:a7:99: d7:e0:28:e8:d4:49:08:9b:a1:69:94:44:85:25:b3: 01:ba:eb:31:0a:34:e8:8c:58:e9:5c:0c:55:6c:7e: 08:8b:2e:8f:64:12:83:0c:80:23:20:bf:f5:68:32: f2:a5:5a:b2:e9:f1:7a:15:c4:18:4a:9e:8e:36:55: 5d:16:aa:75:ad:63:87:41:4a:ab:ba:ea:30:dd:cf: f6:c5:32:e3:a2:e8:7f:09:bf:eb:83:72:7d:6d:31: 3b:f5:d0:eb:f3:f2:ae:f9:f4:4d:32:cd:1b:0a:9a: 16:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:68:04:CC:96:B8:21:92:D5:CF:AE:1F:5C:9E:7A:0B:9F:67:28:45 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:45c:b100::/40 240e:45c:b300::/40 240e:45c:b500::/40 Signature Algorithm: sha256WithRSAEncryption 78:47:ed:14:07:1f:8c:39:58:80:23:8a:9b:b1:63:20:43:21: e6:3e:94:b1:10:6c:2e:ad:25:f6:12:7c:c1:0f:1d:4f:44:09: 9c:a8:91:37:06:36:de:a6:1a:a5:43:4c:40:63:ba:70:77:a1: 5a:b7:bc:65:c9:30:54:e3:07:b2:b8:f7:25:c3:17:e9:4c:af: ff:9d:97:25:64:21:ca:f4:55:83:cf:6c:c1:ea:52:21:db:07: c0:56:e2:d9:28:e3:c3:9a:42:a4:96:ab:f9:bb:75:68:fd:61: fd:43:6d:81:19:c5:8a:d1:bd:ee:52:03:6f:a2:2f:07:30:26: 99:c6:2e:1e:4f:f3:0f:28:5c:01:e1:11:7d:e2:5e:2f:b2:e1: d4:45:37:bb:e5:d0:bb:ed:5d:3e:dc:bc:4f:d9:cf:59:a7:2a: 80:f0:07:be:46:30:e7:11:81:db:f3:44:e5:20:49:1f:70:15: 14:9b:20:35:e3:f6:30:ee:07:ad:2f:f9:6f:a8:91:9e:fb:f5: cf:2b:0a:a6:e5:f3:a9:cd:3d:64:0e:b8:5f:c8:03:88:b0:de: 49:31:1a:d7:bf:61:da:9c:2e:f2:01:bb:fd:96:e1:b7:b5:fa: 1b:22:ad:fc:56:a3:16:db:d4:a8:f6:5c:a5:3a:69:0d:e6:b2: 83:28:49:b4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUAMXfSuWsg6yLpdLeOVP2cAWn3AEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTczM1oX DTI3MDUyNzE2MDIzM1owMzExMC8GA1UEAxMoNTk2ODA0Q0M5NkI4MjE5MkQ1Q0ZB RTFGNUM5RTdBMEI5RjY3Mjg0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPWnMUPu0zDmzlk6Hktc5mmtloLec0JN0AHLEiIPD7dh/8VRUVUEyxhLnhV E3xqAzSnzuFHO9A98ua8FfTU63Lh5eZ+nV67KK1a0bQh510eNcAU3OAb397SmgBL 7Tm8Y6BeMkP6FfFk59++m2hZxXebjNmgq7IyvSjmuUOSK9KZbTCFlGj3pEdHJrEe aTUvjDmokaeZ1+Ao6NRJCJuhaZREhSWzAbrrMQo06IxY6VwMVWx+CIsuj2QSgwyA IyC/9Wgy8qVasunxehXEGEqejjZVXRaqda1jh0FKq7rqMN3P9sUy46Lofwm/64Ny fW0xO/XQ6/Pyrvn0TTLNGwqaFqMCAwEAAaOCAfYwggHyMB0GA1UdDgQWBBRZaATM lrghktXPrh9cnnoLn2coRTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAAjAYAwYAJA4EXLEDBgAkDgRcswMGACQO BFy1MA0GCSqGSIb3DQEBCwUAA4IBAQB4R+0UBx+MOViAI4qbsWMgQyHmPpSxEGwu rSX2EnzBDx1PRAmcqJE3BjbephqlQ0xAY7pwd6Fat7xlyTBU4weyuPclwxfpTK// nZclZCHK9FWDz2zB6lIh2wfAVuLZKOPDmkKklqv5u3Vo/WH9Q22BGcWK0b3uUgNv oi8HMCaZxi4eT/MPKFwB4RF94l4vsuHURTe75dC77V0+3LxP2c9ZpyqA8Ae+RjDn EYHb80TlIEkfcBUUmyA14/Yw7getL/lvqJGe+/XPKwqm5fOpzT1kDrhfyAOIsN5J MRrXv2HanC7yAbv9luG3tfobIq38VqMW29So9lylOmkN5rKDKEm0 -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:43 2026 by rpki-client