$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140859.roa File: AS140859.roa (raw, json) Hash identifier: HAPJIeHOLZI5G69EgLwx9ORSMXifRZR59rLx12vo9zU= Subject key identifier: F5:3A:6B:86:DB:B5:49:05:35:3D:C1:26:C5:F3:13:ED:B1:D8:8C:9E Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 1497A3CA63582FC0FE922C22442C3817FC7CC6B9 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140859.roa Signing time: Tue 26 May 2026 16:07:05 +0000 ROA not before: Tue 26 May 2026 16:02:05 +0000 ROA not after: Tue 25 May 2027 16:07:05 +0000 asID: 140859 IP address blocks: 240e:13:807::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:97:a3:ca:63:58:2f:c0:fe:92:2c:22:44:2c:38:17:fc:7c:c6:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 26 16:02:05 2026 GMT Not After : May 25 16:07:05 2027 GMT Subject: CN=F53A6B86DBB54905353DC126C5F313EDB1D88C9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:cb:36:7e:72:a3:ce:b1:1a:62:41:d0:a1:dd: d1:0c:7a:cd:ae:4a:eb:bb:69:1a:bb:ee:12:31:64: 81:3d:1c:c4:06:d8:e5:7e:9f:19:e5:7d:a1:02:18: 1a:ee:4b:1c:d5:39:d3:96:94:85:00:ec:c1:e1:41: b1:6a:39:47:23:ce:2d:a5:56:0d:db:e4:9b:2f:56: 93:8d:41:e2:a8:26:c0:bb:7b:ad:7c:72:63:b1:49: 91:e2:fa:5e:7a:32:48:50:92:b7:33:7f:f8:4d:74: 09:7b:cc:ba:48:24:b9:07:0e:f0:83:01:fe:96:30: f6:9a:49:0d:66:01:79:77:3e:e7:10:62:8a:6b:a4: 74:8e:4a:0a:96:4f:78:10:36:32:f0:fe:8d:5c:57: 97:7f:47:ca:6e:8d:ab:1b:d4:6c:b1:60:9f:d4:eb: 47:b2:36:3a:9a:76:18:2f:1f:fa:6a:6b:2a:6f:11: 9b:88:e1:35:84:ad:3b:8d:14:7e:1d:ad:0a:75:82: b7:4f:e2:53:c8:4a:4f:82:c2:59:36:cc:40:fe:9c: c9:1c:36:cf:72:bf:5f:81:ff:f7:5c:e3:94:58:9c: 19:72:e4:7d:cd:00:ea:33:19:b3:42:72:a0:95:04: 7b:d0:28:3d:e6:62:9a:7a:09:fb:08:ed:7b:21:cc: 63:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:3A:6B:86:DB:B5:49:05:35:3D:C1:26:C5:F3:13:ED:B1:D8:8C:9E X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:13:807::/48 Signature Algorithm: sha256WithRSAEncryption 51:cc:02:3f:f9:30:73:42:9f:de:89:be:2d:07:b8:7e:7c:6f: 8a:cf:4b:cb:5e:46:db:7f:70:57:c5:ca:c9:87:aa:49:cb:33: 78:6c:21:7e:99:e1:2d:8d:90:4f:65:9f:5d:e1:c8:26:e5:9c: 06:5a:da:5b:49:c0:cd:07:ef:fb:3e:83:4c:1e:24:95:6c:32: a4:80:ee:99:2d:65:67:24:7e:4a:ca:8d:b3:71:1e:57:94:ed: b3:f9:fb:ba:14:d8:23:6a:7d:dd:a8:25:64:21:4b:13:42:e9: 12:dd:b3:e0:3b:64:b5:06:f9:c9:f4:81:32:36:6c:fd:be:2c: d1:03:3b:b1:f1:9a:22:6a:7d:48:c3:d3:36:7e:e1:71:85:6a: b1:45:12:6b:0a:21:61:4f:af:10:bd:6a:57:44:d1:4c:fe:2e: ed:07:59:dc:ad:64:73:5c:a1:b5:6e:f1:be:c1:75:51:43:ed: a2:20:00:f9:2b:95:27:02:a3:63:96:a7:c0:8c:a7:ce:2c:8a: 6f:2c:e6:fe:49:06:aa:62:c5:b3:68:73:0e:2e:86:cf:1d:99: 5f:10:f7:06:23:f7:1c:c1:41:af:75:66:ad:e0:ba:55:e8:b6: 6c:57:b9:61:ac:a7:66:b0:0d:96:b2:26:37:6c:99:cf:c2:46: 51:5d:c9:80 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUFJejymNYL8D+kiwiRCw4F/x8xrkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNjE2MDIwNVoX DTI3MDUyNTE2MDcwNVowMzExMC8GA1UEAxMoRjUzQTZCODZEQkI1NDkwNTM1M0RD MTI2QzVGMzEzRURCMUQ4OEM5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJDLNn5yo86xGmJB0KHd0Qx6za5K67tpGrvuEjFkgT0cxAbY5X6fGeV9oQIY Gu5LHNU505aUhQDsweFBsWo5RyPOLaVWDdvkmy9Wk41B4qgmwLt7rXxyY7FJkeL6 XnoySFCStzN/+E10CXvMukgkuQcO8IMB/pYw9ppJDWYBeXc+5xBiimukdI5KCpZP eBA2MvD+jVxXl39Hym6NqxvUbLFgn9TrR7I2Opp2GC8f+mprKm8Rm4jhNYStO40U fh2tCnWCt0/iU8hKT4LCWTbMQP6cyRw2z3K/X4H/91zjlFicGXLkfc0A6jMZs0Jy oJUEe9AoPeZimnoJ+wjteyHMY8MCAwEAAaOCAecwggHjMB0GA1UdDgQWBBT1OmuG 27VJBTU9wSbF8xPtsdiMnjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwODU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJA4AEwgHMA0GCSqGSIb3DQEB CwUAA4IBAQBRzAI/+TBzQp/eib4tB7h+fG+Kz0vLXkbbf3BXxcrJh6pJyzN4bCF+ meEtjZBPZZ9d4cgm5ZwGWtpbScDNB+/7PoNMHiSVbDKkgO6ZLWVnJH5Kyo2zcR5X lO2z+fu6FNgjan3dqCVkIUsTQukS3bPgO2S1BvnJ9IEyNmz9vizRAzux8Zoian1I w9M2fuFxhWqxRRJrCiFhT68QvWpXRNFM/i7tB1ncrWRzXKG1bvG+wXVRQ+2iIAD5 K5UnAqNjlqfAjKfOLIpvLOb+SQaqYsWzaHMOLobPHZlfEPcGI/ccwUGvdWat4LpV 6LZsV7lhrKdmsA2WsiY3bJnPwkZRXcmA -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:40 2026 by rpki-client