$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140538.roa File: AS140538.roa (raw, json) Hash identifier: 8AibVXCFXeoOmpi4HjH+xuWPKDq43pJV09pUwukldzU= Subject key identifier: 17:51:CB:FE:89:B2:11:A8:7E:AF:3E:2A:07:BC:88:D8:36:B0:98:19 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 04A398D04284CBAA7640DE725FD607CA7A1464DE Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140538.roa Signing time: Thu 28 May 2026 16:02:48 +0000 ROA not before: Thu 28 May 2026 15:57:48 +0000 ROA not after: Thu 27 May 2027 16:02:48 +0000 asID: 140538 IP address blocks: 240e:45c:c700::/40 maxlen: 40 240e:45c:c900::/40 maxlen: 40 240e:45c:cb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a3:98:d0:42:84:cb:aa:76:40:de:72:5f:d6:07:ca:7a:14:64:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:57:48 2026 GMT Not After : May 27 16:02:48 2027 GMT Subject: CN=1751CBFE89B211A87EAF3E2A07BC88D836B09819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:02:27:3e:f4:8c:b2:d8:ba:54:93:5f:b7:fb: 49:ca:bd:0e:16:51:d1:23:c1:58:6a:a0:07:82:66: d0:ca:13:09:b5:be:f2:db:48:2a:1b:29:e2:5b:d7: 11:b5:8d:48:9e:e4:6c:5d:96:bf:16:bd:52:7b:4b: a6:34:a3:48:16:09:20:c9:35:0f:c3:ec:ca:ef:b6: f7:04:8d:91:3e:cb:73:ac:8d:8d:0c:b3:16:7c:a7: 62:ec:f4:a1:f4:ec:71:b2:42:e0:05:a7:dc:68:b8: 8c:17:5b:0d:83:64:09:1c:8c:b7:c4:76:98:03:b8: 1a:4a:55:b8:b2:dc:92:7c:a4:d8:81:90:89:52:56: 05:db:93:f9:b4:78:f4:6d:94:d5:4a:20:2b:8f:60: 0c:65:4b:b1:5c:a5:d1:d2:94:4c:3b:ea:a0:f3:78: 16:f7:df:2b:8f:00:fe:a8:4b:66:2a:dd:17:79:b9: b8:db:cb:1c:8a:de:e0:2a:cf:70:3b:da:2f:98:3b: eb:0c:64:69:10:6f:c2:5a:e2:33:f2:28:75:c3:80: 60:44:47:be:f2:eb:6e:a5:d9:4e:c3:6c:86:c8:66: bf:e1:ab:f2:63:cf:aa:7b:7d:f2:3c:7b:6a:96:7c: 0a:d6:d3:02:08:14:cd:5a:fd:fc:4f:de:62:a6:72: 18:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:51:CB:FE:89:B2:11:A8:7E:AF:3E:2A:07:BC:88:D8:36:B0:98:19 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:45c:c700::/40 240e:45c:c900::/40 240e:45c:cb00::/40 Signature Algorithm: sha256WithRSAEncryption 32:9a:2c:16:89:da:4d:9b:97:8c:d6:8c:ce:80:d8:e6:43:dc: 41:ef:17:63:28:7c:9c:47:32:2b:03:21:8a:bf:ee:fa:db:f4: 19:83:f7:78:22:80:8c:cf:57:77:ca:1e:cb:f0:c8:d0:33:80: 42:65:65:c9:9f:f2:1a:96:f7:04:e4:10:8c:48:ed:ff:23:4a: f1:43:f6:c3:b6:80:ea:5d:2e:8c:29:65:f5:09:23:09:6a:26: 4d:76:5f:9a:af:fe:ce:65:3e:31:13:65:4f:14:fb:43:d5:35: 67:f6:a5:89:ff:a2:79:78:3b:bd:d1:73:a9:9b:a8:a6:5e:03: 95:46:5a:8a:7a:5e:e5:dd:b7:a7:48:c2:a3:5b:39:5a:cc:a0: fc:e5:c3:50:de:70:e2:de:29:ac:d3:a2:e0:18:da:ee:8c:b5: f0:59:00:45:c6:92:37:27:3a:85:42:d3:f9:66:97:b5:cd:15: ad:8b:4e:63:05:08:fa:d8:50:43:69:52:5a:6f:fc:18:3b:66: aa:d1:f6:ee:8b:d3:01:b4:a5:01:c8:5b:5e:13:ba:d0:41:f3: 19:58:2d:b5:8d:bd:0c:d1:3e:aa:4f:01:7f:22:86:d3:49:cb: c7:fd:76:b1:bc:e0:4d:c1:24:a4:e8:1c:23:47:f2:a8:c8:c2: 60:6f:3d:d4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUBKOY0EKEy6p2QN5yX9YHynoUZN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTc0OFoX DTI3MDUyNzE2MDI0OFowMzExMC8GA1UEAxMoMTc1MUNCRkU4OUIyMTFBODdFQUYz RTJBMDdCQzg4RDgzNkIwOTgxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALACJz70jLLYulSTX7f7Scq9DhZR0SPBWGqgB4Jm0MoTCbW+8ttIKhsp4lvX EbWNSJ7kbF2Wvxa9UntLpjSjSBYJIMk1D8Psyu+29wSNkT7Lc6yNjQyzFnynYuz0 ofTscbJC4AWn3Gi4jBdbDYNkCRyMt8R2mAO4GkpVuLLcknyk2IGQiVJWBduT+bR4 9G2U1UogK49gDGVLsVyl0dKUTDvqoPN4FvffK48A/qhLZirdF3m5uNvLHIre4CrP cDvaL5g76wxkaRBvwlriM/IodcOAYERHvvLrbqXZTsNshshmv+Gr8mPPqnt98jx7 apZ8CtbTAggUzVr9/E/eYqZyGGcCAwEAAaOCAfYwggHyMB0GA1UdDgQWBBQXUcv+ ibIRqH6vPioHvIjYNrCYGTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAAjAYAwYAJA4EXMcDBgAkDgRcyQMGACQO BFzLMA0GCSqGSIb3DQEBCwUAA4IBAQAymiwWidpNm5eM1ozOgNjmQ9xB7xdjKHyc RzIrAyGKv+762/QZg/d4IoCMz1d3yh7L8MjQM4BCZWXJn/IalvcE5BCMSO3/I0rx Q/bDtoDqXS6MKWX1CSMJaiZNdl+ar/7OZT4xE2VPFPtD1TVn9qWJ/6J5eDu90XOp m6imXgOVRlqKel7l3benSMKjWzlazKD85cNQ3nDi3ims06LgGNrujLXwWQBFxpI3 JzqFQtP5Zpe1zRWti05jBQj62FBDaVJab/wYO2aq0fbui9MBtKUByFteE7rQQfMZ WC21jb0M0T6qTwF/IobTScvH/XaxvOBNwSSk6BwjR/KoyMJgbz3U -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:38 2026 by rpki-client