$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS136958.roa File: AS136958.roa (raw, json) Hash identifier: g3/UCa1hKvaLoK96bXMt0LUZiX9mlrFSQ2wwhF5xeiY= Subject key identifier: 9D:97:6B:B7:1B:BD:A3:69:7F:ED:6C:92:07:3B:3A:FE:10:19:E5:C4 Certificate issuer: /CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Certificate serial: 46D0F18D8F6456FE6145D962957D8741AA1F3B17 Authority key identifier: 9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS136958.roa Signing time: Wed 13 May 2026 07:58:53 +0000 ROA not before: Wed 13 May 2026 07:53:53 +0000 ROA not after: Wed 12 May 2027 07:58:53 +0000 asID: 136958 IP address blocks: 42.240.128.0/20 maxlen: 20 42.240.144.0/20 maxlen: 20 42.240.160.0/20 maxlen: 20 106.75.128.0/20 maxlen: 20 106.75.144.0/20 maxlen: 20 106.75.160.0/20 maxlen: 20 106.75.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 21:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:d0:f1:8d:8f:64:56:fe:61:45:d9:62:95:7d:87:41:aa:1f:3b:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Validity Not Before: May 13 07:53:53 2026 GMT Not After : May 12 07:58:53 2027 GMT Subject: CN=9D976BB71BBDA3697FED6C92073B3AFE1019E5C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ed:8a:8c:55:67:63:62:ea:21:c0:6b:06:bf: 53:11:38:17:a2:16:18:45:43:52:80:4c:18:c2:62: b8:e2:ca:52:cf:10:fb:14:2a:d7:fb:ac:19:10:6d: db:89:ec:bc:12:c4:46:6c:81:af:3f:b3:ed:92:7a: 84:6d:cd:dc:1b:be:29:a4:28:9f:51:e2:33:52:e9: cc:cb:44:90:ad:15:eb:d8:3a:12:de:e9:4d:10:e3: 37:9c:f5:58:81:ba:c3:f0:c8:d0:e6:b8:2b:35:cd: 3a:99:4b:db:31:70:06:3e:1f:16:c9:cf:fc:ea:46: 54:df:a5:34:7e:54:f9:55:90:00:f9:ab:ca:bf:9a: a9:23:70:c2:15:d4:63:fa:fe:98:d5:60:24:33:59: f2:e2:10:c5:fb:eb:ee:cd:4b:1f:41:5f:fd:c5:ff: b3:2d:51:72:90:29:45:50:65:16:9a:54:8f:90:1c: 79:38:27:94:ad:5e:8d:9a:c2:30:fa:a8:36:8e:7f: 80:d0:74:0f:5b:98:36:ba:3d:76:55:ce:e1:fd:e8: 0b:95:76:fe:02:ba:ca:69:3c:66:2b:5e:f4:2b:c0: cc:54:c7:4e:ba:4f:b4:87:3e:b8:ba:43:b6:e0:6f: c1:50:19:cf:71:d2:c3:15:85:06:56:a1:f2:f8:57: 3b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:97:6B:B7:1B:BD:A3:69:7F:ED:6C:92:07:3B:3A:FE:10:19:E5:C4 X509v3 Authority Key Identifier: keyid:9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS136958.