$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS151397.roa File: AS151397.roa (raw, json) Hash identifier: kLI2c+x3tUOy8gtUzlwjUcpMul68kOvgjeFEfjGMzHc= Subject key identifier: 35:E3:A9:0A:F5:91:D0:D8:E7:F0:E8:07:58:A1:08:46:33:3B:04:99 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 21F2123D40887DB6B313AF09CF7F68C940E6C062 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS151397.roa Signing time: Wed 10 Jun 2026 17:01:54 +0000 ROA not before: Wed 10 Jun 2026 16:56:54 +0000 ROA not after: Wed 09 Jun 2027 17:01:54 +0000 asID: 151397 IP address blocks: 240e:983:2010::/48 maxlen: 48 240e:983:2013::/48 maxlen: 48 240e:983:2020::/48 maxlen: 48 240e:983:2022::/48 maxlen: 48 240e:983:2030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f2:12:3d:40:88:7d:b6:b3:13:af:09:cf:7f:68:c9:40:e6:c0:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: Jun 10 16:56:54 2026 GMT Not After : Jun 9 17:01:54 2027 GMT Subject: CN=35E3A90AF591D0D8E7F0E80758A10846333B0499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:18:51:a8:af:28:3c:ec:9d:a9:27:84:8f:59: 02:b7:b5:ec:03:5d:2e:7c:7c:b9:67:72:8b:00:aa: 2b:81:94:39:94:1e:e6:ee:d1:b9:da:55:f2:0a:81: 66:ca:d6:4c:08:91:0a:b7:1f:60:a2:e1:0c:75:0b: ea:1f:c4:6b:8d:79:4f:bf:4c:b2:8e:07:b6:01:86: b6:f4:15:f7:ae:42:8f:55:7f:be:42:dc:83:bf:5e: cd:87:c0:47:ac:98:41:48:1e:df:7d:70:53:b7:9e: ec:48:6e:e6:de:38:0a:d5:17:d7:67:71:b8:fb:da: 92:04:25:6c:91:9d:b1:ae:33:32:d7:66:1a:57:d1: bf:86:2a:31:e0:71:4c:f0:05:87:1a:c2:88:97:28: 5d:3c:d2:d8:8f:33:c0:37:dd:a9:9b:2b:e8:04:f6: 24:a5:42:7a:0a:10:73:49:2f:66:28:1a:80:55:49: c0:b1:12:a6:bf:54:d7:39:64:39:7d:d3:48:51:a5: df:44:0a:2b:1c:5f:db:27:1d:de:85:e5:e1:36:38: c4:24:92:96:5f:9e:11:bc:5f:43:09:e8:fe:4a:17: 11:f9:9f:17:ce:ea:f1:0d:7f:68:6b:6e:b9:66:8b: 48:e1:68:3f:f5:d6:bc:32:95:59:f7:cc:37:ad:92: bd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E3:A9:0A:F5:91:D0:D8:E7:F0:E8:07:58:A1:08:46:33:3B:04:99 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS151397.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:983:2010::/48 240e:983:2013::/48 240e:983:2020::/48 240e:983:2022::/48 240e:983:2030::/48 Signature Algorithm: sha256WithRSAEncryption 2e:48:81:98:51:f5:be:23:cc:d3:7a:de:b6:c7:0f:e7:5e:15: 6c:d2:7c:57:36:ba:11:ac:05:43:d7:07:0b:81:c9:4c:a7:fd: 41:99:e2:08:87:fa:a7:fb:32:96:1d:d5:82:0a:a3:f8:a4:f7: 69:e1:2a:1a:df:64:57:5a:e1:cd:33:c0:a2:b2:a0:98:d5:4f: 35:04:06:d5:27:06:af:f2:05:9f:0f:53:56:cb:51:8e:97:37: db:6a:8e:8d:24:9f:d3:be:9a:d4:14:34:66:3d:85:d2:e9:fd: 7c:0f:f1:59:39:83:ee:ca:d3:78:08:4c:be:ed:1c:15:d0:94: 14:96:1a:9b:aa:eb:ac:fa:6d:6d:6a:46:52:71:58:43:f1:3e: 47:bd:81:19:95:61:20:8e:1c:f5:38:d4:86:bc:da:50:43:6a: 9f:1a:c6:81:4a:a4:51:b3:68:ae:9a:8e:d5:21:aa:8b:a9:ca: bf:86:3c:eb:10:30:ba:0d:62:c6:28:07:64:d9:34:0e:cb:a0: 5f:5b:2c:d1:4a:9c:3d:51:45:eb:73:bc:fd:6f:19:bc:1e:a2: 29:52:63:dd:5c:b1:1f:83:ec:82:f6:92:43:62:94:ad:d8:f6: b9:75:cb:58:ab:2e:76:ca:fd:4c:d3:d3:5a:38:23:cb:5f:f7: f3:47:a6:c2 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUIfISPUCIfbazE68Jz39oyUDmwGIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDYxMDE2NTY1NFoX DTI3MDYwOTE3MDE1NFowMzExMC8GA1UEAxMoMzVFM0E5MEFGNTkxRDBEOEU3RjBF ODA3NThBMTA4NDYzMzNCMDQ5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJIYUaivKDzsnaknhI9ZAre17ANdLnx8uWdyiwCqK4GUOZQe5u7RudpV8gqB ZsrWTAiRCrcfYKLhDHUL6h/Ea415T79Mso4HtgGGtvQV965Cj1V/vkLcg79ezYfA R6yYQUge331wU7ee7Ehu5t44CtUX12dxuPvakgQlbJGdsa4zMtdmGlfRv4YqMeBx TPAFhxrCiJcoXTzS2I8zwDfdqZsr6AT2JKVCegoQc0kvZigagFVJwLESpr9U1zlk OX3TSFGl30QKKxxf2ycd3oXl4TY4xCSSll+eEbxfQwno/koXEfmfF87q8Q1/aGtu uWaLSOFoP/XWvDKVWffMN62SvSMCAwEAAaOCAgswggIHMB0GA1UdDgQWBBQ146kK 9ZHQ2Ofw6AdYoQhGMzsEmTAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTUxMzk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MEYGCCsGAQUFBwEHAQH/BDcwNTAzBAIAAjAtAwcAJA4JgyAQAwcAJA4JgyATAwcA JA4JgyAgAwcAJA4JgyAiAwcAJA4JgyAwMA0GCSqGSIb3DQEBCwUAA4IBAQAuSIGY UfW+I8zTet62xw/nXhVs0nxXNroRrAVD1wcLgclMp/1BmeIIh/qn+zKWHdWCCqP4 pPdp4Soa32RXWuHNM8CisqCY1U81BAbVJwav8gWfD1NWy1GOlzfbao6NJJ/TvprU FDRmPYXS6f18D/FZOYPuytN4CEy+7RwV0JQUlhqbquus+m1takZScVhD8T5HvYEZ lWEgjhz1ONSGvNpQQ2qfGsaBSqRRs2iumo7VIaqLqcq/hjzrEDC6DWLGKAdk2TQO y6BfWyzRSpw9UUXrc7z9bxm8HqIpUmPdXLEfg+yC9pJDYpSt2Pa5dctYqy52yv1M 09NaOCPLX/fzR6bC -----END CERTIFICATE-----Generated at Sat Jun 13 16:25:07 2026 by rpki-client