Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS140105.roa
File: AS140105.roa (raw, json)
Hash identifier: 4CoCTTMS/eeu0EpGjk4DxYUflM1XsLpulc5dXV5pH28=
Subject key identifier: 7C:7B:D3:DF:ED:BC:3A:B2:2C:93:A1:3D:7C:D6:9B:82:6F:E4:1E:E2
Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4
Certificate serial: 121188F0FAD7709E90E9E989ECC30ECDE97A222B
Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS140105.roa
Signing time: Wed 13 May 2026 03:20:29 +0000
ROA not before: Wed 13 May 2026 03:15:29 +0000
ROA not after: Wed 12 May 2027 03:20:29 +0000
asID: 140105
IP address blocks: 2409:8070:30e8::/48 maxlen: 48
2409:8070:30ea::/48 maxlen: 48
2409:8070:30eb::/48 maxlen: 48
2409:8070:30f8::/48 maxlen: 48
2409:8070:30f9::/48 maxlen: 48
2409:8070:30fa::/48 maxlen: 48
2409:8070:30fb::/48 maxlen: 48
2409:8070:30fc::/48 maxlen: 48
2409:8c70:3a10::/44 maxlen: 44
2409:8c70:3a90::/44 maxlen: 44
2409:8c70:3ab0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl
rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 10:37:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:11:88:f0:fa:d7:70:9e:90:e9:e9:89:ec:c3:0e:cd:e9:7a:22:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4
Validity
Not Before: May 13 03:15:29 2026 GMT
Not After : May 12 03:20:29 2027 GMT
Subject: CN=7C7BD3DFEDBC3AB22C93A13D7CD69B826FE41EE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6b:55:c1:ad:fe:d2:0b:e7:e8:05:22:99:b5:
f2:92:7d:81:8c:5f:92:00:15:dc:5b:23:ef:ac:4a:
7f:f7:86:c1:6a:f2:32:09:d7:4f:d4:d1:b3:c5:df:
88:b3:9d:9b:32:64:01:51:ec:65:d7:95:d9:c3:e5:
6f:61:9d:77:4e:48:c3:2c:3b:79:d1:6e:cb:48:c6:
f1:da:42:e2:0d:dc:d7:ec:35:fd:0d:bf:81:79:c1:
42:e2:a9:ef:f0:0b:25:a5:bb:68:18:58:bd:f8:74:
38:29:76:0a:e2:cb:1c:b0:b8:8b:4f:09:06:01:97:
a9:a5:ef:54:19:44:36:32:4d:12:3f:21:8e:ee:45:
df:db:b9:f9:9d:aa:80:39:9c:6c:48:a8:d3:c1:84:
f1:6f:b7:89:09:aa:67:f4:57:d6:66:aa:4a:36:5d:
b9:59:65:c9:c7:d5:02:04:58:85:88:43:eb:63:92:
3f:04:2a:b9:39:f8:25:04:fd:ce:e7:49:d0:48:29:
0c:28:9d:82:41:10:c3:a6:64:e6:36:be:a7:4b:af:
87:1a:90:5d:37:b3:26:9d:fa:f5:b7:53:7e:97:cb:
39:73:66:09:67:50:03:59:8d:fe:72:f6:a2:cc:e1:
0b:f0:92:2c:0d:19:ed:37:67:87:be:a7:6d:2e:96:
58:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:7B:D3:DF:ED:BC:3A:B2:2C:93:A1:3D:7C:D6:9B:82:6F:E4:1E:E2
X509v3 Authority Key Identifier:
keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS140105.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2409:8070:30e8::/48
2409:8070:30ea::/47
2409:8070:30f8::-2409:8070:30fc:ffff:ffff:ffff:ffff:ffff
2409:8c70:3a10::/44
2409:8c70:3a90::/44
2409:8c70:3ab0::/44
Signature Algorithm: sha256WithRSAEncryption
07:06:ab:e8:ba:51:ef:3d:2a:c3:24:58:b6:8e:d0:0a:dc:2f:
c5:83:1e:72:95:57:01:b3:22:c8:5b:0f:a8:74:2d:88:71:89:
1c:21:ea:75:c1:6c:22:78:5e:0f:43:49:85:cb:73:12:f9:b3:
cc:ca:f8:df:d5:80:16:20:f4:8e:26:df:42:a3:80:0c:85:1d:
a5:d0:d1:ff:a7:e0:0f:19:d9:ed:8e:3b:f7:fd:6e:01:e0:00:
81:f0:9f:ed:bc:ad:d3:79:87:e8:46:f7:88:c2:c4:c1:ae:30:
e3:e2:e1:15:a0:4b:12:70:71:ea:c8:c8:cb:8d:5c:65:01:3c:
72:10:3b:d6:85:ca:a3:1a:fc:71:2e:4e:48:2b:a8:3e:5d:9f:
2a:72:bc:7c:00:8c:8e:07:b3:c1:13:50:fe:f6:48:89:bd:60:
1c:e4:72:d2:d3:9f:97:39:5b:d9:d4:b4:dc:82:79:a1:d5:81:
74:83:4f:39:06:62:0d:57:4e:5d:7e:28:a2:2e:3b:d2:81:c0:
90:f9:df:f1:30:18:ec:dd:79:e5:76:28:0a:cf:45:b6:35:e6:
10:50:43:33:29:07:43:45:f0:fd:de:50:97:cf:fa:1c:c1:7b:
6e:1f:57:ae:41:e7:88:6e:13:f1:26:9e:1c:47:f3:49:e7:2e:
97:d6:86:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:25:45 2026 by rpki-client