$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099364928323584001/0/AS140292.roa File: AS140292.roa (raw, json) Hash identifier: wtC9Q7BhiYUo1Gn7JyysCgjfucI9tOaarVKcHpoqhxw= Subject key identifier: 99:36:09:A0:EE:32:58:36:D1:66:B9:36:8D:13:9E:37:48:C1:39:B3 Certificate issuer: /CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Certificate serial: 230495C34C39F8A81B71CBBA5A64DCC1F14F7A1F Authority key identifier: 14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/AS140292.roa Signing time: Mon 25 May 2026 05:58:28 +0000 ROA not before: Mon 25 May 2026 05:53:28 +0000 ROA not after: Mon 24 May 2027 05:58:28 +0000 asID: 140292 IP address blocks: 117.48.128.0/20 maxlen: 20 117.48.144.0/22 maxlen: 22 117.48.148.0/22 maxlen: 22 117.48.152.0/22 maxlen: 22 117.48.156.0/22 maxlen: 23 117.48.160.0/20 maxlen: 20 120.132.0.0/19 maxlen: 19 120.132.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Jun 2026 04:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:04:95:c3:4c:39:f8:a8:1b:71:cb:ba:5a:64:dc:c1:f1:4f:7a:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Validity Not Before: May 25 05:53:28 2026 GMT Not After : May 24 05:58:28 2027 GMT Subject: CN=993609A0EE325836D166B9368D139E3748C139B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:79:49:d7:d5:b1:93:c4:15:b1:30:c7:c5:78: 71:e4:07:b1:fe:3d:5d:87:ac:49:79:51:52:c2:6d: e5:d0:fc:da:74:da:27:6e:59:76:71:7c:7b:58:f2: ea:f5:23:84:69:73:29:b2:5e:37:20:6f:a6:37:5f: 95:9c:09:eb:8b:d3:6c:0d:b3:bb:11:7b:2f:05:7c: ae:ab:77:23:da:4d:03:da:f7:f8:f9:5c:e0:84:4f: d4:b7:b9:aa:7a:a6:35:b7:0a:5b:3f:35:ad:75:fe: a0:6e:1d:26:5a:94:18:47:d2:d3:f0:81:43:e1:0b: 9e:6a:8b:1f:59:7a:17:50:b7:65:cb:0a:02:6e:5b: cd:6d:05:fe:b9:32:16:20:92:ff:6b:01:ac:5f:b0: c0:7d:1f:26:7f:a4:48:8b:74:01:0b:21:5a:f8:2e: 0b:cd:47:6d:e5:9b:fa:3e:64:98:83:4a:be:25:96: 22:36:3c:de:b8:45:18:20:7d:22:9a:f6:42:c3:ce: f9:71:5d:38:78:f7:f8:7d:f9:cd:fd:a7:2c:09:36: 79:23:45:82:34:3b:90:2b:ff:c3:b6:18:eb:89:b5: d7:56:55:97:16:4f:c7:ea:bd:09:72:af:3b:7c:e6: 53:2b:60:b8:fe:ef:67:d5:28:5e:e1:92:46:ec:73: 6f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:36:09:A0:EE:32:58:36:D1:66:B9:36:8D:13:9E:37:48:C1:39:B3 X509v3 Authority Key Identifier: keyid:14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/AS140292.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.48.128.0-117.48.175.255 120.132.0.0/19 120.132.96.