$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa File: AS141425.roa (raw, json) Hash identifier: Ft3gcPRgzZF03pcET2Hfk5NMcpdzVu8lQnP+RR6WRYA= Subject key identifier: BC:3E:81:69:A2:54:F2:09:31:E4:2A:AE:D3:28:2A:F9:24:C7:9C:03 Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Certificate serial: 4E351AC5B724F539EE26468562D7070DC9FC110B Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa Signing time: Wed 20 May 2026 06:33:39 +0000 ROA not before: Wed 20 May 2026 06:28:39 +0000 ROA not after: Wed 19 May 2027 06:33:39 +0000 asID: 141425 IP address blocks: 120.197.81.0/24 maxlen: 24 120.232.185.0/24 maxlen: 24 120.232.197.0/24 maxlen: 24 120.232.200.0/23 maxlen: 23 2409:8c54:8c0::/44 maxlen: 44 2409:8c54:b010::/44 maxlen: 44 2409:8c54:b030::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 11:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:35:1a:c5:b7:24:f5:39:ee:26:46:85:62:d7:07:0d:c9:fc:11:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Validity Not Before: May 20 06:28:39 2026 GMT Not After : May 19 06:33:39 2027 GMT Subject: CN=BC3E8169A254F20931E42AAED3282AF924C79C03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:24:2d:65:91:ac:a4:ad:47:35:ab:41:03:fc: f8:a9:c3:77:1f:b0:7a:6f:88:96:05:a5:c9:0d:8d: ef:70:ae:41:3f:18:29:e6:6a:ef:ad:8f:9a:85:b7: 47:27:e1:ea:6a:0f:8f:74:52:34:e0:ea:8c:38:44: fe:7b:ed:bf:fe:d2:5f:1f:01:6e:d5:37:57:1a:6b: a4:fc:68:ab:7b:62:18:34:36:b8:f9:9b:64:06:c5: ab:1a:20:8e:7c:d6:1c:cb:c3:e1:89:e6:9c:f4:28: 5d:9f:4b:be:9c:29:29:0b:a8:09:7a:5e:91:66:0b: ea:85:1a:d8:55:8b:65:cc:3f:d7:67:8a:90:ea:d1: d8:1e:7d:a0:6e:d8:3d:01:62:ad:a0:f2:3e:e4:2a: d7:d3:e7:ab:41:52:6a:ba:1f:6e:79:46:de:43:5b: 15:4e:13:57:21:6d:28:d5:48:81:42:db:fb:37:db: f7:ce:07:f9:c6:61:12:68:65:fa:75:7d:f0:38:94: d5:bf:53:bb:0c:37:c0:c1:ed:ce:bd:3a:4d:7e:73: e2:48:84:3d:b9:a2:e6:2c:12:0f:a7:28:77:78:30: 6e:3d:75:ec:8a:a6:6b:d5:87:f2:ff:2e:8b:8d:98: 75:4d:ac:6e:b0:6f:6a:07:4b:15:59:1b:22:af:47: 9a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3E:81:69:A2:54:F2:09:31:E4:2A:AE:D3:28:2A:F9:24:C7:9C:03 X509v3 Authority Key Identifier: keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.197.81.0/24 120.232.185.0/24 120.232.197.0/24 120.232.200.0/23 IPv6: 2409:8c54:8c0::/44 2409:8c54:b010::/44 2409:8c54:b030::/44 Signature Algorithm: sha256WithRSAEncryption 58:f0:76:b5:54:5b:e8:9a:88:56:33:37:07:cb:ef:a3:93:7c: b9:f4:8d:b7:70:c1:03:34:20:a4:bb:04:06:36:81:16:5d:a8: