$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/AS140886.roa File: AS140886.roa (raw, json) Hash identifier: tIGhfy98u9aOuXMKeDjEM5Fc1ERJ4zFfjcQrRPXJkxA= Subject key identifier: 44:24:27:C9:F1:8A:F4:5D:82:3D:B3:E8:CE:2D:11:B7:93:4F:59:E9 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 1DF0A29F5555F282B788E0D7D167811479C46815 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/AS140886.roa Signing time: Fri 29 May 2026 16:47:16 +0000 ROA not before: Fri 29 May 2026 16:42:16 +0000 ROA not after: Fri 28 May 2027 16:47:16 +0000 asID: 140886 IP address blocks: 121.31.28.0/22 maxlen: 22 121.31.40.0/22 maxlen: 22 2408:8001:40f0::/44 maxlen: 44 2408:875c::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 May 2026 02:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f0:a2:9f:55:55:f2:82:b7:88:e0:d7:d1:67:81:14:79:c4:68:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: May 29 16:42:16 2026 GMT Not After : May 28 16:47:16 2027 GMT Subject: CN=442427C9F18AF45D823DB3E8CE2D11B7934F59E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4e:3f:d9:59:44:91:3c:8e:38:2b:45:65:02: b6:48:b2:4c:7a:f8:8b:c1:31:06:08:bc:bb:31:be: f4:89:34:bc:aa:02:6e:ca:b9:7f:2c:6a:56:e6:92: 1c:a4:2d:c6:aa:ed:5f:55:46:1c:bf:8c:5a:7f:d3: 31:68:0b:9f:0f:81:54:90:4c:33:ca:5c:84:26:16: 16:a7:2b:5a:b3:df:28:cd:21:61:14:0e:14:54:2f: 14:48:6c:f6:2b:9e:67:2a:e4:f5:55:96:6c:36:d3: 59:55:d2:60:b4:22:2b:35:53:ea:8c:0a:64:1d:2f: 12:97:69:1b:ac:e0:59:89:bb:4f:27:7b:ae:14:cf: 8e:b5:bb:13:dc:f5:56:a4:f4:6a:e2:2b:54:f8:4b: 92:74:21:fc:e3:26:88:91:11:aa:84:67:a7:6c:22: 79:51:02:8b:04:0b:88:5c:38:79:a4:16:15:7c:d5: e4:18:a2:2b:fc:5e:bc:75:b0:64:b7:7f:f9:76:71: c0:ad:65:75:69:81:3c:c5:65:08:12:67:1c:65:81: b6:f0:9b:fa:eb:1f:34:c9:7c:76:36:df:45:2f:59: e3:5e:08:70:cc:75:70:0c:f4:0b:d9:84:98:67:85: bb:98:3c:46:a4:3f:17:de:a4:7a:15:20:84:3a:39: cd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:24:27:C9:F1:8A:F4:5D:82:3D:B3:E8:CE:2D:11:B7:93:4F:59:E9 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/AS140886.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.31.28.0/22 121.31.40.0/22 IPv6: 2408:8001:40f0::/44 2408:875c::/44 Signature Algorithm: sha256WithRSAEncryption a1:7f:38:a6:73:14:dc:7c:4a:f3:d6:4c:46:9b:fc:e9:2f:cf: 2f:bf:0a:73:b0:42:23:27:fc:c4:d7:54:a9:fe:7b:a2:d2:1f: 93:23:bc:27:8f:25:84:a8:ee:61:be:9b:b1:11:90:05:e3:1a: 0c:4d:f5:60:00:18:1d:7d:d3:6b:74:43:51:72:e9:00:f7:b7: 9a:4c:6e:e6:d1:99:75:0a:5b:a5:be:70:89:f8:9c:02:b6:e1: 2b:9f:de:56:e4:f7:63:59:c6:ca:29:8f:27:d1:fc:47:5c:b2: 49:8f:0c:5e:2e:e9:93:07:2e:46:62:6e:67:02:3b:39:e7:55: 70:24:0d:ce:71:24:67:9d:30:24:e4:d7:72:72:f3:9f:47:f1: d0:d9:e3:b2:08:2c:cd:4c:90:72:7d:2a:93:89:28:b2:fa:52: aa:7f:b6:fa:24:f1:d4:da:2a:02:e6:36:39:be:d3:fe:25:49: f3:f6:ce:75:6a:77:d1:67:44:37:31:77:13:9c:2d:48:38:2b: f6:e5:4d:ba:f6:10:1c:f7:9d:1d:f7:25:61:cf:20:c4:2d:c4: 83:6e:80:07:e8:76:bc:11:5a:39:56:a0:08:8b:a0:30:18:56: 11:64:e4:61:e0:f1:df:f0:e3:9c:8e:07:f3:ee:ac:96:ee:a7: 96:5f:8c:fb -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUHfCin1VV8oK3iODX0WeBFHnEaBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDUyOTE2NDIxNloX DTI3MDUyODE2NDcxNlowMzExMC8GA1UEAxMoNDQyNDI3QzlGMThBRjQ1RDgyM0RC M0U4Q0UyRDExQjc5MzRGNTlFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhOP9lZRJE8jjgrRWUCtkiyTHr4i8ExBgi8uzG+9Ik0vKoCbsq5fyxqVuaS HKQtxqrtX1VGHL+MWn/TMWgLnw+BVJBMM8pchCYWFqcrWrPfKM0hYRQOFFQvFEhs 9iueZyrk9VWWbDbTWVXSYLQiKzVT6owKZB0vEpdpG6zgWYm7Tyd7rhTPjrW7E9z1 VqT0auIrVPhLknQh/OMmiJERqoRnp2wieVECiwQLiFw4eaQWFXzV5BiiK/xevHWw ZLd/+XZxwK1ldWmBPMVlCBJnHGWBtvCb+usfNMl8djbfRS9Z414IcMx1cAz0C9mE mGeFu5g8RqQ/F96kehUghDo5zS8CAwEAAaOCAgQwggIAMB0GA1UdDgQWBBREJCfJ 8Yr0XYI9s+jOLRG3k09Z6TAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NjcwNDU5MzY5 NTM0MjU5My8xL0FTMTQwODg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQCeR8cAwQCeR8oMBgEAgACMBID BwQkCIABQPADBwQkCIdcAAAwDQYJKoZIhvcNAQELBQADggEBAKF/OKZzFNx8SvPW TEab/Okvzy+/CnOwQiMn/MTXVKn+e6LSH5MjvCePJYSo7mG+m7ERkAXjGgxN9WAA GB1902t0Q1Fy6QD3t5pMbubRmXUKW6W+cIn4nAK24Suf3lbk92NZxsopjyfR/Edc skmPDF4u6ZMHLkZibmcCOznnVXAkDc5xJGedMCTk13Jy859H8dDZ47IILM1MkHJ9 KpOJKLL6Uqp/tvok8dTaKgLmNjm+0/4lSfP2znVqd9FnRDcxdxOcLUg4K/blTbr2 EBz3nR33JWHPIMQtxINugAfodrwRWjlWoAiLoDAYVhFk5GHg8d/w45yOB/PurJbu p5ZfjPs= -----END CERTIFICATE-----Generated at Sat May 30 01:21:53 2026 by rpki-client