$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140332.roa File: AS140332.roa (raw, json) Hash identifier: nZTxLWKRnE8gSAElrjAZZQG3HmmH9XrcoDC2eR0LncM= Subject key identifier: 05:DB:21:8E:EB:67:3E:9B:4E:6C:C2:B4:BA:3A:05:29:A5:A2:3C:BB Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 144812AF7C383FF33C13EB4BB3D3523C201AB5DC Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140332.roa Signing time: Wed 20 May 2026 16:15:18 +0000 ROA not before: Wed 20 May 2026 16:10:18 +0000 ROA not after: Wed 19 May 2027 16:15:18 +0000 asID: 140332 IP address blocks: 240e:267:4000::/40 maxlen: 40 240e:267:4100::/40 maxlen: 40 240e:267:4200::/40 maxlen: 40 240e:267:4300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:48:12:af:7c:38:3f:f3:3c:13:eb:4b:b3:d3:52:3c:20:1a:b5:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 20 16:10:18 2026 GMT Not After : May 19 16:15:18 2027 GMT Subject: CN=05DB218EEB673E9B4E6CC2B4BA3A0529A5A23CBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:56:bd:b3:59:3e:56:6d:7f:c3:3e:7e:66: 5d:01:5b:8e:13:4b:72:99:ac:70:8e:d8:4b:4d:84: b7:1f:e2:b7:bb:3d:a2:e1:57:11:dc:02:2a:fa:1b: e9:c0:2b:40:ef:84:8d:a3:29:87:b0:d1:5c:1d:11: 91:d7:40:fe:db:90:cb:48:c7:cb:b1:67:bd:b1:10: b7:6d:79:a5:8c:02:f2:84:e7:24:e7:dc:58:ef:80: a3:b3:5a:5e:cb:fe:9f:71:62:56:52:dc:b9:f0:2b: 75:71:b1:f7:b6:44:79:4f:92:e1:c0:50:b7:33:2a: c6:bc:bc:97:af:dc:81:34:72:57:2c:aa:c9:45:1b: 51:fc:2d:7f:10:0e:35:8e:8e:1b:58:1a:d3:7a:70: 70:65:c0:81:71:5f:3a:8e:b5:a6:c5:f4:a6:35:14: a1:9e:f7:00:9d:d9:30:e8:75:bd:70:d3:2d:95:f1: c3:05:1d:86:78:4d:3f:a8:36:77:99:5e:b9:b4:81: 29:b2:da:8e:22:cb:fb:1b:7e:d0:71:db:39:db:df: e0:dd:f0:dd:3d:69:d1:81:b5:41:59:64:da:c1:13: 82:d7:61:3b:90:3e:20:dc:11:28:8c:76:88:e2:3f: 3c:3d:42:5a:74:6a:04:e2:bd:be:2c:03:10:3d:78: e0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DB:21:8E:EB:67:3E:9B:4E:6C:C2:B4:BA:3A:05:29:A5:A2:3C:BB X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:267:4000::/38 Signature Algorithm: sha256WithRSAEncryption 32:78:31:5c:d3:32:83:02:b3:4a:be:51:a4:0f:5a:38:14:da: 62:e4:fa:e2:97:5d:35:52:84:67:63:90:ce:ef:0e:c7:e6:00: 95:76:55:ed:2c:7e:1a:33:8f:42:c8:67:03:cf:9e:d6:d7:39: 19:b2:b5:77:3f:e7:7b:4e:e8:17:19:42:04:cc:22:d9:82:59: 2a:94:5e:22:55:53:b3:84:79:3e:cf:03:e4:8a:0e:0a:84:a8: 5b:66:eb:4d:1b:84:1b:14:9c:65:1d:a7:a7:67:04:2e:98:6a: df:88:7b:80:63:5c:0b:26:2f:d5:e4:24:e4:79:8c:3e:65:de: 2e:86:8c:a3:e5:1f:57:8d:ac:11:6d:fa:82:bf:ee:e6:94:95: 50:f4:7f:db:ec:f9:d0:9e:f4:70:bd:a9:b0:c4:94:1c:e0:9a: 0b:d0:22:06:6b:d3:40:14:d5:6b:3a:a2:48:68:ca:b6:14:09: 84:6d:f9:d7:eb:0e:ab:4d:88:9b:02:e1:c3:1d:d1:6c:14:aa: 2a:bc:52:62:6b:ca:d8:72:cb:70:c9:f3:ec:4d:54:2e:ab:1b: 29:63:df:47:c5:92:e5:d0:ac:0e:a2:0f:b6:9c:60:e5:79:64: ea:d1:9d:32:4a:6d:20:83:ea:94:6a:14:52:23:78:4f:12:d0: e3:a3:81:3a -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUFEgSr3w4P/M8E+tLs9NSPCAatdwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMDE2MTAxOFoX DTI3MDUxOTE2MTUxOFowMzExMC8GA1UEAxMoMDVEQjIxOEVFQjY3M0U5QjRFNkND MkI0QkEzQTA1MjlBNUEyM0NCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3mVr2zWT5WbX/DPn5mXQFbjhNLcpmscI7YS02Etx/it7s9ouFXEdwCKvob 6cArQO+EjaMph7DRXB0RkddA/tuQy0jHy7FnvbEQt215pYwC8oTnJOfcWO+Ao7Na Xsv+n3FiVlLcufArdXGx97ZEeU+S4cBQtzMqxry8l6/cgTRyVyyqyUUbUfwtfxAO NY6OG1ga03pwcGXAgXFfOo61psX0pjUUoZ73AJ3ZMOh1vXDTLZXxwwUdhnhNP6g2 d5leubSBKbLajiLL+xt+0HHbOdvf4N3w3T1p0YG1QVlk2sETgtdhO5A+INwRKIx2 iOI/PD1CWnRqBOK9viwDED144CcCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQF2yGO 62c+m05swrS6OgUppaI8uzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCJA4CZ0AwDQYJKoZIhvcNAQEL BQADggEBADJ4MVzTMoMCs0q+UaQPWjgU2mLk+uKXXTVShGdjkM7vDsfmAJV2Ve0s fhozj0LIZwPPntbXORmytXc/53tO6BcZQgTMItmCWSqUXiJVU7OEeT7PA+SKDgqE qFtm600bhBsUnGUdp6dnBC6Yat+Ie4BjXAsmL9XkJOR5jD5l3i6GjKPlH1eNrBFt +oK/7uaUlVD0f9vs+dCe9HC9qbDElBzgmgvQIgZr00AU1Ws6okhoyrYUCYRt+dfr DqtNiJsC4cMd0WwUqiq8UmJrythyy3DJ8+xNVC6rGylj30fFkuXQrA6iD7acYOV5 ZOrRnTJKbSCD6pRqFFIjeE8S0OOjgTo= -----END CERTIFICATE-----Generated at Sat May 23 07:08:16 2026 by rpki-client