b2:3c:77:3e:ec:08:e1:4c:42:23:8a:c3:d1:10:a7:8e:9c:81: 0a:c1:3e:ed:2d:b4:15:58:d6:17:93:2f:fb:f4:ba:2e:71:cc: 45:95:c5:d7:67:9a:3e:fd:ea:90:2b:b4:32:5b:4c:11:af:de: 8c:f1:cc:d4:c5:b1:4f:6e:b3:7a:a9:71:90:85:5d:69:89:4c: 4e:62:e9:1f:65:fe:d3:f7:3a:fe:f6:81:ab:97:5d:38:a4:e5: 38:97:19:18:38:22:33:f8:37:6a:af:c2:a5:ad:78:c4:f5:a9: e7:98:3c:65:37:5a:43:4a:87:4d:ae:28:63:97:46:45:d9:1e: ac:ac:67:be:1d:9d:27:6c:b7:da:98:c1:ee:85:c3:b3:f5:24: 94:f0:90:c3:c6:ed:2c:08:52:d6:6a:e3:9d:80:30:36:38:52: 65:b3:fe:de:ad:a4:9b:35:b5:13:82:01:c8:2a:62:dc:aa:40: cc:ad:f3:d1:30:1d:87:ec:ea:c6:ca:90:47:4c:06:1b:67:8e: e4:d0:11:c1:6a:04:d9:8a:7e:79:4f:73:83:5f:a0:75:84:8f: 2d:a6:bc:3d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTjUaxbck9TnuJkaFYtcHDcn8EQswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDVGM0QwMDAwMTEwLwYDVQQFEyhEQkIyM0M3RUU0 OTIyMTJFQTg1OEI3OEUxQzY2QkYyMjk4RTVBQ0Q0MB4XDTI2MDUyMDA2MjgzOVoX DTI3MDUxOTA2MzMzOVowMzExMC8GA1UEAxMoQkMzRTgxNjlBMjU0RjIwOTMxRTQy QUFFRDMyODJBRjkyNEM3OUMwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJUkLWWRrKStRzWrQQP8+KnDdx+wem+IlgWlyQ2N73CuQT8YKeZq762PmoW3 Ryfh6moPj3RSNODqjDhE/nvtv/7SXx8BbtU3VxprpPxoq3tiGDQ2uPmbZAbFqxog jnzWHMvD4YnmnPQoXZ9LvpwpKQuoCXpekWYL6oUa2FWLZcw/12eKkOrR2B59oG7Y PQFiraDyPuQq19Pnq0FSarofbnlG3kNbFU4TVyFtKNVIgULb+zfb984H+cZhEmhl +nV98DiU1b9Tuww3wMHtzr06TX5z4kiEPbmi5iwSD6cod3gwbj117Iqma9WH8v8u i42YdU2sbrBvagdLFVkbIq9HmtcCAwEAAaOCAhkwggIVMB0GA1UdDgQWBBS8PoFp olTyCTHkKq7TKCr5JMecAzAfBgNVHSMEGDAWgBTbsjx+5JIhLqhYt44cZr8imOWs 1DAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk0ODcyODM0MDk1Nzc1NzQ3LzAvREJCMjND N0VFNDkyMjEyRUE4NThCNzhFMUM2NkJGMjI5OEU1QUNENC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvMjdJOGZ1U1NJ UzZvV0xlT0hHYV9JcGpsck5RLmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NDg3MjgzNDA5 NTc3NTc0Ny8wL0FTMTQxNDI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MFQGCCsGAQUFBwEHAQH/BEUwQzAeBAIAATAYAwQAeMVRAwQAeOi5AwQAeOjFAwQB eOjIMCEEAgACMBsDBwQkCYxUCMADBwQkCYxUsBADBwQkCYxUsDAwDQYJKoZIhvcN AQELBQADggEBAFjwdrVUW+iaiFYzNwfL76OTfLn0jbdwwQM0IKS7BAY2gRZdqLI8 dz7sCOFMQiOKw9EQp46cgQrBPu0ttBVY1heTL/v0ui5xzEWVxddnmj796pArtDJb TBGv3ozxzNTFsU9us3qpcZCFXWmJTE5i6R9l/tP3Ov72gauXXTik5TiXGRg4IjP4 N2qvwqWteMT1qeeYPGU3WkNKh02uKGOXRkXZHqysZ74dnSdst9qYwe6Fw7P1JJTw kMPG7SwIUtZq452AMDY4UmWz/t6tpJs1tROCAcgqYtyqQMyt89EwHYfs6sbKkEdM BhtnjuTQEcFqBNmKfnlPc4NfoHWEjy2mvD0= -----END CERTIFICATE-----Generated at Thu May 21 10:24:58 2026 by rpki-client