$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa File: AS141425.roa (raw, json) Hash identifier: ShZmIooS/UFlr5TLH2+F9Rk+17iIhC/nwb7kx2CoRfU= Subject key identifier: 54:92:CF:60:CF:64:FA:0E:4C:21:93:EF:3C:B5:6C:72:F2:A5:53:2E Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Certificate serial: 5C1DA9150E5B1BE204CC8F73EBAE29CE6F153189 Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa Signing time: Tue 12 May 2026 07:45:58 +0000 ROA not before: Tue 12 May 2026 07:40:58 +0000 ROA not after: Tue 11 May 2027 07:45:58 +0000 asID: 141425 IP address blocks: 2409:8c54:8c0::/44 maxlen: 44 2409:8c54:b010::/44 maxlen: 44 2409:8c54:b030::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:1d:a9:15:0e:5b:1b:e2:04:cc:8f:73:eb:ae:29:ce:6f:15:31:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Validity Not Before: May 12 07:40:58 2026 GMT Not After : May 11 07:45:58 2027 GMT Subject: CN=5492CF60CF64FA0E4C2193EF3CB56C72F2A5532E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:2a:ee:0a:cb:d5:0a:76:d5:33:bf:c1:3c:8f: d9:43:6c:7e:c5:f2:71:fc:0f:ff:c5:ca:3f:a4:17: d6:72:aa:35:83:c9:85:7b:63:83:3e:38:65:c6:7b: 21:a8:23:3e:e4:e9:86:25:60:f3:1d:2b:25:bb:5c: b6:a3:7c:65:b8:0a:96:25:25:b2:24:3f:8a:5f:d2: d0:8f:4e:98:e9:44:80:b4:ae:29:23:74:99:e5:b5: 63:8b:47:cb:78:0c:8c:f1:35:1b:f6:2b:0b:b0:c4: c3:90:82:49:a4:31:48:34:53:25:db:77:56:e3:d1: 94:c1:89:d9:17:ed:dc:31:da:c2:98:e9:07:a4:bb: eb:ae:52:73:aa:96:69:82:f1:05:a8:67:ba:78:64: 52:83:d6:b3:95:e8:f8:94:ad:25:e0:37:ee:7d:b0: 39:2d:08:9c:88:9b:7c:ab:a1:6e:b7:c2:1f:28:a1: 0a:74:56:6d:61:fa:7e:8f:75:d7:a6:56:0f:08:29: 00:e0:bb:61:64:95:76:fa:11:e4:d4:d5:09:7c:a9: e5:99:d1:db:1e:a0:29:63:61:79:5e:7d:ea:45:d3: 99:77:dd:da:7d:10:47:d0:dc:23:8a:b0:20:f0:08: ed:e5:60:e6:03:b6:74:8d:1b:94:fe:a3:35:40:cf: 16:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:92:CF:60:CF:64:FA:0E:4C:21:93:EF:3C:B5:6C:72:F2:A5:53:2E X509v3 Authority Key Identifier: keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS141425.