$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140857.roa File: AS140857.roa (raw, json) Hash identifier: 8BvUD8jPkoc9uQ3R06AhabdW4T3Fs8X+ibw0M/Dvk4g= Subject key identifier: 15:F0:6A:3B:0D:6D:CF:83:AD:D4:29:40:DE:41:19:C7:7B:6B:29:CD Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 710DAACCFC18FE5DF1CABC1E6C25577340158109 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140857.roa Signing time: Tue 26 May 2026 16:07:05 +0000 ROA not before: Tue 26 May 2026 16:02:05 +0000 ROA not after: Tue 25 May 2027 16:07:05 +0000 asID: 140857 IP address blocks: 240e:13:805::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0d:aa:cc:fc:18:fe:5d:f1:ca:bc:1e:6c:25:57:73:40:15:81:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 26 16:02:05 2026 GMT Not After : May 25 16:07:05 2027 GMT Subject: CN=15F06A3B0D6DCF83ADD42940DE4119C77B6B29CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:af:18:5b:34:2f:7e:3f:f3:fb:a6:47:bb:06: 21:d1:01:49:1b:1f:9d:de:2b:ce:aa:f7:c6:72:1d: 47:1a:8a:90:0b:68:1c:dc:41:7b:83:5b:58:13:c2: f7:04:80:a0:8e:20:89:36:b1:52:a9:0a:3b:7b:fb: d4:2f:ec:ad:1d:be:c4:fd:7c:6d:72:4d:b5:97:fc: fe:bd:97:4f:03:97:22:b4:0c:0c:be:af:62:59:2e: ca:b8:73:48:1b:97:a8:fb:f2:65:0c:6c:8e:7d:32: d9:cb:0f:e6:9f:c0:b3:d0:be:c6:1c:64:e8:9d:5a: 35:86:ce:b2:03:c9:13:e2:99:03:75:09:ad:0a:4f: d6:c8:0c:6a:71:e7:b6:a1:dd:5a:07:bf:97:b7:a6: 86:8d:a1:d4:b4:40:c5:ba:10:3a:7f:b2:89:17:00: aa:3d:0b:c6:95:30:0b:b2:5f:ee:63:44:b0:fd:ab: 68:81:6c:da:b2:36:2c:f1:76:c5:45:98:26:c6:05: c6:5a:1b:86:6f:44:39:a7:79:b2:e1:f7:07:9b:14: 83:96:17:74:26:8f:fe:02:b9:23:b9:8b:b5:d0:59: 61:72:8e:f2:70:79:bd:8d:b2:05:47:72:29:9d:61: bb:d2:23:a8:1e:c5:fb:77:d0:ee:3e:72:71:79:1d: 6a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F0:6A:3B:0D:6D:CF:83:AD:D4:29:40:DE:41:19:C7:7B:6B:29:CD X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140857.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:13:805::/48 Signature Algorithm: sha256WithRSAEncryption 76:99:b4:2d:fd:d6:b3:3e:7c:f0:b3:fb:4a:b6:0f:fc:62:f9: 38:ec:9d:03:f2:15:55:69:f8:87:92:ce:a6:48:eb:0b:af:2d: bf:4b:ae:dd:94:f9:30:f1:84:49:8c:c2:aa:7a:b7:96:a1:5f: 56:af:b6:1f:4f:22:82:6d:a3:80:70:ec:64:ca:fe:a0:5b:93: d8:02:da:92:97:55:85:71:6c:f8:f6:4f:83:3f:3d:67:e0:84: 6c:5a:03:66:c9:78:82:8b:94:5a:f6:52:c4:76:1d:22:37:ef: 84:aa:69:b9:a5:f7:d6:54:4d:db:d2:cb:e1:c9:7c:66:74:a4: b7:85:6d:7a:d5:e6:15:4a:6f:21:a8:69:8f:c3:7c:ab:db:0a: a6:47:f5:0b:60:b8:83:d7:6b:ee:e8:6e:c1:96:1b:5e:2a:f4: 02:cf:70:8b:05:d1:51:fb:a8:d9:93:90:f6:a9:d1:a8:8a:bc: 54:93:02:3e:e7:9f:25:c0:23:7f:1b:ca:bf:42:43:d8:2a:cc: 28:f9:b0:e4:00:40:85:07:0c:5c:cc:e4:5c:b8:25:0d:c2:4c: 54:1d:68:de:c3:2b:69:29:cf:6e:7c:b7:5b:56:84:ee:62:f0: 33:75:38:5c:8e:a3:00:ef:5e:8b:42:03:bb:ac:f8:87:24:59: 0b:95:ab:21 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUcQ2qzPwY/l3xyrwebCVXc0AVgQkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNjE2MDIwNVoX DTI3MDUyNTE2MDcwNVowMzExMC8GA1UEAxMoMTVGMDZBM0IwRDZEQ0Y4M0FERDQy OTQwREU0MTE5Qzc3QjZCMjlDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKivGFs0L34/8/umR7sGIdEBSRsfnd4rzqr3xnIdRxqKkAtoHNxBe4NbWBPC 9wSAoI4giTaxUqkKO3v71C/srR2+xP18bXJNtZf8/r2XTwOXIrQMDL6vYlkuyrhz SBuXqPvyZQxsjn0y2csP5p/As9C+xhxk6J1aNYbOsgPJE+KZA3UJrQpP1sgManHn tqHdWge/l7emho2h1LRAxboQOn+yiRcAqj0LxpUwC7Jf7mNEsP2raIFs2rI2LPF2 xUWYJsYFxlobhm9EOad5suH3B5sUg5YXdCaP/gK5I7mLtdBZYXKO8nB5vY2yBUdy KZ1hu9IjqB7F+3fQ7j5ycXkdarkCAwEAAaOCAecwggHjMB0GA1UdDgQWBBQV8Go7 DW3Pg63UKUDeQRnHe2spzTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwODU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJA4AEwgFMA0GCSqGSIb3DQEB CwUAA4IBAQB2mbQt/dazPnzws/tKtg/8Yvk47J0D8hVVafiHks6mSOsLry2/S67d lPkw8YRJjMKqereWoV9Wr7YfTyKCbaOAcOxkyv6gW5PYAtqSl1WFcWz49k+DPz1n 4IRsWgNmyXiCi5Ra9lLEdh0iN++Eqmm5pffWVE3b0svhyXxmdKS3hW161eYVSm8h qGmPw3yr2wqmR/ULYLiD12vu6G7BlhteKvQCz3CLBdFR+6jZk5D2qdGoirxUkwI+ 558lwCN/G8q/QkPYKswo+bDkAECFBwxczORcuCUNwkxUHWjewytpKc9ufLdbVoTu YvAzdThcjqMA716LQgO7rPiHJFkLlash -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:34 2026 by rpki-client