$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140648.roa File: AS140648.roa (raw, json) Hash identifier: iXxa5E7/KajWntxgVKwnn5acUd6ON+0yZMzxntxgYUQ= Subject key identifier: 7C:90:D4:B3:82:2C:00:2C:0D:E4:76:8A:38:C5:E7:F6:AE:3B:E6:B6 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 42639741147F91EB7D5AF258C3D2D7EF6998F09F Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140648.roa Signing time: Sat 30 May 2026 16:01:34 +0000 ROA not before: Sat 30 May 2026 15:56:34 +0000 ROA not after: Sat 29 May 2027 16:01:34 +0000 asID: 140648 IP address blocks: 240e:183:8200::/48 maxlen: 48 240e:183:8201::/48 maxlen: 48 240e:183:8202::/48 maxlen: 48 240e:183:8203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:63:97:41:14:7f:91:eb:7d:5a:f2:58:c3:d2:d7:ef:69:98:f0:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 30 15:56:34 2026 GMT Not After : May 29 16:01:34 2027 GMT Subject: CN=7C90D4B3822C002C0DE4768A38C5E7F6AE3BE6B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:1f:9e:66:a2:12:88:c1:9d:5e:e0:fc:34: 84:cb:1a:80:9d:b4:9c:10:b6:ff:bf:af:53:bc:ee: 33:50:6a:7f:bf:82:10:42:cb:b3:88:58:2a:99:66: b7:db:02:78:20:1c:4e:52:39:10:70:46:88:14:c8: d6:b2:1e:a3:31:7d:82:ba:1c:25:a1:22:fb:de:0f: 50:76:1a:1d:1a:ac:b5:2e:ce:40:52:a5:df:f3:b3: 1b:55:90:0b:60:ca:7a:f9:22:48:66:0d:ec:ee:ed: b1:42:18:d9:e5:61:9d:c9:13:8c:aa:23:7a:5b:85: f8:9f:ba:b7:62:31:8f:02:bf:4d:79:86:dc:d6:28: de:48:85:88:23:93:11:05:d4:f4:8d:0f:63:6e:1d: 0d:9a:e2:40:7a:18:50:d5:dd:93:51:b2:79:f3:4f: f3:28:fd:a7:a2:bb:46:1d:ab:dd:a7:6a:bb:20:9e: f6:a4:f7:0a:54:b5:21:6c:e9:19:c8:d1:28:66:20: 28:b8:fd:a5:90:c8:7e:ca:72:dd:bc:03:73:d6:7c: b3:0e:a1:2b:5c:79:78:2c:6c:72:93:f7:fd:50:c0: 2d:45:19:1b:b4:3d:c1:5a:28:e0:15:9c:a0:bb:99: 78:ea:51:74:22:e8:d1:dc:3b:61:26:b8:9d:5a:cb: e7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:90:D4:B3:82:2C:00:2C:0D:E4:76:8A:38:C5:E7:F6:AE:3B:E6:B6 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:183:8200::/46 Signature Algorithm: sha256WithRSAEncryption 84:da:91:0f:a2:dd:d1:b1:f7:78:8b:01:d9:1f:ac:1d:3b:a6: de:94:bc:9e:98:48:38:68:b2:a4:cb:7c:21:b2:42:a8:92:4d: 89:c9:c2:9d:f1:46:81:4f:3f:b3:02:b0:85:cd:1c:a2:a2:1d: c1:d7:4d:81:12:5f:e1:5d:d5:c7:fd:e8:20:5c:73:df:94:c9: 8e:99:6e:ab:f6:fc:2d:57:42:ba:ea:5c:8f:59:f9:24:65:d1: 14:d2:0b:e9:b8:65:30:7a:f6:89:fa:3d:5c:da:ba:17:53:17: 1e:59:93:7c:e8:ef:d6:36:09:fa:db:9d:6c:8a:f0:56:c0:8a: dd:b4:cb:a3:0d:c2:17:9c:16:30:d2:3e:ac:6d:90:3c:8c:be: e4:77:e3:2e:3c:81:81:0d:b6:73:bd:ca:66:9e:fa:6d:ec:15: 62:2b:63:6c:ae:5b:69:c4:fb:28:26:25:2b:3f:2c:0d:f1:6a: fc:9e:2c:48:32:fa:0d:71:fb:47:7a:80:82:75:91:6a:84:5d: 32:9f:0a:78:46:81:74:7b:ba:07:47:ee:f1:d0:bd:e1:46:f6: 6b:2a:4e:de:fb:04:5a:13:d1:cd:73:a7:7f:cb:66:18:78:c1: 3c:ee:ca:f1:fd:af:08:72:d7:11:f8:7d:33:82:a9:fb:88:75: 39:6e:3a:46 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUQmOXQRR/ket9WvJYw9LX72mY8J8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUzMDE1NTYzNFoX DTI3MDUyOTE2MDEzNFowMzExMC8GA1UEAxMoN0M5MEQ0QjM4MjJDMDAyQzBERTQ3 NjhBMzhDNUU3RjZBRTNCRTZCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoPH55mohKIwZ1e4Pw0hMsagJ20nBC2/7+vU7zuM1Bqf7+CEELLs4hYKplm t9sCeCAcTlI5EHBGiBTI1rIeozF9grocJaEi+94PUHYaHRqstS7OQFKl3/OzG1WQ C2DKevkiSGYN7O7tsUIY2eVhnckTjKojeluF+J+6t2IxjwK/TXmG3NYo3kiFiCOT EQXU9I0PY24dDZriQHoYUNXdk1GyefNP8yj9p6K7Rh2r3adquyCe9qT3ClS1IWzp GcjRKGYgKLj9pZDIfspy3bwDc9Z8sw6hK1x5eCxscpP3/VDALUUZG7Q9wVoo4BWc oLuZeOpRdCLo0dw7YSa4nVrL560CAwEAAaOCAecwggHjMB0GA1UdDgQWBBR8kNSz giwALA3kdoo4xef2rjvmtjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCJA4Bg4IAMA0GCSqGSIb3DQEB CwUAA4IBAQCE2pEPot3Rsfd4iwHZH6wdO6belLyemEg4aLKky3whskKokk2JycKd 8UaBTz+zArCFzRyioh3B102BEl/hXdXH/eggXHPflMmOmW6r9vwtV0K66lyPWfkk ZdEU0gvpuGUwevaJ+j1c2roXUxceWZN86O/WNgn6251sivBWwIrdtMujDcIXnBYw 0j6sbZA8jL7kd+MuPIGBDbZzvcpmnvpt7BViK2NsrltpxPsoJiUrPywN8Wr8nixI MvoNcftHeoCCdZFqhF0ynwp4RoF0e7oHR+7x0L3hRvZrKk7e+wRaE9HNc6d/y2YY eME87srx/a8IctcR+H0zgqn7iHU5bjpG -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:43 2026 by rpki-client