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2409:8c54:8c0::/44 2409:8c54:b010::/44 2409:8c54:b030::/44 Signature Algorithm: sha256WithRSAEncryption 29:8e:ee:84:00:c2:e0:07:56:c5:ab:83:1d:3a:65:f3:48:84: 50:92:cb:23:ec:64:a0:81:20:c5:61:43:03:f4:87:bb:b0:10: 2a:f3:17:65:46:8c:6c:d4:02:e9:1b:f1:ff:56:0d:b9:5c:a0: bd:5b:4f:82:8d:0e:d5:2a:90:73:a0:f3:2c:91:fe:5c:56:e8: d9:d2:3b:2b:d4:71:c5:e1:96:35:4b:b5:76:a3:58:2d:f8:d6: 89:ad:2b:b4:a4:db:9a:33:c9:98:9c:2e:5f:7d:15:1c:cf:c1: 0f:e3:a5:6b:e7:56:fa:4c:04:a3:68:8c:17:0c:98:47:e6:f9: 14:47:bb:95:ff:ec:14:56:5a:e4:4a:c3:7b:f0:2e:7f:24:e1: 5e:6a:d1:ee:b0:0c:2c:29:5e:62:27:67:1f:83:ce:a9:50:7f: 60:4c:8a:78:e9:32:51:1b:6e:44:3e:23:1f:eb:10:3c:c5:00: 15:58:33:48:da:e2:a5:50:bb:c0:1d:a2:2e:ce:85:94:33:9f: 40:7a:72:ae:bf:40:cc:90:6b:61:3f:25:ac:ec:a6:4e:35:85: 0f:04:ef:5e:f1:76:d0:33:9e:40:9e:b9:35:11:f5:c9:1f:ee: 66:e1:e0:25:b7:80:44:eb:17:01:20:cd:97:da:a1:08:01:80: 0a:c1:ff:36 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUXB2pFQ5bG+IEzI9z664pzm8VMYkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDVGM0QwMDAwMTEwLwYDVQQFEyhEQkIyM0M3RUU0 OTIyMTJFQTg1OEI3OEUxQzY2QkYyMjk4RTVBQ0Q0MB4XDTI2MDUxMjA3NDA1OFoX DTI3MDUxMTA3NDU1OFowMzExMC8GA1UEAxMoNTQ5MkNGNjBDRjY0RkEwRTRDMjE5 M0VGM0NCNTZDNzJGMkE1NTMyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJAq7grL1Qp21TO/wTyP2UNsfsXycfwP/8XKP6QX1nKqNYPJhXtjgz44ZcZ7 IagjPuTphiVg8x0rJbtctqN8ZbgKliUlsiQ/il/S0I9OmOlEgLSuKSN0meW1Y4tH y3gMjPE1G/YrC7DEw5CCSaQxSDRTJdt3VuPRlMGJ2Rft3DHawpjpB6S7665Sc6qW aYLxBahnunhkUoPWs5Xo+JStJeA37n2wOS0InIibfKuhbrfCHyihCnRWbWH6fo91 16ZWDwgpAOC7YWSVdvoR5NTVCXyp5ZnR2x6gKWNheV596kXTmXfd2n0QR9DcI4qw IPAI7eVg5gO2dI0blP6jNUDPFv0CAwEAAaOCAfkwggH1MB0GA1UdDgQWBBRUks9g z2T6Dkwhk+88tWxy8qVTLjAfBgNVHSMEGDAWgBTbsjx+5JIhLqhYt44cZr8imOWs 1DAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk0ODcyODM0MDk1Nzc1NzQ3LzAvREJCMjND N0VFNDkyMjEyRUE4NThCNzhFMUM2NkJGMjI5OEU1QUNENC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvMjdJOGZ1U1NJ UzZvV0xlT0hHYV9JcGpsck5RLmNlcjBeBggrBgEFBQcBCwRSMFAwTgYIKwYBBQUH MAuGQnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NDg3MjgzNDA5 NTc3NTc0Ny8wL0FTMTQxNDI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAAjAbAwcEJAmMVAjAAwcEJAmMVLAQAwcE JAmMVLAwMA0GCSqGSIb3DQEBCwUAA4IBAQApju6EAMLgB1bFq4MdOmXzSIRQkssj 7GSggSDFYUMD9Ie7sBAq8xdlRoxs1ALpG/H/Vg25XKC9W0+CjQ7VKpBzoPMskf5c VujZ0jsr1HHF4ZY1S7V2o1gt+NaJrSu0pNuaM8mYnC5ffRUcz8EP46Vr51b6TASj aIwXDJhH5vkUR7uV/+wUVlrkSsN78C5/JOFeatHusAwsKV5iJ2cfg86pUH9gTIp4 6TJRG25EPiMf6xA8xQAVWDNI2uKlULvAHaIuzoWUM59AenKuv0DMkGthPyWs7KZO NYUPBO9e8XbQM55Anrk1EfXJH+5m4eAlt4BE6xcBIM2X2qEIAYAKwf82 -----END CERTIFICATE-----Generated at Wed May 13 12:25:45 2026 by rpki-client