$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS139080.roa File: AS139080.roa (raw, json) Hash identifier: 0FkJ+X+G0MS/Skou8Id8N9zGTkmyNJNJJkepvNEoaMQ= Subject key identifier: CD:59:69:3D:EF:5D:C2:6A:67:15:85:24:DE:D8:85:A6:98:10:B5:3F Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Certificate serial: 27B8B0B5A1479AC636363982FC735DA112A53F30 Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS139080.roa Signing time: Wed 22 Apr 2026 07:54:59 +0000 ROA not before: Wed 22 Apr 2026 07:49:59 +0000 ROA not after: Wed 21 Apr 2027 07:54:59 +0000 asID: 139080 IP address blocks: 2409:8062:3002::/48 maxlen: 48 2409:8c62:410::/44 maxlen: 44 2409:8c62:e10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b8:b0:b5:a1:47:9a:c6:36:36:39:82:fc:73:5d:a1:12:a5:3f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Validity Not Before: Apr 22 07:49:59 2026 GMT Not After : Apr 21 07:54:59 2027 GMT Subject: CN=CD59693DEF5DC26A67158524DED885A69810B53F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:55:bd:9c:81:45:b2:9a:e3:ac:76:54:09:55: 9e:46:c4:12:b0:eb:af:0d:8d:c4:5e:6c:f2:25:fd: 9f:d9:8a:03:cc:33:08:77:e6:f1:3a:63:c2:1a:f2: 0c:ca:7f:e7:1c:6c:51:e6:1c:4e:bc:f6:3a:0a:8b: eb:c2:68:0b:6d:10:70:12:64:8d:70:5c:c6:e2:1c: f5:41:aa:98:32:f4:ee:ab:76:b4:5b:4d:86:09:ad: dc:19:b6:44:7a:f8:f6:0b:bb:b8:5a:45:93:59:83: d9:9f:9f:5d:60:e4:63:1b:0d:14:53:17:51:5a:6b: fc:ed:53:3a:7b:93:4e:35:36:11:56:be:8f:53:9c: e8:2b:90:49:c0:b4:d7:d2:fc:61:46:b3:59:35:66: cf:7b:e7:6a:39:66:c8:74:62:45:d7:89:0d:6e:50: c7:ca:f9:c0:1e:36:1f:41:0a:4d:12:2f:98:9b:8d: 7c:aa:b6:18:26:c4:74:32:7b:8c:ef:75:3b:75:06: ed:a1:46:1d:63:94:e6:c4:69:1d:7d:cd:64:21:7b: 34:15:2c:be:14:ee:98:c9:fc:a5:a8:24:f7:c4:c7: 60:61:43:0b:b3:31:0a:cb:94:eb:65:fd:bf:06:d8: 67:4d:a3:a9:47:2b:48:ae:96:9d:19:60:55:77:19: 3d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:59:69:3D:EF:5D:C2:6A:67:15:85:24:DE:D8:85:A6:98:10:B5:3F X509v3 Authority Key Identifier: keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS139080.