Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58540.roa
File: AS58540.roa (raw, json)
Hash identifier: MbRiFVA9dBCVTCrzpRJkGaWSu/xFxofWg2zxiF8AldY=
Subject key identifier: 76:58:01:6B:24:7B:D2:75:65:67:62:12:DD:D0:96:84:3A:97:9C:4B
Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Certificate serial: 3943950BB18C745965746EDB0C57F71183BE5992
Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58540.roa
Signing time: Wed 03 Jun 2026 17:39:02 +0000
ROA not before: Wed 03 Jun 2026 17:34:02 +0000
ROA not after: Wed 02 Jun 2027 17:39:02 +0000
asID: 58540
IP address blocks: 58.56.9.0/24 maxlen: 24
58.56.66.0/24 maxlen: 24
58.56.108.0/24 maxlen: 24
58.56.110.0/24 maxlen: 24
58.56.111.0/24 maxlen: 24
58.57.102.0/24 maxlen: 24
58.57.117.0/24 maxlen: 24
58.57.119.0/24 maxlen: 24
58.57.120.0/24 maxlen: 24
58.58.110.0/24 maxlen: 24
58.59.1.0/24 maxlen: 24
58.59.8.0/24 maxlen: 24
58.59.18.0/24 maxlen: 24
150.138.192.0/19 maxlen: 19
150.138.224.0/19 maxlen: 19
150.139.224.0/19 maxlen: 19
150.139.250.0/24 maxlen: 24
182.40.16.0/20 maxlen: 20
182.40.48.0/20 maxlen: 20
182.40.64.0/20 maxlen: 20
182.40.88.0/21 maxlen: 21
182.40.112.0/20 maxlen: 20
182.40.128.0/20 maxlen: 20
182.40.144.0/20 maxlen: 20
182.40.168.0/21 maxlen: 21
182.40.176.0/21 maxlen: 21
182.40.224.0/20 maxlen: 20
222.173.50.0/24 maxlen: 24
222.173.51.0/24 maxlen: 24
222.173.52.0/24 maxlen: 24
222.175.101.0/24 maxlen: 24
222.175.102.0/24 maxlen: 24
222.175.136.0/23 maxlen: 23
240e:945:4000::/40 maxlen: 40
240e:945:4100::/40 maxlen: 40
240e:945:4200::/40 maxlen: 40
240e:945:4300::/40 maxlen: 40
240e:946::/33 maxlen: 33
240e:946:1::/48 maxlen: 48
240e:946:2::/48 maxlen: 48
240e:946:5::/48 maxlen: 48
240e:946:3000::/48 maxlen: 48
240e:946:3002::/48 maxlen: 48
240e:946:3003::/48 maxlen: 48
240e:946:3004::/48 maxlen: 48
240e:946:3006::/48 maxlen: 48
240e:946:300a::/48 maxlen: 48
240e:946:300b::/48 maxlen: 48
240e:946:8000::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 14 Jun 2026 12:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:43:95:0b:b1:8c:74:59:65:74:6e:db:0c:57:f7:11:83:be:59:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Validity
Not Before: Jun 3 17:34:02 2026 GMT
Not After : Jun 2 17:39:02 2027 GMT
Subject: CN=7658016B247BD27565676212DDD096843A979C4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:ea:0b:33:5a:ce:9c:4f:cf:78:68:b9:3a:
17:0e:56:59:05:36:ef:75:aa:9d:68:c1:88:46:78:
13:0a:5d:50:3c:1e:82:00:58:c8:80:1a:b0:23:bd:
22:cc:18:4b:00:1a:b4:2e:54:1c:75:1c:a0:00:eb:
0d:95:35:ad:df:8d:17:e3:ff:84:fd:5a:2d:2a:1b:
1d:77:1d:36:41:5e:1f:b5:3d:89:f3:3d:21:b0:dd:
6a:9c:7f:a1:32:b8:24:77:d9:65:64:ee:05:da:95:
ac:c0:cf:cf:d0:a6:76:33:43:89:ec:7a:df:71:11:
e9:f2:7a:ed:40:de:b9:7c:14:3c:f4:8a:d5:91:a8:
7b:7e:d5:d9:b0:84:37:57:4b:8b:28:02:13:46:00:
2f:74:01:6c:d7:42:55:1d:62:cf:23:b2:eb:ff:61:
29:6a:a3:8f:8c:66:f3:8c:5a:5c:f9:d0:cb:43:65:
4b:3c:c8:fc:8e:b0:af:e7:da:9c:cb:dc:04:31:e7:
86:a5:29:42:6d:14:cb:86:22:32:ad:fa:5f:50:97:
45:b0:f6:73:97:2b:ee:e4:c2:de:d1:86:54:77:bd:
db:a2:3a:76:31:df:a9:ae:2e:57:be:f6:cc:d6:8c:
e5:b1:33:fa:92:11:b6:b8:93:d2:ef:00:5c:25:4f:
76:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:58:01:6B:24:7B:D2:75:65:67:62:12:DD:D0:96:84:3A:97:9C:4B
X509v3 Authority Key Identifier:
keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58540.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
58.56.9.0/24
58.56.66.0/24
58.56.108.0/24
58.56.110.0/23
58.57.102.0/24
58.57.117.0/24
58.57.119.0-58.57.120.255
58.58.110.0/24
58.59.1.0/24
58.59.8.0/24
58.59.18.0/24
150.138.192.0/18
150.139.224.0/19
182.40.16.0/20
182.40.48.0-182.40.79.255
182.40.88.0/21
182.40.112.0-182.40.159.255
182.40.168.0-182.40.183.255
182.40.224.0/20
222.173.50.0-222.173.52.255
222.175.101.0-222.175.102.255
222.175.136.0/23
IPv6:
240e:945:4000::/38
240e:946::/32
Signature Algorithm: sha256WithRSAEncryption
45:fc:8e:62:89:d9:b6:a4:70:ac:f2:a0:3b:c5:4b:a8:1e:25:
ce:c4:58:c3:a5:d1:c4:76:49:f3:30:ce:24:a6:97:26:9e:e9:
2c:d3:86:68:0e:10:d0:1f:e7:cb:03:e6:4f:87:b4:f3:b6:11:
81:f2:50:ad:46:0c:08:e7:11:6f:9d:de:d0:7b:26:60:b8:76:
fb:c1:dd:11:e0:b9:a6:90:5d:ce:a1:53:60:46:58:64:d8:73:
fd:8c:57:a2:58:49:c4:af:be:af:81:61:1d:2d:06:4d:79:83:
a9:f3:9d:d8:81:03:c9:85:ff:3b:92:54:e8:5e:20:59:c3:e2:
06:93:06:a7:a5:98:c0:61:80:d8:4a:0e:66:8b:af:13:03:cf:
62:95:1e:b0:47:66:c9:ad:01:2d:81:4e:11:93:7f:0f:c9:52:
82:6e:72:9a:01:08:61:3c:61:49:bb:21:e9:3c:09:c1:75:10:
0f:97:0a:7b:03:db:0d:f8:a4:41:ec:91:2b:c5:3c:be:b8:a3:
81:94:f5:6c:fa:84:d0:92:e4:96:53:50:5b:71:6d:1a:77:9b:
cb:98:c4:8f:71:fb:08:e8:11:fa:ab:61:8a:32:70:09:1a:17:
f8:ff:ee:01:68:27:32:60:23:3b:8c:26:15:0a:84:c2:56:0a:
36:b7:f7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:17:38 2026 by rpki-client