$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS142608.roa File: AS142608.roa (raw, json) Hash identifier: eqq/DE7z6HyH4pbHqaJ0y2aKI6at+l4XVWdwD61RFjA= Subject key identifier: 9E:07:D0:01:21:88:71:7D:37:67:5B:15:A2:71:D9:5F:05:BA:B2:81 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 541E4AF21A609CC921D61BF7CEB7EE729CA55662 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS142608.roa Signing time: Mon 01 Jun 2026 16:03:08 +0000 ROA not before: Mon 01 Jun 2026 15:58:08 +0000 ROA not after: Mon 31 May 2027 16:03:08 +0000 asID: 142608 IP address blocks: 60.170.11.0/24 maxlen: 24 60.170.244.0/24 maxlen: 24 61.190.114.0/24 maxlen: 24 223.247.64.0/20 maxlen: 20 240e:6:d012::/48 maxlen: 48 240e:958:1000::/40 maxlen: 40 240e:958:1200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:1e:4a:f2:1a:60:9c:c9:21:d6:1b:f7:ce:b7:ee:72:9c:a5:56:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 1 15:58:08 2026 GMT Not After : May 31 16:03:08 2027 GMT Subject: CN=9E07D0012188717D37675B15A271D95F05BAB281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:5b:ad:41:d1:4f:d2:10:4e:34:28:51:44: 5b:62:09:cf:bb:85:57:7d:cd:d9:c6:50:37:43:1a: 27:37:8f:fa:c4:fe:2a:8d:4e:34:51:16:0e:f3:c2: c9:3b:b4:62:45:a7:da:8c:0d:bd:6b:66:c5:c1:c0: 01:24:fd:5b:ef:b4:cb:8b:5f:56:16:e5:59:e2:a2: 85:c8:52:44:dd:76:aa:3b:f2:7d:0f:a8:0a:3c:7c: 76:c8:4e:e8:42:34:17:f4:1e:53:d3:23:66:c2:e1: 52:57:ec:eb:a9:f6:73:b0:f0:2e:aa:f5:8b:38:ed: 34:87:49:0c:c7:53:fd:77:44:f1:b5:c4:bf:04:15: 59:55:87:0e:57:34:9b:7f:73:1b:80:61:ea:2c:60: f8:34:79:9d:1f:5d:85:f7:93:13:15:e9:96:87:f1: f0:b7:e4:80:98:d4:5c:60:5d:a5:a8:6a:4f:91:5e: 00:23:06:70:48:fb:84:59:31:cb:aa:f1:5e:6f:7a: fa:12:13:31:07:ad:84:42:97:29:cf:86:d6:32:f5: 63:6f:37:ea:31:8e:25:31:31:7e:20:8b:15:04:fd: 5f:ef:11:d5:86:3a:58:94:88:a7:e8:16:29:a7:57: e7:a7:51:23:89:82:93:e8:d9:65:cb:c4:10:a5:18: 82:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:07:D0:01:21:88:71:7D:37:67:5B:15:A2:71:D9:5F:05:BA:B2:81 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS142608.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.170.11.0/24 60.170.244.0/24 61.190.114.0/24 223.247.64.0/20 IPv6: 240e:6:d012::/48 240e:958:1000::/40 240e:958:1200::/40 Signature Algorithm: sha256WithRSAEncryption 65:42:b9:32:b7:ef:aa:f5:97:c4:0f:b9:24:90:9f:c2:83:35: ee:0c:29:fb:20:7d:d6:19:dc:4a:40:04:22:d9:8b:13:93:c0: 7d:45:1f:49:3d:91:f5:b8:55:ad:75:77:a1:34:bb:7c:3a:85: 7c:45:fa:87:4b:3f:43:3b:16:f3:6c:b8:1c:ed:dc:a9:ae:b5: 81:1d:92:d7:53:6c:7d:cd:40:0a:53:a9:fe:8a:a3:5e:59:20: ef:04:a3:72:97:54:4e:92:7c:f0:21:c1:73:ae:5c:20:b5:1c: 72:da:63:eb:9b:ae:07:85:d1:ec:ee:1d:c1:25:c7:2f:98:ca: 2c:99:d1:86:23:7d:db:60:04:bb:a0:d6:82:ed:eb:ec:83:81: 0c:69:87:6f:71:c2:28:61:0b:84:3c:64:59:33:7f:57:3f:3b: 97:ec:cf:7d:12:e0:93:89:2b:df:87:92:70:b1:8c:9e:c4:a2: b5:9d:a5:52:cf:b4:cd:da:91:f2:16:46:13:83:88:b0:7d:6d: 1f:cc:82:d2:8f:a6:16:c8:4f:af:97:bb:85:30:e0:a5:5c:37: 1b:84:cd:01:fa:07:12:78:35:a4:91:cf:20:f5:a7:6d:c2:25: 00:c6:93:66:5d:e7:19:e0:2e:7a:64:02:7d:b1:83:8b:a8:b3: 3b:bd:92:8c -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUVB5K8hpgnMkh1hv3zrfucpylVmIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMTE1NTgwOFoX DTI3MDUzMTE2MDMwOFowMzExMC8GA1UEAxMoOUUwN0QwMDEyMTg4NzE3RDM3Njc1 QjE1QTI3MUQ5NUYwNUJBQjI4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsyW61B0U/SEE40KFFEW2IJz7uFV33N2cZQN0MaJzeP+sT+Ko1ONFEWDvPC yTu0YkWn2owNvWtmxcHAAST9W++0y4tfVhblWeKihchSRN12qjvyfQ+oCjx8dshO 6EI0F/QeU9MjZsLhUlfs66n2c7DwLqr1izjtNIdJDMdT/XdE8bXEvwQVWVWHDlc0 m39zG4Bh6ixg+DR5nR9dhfeTExXplofx8LfkgJjUXGBdpahqT5FeACMGcEj7hFkx y6rxXm96+hITMQethEKXKc+G1jL1Y2836jGOJTExfiCLFQT9X+8R1YY6WJSIp+gW KadX56dRI4mCk+jZZcvEEKUYgt0CAwEAAaOCAhcwggITMB0GA1UdDgQWBBSeB9AB IYhxfTdnWxWicdlfBbqygTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQyNjA4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MFIGCCsGAQUFBwEHAQH/BEMwQTAeBAIAATAYAwQAPKoLAwQAPKr0AwQAPb5yAwQE 3/dAMB8EAgACMBkDBwAkDgAG0BIDBgAkDglYEAMGACQOCVgSMA0GCSqGSIb3DQEB CwUAA4IBAQBlQrkyt++q9ZfED7kkkJ/CgzXuDCn7IH3WGdxKQAQi2YsTk8B9RR9J PZH1uFWtdXehNLt8OoV8RfqHSz9DOxbzbLgc7dyprrWBHZLXU2x9zUAKU6n+iqNe WSDvBKNyl1ROknzwIcFzrlwgtRxy2mPrm64HhdHs7h3BJccvmMosmdGGI33bYAS7 oNaC7evsg4EMaYdvccIoYQuEPGRZM39XPzuX7M99EuCTiSvfh5JwsYyexKK1naVS z7TN2pHyFkYTg4iwfW0fzILSj6YWyE+vl7uFMOClXDcbhM0B+gcSeDWkkc8g9adt wiUAxpNmXecZ4C56ZAJ9sYOLqLM7vZKM -----END CERTIFICATE-----Generated at Sun Jun 14 01:22:35 2026 by rpki-client