$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS148969.roa File: AS148969.roa (raw, json) Hash identifier: JdOMC3XP905BCRybUN74U5xSfVDdCehjLtIMlQhIvCQ= Subject key identifier: 9E:F5:D7:4B:0F:A7:2B:27:4A:F5:A5:9F:A4:17:3D:69:E1:6E:70:CE Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 5FCA9D70844F9C3E02E65D3D7C1562A8DB3964E0 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS148969.roa Signing time: Tue 02 Jun 2026 16:09:46 +0000 ROA not before: Tue 02 Jun 2026 16:04:46 +0000 ROA not after: Tue 01 Jun 2027 16:09:46 +0000 asID: 148969 IP address blocks: 106.227.16.0/20 maxlen: 20 106.227.28.0/24 maxlen: 24 106.227.56.0/21 maxlen: 21 106.227.96.0/21 maxlen: 21 240e:13:8000::/37 maxlen: 37 240e:960:c00::/40 maxlen: 40 240e:982:7400::/48 maxlen: 48 240e:983:170f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ca:9d:70:84:4f:9c:3e:02:e6:5d:3d:7c:15:62:a8:db:39:64:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 2 16:04:46 2026 GMT Not After : Jun 1 16:09:46 2027 GMT Subject: CN=9EF5D74B0FA72B274AF5A59FA4173D69E16E70CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5c:59:23:87:76:92:80:29:05:c8:30:7a:f1: 3f:e8:18:c0:28:a1:9f:1b:38:26:51:23:df:52:78: 8d:50:c0:db:c3:07:98:e1:6b:d0:df:99:60:99:49: f5:91:91:8c:77:5f:c6:3e:e9:d0:b1:c9:f1:47:55: 5d:27:d5:4b:82:bb:ca:9a:69:56:a5:6d:7f:75:c2: eb:2e:8d:06:98:35:b5:5b:ae:a2:22:2f:23:75:bc: 88:ce:af:8a:a4:56:9a:69:6d:17:03:2a:b1:0c:b3: 21:4e:80:99:c3:42:37:ed:ea:f2:ff:22:d7:51:01: ca:97:3c:4d:99:4b:51:f0:53:7c:47:1b:4d:fe:72: 9b:15:86:81:f0:89:95:42:74:74:17:db:56:82:6d: 00:0e:61:b4:86:9f:0b:79:d7:e0:ab:49:ca:3e:33: 8b:f7:4d:27:d4:67:a7:a9:d7:a8:ef:f8:b4:5a:3c: 33:3b:37:d2:34:6e:35:3d:2f:f9:d0:07:33:c4:73: ad:16:2d:c4:2c:39:6b:67:81:9d:53:bc:72:fc:70: 2d:55:e1:a5:a3:e8:04:6d:43:bb:b8:9d:87:05:b8: 3d:bf:25:f4:f5:e9:b3:49:31:26:2c:22:70:90:44: 57:04:87:7c:d4:ff:90:d3:e2:28:f1:b1:74:0d:2d: cf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F5:D7:4B:0F:A7:2B:27:4A:F5:A5:9F:A4:17:3D:69:E1:6E:70:CE X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS148969.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 106.227.16.0/20 106.227.56.0/21 106.227.96.0/21 IPv6: 240e:13:8000::/37 240e:960:c00::/40 240e:982:7400::/48 240e:983:170f::/48 Signature Algorithm: sha256WithRSAEncryption ae:e0:cc:50:5b:2b:fa:06:8e:aa:a7:34:2c:1a:dd:81:7f:96: 9c:cf:40:99:c0:41:a4:72:4e:1b:8c:4a:e8:ff:72:25:a1:0e: 90:8a:3f:21:f1:98:f2:5f:8d:fc:e8:a6:3f:2f:8a:72:f9:b1: a7:ca:74:3d:63:1d:14:44:f8:e4:87:a4:f5:f6:e7:73:77:31: 56:61:cf:7a:2c:34:b7:36:ee:83:5e:4b:90:12:25:77:d4:f8: fb:b5:c5:06:3b:97:b4:bd:ee:3c:4c:fa:fb:5f:9c:02:31:81: b9:c4:81:81:d0:35:e4:6b:f1:5f:c3:d8:21:7a:ac:40:c3:cd: b5:76:5f:db:81:33:23:5f:a8:21:52:32:a7:13:2d:12:09:f4: 77:01:3c:96:b5:90:69:a9:a5:ae:49:19:8b:e6:f6:be:d0:64: b1:5c:cc:a2:e8:7d:d7:04:29:3c:c4:74:eb:21:48:db:e8:da: 19:d6:82:4d:45:71:45:a4:98:14:38:1b:70:c0:ed:73:a7:ce: 93:77:51:0c:9b:5e:6a:e3:84:fd:2f:25:64:73:5e:42:5f:12: 5d:b3:88:ce:b4:02:c1:68:c2:a8:8b:24:ad:33:6c:18:99:72: 83:1e:54:42:20:69:de:3e:e3:7d:6f:05:ec:f2:f5:a4:4c:72: be:9e:37:a3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUX8qdcIRPnD4C5l09fBViqNs5ZOAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYwMjE2MDQ0NloX DTI3MDYwMTE2MDk0NlowMzExMC8GA1UEAxMoOUVGNUQ3NEIwRkE3MkIyNzRBRjVB NTlGQTQxNzNENjlFMTZFNzBDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORcWSOHdpKAKQXIMHrxP+gYwCihnxs4JlEj31J4jVDA28MHmOFr0N+ZYJlJ 9ZGRjHdfxj7p0LHJ8UdVXSfVS4K7ypppVqVtf3XC6y6NBpg1tVuuoiIvI3W8iM6v iqRWmmltFwMqsQyzIU6AmcNCN+3q8v8i11EBypc8TZlLUfBTfEcbTf5ymxWGgfCJ lUJ0dBfbVoJtAA5htIafC3nX4KtJyj4zi/dNJ9Rnp6nXqO/4tFo8Mzs30jRuNT0v +dAHM8RzrRYtxCw5a2eBnVO8cvxwLVXhpaPoBG1Du7idhwW4Pb8l9PXps0kxJiwi cJBEVwSHfNT/kNPiKPGxdA0tz1sCAwEAAaOCAhowggIWMB0GA1UdDgQWBBSe9ddL D6crJ0r1pZ+kFz1p4W5wzjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQ4OTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MFUGCCsGAQUFBwEHAQH/BEYwRDAYBAIAATASAwQEauMQAwQDauM4AwQDauNgMCgE AgACMCIDBgMkDgATgAMGACQOCWAMAwcAJA4JgnQAAwcAJA4JgxcPMA0GCSqGSIb3 DQEBCwUAA4IBAQCu4MxQWyv6Bo6qpzQsGt2Bf5acz0CZwEGkck4bjEro/3IloQ6Q ij8h8ZjyX4386KY/L4py+bGnynQ9Yx0URPjkh6T19udzdzFWYc96LDS3Nu6DXkuQ EiV31Pj7tcUGO5e0ve48TPr7X5wCMYG5xIGB0DXka/Ffw9gheqxAw821dl/bgTMj X6ghUjKnEy0SCfR3ATyWtZBpqaWuSRmL5va+0GSxXMyi6H3XBCk8xHTrIUjb6NoZ 1oJNRXFFpJgUOBtwwO1zp86Td1EMm15q44T9LyVkc15CXxJds4jOtALBaMKoiySt M2wYmXKDHlRCIGnePuN9bwXs8vWkTHK+njej -----END CERTIFICATE-----Generated at Sun Jun 14 05:17:35 2026 by rpki-client