$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139332e302f32342d3234203d3e203536303436.roa File: 3132332e39392e3139332e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: mcFdFJaMC4lzHa5DQkzQU384MSLRc9nd1xbM4A6s66U= Subject key identifier: CE:37:09:EB:D6:FE:EB:0E:6A:BD:41:8E:C5:A0:BC:FE:EA:6B:8A:AE Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 2161B900F661265615F09C0D745E314DAE27537D Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139332e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:29:25 +0000 ROA not before: Tue 14 Apr 2026 07:24:25 +0000 ROA not after: Tue 13 Apr 2027 07:29:25 +0000 asID: 56046 IP address blocks: 123.99.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:61:b9:00:f6:61:26:56:15:f0:9c:0d:74:5e:31:4d:ae:27:53:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:25 2026 GMT Not After : Apr 13 07:29:25 2027 GMT Subject: CN=CE3709EBD6FEEB0E6ABD418EC5A0BCFEEA6B8AAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:31:0e:51:cd:86:88:36:df:99:e7:d1:a2:49: ad:0b:53:ba:d4:d2:01:39:06:6d:0e:fd:19:44:3d: 37:b0:12:65:14:e2:01:8f:08:77:ed:ff:18:d1:19: 4d:4a:c9:25:09:ed:8f:be:63:64:00:99:43:5c:2f: 22:1c:90:f8:8c:37:41:8e:b1:a6:f1:71:a7:8e:36: 32:25:61:70:ee:d0:00:a3:b7:22:a1:d6:29:56:e8: de:19:b1:87:82:cc:d4:f4:1f:4a:fe:22:7b:97:06: 39:e4:6e:1f:c3:a5:f7:32:1f:5a:2e:2f:15:fc:f2: 6a:36:34:fc:ac:50:9b:2f:d7:43:6e:78:de:14:ee: bd:da:a6:03:0d:b3:75:4e:c4:da:43:4a:3d:e3:76: d1:45:be:17:ce:d2:5b:9b:4c:11:9d:0b:d3:19:57: fa:78:8e:8e:44:0a:4c:27:9e:6d:39:1c:62:01:a3: 03:c2:71:1f:af:ef:fb:3f:b1:74:8b:1e:1d:fe:1c: 3d:92:00:b8:fa:1c:42:d3:b5:f2:61:1f:f3:e7:ec: c1:4a:73:81:e6:1c:d0:90:f1:5d:14:ce:54:ed:74: e6:7b:d2:cc:c4:10:0e:d2:04:64:36:20:03:00:1c: a4:ed:c4:96:35:93:36:34:37:29:1e:c1:9e:15:8f: 69:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:37:09:EB:D6:FE:EB:0E:6A:BD:41:8E:C5:A0:BC:FE:EA:6B:8A:AE X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139332e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.99.193.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:99:cd:00:dc:22:b7:70:d1:46:f5:1f:64:cd:61:ed:ba:37: d5:d4:f3:20:44:40:02:b1:d9:0e:19:92:6c:47:ce:66:9d:dd: 18:0a:3b:6f:18:0f:2e:43:c8:e1:71:da:01:54:11:25:48:a6: 62:01:53:03:76:c9:96:14:ef:5e:d0:3b:aa:85:d3:de:5f:fb: 80:ce:cd:23:44:bd:6a:f2:72:d6:76:6b:d7:1e:b5:42:4b:7a: e5:fc:0d:12:71:6b:12:ec:55:fb:03:2d:01:b5:b4:fd:0c:e0: 9d:e5:91:7d:00:63:79:e1:77:ab:87:88:7b:5e:bc:b6:0f:ed: 32:0f:c4:4f:3c:d8:c4:80:7d:40:83:9d:93:b8:f0:0c:ca:09: c5:14:06:70:0e:9d:6d:88:d6:14:cf:30:36:e1:60:e9:bb:ed: da:05:82:03:c9:fc:fb:0c:a6:7e:7e:73:ef:e2:70:9b:56:02: d1:9a:48:9d:81:34:39:96:f7:f5:f7:a5:e1:b4:68:24:ee:f3: a3:3d:4c:8c:ae:c7:a5:8f:d5:fe:13:f3:bd:73:ec:49:7c:6e: 29:42:c5:70:0d:a2:d2:80:75:cf:31:70:5b:14:02:e5:70:be: c5:90:dd:ad:aa:4b:33:0f:da:c4:03:5c:88:ea:f0:39:51:b7: b7:78:30:e5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUIWG5APZhJlYV8JwNdF4xTa4nU30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjVaFw0yNzA0MTMwNzI5MjVaMDMxMTAvBgNV BAMTKENFMzcwOUVCRDZGRUVCMEU2QUJENDE4RUM1QTBCQ0ZFRUE2QjhBQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYMQ5RzYaINt+Z59GiSa0LU7rU 0gE5Bm0O/RlEPTewEmUU4gGPCHft/xjRGU1KySUJ7Y++Y2QAmUNcLyIckPiMN0GO sabxcaeONjIlYXDu0ACjtyKh1ilW6N4ZsYeCzNT0H0r+InuXBjnkbh/DpfcyH1ou LxX88mo2NPysUJsv10NueN4U7r3apgMNs3VOxNpDSj3jdtFFvhfO0lubTBGdC9MZ V/p4jo5ECkwnnm05HGIBowPCcR+v7/s/sXSLHh3+HD2SALj6HELTtfJhH/Pn7MFK c4HmHNCQ8V0UzlTtdOZ70szEEA7SBGQ2IAMAHKTtxJY1kzY0NykewZ4Vj2mjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzjcJ69b+6w5qvUGOxaC8/upriq4wHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzIzMzJlMzkz OTJlMzEzOTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtjwTANBgkqhkiG9w0BAQsFAAOCAQEAPJnNANwit3DRRvUfZM1h7bo3 1dTzIERAArHZDhmSbEfOZp3dGAo7bxgPLkPI4XHaAVQRJUimYgFTA3bJlhTvXtA7 qoXT3l/7gM7NI0S9avJy1nZr1x61Qkt65fwNEnFrEuxV+wMtAbW0/QzgneWRfQBj eeF3q4eIe168tg/tMg/ETzzYxIB9QIOdk7jwDMoJxRQGcA6dbYjWFM8wNuFg6bvt 2gWCA8n8+wymfn5z7+Jwm1YC0ZpInYE0OZb39fel4bRoJO7zoz1MjK7HpY/V/hPz vXPsSXxuKULFcA2i0oB1zzFwWxQC5XC+xZDdrapLMw/axANciOrwOVG3t3gw5Q== -----END CERTIFICATE-----Generated at Fri Apr 17 19:09:58 2026 by rpki-client