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:c1:66:25:2e:93:4c:87:31:4e:26:89:3e:df:b1:c8:2a:4b: 94:79:0c:c6:d0:a8:bd:3f:cc:0b:c5:70:27:31:2a:bf:eb:93: e9:b7:53:92:e3:96:43:b8:d8:39:46:4e:be:24:f1:82:23:6e: 55:6a:a6:12:41:cc:7c:b3:4b:e8:3b:a4:d9:25:ba:ea:49:a1: ba:4f:8a:5d:8e:49:cd:5b:fd:e6:df:63:e3:c7:ee:1e:17:e1: c8:f6:37:cb:44:a3:fe:57:f8:9a:d4:b3:1b:d3:8d:21:aa:de: 1d:e8:b7:0c:ed:49:9b:00:dc:94:ff:44:3b:4d:d7:c9:40:3a: 36:d7:c0:db:29:02:65:af:01:5e:63:0f:68:38:1b:b1:c6:b6: 58:75:7c:13:ce:32:71:da:3f:53:23:7f:12:7a:26:8c:9d:08: 1a:cf:85:9e:2f:ea:5d:f7:87:30:b2:86:39:ed:5b:3b:f2:76: ac:1e:a2:40:1c:b0:db:d6:ee:24:49:3d:84:a7:1b:51:91:61: 3e:fb:3e:80:48:3c:92:29:fb:58:62:6c:7b:76:41:35:17:59: 6a:5f:76:3f:cb:9d:01:1b:09:c5:8f:71:b9:2e:84:46:a4:f3: 16:c4:c6:8e:56:0c:74:a2:50:a0:fb:cb:a4:39:11:03:a0:8f: 09:35:e8:48 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUIwSVw0w5+Kgbccu6WmTcwfFPeh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAz QkI1QzQyQjAeFw0yNjA1MjUwNTUzMjhaFw0yNzA1MjQwNTU4MjhaMDMxMTAvBgNV BAMTKDk5MzYwOUEwRUUzMjU4MzZEMTY2QjkzNjhEMTM5RTM3NDhDMTM5QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCueUnX1bGTxBWxMMfFeHHkB7H+ PV2HrEl5UVLCbeXQ/Np02iduWXZxfHtY8ur1I4RpcymyXjcgb6Y3X5WcCeuL02wN s7sRey8FfK6rdyPaTQPa9/j5XOCET9S3uap6pjW3Cls/Na11/qBuHSZalBhH0tPw gUPhC55qix9ZehdQt2XLCgJuW81tBf65MhYgkv9rAaxfsMB9HyZ/pEiLdAELIVr4 LgvNR23lm/o+ZJiDSr4lliI2PN64RRggfSKa9kLDzvlxXTh49/h9+c39pywJNnkj RYI0O5Ar/8O2GOuJtddWVZcWT8fqvQlyrzt85lMrYLj+72fVKF7hkkbsc2+JAgMB AAGjggH4MIIB9DAdBgNVHQ4EFgQUmTYJoO4yWDbRZrk2jROeN0jBObMwHwYDVR0j BBgwFoAUFPKuKJc0xvkiOhX0gu7XUDu1xCswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTM2NDkyODMyMzU4NDAwMS8wLzE0RjJBRTI4OTczNEM2RjkyMjNBMTVGNDgyRUVE NzUwM0JCNUM0MkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAzQkI1QzQyQi5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTkzNjQ5MjgzMjM1ODQwMDEvMC9BUzE0MDI5Mi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAzBggrBgEFBQcBBwEB/wQkMCIwIAQC AAEwGjAMAwQHdTCAAwQEdTCgAwQFeIQAAwQEeIRgMA0GCSqGSIb3DQEBCwUAA4IB AQBewWYlLpNMhzFOJok+37HIKkuUeQzG0Ki9P8wLxXAnMSq/65Ppt1OS45ZDuNg5 Rk6+JPGCI25VaqYSQcx8s0voO6TZJbrqSaG6T4pdjknNW/3m32Pjx+4eF+HI9jfL RKP+V/ia1LMb040hqt4d6LcM7UmbANyU/0Q7TdfJQDo218DbKQJlrwFeYw9oOBux xrZYdXwTzjJx2j9TI38SeiaMnQgaz4WeL+pd94cwsoY57Vs78nasHqJAHLDb1u4k ST2EpxtRkWE++z6ASDySKftYYmx7dkE1F1lqX3Y/y50BGwnFj3G5LoRGpPMWxMaO Vgx0olCg+8ukOREDoI8JNehI -----END CERTIFICATE-----Generated at Thu Jun 4 19:43:23 2026 by rpki-client