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.240.128.0-42.240.175.255 106.75.128.0/18 Signature Algorithm: sha256WithRSAEncryption bb:95:0c:43:f8:cc:fc:ae:cb:2c:c7:db:c0:3a:81:ef:63:66: 08:44:7e:bc:da:98:fa:77:41:0b:3c:9d:ea:0e:8e:ea:65:96: 73:ab:12:b0:1b:1a:52:4f:eb:fe:7e:c6:dd:73:0b:0e:7e:af: 7d:ca:d9:59:5b:f3:b0:c6:1d:a8:a2:19:45:e8:0e:ab:55:c7: d4:48:18:20:ed:e6:4e:f3:14:ce:0d:d9:0e:86:9c:28:25:8e: c9:a7:52:89:1c:4d:73:38:a5:15:94:11:56:f9:dd:1b:0b:4c: 4f:55:e9:4b:26:8b:20:ee:5e:c8:b4:57:f3:2a:22:f5:72:c0: f4:37:d0:e5:5d:58:f2:b6:23:61:f8:df:16:da:a8:2b:bf:a1: 10:9a:4d:2b:0d:df:1d:4c:7a:8c:c8:45:5d:ee:68:b1:7c:0d: db:07:96:c0:03:2f:46:10:6d:a3:6e:81:c1:2d:65:e8:82:60: 9f:7b:f4:96:42:f0:03:53:58:36:88:11:16:48:d8:2b:bd:ff: 93:1a:92:51:0c:52:aa:2c:d5:41:60:9c:eb:6e:29:c8:a0:dc: 9c:f2:ed:bd:cf:48:63:99:29:da:75:0f:90:27:12:67:03:5d: 73:9c:65:9b:43:23:7a:05:90:35:ad:f1:41:e1:ab:af:4e:08: fd:49:dd:12 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIURtDxjY9kVv5hRdlilX2HQaofOxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNB OUFBM0MyQzAeFw0yNjA1MTMwNzUzNTNaFw0yNzA1MTIwNzU4NTNaMDMxMTAvBgNV BAMTKDlEOTc2QkI3MUJCREEzNjk3RkVENkM5MjA3M0IzQUZFMTAxOUU1QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx7YqMVWdjYuohwGsGv1MROBei FhhFQ1KATBjCYrjiylLPEPsUKtf7rBkQbduJ7LwSxEZsga8/s+2SeoRtzdwbvimk KJ9R4jNS6czLRJCtFevYOhLe6U0Q4zec9ViBusPwyNDmuCs1zTqZS9sxcAY+HxbJ z/zqRlTfpTR+VPlVkAD5q8q/mqkjcMIV1GP6/pjVYCQzWfLiEMX76+7NSx9BX/3F /7MtUXKQKUVQZRaaVI+QHHk4J5StXo2awjD6qDaOf4DQdA9bmDa6PXZVzuH96AuV dv4CusppPGYrXvQrwMxUx066T7SHPri6Q7bgb8FQGc9x0sMVhQZWofL4VzsbAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUnZdrtxu9o2l/7WySBzs6/hAZ5cQwHwYDVR0j BBgwFoAUm/NLOBd0jT5pzDiA8TqDg6mqPCwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDU4OTE4Ny8wLzlCRjM0QjM4MTc3NDhEM0U2OUNDMzg4MEYxM0E4 MzgzQTlBQTNDMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNBOUFBM0MyQy5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1ODkxODcvMC9BUzEzNjk1OC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBwwGgQC AAEwFDAMAwQHKvCAAwQEKvCgAwQGakuAMA0GCSqGSIb3DQEBCwUAA4IBAQC7lQxD +Mz8rsssx9vAOoHvY2YIRH682pj6d0ELPJ3qDo7qZZZzqxKwGxpST+v+fsbdcwsO fq99ytlZW/Owxh2oohlF6A6rVcfUSBgg7eZO8xTODdkOhpwoJY7Jp1KJHE1zOKUV lBFW+d0bC0xPVelLJosg7l7ItFfzKiL1csD0N9DlXVjytiNh+N8W2qgrv6EQmk0r Dd8dTHqMyEVd7mixfA3bB5bAAy9GEG2jboHBLWXogmCfe/SWQvADU1g2iBEWSNgr vf+TGpJRDFKqLNVBYJzrbinIoNyc8u29z0hjmSnadQ+QJxJnA11znGWbQyN6BZA1 rfFB4auvTgj9Sd0S -----END CERTIFICATE-----Generated at Sat Jun 6 14:39:08 2026 by rpki-client