Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS141771.roa
File: AS141771.roa (raw, json)
Hash identifier: ycJlvsFYd990Awa56XRj/1LCSUjxZNU25axs7E/dClQ=
Subject key identifier: 15:03:16:A8:D9:D1:83:FD:C2:DD:B1:EC:8A:DD:DC:F8:85:C0:CB:DD
Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Certificate serial: 675AB7DFF715772CB41EBCB1FDBB1D1F2A381D9E
Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS141771.roa
Signing time: Fri 29 May 2026 16:04:10 +0000
ROA not before: Fri 29 May 2026 15:59:10 +0000
ROA not after: Fri 28 May 2027 16:04:10 +0000
asID: 141771
IP address blocks: 27.129.52.0/22 maxlen: 22
27.129.55.0/24 maxlen: 24
106.8.128.0/19 maxlen: 19
106.112.128.0/19 maxlen: 19
106.118.128.0/18 maxlen: 18
106.118.128.0/19 maxlen: 19
111.225.128.0/18 maxlen: 18
123.180.128.0/19 maxlen: 19
123.182.0.0/18 maxlen: 18
123.183.224.0/19 maxlen: 19
124.237.32.0/19 maxlen: 19
124.239.0.0/19 maxlen: 19
219.148.104.0/22 maxlen: 22
222.223.160.0/20 maxlen: 20
240e:c:6000::/37 maxlen: 37
240e:4c:6000::/37 maxlen: 37
240e:4c:6003::/48 maxlen: 48
240e:b1:e000::/37 maxlen: 37
240e:b2:a000::/35 maxlen: 35
240e:340:6b00::/40 maxlen: 40
240e:340:6c00::/38 maxlen: 38
240e:340:7000::/37 maxlen: 37
240e:340:7800::/38 maxlen: 38
240e:341:6b00::/40 maxlen: 40
240e:341:6c00::/38 maxlen: 38
240e:341:7000::/37 maxlen: 37
240e:341:7800::/38 maxlen: 38
240e:342:6b00::/40 maxlen: 40
240e:342:6c00::/38 maxlen: 38
240e:342:7000::/37 maxlen: 37
240e:342:7800::/38 maxlen: 38
240e:343:6b00::/40 maxlen: 40
240e:343:6c00::/38 maxlen: 38
240e:343:7000::/37 maxlen: 37
240e:343:7800::/38 maxlen: 38
240e:640:a00::/40 maxlen: 40
240e:640:8a00::/40 maxlen: 40
240e:640:ca00::/40 maxlen: 40
240e:640:ea00::/40 maxlen: 40
240e:940:a00::/40 maxlen: 40
240e:940:8a00::/40 maxlen: 40
240e:940:ca00::/40 maxlen: 40
240e:940:ea00::/40 maxlen: 40
240e:983:f06::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 May 2026 20:29:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:5a:b7:df:f7:15:77:2c:b4:1e:bc:b1:fd:bb:1d:1f:2a:38:1d:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E
Validity
Not Before: May 29 15:59:10 2026 GMT
Not After : May 28 16:04:10 2027 GMT
Subject: CN=150316A8D9D183FDC2DDB1EC8ADDDCF885C0CBDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:28:09:fc:75:9e:7c:1f:7a:d1:26:aa:f2:
1f:73:bf:74:0e:f6:cf:4f:7b:9f:d3:01:ad:c3:f2:
1c:46:f7:e8:cc:e8:5c:94:07:44:08:86:9e:d9:73:
a9:d2:2e:14:9d:9f:1d:fa:47:d6:74:4c:a4:02:0a:
a7:c3:cd:5b:ec:87:75:47:2a:50:0f:98:55:6f:61:
b3:15:7a:65:81:6a:06:2c:6c:28:20:b2:29:b9:88:
61:08:68:d4:1c:e7:e7:3e:ff:4f:8c:43:dd:32:ec:
63:6d:34:2c:7f:ca:a8:74:11:31:75:dc:0d:d2:cf:
f0:d9:f8:04:55:d5:b3:b4:37:04:ee:e0:4a:6e:2c:
75:20:4f:68:51:ea:93:53:e1:d4:30:a3:6f:fb:49:
df:17:1d:c3:6b:19:ce:bd:9b:39:81:ef:99:75:23:
1b:25:cb:5a:b1:8e:6f:17:72:0d:15:6c:71:d6:b2:
f7:40:39:ad:99:25:5a:db:41:09:31:68:99:01:50:
97:d1:6b:f0:e7:82:09:19:82:2c:69:2b:79:3b:71:
85:fc:1b:4f:14:b9:07:ce:62:02:48:d0:79:84:b7:
1f:2d:81:db:df:5a:0f:da:d2:78:23:95:d3:84:fc:
a2:7b:f3:a1:95:e9:9e:aa:3c:84:2d:08:99:a7:c0:
c4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:03:16:A8:D9:D1:83:FD:C2:DD:B1:EC:8A:DD:DC:F8:85:C0:CB:DD
X509v3 Authority Key Identifier:
keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS141771.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.129.52.0/22
106.8.128.0/19
106.112.128.0/19
106.118.128.0/18
111.225.128.0/18
123.180.128.0/19
123.182.0.0/18
123.183.224.0/19
124.237.32.0/19
