$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140335.roa File: AS140335.roa (raw, json) Hash identifier: kOF7Hn/3KHiFh8JogxTKiuyoqfYY+6tqHztZ3gDXcTg= Subject key identifier: E1:C2:36:5C:19:23:30:FE:03:D7:E9:70:5D:DB:DF:AC:8B:23:AA:92 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 20B2A9CFEE6715451EB9B8BE1F393E43DC67DBA5 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140335.roa Signing time: Wed 20 May 2026 16:15:19 +0000 ROA not before: Wed 20 May 2026 16:10:19 +0000 ROA not after: Wed 19 May 2027 16:15:19 +0000 asID: 140335 IP address blocks: 240e:267:7000::/40 maxlen: 40 240e:267:7100::/40 maxlen: 40 240e:267:7200::/40 maxlen: 40 240e:267:7300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:b2:a9:cf:ee:67:15:45:1e:b9:b8:be:1f:39:3e:43:dc:67:db:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 20 16:10:19 2026 GMT Not After : May 19 16:15:19 2027 GMT Subject: CN=E1C2365C192330FE03D7E9705DDBDFAC8B23AA92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2f:b8:45:32:61:5c:98:f8:e6:d3:c6:2e:dc: 76:87:86:54:3b:4c:1a:ac:0e:e8:f7:2f:49:89:b4: f3:c9:2d:1d:3b:e3:57:65:08:58:00:6a:35:18:dd: e2:10:38:23:41:31:80:ee:98:00:94:42:52:47:4d: a7:4a:34:b4:8a:ae:5c:99:b3:d1:a4:9a:f8:3d:78: 55:ee:02:92:a9:0a:c7:4f:12:ae:ca:4f:f7:46:30: da:87:b1:5c:3b:ff:57:da:b3:db:8f:d0:e0:d5:5d: 4f:60:4e:b5:ba:a4:2d:5a:cd:89:01:b8:16:c5:8d: 3c:1b:35:93:c5:b9:c3:ee:08:a5:8e:ab:62:3a:81: 4d:e9:62:6f:2c:0d:a8:1c:97:90:42:f8:9d:a3:05: 2a:17:c5:72:97:6a:56:da:17:65:c4:07:4e:03:8f: 96:ec:77:72:0c:5f:36:7b:b3:c0:8a:06:ef:0c:1b: cc:e5:7e:53:d2:35:e0:e2:9d:8b:81:12:fd:ef:36: 2b:77:0f:16:c9:11:8a:e5:6d:c7:30:6d:9e:06:e8: e7:34:06:88:65:dd:4e:55:7f:77:2e:8d:1b:45:29: f3:38:c0:74:43:61:b2:02:99:3c:17:65:4b:c3:03: a4:60:df:43:fb:d5:34:e3:af:ed:2c:c1:b7:bb:dc: b0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C2:36:5C:19:23:30:FE:03:D7:E9:70:5D:DB:DF:AC:8B:23:AA:92 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS140335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:267:7000::/38 Signature Algorithm: sha256WithRSAEncryption 7d:d1:f8:11:3f:92:1c:4c:cd:2e:d5:f0:ba:7b:35:99:5c:e7: 23:80:a1:65:1a:24:ba:47:ed:93:ad:56:46:67:46:f0:6e:23: 21:37:6b:f5:b4:33:fb:e3:60:7e:32:ae:0c:91:ec:3f:70:d9: 08:09:8c:1f:cd:f9:40:a7:79:a4:97:f7:05:23:2c:d3:52:6a: 34:2c:95:ff:98:0c:cd:30:91:16:bb:35:5b:ce:4c:18:85:b1: 2f:63:75:58:fc:20:73:95:62:68:5a:d7:97:c4:05:89:14:bd: 4c:08:c2:c1:c9:7a:b4:a9:aa:86:27:31:a2:fa:2d:bc:ec:74: c1:a2:0b:c2:48:cd:9f:6b:f9:c2:e9:c3:7f:c6:a5:ed:6a:e1: 7c:c8:6b:d7:7a:a4:ab:f8:1d:26:67:bd:bd:75:8b:d4:2b:22: a8:66:4a:d1:93:61:5e:06:52:1f:a6:e6:6a:a7:08:05:64:0b: 68:83:50:cd:a1:eb:d9:48:2b:21:98:84:73:f1:fb:84:5b:1a: 8b:38:60:50:d4:19:a3:b0:4e:b0:40:e3:5f:3e:3b:cf:29:ad: 39:d1:82:a8:39:f7:01:1f:6e:22:b1:25:4e:b5:22:70:ff:f2: 72:80:41:90:79:47:aa:49:ea:d9:b3:0f:7a:02:21:dd:ad:4e: c9:76:cc:0f -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUILKpz+5nFUUeubi+Hzk+Q9xn26UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMDE2MTAxOVoX DTI3MDUxOTE2MTUxOVowMzExMC8GA1UEAxMoRTFDMjM2NUMxOTIzMzBGRTAzRDdF OTcwNUREQkRGQUM4QjIzQUE5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYvuEUyYVyY+ObTxi7cdoeGVDtMGqwO6PcvSYm088ktHTvjV2UIWABqNRjd 4hA4I0ExgO6YAJRCUkdNp0o0tIquXJmz0aSa+D14Ve4CkqkKx08SrspP90Yw2oex XDv/V9qz24/Q4NVdT2BOtbqkLVrNiQG4FsWNPBs1k8W5w+4IpY6rYjqBTelibywN qByXkEL4naMFKhfFcpdqVtoXZcQHTgOPlux3cgxfNnuzwIoG7wwbzOV+U9I14OKd i4ES/e82K3cPFskRiuVtxzBtngbo5zQGiGXdTlV/dy6NG0Up8zjAdENhsgKZPBdl S8MDpGDfQ/vVNOOv7SzBt7vcsI8CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBThwjZc GSMw/gPX6XBd29+siyOqkjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQwMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCJA4CZ3AwDQYJKoZIhvcNAQEL BQADggEBAH3R+BE/khxMzS7V8Lp7NZlc5yOAoWUaJLpH7ZOtVkZnRvBuIyE3a/W0 M/vjYH4yrgyR7D9w2QgJjB/N+UCneaSX9wUjLNNSajQslf+YDM0wkRa7NVvOTBiF sS9jdVj8IHOVYmha15fEBYkUvUwIwsHJerSpqoYnMaL6LbzsdMGiC8JIzZ9r+cLp w3/Gpe1q4XzIa9d6pKv4HSZnvb11i9QrIqhmStGTYV4GUh+m5mqnCAVkC2iDUM2h 69lIKyGYhHPx+4RbGos4YFDUGaOwTrBA418+O88prTnRgqg59wEfbiKxJU61InD/ 8nKAQZB5R6pJ6tmzD3oCId2tTsl2zA8= -----END CERTIFICATE-----Generated at Sat May 23 07:08:26 2026 by rpki-client