
Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa
File: AS141425.roa (raw, json)
Hash identifier: JIOqNrntGHAd8+iQ6oFeH8vj+w3+1mPDPGOuDZGfboY=
Subject key identifier: 8A:57:AF:FA:64:EB:D5:0F:58:6D:8C:66:F1:4A:5A:65:C1:97:45:BD
Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4
Certificate serial: 056CC85109B944FCF2B2C09124B1CFE22CF6B1D1
Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa
Signing time: Wed 01 Jul 2026 06:14:20 +0000
ROA not before: Wed 01 Jul 2026 06:09:20 +0000
ROA not after: Wed 30 Jun 2027 06:14:20 +0000
asID: 141425
IP address blocks: 36.139.219.0/24 maxlen: 24
36.140.193.0/24 maxlen: 24
36.140.199.0/24 maxlen: 24
36.140.216.0/24 maxlen: 24
36.140.217.0/24 maxlen: 24
112.33.0.0/24 maxlen: 24
112.33.1.0/24 maxlen: 24
112.33.2.0/24 maxlen: 24
112.33.3.0/24 maxlen: 24
112.33.4.0/24 maxlen: 24
112.33.5.0/24 maxlen: 24
112.33.6.0/24 maxlen: 24
112.33.7.0/24 maxlen: 24
112.33.8.0/24 maxlen: 24
112.33.9.0/24 maxlen: 24
112.33.10.0/24 maxlen: 24
112.33.11.0/24 maxlen: 24
112.33.12.0/22 maxlen: 22
112.33.12.0/24 maxlen: 24
112.33.13.0/24 maxlen: 24
112.33.14.0/24 maxlen: 24
112.33.15.0/24 maxlen: 24
112.33.16.0/22 maxlen: 22
112.33.16.0/24 maxlen: 24
112.33.17.0/24 maxlen: 24
112.33.18.0/24 maxlen: 24
112.33.19.0/24 maxlen: 24
112.33.20.0/24 maxlen: 24
112.33.21.0/24 maxlen: 24
112.33.22.0/24 maxlen: 24
112.33.23.0/24 maxlen: 24
112.33.24.0/24 maxlen: 24
112.33.25.0/24 maxlen: 24
112.33.26.0/23 maxlen: 23
112.33.26.0/24 maxlen: 24
112.33.27.0/24 maxlen: 24
112.33.28.0/22 maxlen: 22
112.33.28.0/24 maxlen: 24
112.33.29.0/24 maxlen: 24
112.33.30.0/24 maxlen: 24
112.33.31.0/24 maxlen: 24
112.33.32.0/19 maxlen: 19
112.33.32.0/24 maxlen: 24
112.33.33.0/24 maxlen: 24
112.33.34.0/24 maxlen: 24
112.33.35.0/24 maxlen: 24
112.33.36.0/24 maxlen: 24
112.33.37.0/24 maxlen: 24
112.33.38.0/24 maxlen: 24
112.33.39.0/24 maxlen: 24
112.33.40.0/24 maxlen: 24
112.33.41.0/24 maxlen: 24
112.33.42.0/24 maxlen: 24
112.33.43.0/24 maxlen: 24
112.33.44.0/24 maxlen: 24
112.33.45.0/24 maxlen: 24
112.33.46.0/24 maxlen: 24
112.33.47.0/24 maxlen: 24
112.33.48.0/24 maxlen: 24
112.33.49.0/24 maxlen: 24
112.33.50.0/24 maxlen: 24
112.33.51.0/24 maxlen: 24
112.33.52.0/24 maxlen: 24
112.33.53.0/24 maxlen: 24
112.33.54.0/24 maxlen: 24
112.33.55.0/24 maxlen: 24
112.33.56.0/24 maxlen: 24
112.33.57.0/24 maxlen: 24
112.33.58.0/24 maxlen: 24
112.33.59.0/24 maxlen: 24
112.33.60.0/24 maxlen: 24
112.33.61.0/24 maxlen: 24
112.33.62.0/24 maxlen: 24
112.33.63.0/24 maxlen: 24
112.33.100.0/22 maxlen: 22
112.33.100.0/24 maxlen: 24
112.33.101.0/24 maxlen: 24
112.33.102.0/24 maxlen: 24
112.33.103.0/24 maxlen: 24
112.33.104.0/21 maxlen: 21
112.33.104.0/24 maxlen: 24
112.33.105.0/24 maxlen: 24
112.33.106.0/24 maxlen: 24
112.33.107.0/24 maxlen: 24
112.33.108.0/24 maxlen: 24
112.33.109.0/24 maxlen: 24
112.33.110.0/24 maxlen: 24
112.33.111.0/24 maxlen: 24
112.33.112.0/21 maxlen: 21
112.33.112.0/24 maxlen: 24
112.33.113.0/24 maxlen: 24
112.33.114.0/24 maxlen: 24
112.33.115.0/24 maxlen: 24
112.33.116.0/24 maxlen: 24
112.33.117.0/24 maxlen: 24
112.33.118.0/24 maxlen: 24
112.33.119.0/24 maxlen: 24
112.33.120.0/24 maxlen: 24
112.35.0.0/21 maxlen: 21
112.35.0.0/24 maxlen: 24
112.35.1.0/24 maxlen: 24
112.35.2.0/24 maxlen: 24
112.35.3.0/24 maxlen: 24
112.35.4.0/24 maxlen: 24
112.35.5.0/24 maxlen: 24
112.35.6.0/24 maxlen: 24
112.35.7.0/24 maxlen: 24
112.35.8.0/24 maxlen: 24
112.35.9.0/24 maxlen: 24
112.35.10.0/24 maxlen: 24