124.239.0.0/19
219.148.104.0/22
222.223.160.0/20
IPv6:
240e:c:6000::/37
240e:4c:6000::/37
240e:b1:e000::/37
240e:b2:a000::/35
240e:340:6b00::-240e:340:7bff:ffff:ffff:ffff:ffff:ffff
240e:341:6b00::-240e:341:7bff:ffff:ffff:ffff:ffff:ffff
240e:342:6b00::-240e:342:7bff:ffff:ffff:ffff:ffff:ffff
240e:343:6b00::-240e:343:7bff:ffff:ffff:ffff:ffff:ffff
240e:640:a00::/40
240e:640:8a00::/40
240e:640:ca00::/40
240e:640:ea00::/40
240e:940:a00::/40
240e:940:8a00::/40
240e:940:ca00::/40
240e:940:ea00::/40
240e:983:f06::/48
Signature Algorithm: sha256WithRSAEncryption
b0:91:32:34:cb:ae:5e:b2:6f:9f:73:73:5c:e3:34:ce:27:01:
50:9d:cd:88:6a:d4:f0:a1:d6:39:20:4b:73:ab:47:e5:cb:b9:
f0:df:c8:76:51:91:f2:db:c5:0e:8b:04:12:6b:dc:94:1f:52:
6c:73:d1:2f:fa:e5:78:d8:1c:97:68:79:68:52:e2:6f:ef:29:
d0:a1:73:8d:19:10:dc:36:55:70:1e:f3:d7:bc:90:89:c0:bf:
2f:57:35:03:7a:81:ba:28:e5:0f:23:3a:24:63:c9:54:b8:5d:
51:83:5f:be:66:e9:ab:f1:9e:fc:46:f5:f5:4a:d4:b6:11:79:
75:4e:57:8f:d3:24:c4:0b:6c:72:4f:28:10:ea:aa:50:2a:23:
60:d3:bd:f5:0c:ae:4a:b1:1e:91:e9:de:b5:64:12:fc:ec:1e:
13:1c:19:04:93:0c:ec:ad:c7:ca:07:da:54:78:92:9d:61:80:
1f:c3:fa:fb:d0:5b:66:ce:6b:1e:60:6a:96:b5:13:34:5e:bf:
be:d1:b8:79:3d:c7:3f:64:0e:9d:06:83:13:5f:d7:97:4f:6d:
fe:94:13:71:1e:e9:60:7d:38:e2:12:1b:7b:79:7f:57:ce:6c:
c1:bc:d9:f4:6e:1e:f2:35:9d:89:02:2c:95:5f:5c:7c:36:cb:
c2:73:50:0f
-----BEGIN CERTIFICATE-----
MIIF9DCCBNygAwIBAgIUZ1q33/cVdyy0Hryx/bsdHyo4HZ4wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz
NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyOTE1NTkxMFoX
DTI3MDUyODE2MDQxMFowMzExMC8GA1UEAxMoMTUwMzE2QThEOUQxODNGREMyRERC
MUVDOEFERERDRjg4NUMwQ0JERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALYJKAn8dZ58H3rRJqryH3O/dA72z097n9MBrcPyHEb36MzoXJQHRAiGntlz
qdIuFJ2fHfpH1nRMpAIKp8PNW+yHdUcqUA+YVW9hsxV6ZYFqBixsKCCyKbmIYQho
1Bzn5z7/T4xD3TLsY200LH/KqHQRMXXcDdLP8Nn4BFXVs7Q3BO7gSm4sdSBPaFHq
k1Ph1DCjb/tJ3xcdw2sZzr2bOYHvmXUjGyXLWrGObxdyDRVscday90A5rZklWttB
CTFomQFQl9Fr8OeCCRmCLGkreTtxhfwbTxS5B85iAkjQeYS3Hy2B299aD9rSeCOV
04T8onvzoZXpnqo8hC0ImafAxJECAwEAAaOCAucwggLjMB0GA1UdDgQWBBQVAxao
2dGD/cLdseyK3dz4hcDL3TAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ
HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp
LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx
ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH
AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z
aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw
Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH
MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw
NTk3NjgzNS8xL0FTMTQxNzcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MIIBIAYIKwYBBQUHAQcBAf8EggEPMIIBCzBOBAIAATBIAwQCG4E0AwQFagiAAwQF
anCAAwQGanaAAwQGb+GAAwQFe7SAAwQGe7YAAwQFe7fgAwQFfO0gAwQFfO8AAwQC
25RoAwQE3t+gMIG4BAIAAjCBsQMGAyQOAAxgAwYDJA4ATGADBgMkDgCx4AMGBSQO
ALKgMBADBgAkDgNAawMGAiQOA0B4MBADBgAkDgNBawMGAiQOA0F4MBADBgAkDgNC
awMGAiQOA0J4MBADBgAkDgNDawMGAiQOA0N4AwYAJA4GQAoDBgAkDgZAigMGACQO
BkDKAwYAJA4GQOoDBgAkDglACgMGACQOCUCKAwYAJA4JQMoDBgAkDglA6gMHACQO
CYMPBjANBgkqhkiG9w0BAQsFAAOCAQEAsJEyNMuuXrJvn3NzXOM0zicBUJ3NiGrU
8KHWOSBLc6tH5cu58N/IdlGR8tvFDosEEmvclB9SbHPRL/rleNgcl2h5aFLib+8p
0KFzjRkQ3DZVcB7z17yQicC/L1c1A3qBuijlDyM6JGPJVLhdUYNfvmbpq/Ge/Eb1
9UrUthF5dU5Xj9MkxAtsck8oEOqqUCojYNO99QyuSrEekenetWQS/OweExwZBJMM
7K3HygfaVHiSnWGAH8P6+9BbZs5rHmBqlrUTNF6/vtG4eT3HP2QOnQaDE1/Xl09t
/pQTcR7pYH044hIbe3l/V85swbzZ9G4e8jWdiQIslV9cfDbLwnNQDw==
-----END CERTIFICATE-----
Generated at Sat May 30 00:41:28 2026 by rpki-client