$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1113654806364422163/0/AS140716.roa File: AS140716.roa (raw, json) Hash identifier: OUTnkwVANWjVxiU6c54OSxzirrIBWBuITHWh0smVgoI= Subject key identifier: 3F:FF:2C:97:E3:49:BC:BE:41:9A:08:DC:F2:0E:A3:1C:16:A2:33:13 Certificate issuer: /CN=A915370F0000/serialNumber=0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9 Certificate serial: 4BA788134FCFD01D0888E951CC5FF7F0021EE5B1 Authority key identifier: 01:82:D4:CD:0C:6D:21:DC:2C:29:6E:D2:60:6A:70:D7:96:D5:BB:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AYLUzQxtIdwsKW7SYGpw15bVu7k.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/AS140716.roa Signing time: Thu 11 Jun 2026 08:19:35 +0000 ROA not before: Thu 11 Jun 2026 08:14:35 +0000 ROA not after: Thu 10 Jun 2027 08:19:35 +0000 asID: 140716 IP address blocks: 118.191.8.0/23 maxlen: 23 118.191.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9.crl rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AYLUzQxtIdwsKW7SYGpw15bVu7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a7:88:13:4f:cf:d0:1d:08:88:e9:51:cc:5f:f7:f0:02:1e:e5:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F0000, serialNumber=0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9 Validity Not Before: Jun 11 08:14:35 2026 GMT Not After : Jun 10 08:19:35 2027 GMT Subject: CN=3FFF2C97E349BCBE419A08DCF20EA31C16A23313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:18:1e:be:65:12:b4:ff:5d:b7:31:12:7e:3a: 42:ed:38:28:f4:b9:91:14:0f:c8:3d:54:b2:eb:5e: 16:fd:ac:5c:cc:81:df:6f:3c:14:d4:07:62:bc:90: 78:0c:4a:f4:54:2f:24:41:7f:ff:3b:27:a8:43:b3: 0f:c6:91:80:51:2e:9e:81:cf:87:fe:15:77:fd:9d: ad:eb:53:e6:90:89:14:72:d5:64:d8:71:ab:69:a0: b3:49:9c:07:bb:c2:7e:f0:09:9b:55:f5:60:f5:db: d5:da:f0:c1:55:8c:80:5e:f7:6c:15:82:4c:70:59: 5d:a3:69:d1:8d:b9:69:27:5c:4c:dc:f5:71:89:05: 4c:53:0b:d3:77:71:12:ce:d6:7c:3a:39:38:b9:78: b9:7a:18:6c:7a:db:28:8f:11:e3:fa:0b:35:92:fe: da:f1:26:c3:e3:bf:ed:57:2b:e0:b3:97:22:90:2e: dd:9b:0a:97:aa:94:84:dd:e2:1d:d6:25:a2:2f:65: f5:66:64:8f:b1:52:1c:c5:05:37:58:2c:08:2d:8e: 76:35:4d:ee:25:60:40:82:6d:60:f1:6d:55:b0:f6: 33:5f:30:9d:5c:64:ee:28:0c:83:de:0c:c6:7b:69: 2c:e7:35:dd:fc:c4:9e:99:27:0b:8b:7a:4b:db:72: 22:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FF:2C:97:E3:49:BC:BE:41:9A:08:DC:F2:0E:A3:1C:16:A2:33:13 X509v3 Authority Key Identifier: keyid:01:82:D4:CD:0C:6D:21:DC:2C:29:6E:D2:60:6A:70:D7:96:D5:BB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AYLUzQxtIdwsKW7SYGpw15bVu7k.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/AS140716.