$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/AS56040.roa File: AS56040.roa (raw, json) Hash identifier: wyLNjEr28XWMaCIeJV3ttVZdaqqq9B+3UZMGGkeItow= Subject key identifier: D1:4D:F0:E2:E2:55:D4:E1:4D:D4:7B:D7:E5:CA:AE:9E:6E:97:2C:B0 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 3F73ACBB67352C1CE65A8CE8407FB6AB52D62610 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/AS56040.roa Signing time: Wed 20 May 2026 07:07:51 +0000 ROA not before: Wed 20 May 2026 07:02:51 +0000 ROA not after: Wed 19 May 2027 07:07:51 +0000 asID: 56040 IP address blocks: 117.51.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 14:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:73:ac:bb:67:35:2c:1c:e6:5a:8c:e8:40:7f:b6:ab:52:d6:26:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: May 20 07:02:51 2026 GMT Not After : May 19 07:07:51 2027 GMT Subject: CN=D14DF0E2E255D4E14DD47BD7E5CAAE9E6E972CB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:53:4f:d8:1e:2e:5d:a7:ef:19:af:20:29:5b: a9:82:be:07:94:eb:34:c1:cb:b3:0e:82:8e:00:5a: ab:13:0e:43:3b:e2:7e:1b:14:4c:fb:e4:53:d4:ae: 71:a5:38:7b:2e:cc:bd:63:36:bb:57:eb:dc:73:37: 26:1f:4f:87:e7:04:de:8b:f9:4e:49:ce:6e:32:5a: cc:1c:50:a8:4d:46:43:4f:78:0d:29:f0:e3:00:3b: 4f:16:d9:5b:17:51:f1:7d:a6:21:77:08:a2:3c:fa: 60:15:8f:2e:43:13:3c:c7:d8:19:58:c1:ce:69:63: 90:ae:b6:5f:de:e1:ce:f4:93:de:07:50:f8:bd:f4: 41:b4:68:92:cd:eb:bd:9d:17:6b:57:ca:80:75:69: 30:64:ad:00:47:6f:60:1e:2d:3c:fd:6a:8c:63:94: 12:61:73:21:00:54:72:5f:cd:db:ec:b1:74:c4:01: 22:96:bc:01:82:bf:f4:60:80:fe:37:f2:73:58:f4: bd:c3:bf:75:38:52:44:ec:24:46:3e:37:e3:53:fe: 96:08:6a:3b:d6:18:c7:83:22:ac:11:52:d0:e8:ca: 76:fd:65:a8:82:47:cc:d5:29:ae:c1:57:da:f9:92: 01:d2:aa:53:6f:73:e0:ef:a3:3b:41:70:08:62:07: ca:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:4D:F0:E2:E2:55:D4:E1:4D:D4:7B:D7:E5:CA:AE:9E:6E:97:2C:B0 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/AS56040.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.51.172.0/22 Signature Algorithm: sha256WithRSAEncryption 30:3f:cf:41:02:05:95:0f:7e:ed:bc:56:f9:f7:7a:7b:c5:f6: 56:26:23:98:ec:f9:00:58:80:0d:00:11:60:ba:a5:80:9b:0d: 45:53:14:c7:e3:f4:20:dc:09:71:36:49:b6:33:45:53:24:6f: dc:45:be:44:88:12:83:c3:89:0c:8e:8f:08:cd:1a:e4:2a:31: 4d:44:c4:c3:94:c3:04:65:f9:36:46:fd:4a:5e:97:1a:b0:80: cd:1a:06:8e:be:a7:9e:53:ba:b1:bb:17:db:82:b8:2e:c6:73: a0:44:43:63:be:26:57:90:4c:9a:32:00:96:f8:88:54:08:ca: 4a:cd:f6:5b:8e:33:25:0e:87:c2:2b:80:c4:04:69:45:5e:6e: 09:d3:be:94:71:11:a0:bc:c2:99:02:10:fc:41:54:dc:4c:43: 12:cc:6f:46:64:19:6f:81:2d:1a:d0:29:d8:f4:3b:74:e8:f4: 04:7f:88:78:d4:cf:39:67:2b:b8:b2:3f:e2:26:a3:16:d0:7f: 30:07:2b:7e:17:80:da:12:8a:c6:cf:47:38:bf:87:80:2c:64: 2a:eb:2a:9e:6d:8d:b9:7e:84:57:0e:67:d3:8e:07:44:4d:2a: c7:06:3d:2f:1c:c6:e4:69:49:cb:ef:5d:39:29:c9:a7:ec:ae: 8f:5c:00:94 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUP3Osu2c1LBzmWozoQH+2q1LWJhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA1MjAwNzAyNTFaFw0yNzA1MTkwNzA3NTFaMDMxMTAvBgNV BAMTKEQxNERGMEUyRTI1NUQ0RTE0REQ0N0JEN0U1Q0FBRTlFNkU5NzJDQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRU0/YHi5dp+8ZryApW6mCvgeU 6zTBy7MOgo4AWqsTDkM74n4bFEz75FPUrnGlOHsuzL1jNrtX69xzNyYfT4fnBN6L +U5Jzm4yWswcUKhNRkNPeA0p8OMAO08W2VsXUfF9piF3CKI8+mAVjy5DEzzH2BlY wc5pY5Cutl/e4c70k94HUPi99EG0aJLN672dF2tXyoB1aTBkrQBHb2AeLTz9aoxj lBJhcyEAVHJfzdvssXTEASKWvAGCv/RggP438nNY9L3Dv3U4UkTsJEY+N+NT/pYI ajvWGMeDIqwRUtDoynb9ZaiCR8zVKa7BV9r5kgHSqlNvc+DvoztBcAhiB8q7AgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQU0U3w4uJV1OFN1HvX5cqunm6XLLAwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTk2MDI2MzYzNjcyMDAyNTkvMC9BUzU2MDQwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCdTOsMA0GCSqGSIb3DQEBCwUAA4IBAQAwP89BAgWVD37tvFb593p7xfZW JiOY7PkAWIANABFguqWAmw1FUxTH4/Qg3AlxNkm2M0VTJG/cRb5EiBKDw4kMjo8I zRrkKjFNRMTDlMMEZfk2Rv1KXpcasIDNGgaOvqeeU7qxuxfbgrguxnOgRENjviZX kEyaMgCW+IhUCMpKzfZbjjMlDofCK4DEBGlFXm4J076UcRGgvMKZAhD8QVTcTEMS zG9GZBlvgS0a0CnY9Dt06PQEf4h41M85Zyu4sj/iJqMW0H8wByt+F4DaEorGz0c4 v4eALGQq6yqebY25foRXDmfTjgdETSrHBj0vHMbkaUnL7105Kcmn7K6PXACU -----END CERTIFICATE-----Generated at Sat May 23 05:07:17 2026 by rpki-client