Route Origin Authorization

$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS135089.roa
File:                     AS135089.roa (raw, json)
Hash identifier:          Gwf0M5Hm/B9KSA2mZm4/UmTlnqXMOpxVTbiV1YIZQMg=
Subject key identifier:   9D:EB:CA:DF:D8:7D:CE:6F:83:AD:44:CC:AA:5C:D9:E4:98:2A:A7:91
Certificate issuer:       /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Certificate serial:       1FDAF1DB9B87F78F6F7DF0CD272CDE69AB7625E1
Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject info access:      rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS135089.roa
Signing time:             Tue 16 Jun 2026 16:16:10 +0000
ROA not before:           Tue 16 Jun 2026 16:11:10 +0000
ROA not after:            Tue 15 Jun 2027 16:16:10 +0000
asID:                     135089
IP address blocks:        14.18.32.0/20 maxlen: 20
                          14.18.48.0/20 maxlen: 20
                          14.18.64.0/19 maxlen: 19
                          14.18.96.0/20 maxlen: 20
                          14.18.112.0/21 maxlen: 21
                          14.18.120.0/23 maxlen: 23
                          14.18.122.0/23 maxlen: 23
                          14.18.124.0/22 maxlen: 22
                          14.22.20.0/22 maxlen: 22
                          14.22.23.0/24 maxlen: 24
                          14.22.49.0/24 maxlen: 24
                          14.22.50.0/23 maxlen: 23
                          14.22.52.0/22 maxlen: 22
                          14.22.66.0/23 maxlen: 23
                          14.22.68.0/24 maxlen: 24
                          14.22.69.0/24 maxlen: 24
                          14.22.70.0/23 maxlen: 23
                          14.22.72.0/22 maxlen: 22
                          14.22.76.0/22 maxlen: 22
                          14.22.80.0/21 maxlen: 21
                          14.22.88.0/23 maxlen: 23
                          14.22.90.0/24 maxlen: 24
                          14.22.91.0/24 maxlen: 24
                          14.22.92.0/24 maxlen: 24
                          14.22.93.0/24 maxlen: 24
                          14.22.94.0/24 maxlen: 24
                          14.22.95.0/24 maxlen: 24
                          14.22.96.0/23 maxlen: 23
                          14.22.98.0/23 maxlen: 23
                          14.22.100.0/22 maxlen: 22
                          14.22.104.0/22 maxlen: 22
                          14.22.109.0/24 maxlen: 24
                          14.22.110.0/23 maxlen: 23
                          14.22.112.0/22 maxlen: 22
                          14.22.116.0/23 maxlen: 23
                          14.22.116.0/24 maxlen: 24
                          14.22.118.0/23 maxlen: 23
                          14.22.120.0/22 maxlen: 22
                          14.22.124.0/22 maxlen: 22
                          14.29.0.0/22 maxlen: 22
                          14.29.4.0/23 maxlen: 23
                          14.29.9.0/24 maxlen: 24
                          14.29.10.0/23 maxlen: 23
                          14.29.12.0/22 maxlen: 22
                          14.29.16.0/20 maxlen: 20
                          14.29.102.0/24 maxlen: 24
                          14.31.10.0/24 maxlen: 24
                          14.31.14.0/23 maxlen: 23
                          14.116.192.0/19 maxlen: 19
                          14.116.250.0/23 maxlen: 23
                          14.116.252.0/22 maxlen: 22
                          14.121.54.0/24 maxlen: 24
                          14.146.224.0/22 maxlen: 22
                          14.146.228.0/22 maxlen: 22
                          14.215.44.0/22 maxlen: 22
                          14.215.48.0/22 maxlen: 22
                          14.215.162.0/23 maxlen: 23
                          14.215.163.0/24 maxlen: 24
                          14.215.164.0/24 maxlen: 24
                          14.215.173.0/24 maxlen: 24
                          14.215.174.0/24 maxlen: 24
                          36.111.32.0/22 maxlen: 22
                          36.111.40.0/21 maxlen: 21
                          36.111.40.0/24 maxlen: 24
                          36.111.42.0/24 maxlen: 24
                          36.111.43.0/24 maxlen: 24
                          61.143.26.0/23 maxlen: 23
                          113.96.190.0/23 maxlen: 23
                          113.103.40.0/24 maxlen: 24
