$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS149979.roa File: AS149979.roa (raw, json) Hash identifier: SC/pqKQelXNWlJcq2KfQpJ7QXf2/XfDGkpaGBBR8eMQ= Subject key identifier: E6:90:57:E1:D1:AC:56:59:B9:95:2B:6C:F2:99:F9:ED:3E:00:FC:FE Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 61E88098357EF19E0B00B44E8E48C6E8E36BB317 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS149979.roa Signing time: Thu 21 May 2026 16:22:19 +0000 ROA not before: Thu 21 May 2026 16:17:19 +0000 ROA not after: Thu 20 May 2027 16:22:19 +0000 asID: 149979 IP address blocks: 240e:106:a800::/39 maxlen: 39 240e:96a:3001::/48 maxlen: 48 240e:96a:3002::/48 maxlen: 48 240e:96a:3003::/48 maxlen: 48 240e:96a:3004::/48 maxlen: 48 240e:982:9900::/48 maxlen: 48 240e:982:9901::/48 maxlen: 48 240e:982:9902::/48 maxlen: 48 240e:982:9903::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e8:80:98:35:7e:f1:9e:0b:00:b4:4e:8e:48:c6:e8:e3:6b:b3:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 21 16:17:19 2026 GMT Not After : May 20 16:22:19 2027 GMT Subject: CN=E69057E1D1AC5659B9952B6CF299F9ED3E00FCFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:98:03:b0:c6:9c:15:38:1c:24:c2:58:e3: 1b:e3:95:4b:ac:eb:01:fe:13:97:ee:b0:ee:14:5f: dc:10:11:1d:ad:02:67:c6:c8:4b:4a:97:42:75:6e: e9:f3:4a:09:64:ad:50:f4:3e:a5:d5:b1:07:5c:39: 80:7d:86:00:f7:5a:f2:4d:71:73:be:61:75:bc:47: c0:cf:f1:2f:77:9e:25:65:3e:a4:48:1d:b6:67:38: c2:64:3b:90:bd:b3:03:0b:b4:54:f3:5b:86:92:dd: b7:b0:7d:8d:7c:7c:67:37:e9:98:3d:d7:24:31:70: 20:c5:44:8d:1a:37:93:52:9c:d8:f9:5c:3a:80:41: fa:0b:2b:b3:ce:a5:16:ef:c2:f2:2d:96:d4:94:f1: c6:53:2b:2c:4d:ec:9b:13:5d:96:c7:43:7a:d0:b6: 0b:5b:8c:e1:83:21:ef:5e:e5:39:fb:00:d4:17:a7: 31:9e:d6:c6:5d:ab:ea:04:ea:39:7d:4e:fa:45:d2: a3:e9:cb:ce:55:fa:69:6b:7d:33:27:3b:b9:d7:ea: 04:56:7b:6c:bd:3a:ac:6e:23:f0:05:84:39:88:54: 38:7e:4e:2b:6d:dd:53:04:4d:fa:17:be:e3:7b:4c: 2d:84:31:c0:45:e2:3b:f1:bb:70:9e:0e:e3:2a:f3: b7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:90:57:E1:D1:AC:56:59:B9:95:2B:6C:F2:99:F9:ED:3E:00:FC:FE X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS149979.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240e:106:a800::/39 240e:96a:3001::-240e:96a:3004:ffff:ffff:ffff:ffff:ffff 240e:982:9900::/46 Signature Algorithm: sha256WithRSAEncryption 09:22:d9:1a:1a:2e:4a:e4:7f:e4:de:d3:6b:70:7b:cc:1f:2e: b9:2d:f7:75:ad:8d:79:7b:0f:bf:66:ef:4a:e9:fe:09:6e:42: 98:c0:eb:38:37:5e:18:d6:e5:5c:7b:55:2f:49:25:3d:78:ad: 84:80:eb:0a:1f:24:c3:90:54:ef:e6:22:19:04:81:0e:ee:96: b5:a5:2a:35:fe:d2:84:15:f3:d6:e7:2d:af:ff:1f:23:6a:d6: 96:8f:81:b7:d4:e3:43:f6:b9:bc:91:c5:89:bd:2e:79:e9:13: 1c:4d:62:45:af:03:03:01:a6:5a:09:01:2d:08:9f:28:16:c3: 55:16:e4:d9:a1:ca:01:6e:0e:d8:38:4e:c4:91:a3:b2:03:0b: 1a:fa:f3:df:f1:24:e0:f1:39:41:8a:e1:29:06:86:68:c4:ef: 17:21:f4:4b:91:20:68:ac:19:d0:a2:44:99:06:9e:39:af:e9: f6:7f:32:6f:65:39:50:e8:6e:12:f7:be:9d:9f:98:8f:d5:7d: 1b:81:80:0a:a3:6e:e7:8e:3e:b1:6d:37:0c:4c:ad:23:da:98: e5:9f:54:8c:04:1c:5e:a3:a8:df:a3:ca:43:93:55:35:48:ac: 96:eb:6c:78:3d:97:8e:cf:1f:92:ba:80:84:7e:87:ac:26:81: f6:0a:2d:57 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUYeiAmDV+8Z4LALROjkjG6ONrsxcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMTE2MTcxOVoX DTI3MDUyMDE2MjIxOVowMzExMC8GA1UEAxMoRTY5MDU3RTFEMUFDNTY1OUI5OTUy QjZDRjI5OUY5RUQzRTAwRkNGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJBmAOwxpwVOBwkwljjG+OVS6zrAf4Tl+6w7hRf3BARHa0CZ8bIS0qXQnVu 6fNKCWStUPQ+pdWxB1w5gH2GAPda8k1xc75hdbxHwM/xL3eeJWU+pEgdtmc4wmQ7 kL2zAwu0VPNbhpLdt7B9jXx8ZzfpmD3XJDFwIMVEjRo3k1Kc2PlcOoBB+gsrs86l Fu/C8i2W1JTxxlMrLE3smxNdlsdDetC2C1uM4YMh717lOfsA1BenMZ7Wxl2r6gTq OX1O+kXSo+nLzlX6aWt9Myc7udfqBFZ7bL06rG4j8AWEOYhUOH5OK23dUwRN+he+ 43tMLYQxwEXiO/G7cJ4O4yrzt6sCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBTmkFfh 0axWWbmVK2zymfntPgD8/jAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTMTQ5OTc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MD4GCCsGAQUFBwEHAQH/BC8wLTArBAIAAjAlAwYBJA4BBqgwEgMHACQOCWowAQMH ACQOCWowBAMHAiQOCYKZADANBgkqhkiG9w0BAQsFAAOCAQEACSLZGhouSuR/5N7T a3B7zB8uuS33da2NeXsPv2bvSun+CW5CmMDrODdeGNblXHtVL0klPXithIDrCh8k w5BU7+YiGQSBDu6WtaUqNf7ShBXz1uctr/8fI2rWlo+Bt9TjQ/a5vJHFib0ueekT HE1iRa8DAwGmWgkBLQifKBbDVRbk2aHKAW4O2DhOxJGjsgMLGvrz3/Ek4PE5QYrh KQaGaMTvFyH0S5EgaKwZ0KJEmQaeOa/p9n8yb2U5UOhuEve+nZ+Yj9V9G4GACqNu 544+sW03DEytI9qY5Z9UjAQcXqOo36PKQ5NVNUislutseD2Xjs8fkrqAhH6HrCaB 9gotVw== -----END CERTIFICATE-----Generated at Sat May 23 07:08:14 2026 by rpki-client