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2409:8062:3002::/48 2409:8c62:410::/44 2409:8c62:e10::/44 Signature Algorithm: sha256WithRSAEncryption 2b:b9:1e:42:f3:ba:4d:8f:0e:65:c5:8b:b6:c2:11:c3:74:0b: 12:9e:7b:4d:57:a2:47:af:fb:71:ba:cd:42:c9:6d:07:51:11: 02:3e:5b:c5:d8:91:b5:be:f6:36:38:59:2b:f6:e3:5e:e0:00: bf:33:f8:89:ba:fc:b0:b8:f7:f9:c7:d3:eb:6c:02:54:46:00: c7:98:a5:11:9f:42:52:e3:e1:aa:08:ed:39:64:e8:d3:c3:e2: c0:95:d5:45:f7:1b:57:c9:f2:18:93:51:eb:55:f2:ae:a0:c4: 69:88:8f:7b:e1:b3:5c:16:af:d3:1c:07:22:bb:8b:10:60:11: cc:df:72:ed:a4:bf:c1:28:9c:69:8d:08:39:e4:f4:84:bf:17: 26:70:7b:6d:05:80:78:3b:03:42:3f:66:c4:a9:71:72:dd:e1: 33:92:73:b0:da:a8:0d:97:86:73:15:dd:4b:2f:ca:dd:c2:d6: 68:50:07:72:2e:5c:84:d9:5b:c4:42:da:fd:91:83:ff:ba:a0: 74:03:7f:ef:04:c2:49:2f:b5:ce:6f:f3:8e:c5:87:f9:67:d0: ce:60:cf:24:fb:14:e4:d9:7e:62:79:19:b4:20:95:ed:fa:a4: cb:41:c1:28:5d:5a:01:0c:5a:2b:12:56:82:5e:32:aa:11:db: 98:c4:69:30 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUJ7iwtaFHmsY2NjmC/HNdoRKlPzAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDVGM0QwMDAwMTEwLwYDVQQFEyhEQkIyM0M3RUU0 OTIyMTJFQTg1OEI3OEUxQzY2QkYyMjk4RTVBQ0Q0MB4XDTI2MDQyMjA3NDk1OVoX DTI3MDQyMTA3NTQ1OVowMzExMC8GA1UEAxMoQ0Q1OTY5M0RFRjVEQzI2QTY3MTU4 NTI0REVEODg1QTY5ODEwQjUzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRVvZyBRbKa46x2VAlVnkbEErDrrw2NxF5s8iX9n9mKA8wzCHfm8Tpjwhry DMp/5xxsUeYcTrz2OgqL68JoC20QcBJkjXBcxuIc9UGqmDL07qt2tFtNhgmt3Bm2 RHr49gu7uFpFk1mD2Z+fXWDkYxsNFFMXUVpr/O1TOnuTTjU2EVa+j1Oc6CuQScC0 19L8YUazWTVmz3vnajlmyHRiRdeJDW5Qx8r5wB42H0EKTRIvmJuNfKq2GCbEdDJ7 jO91O3UG7aFGHWOU5sRpHX3NZCF7NBUsvhTumMn8pagk98THYGFDC7MxCsuU62X9 vwbYZ02jqUcrSK6WnRlgVXcZPcUCAwEAAaOCAfkwggH1MB0GA1UdDgQWBBTNWWk9 713CamcVhSTe2IWmmBC1PzAfBgNVHSMEGDAWgBTbsjx+5JIhLqhYt44cZr8imOWs 1DAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk0ODcyODM0MDk1Nzc1NzQ3LzAvREJCMjND N0VFNDkyMjEyRUE4NThCNzhFMUM2NkJGMjI5OEU1QUNENC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvMjdJOGZ1U1NJ UzZvV0xlT0hHYV9JcGpsck5RLmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NDg3MjgzNDA5 NTc3NTc0Ny8wL0FTMTM5MDgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAAjAbAwcAJAmAYjACAwcEJAmMYgQQAwcE JAmMYg4QMA0GCSqGSIb3DQEBCwUAA4IBAQAruR5C87pNjw5lxYu2whHDdAsSnntN V6JHr/txus1CyW0HURECPlvF2JG1vvY2OFkr9uNe4AC/M/iJuvywuPf5x9PrbAJU RgDHmKURn0JS4+GqCO05ZOjTw+LAldVF9xtXyfIYk1HrVfKuoMRpiI974bNcFq/T HAciu4sQYBHM33LtpL/BKJxpjQg55PSEvxcmcHttBYB4OwNCP2bEqXFy3eEzknOw 2qgNl4ZzFd1LL8rdwtZoUAdyLlyE2VvEQtr9kYP/uqB0A3/vBMJJL7XOb/OOxYf5 Z9DOYM8k+xTk2X5ieRm0IJXt+qTLQcEoXVoBDForElaCXjKqEduYxGkw -----END CERTIFICATE-----Generated at Wed May 13 12:25:45 2026 by rpki-client