$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS150145.roa File: AS150145.roa (raw, json) Hash identifier: qRF+c0GpYf3pqiJf3g2IwNO6HBJzqtMWKhxnqXgXgT8= Subject key identifier: 5A:3E:D0:D6:BB:87:56:A8:91:97:6A:A9:4A:FB:FB:FA:EC:6C:1A:92 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 1C1CC77B31C0EACBA688C76D9050CCE022635463 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS150145.roa Signing time: Thu 28 May 2026 16:03:02 +0000 ROA not before: Thu 28 May 2026 15:58:02 +0000 ROA not after: Thu 27 May 2027 16:03:02 +0000 asID: 150145 IP address blocks: 27.21.224.0/19 maxlen: 19 58.50.186.0/24 maxlen: 24 240e:105:f200::/40 maxlen: 40 240e:95d:1400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:1c:c7:7b:31:c0:ea:cb:a6:88:c7:6d:90:50:cc:e0:22:63:54:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:58:02 2026 GMT Not After : May 27 16:03:02 2027 GMT Subject: CN=5A3ED0D6BB8756A891976AA94AFBFBFAEC6C1A92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e4:72:dc:d2:26:5b:d2:c5:f9:c8:6c:96:3d: 5d:34:5f:1e:9b:8d:62:4e:ba:78:87:11:c2:18:92: 86:68:a9:a1:24:2a:4a:5e:6e:f0:ad:1c:82:fb:f2: 0f:67:3e:06:1b:6a:3b:22:2d:23:57:80:a2:15:79: b8:b4:a7:48:a1:db:d3:b9:ea:d8:4a:25:ec:9f:36: f7:96:da:f7:68:69:f3:42:6e:b9:be:f2:22:06:e2: 0f:9e:3b:45:0d:3b:a7:45:b2:d9:b1:27:89:a1:99: 65:ea:87:d6:0e:2b:35:17:5e:90:38:c5:97:44:b4: 7d:ef:41:35:83:ef:63:a1:2c:c6:7a:69:e0:f7:0c: 8b:ad:a4:ee:b2:a0:c9:dd:34:52:77:3a:fb:93:83: 40:5f:32:9f:c0:f4:85:61:a4:88:8d:51:03:ae:e4: a9:24:4b:14:ac:07:60:fc:0a:79:4a:5d:42:76:3e: b8:18:47:43:d3:d7:41:93:2e:66:84:8c:75:a2:13: dc:64:b8:a5:4c:db:61:51:1e:d8:a8:36:d8:54:cf: d0:ad:4d:90:9c:67:ac:76:fb:82:71:7d:d9:ea:5a: a8:97:64:33:2a:f4:8a:34:54:c6:20:11:16:9b:c3: b1:66:a1:c2:5e:66:9b:e2:c6:04:56:7b:ee:f3:1c: 04:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3E:D0:D6:BB:87:56:A8:91:97:6A:A9:4A:FB:FB:FA:EC:6C:1A:92 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS150145.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.21.224.0/19 58.50.186.0/24 IPv6: 240e:105:f200::/40 240e:95d:1400::/38 Signature Algorithm: sha256WithRSAEncryption a1:3e:93:06:da:8f:2c:70:89:72:a8:5c:30:d2:05:d1:df:a6: 92:78:83:fb:a4:9f:a4:65:93:b3:50:bf:ae:d2:fc:3d:9b:69: 5f:e9:a0:46:d6:91:fe:6d:20:a3:0e:5c:4d:24:04:df:37:b1: 89:ab:0f:b6:86:bc:35:10:6f:5a:8b:c9:0b:3a:70:20:b3:d1: 5b:cb:bd:d7:18:37:83:e1:9a:c2:75:c9:93:78:66:5c:8d:9b: 88:fc:d8:a5:64:ca:29:08:f0:ee:4b:ab:20:4b:c8:90:61:ff: e6:fb:e8:ed:ee:f7:12:ab:97:0d:34:94:7d:16:7a:09:f5:19: 9e:72:03:a5:08:67:eb:56:40:71:0c:52:8e:80:bb:4d:54:3c: 51:be:fe:1d:0a:a4:53:dc:35:11:d1:74:a4:5f:a2:4f:2b:17: 06:b9:a5:99:e4:9e:1a:c5:a3:7a:ee:04:be:cd:f7:25:9e:d2: 7f:9b:66:c1:e9:ef:06:e4:44:dd:47:25:53:83:ab:6a:d1:d9: 29:1b:e2:d0:ec:03:e4:bb:43:fc:25:16:7c:b9:91:00:a5:2d: 68:d2:1b:70:95:89:10:4c:a1:18:8c:ae:63:04:96:b8:ec:3e: 06:23:f3:f3:61:d9:c3:3a:41:e7:b7:74:45:8a:4c:b7:1c:c4: 1b:e4:3d:bf -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUHBzHezHA6sumiMdtkFDM4CJjVGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTgwMloX DTI3MDUyNzE2MDMwMlowMzExMC8GA1UEAxMoNUEzRUQwRDZCQjg3NTZBODkxOTc2 QUE5NEFGQkZCRkFFQzZDMUE5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ/kctzSJlvSxfnIbJY9XTRfHpuNYk66eIcRwhiShmipoSQqSl5u8K0cgvvy D2c+BhtqOyItI1eAohV5uLSnSKHb07nq2Eol7J8295ba92hp80Juub7yIgbiD547 RQ07p0Wy2bEniaGZZeqH1g4rNRdekDjFl0S0fe9BNYPvY6Esxnpp4PcMi62k7rKg yd00Unc6+5ODQF8yn8D0hWGkiI1RA67kqSRLFKwHYPwKeUpdQnY+uBhHQ9PXQZMu ZoSMdaIT3GS4pUzbYVEe2Kg22FTP0K1NkJxnrHb7gnF92epaqJdkMyr0ijRUxiAR FpvDsWahwl5mm+LGBFZ77vMcBBkCAwEAAaOCAgIwggH+MB0GA1UdDgQWBBRaPtDW u4dWqJGXaqlK+/v67GwakjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTUwMTQ1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQFGxXgAwQAOjK6MBYEAgACMBAD BgAkDgEF8gMGAiQOCV0UMA0GCSqGSIb3DQEBCwUAA4IBAQChPpMG2o8scIlyqFww 0gXR36aSeIP7pJ+kZZOzUL+u0vw9m2lf6aBG1pH+bSCjDlxNJATfN7GJqw+2hrw1 EG9ai8kLOnAgs9Fby73XGDeD4ZrCdcmTeGZcjZuI/NilZMopCPDuS6sgS8iQYf/m ++jt7vcSq5cNNJR9FnoJ9RmecgOlCGfrVkBxDFKOgLtNVDxRvv4dCqRT3DUR0XSk X6JPKxcGuaWZ5J4axaN67gS+zfclntJ/m2bB6e8G5ETdRyVTg6tq0dkpG+LQ7APk u0P8JRZ8uZEApS1o0htwlYkQTKEYjK5jBJa47D4GI/PzYdnDOkHnt3RFiky3HMQb 5D2/ -----END CERTIFICATE-----Generated at Sun Jun 14 06:31:01 2026 by rpki-client