120.197.81.0/24 maxlen: 24
120.232.185.0/24 maxlen: 24
120.232.197.0/24 maxlen: 24
120.232.200.0/23 maxlen: 23
183.232.5.0/24 maxlen: 24
183.232.27.0/24 maxlen: 24
183.232.61.0/24 maxlen: 24
183.232.74.0/24 maxlen: 24
183.232.75.0/24 maxlen: 24
183.240.8.0/22 maxlen: 22
183.240.31.0/24 maxlen: 24
183.240.32.0/24 maxlen: 24
183.240.34.0/24 maxlen: 24
183.240.35.0/24 maxlen: 24
183.240.213.0/24 maxlen: 24
183.240.214.0/23 maxlen: 23
183.240.217.0/24 maxlen: 24
221.176.53.0/24 maxlen: 24
221.176.54.0/24 maxlen: 24
2409:8c54:8c0::/44 maxlen: 44
2409:8c54:b010::/44 maxlen: 44
2409:8c54:b030::/44 maxlen: 44
2409:8c85:5400::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl
rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 22:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:6c:c8:51:09:b9:44:fc:f2:b2:c0:91:24:b1:cf:e2:2c:f6:b1:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4
Validity
Not Before: Jul 1 06:09:20 2026 GMT
Not After : Jun 30 06:14:20 2027 GMT
Subject: CN=8A57AFFA64EBD50F586D8C66F14A5A65C19745BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:38:02:ef:ee:9f:03:54:13:0d:85:c1:2a:8c:
b1:87:9d:22:f2:e4:62:73:b0:16:0f:91:49:8c:6e:
5f:18:cb:09:50:5a:b3:3e:d9:d9:6c:79:a4:0e:82:
37:d9:f3:cf:65:ec:79:8b:ff:df:0d:39:45:78:82:
dd:f6:e0:01:20:ee:07:2f:1e:77:07:fe:7e:14:09:
fe:4a:55:9f:d1:fc:8b:58:48:4b:45:35:c3:57:c1:
1d:36:cd:52:e8:da:32:89:b8:12:32:4f:0e:e9:72:
31:41:ad:42:5a:00:0c:63:1b:4f:ba:60:a5:3c:74:
0e:73:06:dd:eb:6e:d1:36:cf:bf:49:b8:35:89:94:
89:eb:09:96:78:d1:a6:b4:5b:3c:24:b9:cc:51:13:
7a:73:30:b4:32:d2:82:38:37:76:3d:f5:f9:e4:9c:
cc:78:d8:b7:e2:09:3a:61:f6:65:2c:95:3f:33:06:
92:cb:27:c7:bf:9d:01:35:92:98:81:f9:76:af:d5:
45:bc:30:3c:7f:3e:dc:18:9f:bc:55:80:16:53:a8:
c4:84:0e:7b:c3:4c:5f:a2:e0:d6:45:8e:57:b2:4c:
d5:3e:dd:cb:f0:d2:98:b7:ef:68:a4:8b:73:3d:c5:
c4:06:d4:a0:ed:2d:3f:f5:b6:27:e9:72:ac:ae:2e:
1f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:57:AF:FA:64:EB:D5:0F:58:6D:8C:66:F1:4A:5A:65:C1:97:45:BD
X509v3 Authority Key Identifier:
keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.139.219.0/24
36.140.193.0/24
36.140.199.0/24
36.140.216.0/23
112.33.0.0/18
112.33.100.0-112.33.120.255
112.35.0.0-112.35.10.255
120.197.81.0/24
120.232.185.0/24
120.232.197.0/24
120.232.200.0/23
183.232.5.0/24
183.232.27.0/24
183.232.61.0/24
183.232.74.0/23
183.240.8.0/22
183.240.31.0-183.240.32.255
183.240.34.0/23
183.240.213.0-183.240.215.255
183.240.217.0/24
221.176.53.0-221.176.54.255
IPv6:
2409:8c54:8c0::/44
2409:8c54:b010::/44
2409:8c54:b030::/44
2409:8c85:5400::/48
Signature Algorithm: sha256WithRSAEncryption
8b:2f:62:02:57:3d:d2:e4:3b:4b:b9:ea:97:fd:69:ef:0f:f3:
0c:7d:8b:72:cd:b4:9d:03:5a:8b:23:fb:5d:93:63:4d:3d:b0:
c3:70:5b:bf:50:46:f2:94:c5:45:56:c4:07:a9:5f:df:6e:91:
82:7e:ff:94:ff:3f:9b:96:c5:8d:1b:e0:f7:40:41:22:fd:cd:
1b:c7:26:0a:e5:78:70:f4:f3:d7:72:3d:18:79:b2:a6:22:16:
d6:57:96:f6:8d:72:c7:c3:ad:b8:a8:d6:e8:35:97:6e:67:38:
a4:ff:18:3d:79:63:f2:79:86:73:54:ab:7a:9d:16:5e:be:ad:
6d:d6:cb:8b:29:22:1f:f6:1e:c7:d9:c5:14:51:a7:91:df:8b:
3e:b3:79:e6:50:53:10:9f:f8:b1:e5:fa:d6:61:96:c9:cd:b0:
18:02:54:63:91:b9:75:7d:9e:48:f3:12:28:73:15:5f:64:45:
c4:41:f3:9f:d6:39:e2:b2:b8:ac:1c:3b:ab:a2:35:8f:86:fe:
2d:e6:34:b5:79:43:4b:d2:17:44:27:db:1b:a5:33:68:b4:59:
98:d7:bd:86:21:03:a2:fe:79:5b:34:58:c8:90:16:45:e4:dc:
38:c5:d9:1f:4e:d4:50:95:36:50:a4:76:55:e9:41:16:7d:8a:
ed:4d:58:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 14 22:58:28 2026 by rpki-client