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.191.8.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:39:30:83:80:10:cd:c5:5c:32:36:4d:92:e8:3e:75:90:74: 1f:a3:39:8c:98:a1:59:72:90:dd:9a:dd:79:95:4c:75:27:a0: 00:79:b4:4c:e8:f8:39:3e:ca:8b:46:a7:3d:c7:24:09:c4:1e: 4c:ae:0b:47:59:50:41:2f:19:86:12:7a:6c:18:40:d2:6c:60: 59:97:93:b9:b3:75:4b:66:39:d3:f5:66:46:77:f1:d3:0a:3e: 99:40:a7:e0:76:4b:c7:6f:94:d3:42:a7:0b:2c:30:43:50:8f: dc:e5:63:ae:88:a8:6b:e7:68:a3:8f:2f:d6:a1:a7:29:26:74: 88:cd:91:b4:f8:aa:a9:b3:1e:af:68:a7:cf:16:38:15:0d:b8: 8f:ac:50:8f:bd:a8:f3:87:ec:dd:e1:10:bc:d9:5c:4c:fc:16: 10:e2:37:7d:db:a6:0b:de:3a:51:2b:a1:60:9f:ef:7c:b3:c6: 2b:05:53:7a:70:7b:a4:31:5c:fa:b3:b3:bd:34:26:94:f4:ed: 9c:0d:f1:54:2c:81:ea:df:16:ab:b7:e9:9f:f7:f9:f4:08:55: 85:32:7d:db:c5:b9:7c:70:80:bd:08:e7:14:26:55:49:f1:cc: 8f:ec:db:f8:38:73:4b:fe:66:fa:86:97:37:82:bb:5c:38:c3: 62:a5:92:73 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUS6eIE0/P0B0IiOlRzF/38AIe5bEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTM3MEYwMDAwMTEwLwYDVQQFEygwMTgyRDRDRDBD NkQyMURDMkMyOTZFRDI2MDZBNzBENzk2RDVCQkI5MB4XDTI2MDYxMTA4MTQzNVoX DTI3MDYxMDA4MTkzNVowMzExMC8GA1UEAxMoM0ZGRjJDOTdFMzQ5QkNCRTQxOUEw OERDRjIwRUEzMUMxNkEyMzMxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkYHr5lErT/XbcxEn46Qu04KPS5kRQPyD1UsuteFv2sXMyB3288FNQHYryQ eAxK9FQvJEF//zsnqEOzD8aRgFEunoHPh/4Vd/2dretT5pCJFHLVZNhxq2mgs0mc B7vCfvAJm1X1YPXb1drwwVWMgF73bBWCTHBZXaNp0Y25aSdcTNz1cYkFTFML03dx Es7WfDo5OLl4uXoYbHrbKI8R4/oLNZL+2vEmw+O/7Vcr4LOXIpAu3ZsKl6qUhN3i HdYloi9l9WZkj7FSHMUFN1gsCC2OdjVN7iVgQIJtYPFtVbD2M18wnVxk7igMg94M xntpLOc13fzEnpknC4t6S9tyIrUCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBQ//yyX 40m8vkGaCNzyDqMcFqIzEzAfBgNVHSMEGDAWgBQBgtTNDG0h3CwpbtJganDXltW7 uTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTEzNjU0ODA2MzY0NDIyMTYzLzAvMDE4MkQ0 Q0QwQzZEMjFEQzJDMjk2RUQyNjA2QTcwRDc5NkQ1QkJCOS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvQVlMVXpReHRJ ZHdzS1c3U1lHcHcxNWJWdTdrLmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTExMzY1NDgwNjM2 NDQyMjE2My8wL0FTMTQwNzE2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCdr8IMA0GCSqGSIb3DQEBCwUA A4IBAQCOOTCDgBDNxVwyNk2S6D51kHQfozmMmKFZcpDdmt15lUx1J6AAebRM6Pg5 PsqLRqc9xyQJxB5MrgtHWVBBLxmGEnpsGEDSbGBZl5O5s3VLZjnT9WZGd/HTCj6Z QKfgdkvHb5TTQqcLLDBDUI/c5WOuiKhr52ijjy/WoacpJnSIzZG0+Kqpsx6vaKfP FjgVDbiPrFCPvajzh+zd4RC82VxM/BYQ4jd926YL3jpRK6Fgn+98s8YrBVN6cHuk MVz6s7O9NCaU9O2cDfFULIHq3xart+mf9/n0CFWFMn3bxbl8cIC9COcUJlVJ8cyP 7Nv4OHNL/mb6hpc3grtcOMNipZJz -----END CERTIFICATE-----Generated at Fri Jun 12 04:32:38 2026 by rpki-client