$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139372e302f32342d3234203d3e203536303436.roa File: 3132332e39392e3139372e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: giB60RXOqPiHw+WpYG8hkzWkeY9zlK473PnH6rncvNU= Subject key identifier: FD:34:D7:E7:BE:51:2F:F8:5F:BD:4C:A2:F9:91:E5:C3:D2:D4:66:E4 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 6FE836F92FA9F9903BE0FDBC6CB4A810811F0A71 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139372e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:45:08 +0000 ROA not before: Tue 14 Apr 2026 07:40:08 +0000 ROA not after: Tue 13 Apr 2027 07:45:08 +0000 asID: 56046 IP address blocks: 123.99.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e8:36:f9:2f:a9:f9:90:3b:e0:fd:bc:6c:b4:a8:10:81:1f:0a:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:40:08 2026 GMT Not After : Apr 13 07:45:08 2027 GMT Subject: CN=FD34D7E7BE512FF85FBD4CA2F991E5C3D2D466E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b9:38:c6:74:07:cc:65:4d:a0:7c:bd:32:8d: 99:fb:67:d1:b4:11:ca:80:56:d3:f6:6f:ef:bd:63: 31:63:5f:af:9a:99:27:74:66:85:a7:f3:7b:4d:2e: ae:ab:f4:23:58:5a:15:04:d6:a8:8b:90:ec:7d:be: 81:64:5a:35:a0:f7:5a:28:04:dd:2e:24:7c:fb:47: 73:e2:03:d8:8e:26:f8:25:8c:60:16:92:ce:6e:ee: 9d:06:85:21:45:1b:e7:c9:bd:df:ab:d2:4d:1e:a6: e7:4f:65:ca:9e:40:ee:aa:32:cc:ea:f6:e1:c0:cb: b2:bf:03:b0:03:a0:4a:b4:93:e1:f3:a3:fc:e5:02: db:a9:a8:30:95:5d:51:1b:45:3d:48:f1:16:87:ff: c5:36:a7:38:dd:b9:d5:b2:f0:c6:08:01:f8:54:80: fb:a3:18:fc:ba:80:f6:85:e5:a2:03:66:58:b7:f7: 20:92:91:02:04:ee:4d:c7:34:59:e3:32:a1:14:7a: 3f:f7:43:03:53:4f:ec:db:2f:66:80:e0:1d:80:99: 9c:5e:28:f2:9f:fa:75:55:a7:84:6b:98:0b:a4:d9: cd:e3:b8:1f:35:dc:70:b4:ce:b5:2f:a8:67:74:5c: 4b:83:26:64:70:95:2b:91:7a:b2:61:1c:4b:15:02: f7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:34:D7:E7:BE:51:2F:F8:5F:BD:4C:A2:F9:91:E5:C3:D2:D4:66:E4 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139372e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.99.197.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:96:69:fd:1d:84:6b:b2:e0:2a:70:d1:14:a4:5f:76:a8:78: 08:8e:4a:25:46:58:ca:c8:99:29:50:89:ac:6d:82:ee:77:83: 8c:3b:52:f3:1c:22:4c:75:60:48:42:c9:7a:98:5b:ce:09:a2: 63:7d:b1:28:f5:20:f5:50:a5:2a:fe:de:8a:b7:79:9a:50:c4: 75:92:a0:1d:89:99:b3:f8:c0:8c:9c:c9:71:8d:ea:f9:e0:24: f2:c3:e1:0c:4c:60:a0:a6:eb:c2:82:95:4a:15:ba:af:d9:6d: ea:a1:82:00:cc:3b:0b:22:02:82:3d:8f:b4:20:64:4d:9a:dc: 9c:9f:cb:bc:fd:91:0e:d5:01:9c:de:0a:18:44:32:a5:e2:90: 84:77:47:87:68:da:aa:b7:22:70:15:dc:c2:8f:33:d7:f2:bc: e7:e9:a6:5e:49:39:c5:75:7e:1b:06:64:48:00:cd:9d:b1:f1: 89:f3:b1:2e:22:37:6a:77:a7:74:46:ab:52:e1:9a:13:9d:44: cc:45:8f:0c:68:66:67:4c:65:da:fe:62:27:da:30:b3:47:2f: 11:04:e6:88:42:9f:10:3f:09:9b:9c:aa:80:54:3e:2a:ad:41: a1:f8:cb:50:93:f2:e8:e8:f3:0d:a1:4f:72:a4:28:06:7a:49: ac:9d:55:e5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUb+g2+S+p+ZA74P28bLSoEIEfCnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzQwMDhaFw0yNzA0MTMwNzQ1MDhaMDMxMTAvBgNV BAMTKEZEMzREN0U3QkU1MTJGRjg1RkJENENBMkY5OTFFNUMzRDJENDY2RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGuTjGdAfMZU2gfL0yjZn7Z9G0 EcqAVtP2b++9YzFjX6+amSd0ZoWn83tNLq6r9CNYWhUE1qiLkOx9voFkWjWg91oo BN0uJHz7R3PiA9iOJvgljGAWks5u7p0GhSFFG+fJvd+r0k0epudPZcqeQO6qMszq 9uHAy7K/A7ADoEq0k+Hzo/zlAtupqDCVXVEbRT1I8RaH/8U2pzjdudWy8MYIAfhU gPujGPy6gPaF5aIDZli39yCSkQIE7k3HNFnjMqEUej/3QwNTT+zbL2aA4B2AmZxe KPKf+nVVp4RrmAuk2c3juB813HC0zrUvqGd0XEuDJmRwlSuRerJhHEsVAvfdAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU/TTX575RL/hfvUyi+ZHlw9LUZuQwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzIzMzJlMzkz OTJlMzEzOTM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtjxTANBgkqhkiG9w0BAQsFAAOCAQEAapZp/R2Ea7LgKnDRFKRfdqh4 CI5KJUZYysiZKVCJrG2C7neDjDtS8xwiTHVgSELJephbzgmiY32xKPUg9VClKv7e ird5mlDEdZKgHYmZs/jAjJzJcY3q+eAk8sPhDExgoKbrwoKVShW6r9lt6qGCAMw7 CyICgj2PtCBkTZrcnJ/LvP2RDtUBnN4KGEQypeKQhHdHh2jaqrcicBXcwo8z1/K8 5+mmXkk5xXV+GwZkSADNnbHxifOxLiI3anendEarUuGaE51EzEWPDGhmZ0xl2v5i J9ows0cvEQTmiEKfED8Jm5yqgFQ+Kq1BofjLUJPy6OjzDaFPcqQoBnpJrJ1V5Q== -----END CERTIFICATE-----Generated at Fri Apr 17 20:24:16 2026 by rpki-client