$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140654.roa File: AS140654.roa (raw, json) Hash identifier: HsQx6Ash6yCVVWWjW0fWhXcQg2uq4z0i0CPcKO+bfPM= Subject key identifier: 3F:8D:56:B9:B8:D4:C7:66:D6:ED:A8:11:9D:CE:AF:41:16:B4:8E:44 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 7E2C6087E06111B1DE3DE4FD1B9B162F274DEC10 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140654.roa Signing time: Sat 30 May 2026 16:01:34 +0000 ROA not before: Sat 30 May 2026 15:56:34 +0000 ROA not after: Sat 29 May 2027 16:01:34 +0000 asID: 140654 IP address blocks: 240e:183:8218::/48 maxlen: 48 240e:183:8219::/48 maxlen: 48 240e:183:821a::/48 maxlen: 48 240e:183:821b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2c:60:87:e0:61:11:b1:de:3d:e4:fd:1b:9b:16:2f:27:4d:ec:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 30 15:56:34 2026 GMT Not After : May 29 16:01:34 2027 GMT Subject: CN=3F8D56B9B8D4C766D6EDA8119DCEAF4116B48E44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:21:26:78:2e:68:2c:29:e1:94:5f:59:d7:e6: 13:43:82:e4:ea:47:e0:cb:56:31:f3:b9:db:4f:2f: 97:17:b8:31:de:1f:58:2b:fb:0c:dd:2e:3f:5f:b9: 22:67:93:25:b8:0b:51:38:62:db:fd:4b:7d:c1:3a: 02:54:79:98:36:b4:77:27:f4:66:1c:3d:c3:ae:53: b5:73:f3:f2:5f:bf:b9:7f:87:5e:c0:df:67:9c:ae: c8:db:b6:14:74:45:7b:dd:1b:99:cf:83:d3:94:13: a9:39:9b:67:20:f5:2d:ed:bd:9f:41:3d:16:de:f0: e0:2d:11:62:fe:e1:1e:34:2f:7f:c7:f1:09:57:9a: e0:98:33:fb:82:b4:f1:5a:2e:0c:de:5d:ae:94:eb: 4f:4b:63:7a:92:f0:30:61:e1:76:a1:60:b7:46:fd: 02:12:84:a8:da:c0:c4:81:39:ab:8a:ba:85:63:a0: c4:d9:a9:2c:a4:55:ca:cb:6b:bb:cc:6e:02:39:b7: ca:86:28:68:8f:45:ae:fe:f0:29:2c:10:6b:6c:36: c7:53:40:b6:1e:f1:05:52:d5:fd:b1:26:47:4d:ac: 23:4d:53:52:f4:37:8f:82:06:e0:5f:df:90:d1:b4: 2c:80:65:8d:13:96:74:fe:72:d2:fd:67:d2:f9:72: ad:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:8D:56:B9:B8:D4:C7:66:D6:ED:A8:11:9D:CE:AF:41:16:B4:8E:44 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140654.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:183:8218::/46 Signature Algorithm: sha256WithRSAEncryption 1b:52:5f:b8:86:66:45:dc:b1:46:91:8b:a6:dd:fa:58:fa:22: ef:9f:39:67:61:b0:8b:00:ed:43:6f:ba:a9:2c:5f:8f:ce:ec: 05:4c:21:6a:4e:36:a1:a2:81:86:b3:f9:fe:6c:15:4e:e8:a8: 38:39:ee:b4:e9:00:b4:e5:03:d5:02:56:9b:7f:d5:65:eb:38: d5:96:58:ef:28:0d:ff:8b:98:97:8d:65:e8:4b:4f:3a:98:b2: fa:9c:f7:77:5d:67:b9:ae:a9:f6:3c:9c:cf:15:eb:5b:13:6f: 9f:63:e5:84:46:fa:d1:30:d6:fa:51:62:01:92:da:91:d6:d4: 80:64:30:be:29:db:c5:da:16:8a:12:e0:0a:f8:02:57:b2:18: 7b:d6:a1:0b:0e:ac:90:54:ec:10:84:ae:7e:56:39:38:42:25: df:27:88:4e:93:d8:a4:67:a2:ce:92:34:94:03:29:73:13:0e: 0b:d0:ac:34:c3:e6:7f:34:88:77:04:a2:1c:1f:c5:af:cf:74: f9:bb:d0:80:ff:11:b7:39:58:9e:f6:50:eb:47:d3:a4:d4:d7: 18:1b:36:6f:18:f4:d1:7c:c5:88:be:b6:05:5b:69:4d:48:ef: af:e6:03:1c:c9:ca:82:6a:58:09:6b:f2:fe:ee:38:f0:44:1e: d7:29:2d:b8 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUfixgh+BhEbHePeT9G5sWLydN7BAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUzMDE1NTYzNFoX DTI3MDUyOTE2MDEzNFowMzExMC8GA1UEAxMoM0Y4RDU2QjlCOEQ0Qzc2NkQ2RURB ODExOURDRUFGNDExNkI0OEU0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJAhJnguaCwp4ZRfWdfmE0OC5OpH4MtWMfO5208vlxe4Md4fWCv7DN0uP1+5 ImeTJbgLUThi2/1LfcE6AlR5mDa0dyf0Zhw9w65TtXPz8l+/uX+HXsDfZ5yuyNu2 FHRFe90bmc+D05QTqTmbZyD1Le29n0E9Ft7w4C0RYv7hHjQvf8fxCVea4Jgz+4K0 8VouDN5drpTrT0tjepLwMGHhdqFgt0b9AhKEqNrAxIE5q4q6hWOgxNmpLKRVystr u8xuAjm3yoYoaI9Frv7wKSwQa2w2x1NAth7xBVLV/bEmR02sI01TUvQ3j4IG4F/f kNG0LIBljROWdP5y0v1n0vlyrd0CAwEAAaOCAecwggHjMB0GA1UdDgQWBBQ/jVa5 uNTHZtbtqBGdzq9BFrSORDAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwNjU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCJA4Bg4IYMA0GCSqGSIb3DQEB CwUAA4IBAQAbUl+4hmZF3LFGkYum3fpY+iLvnzlnYbCLAO1Db7qpLF+PzuwFTCFq TjahooGGs/n+bBVO6Kg4Oe606QC05QPVAlabf9Vl6zjVlljvKA3/i5iXjWXoS086 mLL6nPd3XWe5rqn2PJzPFetbE2+fY+WERvrRMNb6UWIBktqR1tSAZDC+KdvF2haK EuAK+AJXshh71qELDqyQVOwQhK5+Vjk4QiXfJ4hOk9ikZ6LOkjSUAylzEw4L0Kw0 w+Z/NIh3BKIcH8Wvz3T5u9CA/xG3OVie9lDrR9Ok1NcYGzZvGPTRfMWIvrYFW2lN SO+v5gMcycqCalgJa/L+7jjwRB7XKS24 -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:42 2026 by rpki-client