                          116.19.50.0/23 maxlen: 23
                          116.19.151.0/24 maxlen: 24
                          116.31.70.0/24 maxlen: 24
                          119.135.164.0/22 maxlen: 22
                          119.135.168.0/23 maxlen: 23
                          121.8.172.0/22 maxlen: 22
                          121.8.176.0/22 maxlen: 22
                          121.11.151.0/24 maxlen: 24
                          121.11.152.0/24 maxlen: 24
                          121.11.172.0/22 maxlen: 22
                          121.11.232.0/24 maxlen: 24
                          121.11.233.0/24 maxlen: 24
                          121.11.234.0/24 maxlen: 24
                          121.11.235.0/24 maxlen: 24
                          121.11.236.0/22 maxlen: 22
                          121.14.201.0/24 maxlen: 24
                          121.14.203.0/24 maxlen: 24
                          125.88.75.0/24 maxlen: 24
                          125.88.79.0/24 maxlen: 24
                          125.88.86.0/24 maxlen: 24
                          125.88.108.0/24 maxlen: 24
                          125.88.109.0/24 maxlen: 24
                          125.88.124.0/23 maxlen: 23
                          125.88.204.0/22 maxlen: 22
                          125.88.208.0/20 maxlen: 20
                          125.88.224.0/20 maxlen: 20
                          125.88.240.0/21 maxlen: 21
                          125.93.59.0/24 maxlen: 24
                          125.94.215.0/24 maxlen: 24
                          183.47.127.0/24 maxlen: 24
                          183.56.192.0/20 maxlen: 20
                          183.56.208.0/20 maxlen: 20
                          183.56.224.0/21 maxlen: 21
                          183.56.232.0/21 maxlen: 21
                          183.56.240.0/22 maxlen: 22
                          183.56.244.0/22 maxlen: 22
                          183.56.248.0/24 maxlen: 24
                          183.56.249.0/24 maxlen: 24
                          183.56.250.0/23 maxlen: 23
                          183.56.252.0/22 maxlen: 22
                          183.56.252.0/24 maxlen: 24
                          183.56.253.0/24 maxlen: 24
                          183.56.254.0/24 maxlen: 24
                          183.57.14.0/23 maxlen: 23
                          183.58.10.0/24 maxlen: 24
                          183.58.11.0/24 maxlen: 24
                          183.59.8.0/22 maxlen: 22
                          203.32.48.0/23 maxlen: 23
                          203.32.68.0/23 maxlen: 23
                          203.32.84.0/23 maxlen: 23
                          203.32.205.0/24 maxlen: 24
                          203.33.158.0/23 maxlen: 23
                          203.57.66.0/24 maxlen: 24
                          203.57.69.0/24 maxlen: 24
                          203.57.73.0/24 maxlen: 24
                          203.57.90.0/24 maxlen: 24
                          219.128.176.0/22 maxlen: 22
                          219.128.180.0/24 maxlen: 24
                          219.128.193.0/24 maxlen: 24
                          219.128.195.0/24 maxlen: 24
                          219.128.212.0/24 maxlen: 24
                          240e:108:11e6::/48 maxlen: 48
                          240e:982:e401::/48 maxlen: 48
                          240e:982:e402::/48 maxlen: 48
                          240e:982:e600::/48 maxlen: 48
Validation:               OK
Signature path:           rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
                          rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 08 Jul 2026 04:56:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1f:da:f1:db:9b:87:f7:8f:6f:7d:f0:cd:27:2c:de:69:ab:76:25:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
        Validity
            Not Before: Jun 16 16:11:10 2026 GMT
            Not After : Jun 15 16:16:10 2027 GMT
        Subject: CN=9DEBCADFD87DCE6F83AD44CCAA5CD9E4982AA791
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:ab:2d:2a:5c:4f:7c:a0:90:11:4c:7c:d3:c2:
                    ec:db:df:bc:03:7e:b5:ff:cf:ca:72:1b:df:5d:ea:
                    cd:ff:b9:de:c9:cd:24:90:78:58:b9:ae:fb:7f:9c:
                    e4:22:6c:df:43:3c:c7:19:25:68:05:c9:9c:60:9c:
                    80:27:f4:34:47:d1:b9:67:80:64:b8:59:07:65:b2:
                    15:a8:5b:22:3c:17:65:e3:eb:6d:b2:71:77:f6:32:
                    e6:b1:1d:e5:e7:f2:ec:49:c9:ed:ac:73:93:71:d9:
                    8b:f6:00:bb:aa:65:86:54:70:cf:f5:ec:2c:e6:be:
                    1c:55:31:f6:6f:27:87:5d:ae:a4:b6:fa:4d:da:46:
                    14:fc:f8:ab:39:e6:d0:07:aa:7d:34:41:6a:f1:92:
                    67:0c:34:06:c1:64:bb:b4:ee:32:08:89:5a:ec:d7:
                    db:52:2e:0a:11:dc:eb:7b:e9:41:e4:38:3f:64:c0:
                    c4:01:cd:eb:ee:91:6e:27:0d:03:49:6d:53:6f:03:
                    43:d1:33:ac:d1:df:ee:bc:8a:54:9a:76:78:71:18:
                    8f:bd:92:7e:4a:39:72:02:c4:fb:9f:9d:33:2e:5a:
                    0c:ec:8e:e2:e4:d5:39:42:68:2a:62:d8:5a:5c:7f:
                    54:21:7f:72:88:51:df:f2:a5:ff:ae:fc:2b:b3:2f:
                    1a:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:EB:CA:DF:D8:7D:CE:6F:83:AD:44:CC:AA:5C:D9:E4:98:2A:A7:91
            X509v3 Authority Key Identifier:
                keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS135089.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  14.18.32.0-14.18.127.255
                  14.22.20.0/22
                  14.22.49.0-14.22.55.255
                  14.22.66.0-14.22.107.255
                  14.22.109.0-14.22.127.255
                  14.29.0.0-14.29.5.255
                  14.29.9.0-14.29.31.255
                  14.29.102.0/24
                  14.31.10.0/24
                  14.31.14.0/23
                  14.116.192.0/19
                  14.116.250.0-14.116.255.255
                  14.121.54.0/24
                  14.146.224.0/21
                  14.215.44.0-14.215.51.255
                  14.215.162.0-14.215.164.255
                  14.215.173.0-14.215.174.255
                  36.111.32.0/22
                  36.111.40.0/21
                  61.143.26.0/23
                  113.96.190.0/23
                  113.103.40.0/24
                  116.19.50.0/23
                  116.19.151.0/24
                  116.31.70.0/24
                  119.135.164.0-119.135.169.255
                  121.8.172.0-121.8.179.255
                  121.11.151.0-121.11.152.255
                  121.11.172.0/22
                  121.11.232.0/21
                  121.14.201.0/24
                  121.14.203.0/24
                  125.88.75.0/24
                  125.88.79.0/24
                  125.88.86.0/24
                  125.88.108.0/23
                  125.88.124.0/23
                  125.88.204.0-125.88.247.255
                  125.93.59.0/24
                  125.94.215.0/24
                  183.47.127.0/24
                  183.56.192.0/18
                  183.57.14.0/23
                  183.58.10.0/23
                  183.59.8.0/22
                  203.32.48.0/23
                  203.32.68.0/23
                  203.32.84.0/23
                  203.32.205.0/24
                  203.33.158.0/23
                  203.57.66.0/24
                  203.57.69.0/24
                  203.57.73.0/24
                  203.57.90.0/24
                  219.128.176.0-219.128.180.255
                  219.128.193.0/24
                  219.128.195.0/24
                  219.128.212.0/24
                IPv6:
                  240e:108:11e6::/48
                  240e:982:e401::-240e:982:e402:ffff:ffff:ffff:ffff:ffff
                  240e:982:e600::/48

    Signature Algorithm: sha256WithRSAEncryption
         9e:ea:04:4e:53:f1:32:e9:aa:e8:75:23:33:ea:49:1c:2a:ce:
         09:aa:ad:a2:0f:48:79:b3:a5:a1:1d:da:3a:a1:b9:a5:5d:69:
         80:e9:03:c1:2f:2c:52:5f:da:e0:0f:c8:f2:c8:cc:56:b1:3d:
         88:f8:a8:f2:03:54:5c:18:81:0b:52:b3:4e:07:75:9d:81:40:
         60:d9:5d:da:32:32:ae:70:ac:b5:f5:10:1d:9c:f9:e5:5a:38:
         5f:0d:1d:ac:04:fe:2e:bd:20:08:84:89:a6:6c:ac:b4:e4:8d:
         8b:a4:97:6d:af:51:53:93:8f:14:dc:96:4b:4d:7d:ba:82:68:
         f3:64:0b:08:b3:45:95:7c:54:9f:04:1d:30:41:3a:d7:5b:09:
         c6:0b:da:46:af:4d:67:ac:b2:bc:cc:5a:50:a8:95:62:a4:da:
         49:4b:c5:7f:25:6c:ef:53:7a:dd:8c:72:e7:b8:c9:b6:d2:d2:
         76:19:01:14:70:e0:ef:a4:1b:06:31:fc:8a:35:0e:a2:19:19:
         b0:31:14:86:8a:90:9c:d1:32:0c:66:dc:72:16:8c:f1:77:1a:
         4f:bf:5a:a0:e3:e5:e8:7f:32:5b:33:b0:7a:10:f2:74:55:7b:
         b9:df:a6:87:fa:a2:ac:53:05:62:a4:ab:34:ce:45:62:83:fd:
         c0:6c:55:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 16:01:00 2026 by rpki-client