$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140860.roa File: AS140860.roa (raw, json) Hash identifier: onLrTAyuTjNROA1OaWtbCGxbKDGujxMJzpzCUbSJ8ig= Subject key identifier: 44:8D:9E:F3:49:B5:C0:D4:51:BF:07:4E:C2:28:F8:44:93:BF:21:45 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 226331AC9484EB4B5EE386B286ADDA55FACFE5B8 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140860.roa Signing time: Tue 26 May 2026 16:07:05 +0000 ROA not before: Tue 26 May 2026 16:02:05 +0000 ROA not after: Tue 25 May 2027 16:07:05 +0000 asID: 140860 IP address blocks: 240e:13:808::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:63:31:ac:94:84:eb:4b:5e:e3:86:b2:86:ad:da:55:fa:cf:e5:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 26 16:02:05 2026 GMT Not After : May 25 16:07:05 2027 GMT Subject: CN=448D9EF349B5C0D451BF074EC228F84493BF2145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:21:e9:f8:4f:ee:89:e7:ba:1e:2a:89:fd:3d: af:76:3c:23:41:f1:40:12:e0:7f:8a:3a:a8:c9:da: 21:6f:e5:e5:7c:43:1b:11:18:2c:2c:f5:49:7c:90: 0c:81:7b:70:7b:e6:70:50:7f:9b:cc:c1:bd:b2:56: 9e:aa:57:c8:b5:b5:78:72:cc:fe:ac:49:49:e2:27: 30:77:20:c2:3d:87:60:8f:19:3a:32:93:01:ec:96: 15:35:f7:68:b3:85:62:52:4a:16:2c:85:9b:b7:38: 0a:e2:b8:de:e0:17:1e:fa:dc:ab:43:c7:8e:05:f0: 47:ba:29:db:6d:4f:7c:0c:25:da:d9:42:49:36:6a: d3:08:03:30:fa:46:33:cc:8b:31:12:04:35:d2:ac: 90:9c:c3:9d:ca:9c:40:37:6b:7f:ca:ea:83:6f:af: 28:11:63:97:e3:c6:c3:f7:f0:5d:86:72:9b:ca:fa: 44:19:cd:59:db:b4:8e:9a:b8:d8:f2:2d:db:fd:24: 37:fa:0f:cc:df:a7:53:42:f4:22:22:6f:64:9c:d9: 3c:54:e6:b2:d5:66:a1:a0:52:cb:85:c2:93:d3:ae: f5:3a:89:1c:f3:0f:e5:ff:07:42:02:1e:53:f5:ae: 9b:85:39:3b:4c:b3:16:a4:9c:40:90:4e:76:5b:15: f9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:8D:9E:F3:49:B5:C0:D4:51:BF:07:4E:C2:28:F8:44:93:BF:21:45 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140860.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:13:808::/48 Signature Algorithm: sha256WithRSAEncryption 44:9f:07:ae:2e:d2:fe:88:d0:da:a0:2c:8d:6b:e7:58:d7:1c: b4:d5:24:30:2a:03:21:3c:a9:90:97:0b:fb:ea:1c:0f:49:16: d2:a3:6d:79:7b:52:9c:ec:37:96:f7:10:66:07:30:d9:f7:42: 4e:37:32:52:e0:47:4a:7b:d5:40:91:f1:46:c5:ef:c8:61:b4: 82:7b:e6:50:b7:27:46:a9:8a:f6:14:21:5c:84:ad:1b:63:3a: 34:56:71:98:27:95:b4:3d:d4:6f:74:9c:71:c9:21:dc:6d:c7: af:93:77:26:a6:79:12:47:54:f4:06:c8:2a:37:a1:b7:8e:56: 8a:a5:b6:b0:6b:57:ee:2d:d1:26:c5:a4:f2:f4:c0:ad:61:7e: 50:08:ad:e5:1d:14:2c:59:4a:d0:a1:55:a5:bf:21:c3:5f:a0: 23:c8:81:52:3f:55:76:14:21:51:85:13:6f:aa:5a:51:1d:b7: ed:9e:c4:e8:fa:5d:20:88:8a:bf:6a:26:f2:4d:20:f3:14:1d: 37:82:e0:88:1e:72:1e:54:78:b8:f1:98:05:99:aa:37:8c:a1: 1b:16:35:01:7b:8a:cf:e6:91:11:0e:30:95:8d:d5:8a:6d:1f: f2:82:b2:35:e6:e4:72:ac:e1:32:95:5e:c8:65:f2:a6:64:e6: 13:16:09:75 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUImMxrJSE60te44ayhq3aVfrP5bgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyNjE2MDIwNVoX DTI3MDUyNTE2MDcwNVowMzExMC8GA1UEAxMoNDQ4RDlFRjM0OUI1QzBENDUxQkYw NzRFQzIyOEY4NDQ5M0JGMjE0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMh6fhP7onnuh4qif09r3Y8I0HxQBLgf4o6qMnaIW/l5XxDGxEYLCz1SXyQ DIF7cHvmcFB/m8zBvbJWnqpXyLW1eHLM/qxJSeInMHcgwj2HYI8ZOjKTAeyWFTX3 aLOFYlJKFiyFm7c4CuK43uAXHvrcq0PHjgXwR7op221PfAwl2tlCSTZq0wgDMPpG M8yLMRIENdKskJzDncqcQDdrf8rqg2+vKBFjl+PGw/fwXYZym8r6RBnNWdu0jpq4 2PIt2/0kN/oPzN+nU0L0IiJvZJzZPFTmstVmoaBSy4XCk9Ou9TqJHPMP5f8HQgIe U/Wum4U5O0yzFqScQJBOdlsV+S0CAwEAAaOCAecwggHjMB0GA1UdDgQWBBREjZ7z SbXA1FG/B07CKPhEk78hRTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwODYwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJA4AEwgIMA0GCSqGSIb3DQEB CwUAA4IBAQBEnweuLtL+iNDaoCyNa+dY1xy01SQwKgMhPKmQlwv76hwPSRbSo215 e1Kc7DeW9xBmBzDZ90JONzJS4EdKe9VAkfFGxe/IYbSCe+ZQtydGqYr2FCFchK0b Yzo0VnGYJ5W0PdRvdJxxySHcbcevk3cmpnkSR1T0BsgqN6G3jlaKpbawa1fuLdEm xaTy9MCtYX5QCK3lHRQsWUrQoVWlvyHDX6AjyIFSP1V2FCFRhRNvqlpRHbftnsTo +l0giIq/aibyTSDzFB03guCIHnIeVHi48ZgFmao3jKEbFjUBe4rP5pERDjCVjdWK bR/ygrI15uRyrOEylV7IZfKmZOYTFgl1 -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:45 2026 by rpki-client