$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS137699.roa File: AS137699.roa (raw, json) Hash identifier: D0pnZlgzIum966fqLaKQBVafP4tAhNdkkWQtNVZ7QXg= Subject key identifier: 9F:06:A4:85:08:3C:C4:F9:DA:E3:CA:14:60:05:73:A5:1C:BC:90:DE Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 6E3F9B14FBA68C419D7DF2320AB57E5C07BE3C64 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS137699.roa Signing time: Thu 16 Apr 2026 06:29:06 +0000 ROA not before: Thu 16 Apr 2026 06:24:06 +0000 ROA not after: Thu 15 Apr 2027 06:29:06 +0000 asID: 137699 IP address blocks: 116.198.0.0/16 maxlen: 24 116.198.192.0/18 maxlen: 18 2403:1ec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:3f:9b:14:fb:a6:8c:41:9d:7d:f2:32:0a:b5:7e:5c:07:be:3c:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 16 06:24:06 2026 GMT Not After : Apr 15 06:29:06 2027 GMT Subject: CN=9F06A485083CC4F9DAE3CA14600573A51CBC90DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:eb:1d:44:48:29:10:e3:f2:be:cf:d2:bc:0a: 20:0f:be:71:62:55:c6:26:09:a5:51:0f:35:9e:01: 69:54:d2:e6:76:cf:14:f5:52:6f:c1:d7:5e:f6:ac: a9:d5:ff:b2:68:e6:a2:f3:bf:a0:e6:1d:b2:15:62: 14:8d:d6:f8:f4:d3:ed:65:8a:2a:79:14:bb:a7:7b: d5:47:4f:ef:03:67:60:6c:65:b9:99:21:2f:c9:c1: 56:6a:9f:94:06:79:71:2f:2a:98:9a:3d:dd:85:c4: ff:d2:cd:00:37:95:bc:4e:fe:c0:44:03:d4:ac:e7: 6b:67:14:2a:c6:7b:f8:f0:cd:e7:15:41:36:84:5b: 6f:08:ff:eb:39:d1:8a:da:c4:77:9a:b9:99:83:70: e0:5d:72:fb:cc:d1:e2:24:91:1a:4e:a3:d3:bc:8c: 9a:0b:f3:36:ca:71:81:24:6b:96:10:0f:1f:d4:69: b9:49:7c:d8:39:0e:74:69:12:51:ba:0c:d9:0c:4e: 76:e4:c2:8e:05:ef:a6:f6:7c:4b:71:5f:73:24:15: f9:d8:27:84:15:50:30:fb:26:db:15:07:e7:77:2f: a4:7c:c5:bb:5d:64:7d:1d:b9:4c:8d:45:57:f2:bb: 9c:5f:6e:18:a3:01:03:8f:6a:86:36:4d:52:70:04: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:06:A4:85:08:3C:C4:F9:DA:E3:CA:14:60:05:73:A5:1C:BC:90:DE X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS137699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.198.0.0/16 IPv6: 2403:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:8e:d1:bf:c2:65:22:75:70:98:5d:70:8a:bf:63:36:1c:10: 7a:4b:66:2f:90:54:99:83:66:e0:de:56:29:51:db:29:39:7c: 09:e1:f2:af:42:4d:f3:bc:6e:9b:5e:22:8b:9f:b3:cf:17:b6: f2:5b:a8:a4:eb:59:1e:44:56:f8:49:7a:c9:52:5a:82:0f:73: 77:25:a3:32:f9:d7:7f:9c:78:d3:92:72:72:ea:72:d6:a6:39: 2e:5f:c9:62:a8:05:a9:a6:df:7e:1e:b3:82:ac:b7:ea:5e:64: d0:80:78:9a:88:80:38:82:91:3c:95:e1:de:16:83:8e:c1:ea: 9c:8e:7c:91:5e:64:76:c7:80:98:17:d0:12:fe:f0:84:98:18: 65:d9:ee:dd:24:d5:3a:e3:2d:89:19:64:28:6e:51:80:c1:5b: 95:a0:29:27:b6:e9:c5:ff:d9:fc:cb:c9:c7:4f:9f:c4:e4:07: 0d:f6:0f:5e:48:bc:05:b1:87:e4:ce:7f:ce:10:86:d6:7f:b3: 96:57:45:c0:42:65:31:e4:4a:28:e6:d7:e5:bd:dd:bc:5f:d1: 8d:c2:77:62:ab:e3:24:1f:93:dc:17:69:15:22:13:a6:1c:43: df:60:f1:dc:9f:ae:27:cb:24:45:c0:20:39:16:e2:e9:12:a6: f9:00:fa:7f -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUbj+bFPumjEGdffIyCrV+XAe+PGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTYwNjI0MDZaFw0yNzA0MTUwNjI5MDZaMDMxMTAvBgNV BAMTKDlGMDZBNDg1MDgzQ0M0RjlEQUUzQ0ExNDYwMDU3M0E1MUNCQzkwREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa6x1ESCkQ4/K+z9K8CiAPvnFi VcYmCaVRDzWeAWlU0uZ2zxT1Um/B1172rKnV/7Jo5qLzv6DmHbIVYhSN1vj00+1l iip5FLune9VHT+8DZ2BsZbmZIS/JwVZqn5QGeXEvKpiaPd2FxP/SzQA3lbxO/sBE A9Ss52tnFCrGe/jwzecVQTaEW28I/+s50YraxHeauZmDcOBdcvvM0eIkkRpOo9O8 jJoL8zbKcYEka5YQDx/UablJfNg5DnRpElG6DNkMTnbkwo4F76b2fEtxX3MkFfnY J4QVUDD7JtsVB+d3L6R8xbtdZH0duUyNRVfyu5xfbhijAQOPaoY2TVJwBMQpAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUnwakhQg8xPna48oUYAVzpRy8kN4wHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjgzNjM1OTk3OTA5OTc1MDYvMC9BUzEzNzY5OS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBwwCwQC AAEwBQMDAHTGMA0EAgACMAcDBQAkAx7AMA0GCSqGSIb3DQEBCwUAA4IBAQCajtG/ wmUidXCYXXCKv2M2HBB6S2YvkFSZg2bg3lYpUdspOXwJ4fKvQk3zvG6bXiKLn7PP F7byW6ik61keRFb4SXrJUlqCD3N3JaMy+dd/nHjTknJy6nLWpjkuX8liqAWppt9+ HrOCrLfqXmTQgHiaiIA4gpE8leHeFoOOweqcjnyRXmR2x4CYF9AS/vCEmBhl2e7d JNU64y2JGWQoblGAwVuVoCkntunF/9n8y8nHT5/E5AcN9g9eSLwFsYfkzn/OEIbW f7OWV0XAQmUx5Eoo5tflvd28X9GNwndiq+MkH5PcF2kVIhOmHEPfYPHcn64nyyRF wCA5FuLpEqb5APp/ -----END CERTIFICATE-----Generated at Fri Apr 17 20:59:39 2026 by rpki-client