$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139382e302f32342d3234203d3e203536303436.roa File: 3132332e39392e3139382e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: eLlkl6s2oq5YaE+V/mrCZDzlPmss69CoPgY65UKenV8= Subject key identifier: 93:F2:8F:62:FF:73:6C:04:26:76:52:5E:28:97:C0:C6:9F:0B:2D:17 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 2901B895D10AEBB17C987E441860AEEA3DF5E96C Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139382e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:45:09 +0000 ROA not before: Tue 14 Apr 2026 07:40:09 +0000 ROA not after: Tue 13 Apr 2027 07:45:09 +0000 asID: 56046 IP address blocks: 123.99.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:01:b8:95:d1:0a:eb:b1:7c:98:7e:44:18:60:ae:ea:3d:f5:e9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:40:09 2026 GMT Not After : Apr 13 07:45:09 2027 GMT Subject: CN=93F28F62FF736C042676525E2897C0C69F0B2D17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a0:a3:5e:ba:6b:70:c7:57:34:0a:0e:cb:c8: ff:e5:62:0f:aa:aa:66:62:11:1f:fc:76:59:8d:91: 70:74:8a:b8:96:cf:09:c7:27:db:70:97:06:b2:a2: 33:20:98:f4:15:41:d3:3a:ad:81:ee:c3:62:88:2f: 86:f7:83:a0:e7:04:d4:67:75:52:76:89:12:59:d3: ed:3f:b4:44:5d:4c:f9:0d:80:ba:62:9a:f5:c5:a9: 87:97:84:27:2e:71:24:ec:df:01:5b:c6:1b:9a:52: 65:d4:5f:40:06:90:e4:d6:ba:5a:44:42:13:2f:00: 29:0c:b0:6e:93:e2:39:58:5b:d9:fb:b9:f1:d0:94: ef:a0:61:1b:a6:22:58:14:1d:21:45:24:a5:50:96: 05:5a:e4:85:22:9c:9f:65:e0:ab:66:10:1d:df:6d: fe:3a:fa:31:45:59:4c:66:39:52:d2:34:39:55:2c: 21:21:fb:45:c4:f0:2b:ab:39:d6:fe:69:94:50:8e: be:02:97:3f:36:af:11:7b:5d:73:2d:d5:68:5b:94: 29:88:c7:5c:50:23:43:df:2c:eb:ee:ce:10:23:70: 2f:f4:d5:2c:f7:ac:c9:0b:2c:27:63:9f:28:af:2f: 41:72:93:bc:68:8f:e2:c2:67:f7:4b:3d:a4:e2:83: f0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F2:8F:62:FF:73:6C:04:26:76:52:5E:28:97:C0:C6:9F:0B:2D:17 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139382e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.99.198.0/24 Signature Algorithm: sha256WithRSAEncryption a8:b9:e6:e6:92:d1:ad:7d:a4:41:7f:03:40:66:90:de:28:d2: 85:31:60:59:58:63:eb:ef:86:96:cb:60:1f:ba:3a:69:14:25: 76:51:88:a4:75:6d:5d:6b:d1:b7:38:96:02:b2:3a:f1:c6:a8: aa:fa:4e:b6:ce:49:46:6b:b2:54:b7:fb:c9:14:d0:64:75:a8: 33:75:df:f1:14:70:7a:76:a9:1e:94:3f:c5:5e:d3:43:43:52: 0a:e1:55:5f:e6:50:12:bb:f1:b2:ff:0a:b0:02:95:05:8e:fa: 65:cc:4f:56:c1:fb:91:bf:41:d3:b0:f7:2c:ed:40:77:54:cc: d0:e7:01:6b:c4:c0:c2:5e:46:55:2c:98:c0:5d:ee:de:60:6d: 78:b9:69:f3:f6:9f:9a:1c:04:4f:c3:66:21:2b:f2:0e:8e:c0: 40:8a:dc:cc:a2:63:a6:08:5a:ee:4a:f4:00:6f:d9:26:63:76: 55:1b:6b:50:d8:21:7e:d1:a2:e5:03:c6:09:e8:53:6d:27:26: 54:ed:3a:eb:e8:06:f2:c8:ea:5e:48:0c:1f:28:5b:57:ff:a9: 55:a4:76:fc:a3:cc:d5:7f:f4:a1:f8:ca:d1:8a:15:c7:78:70: 6a:e8:d7:9d:5f:c4:83:70:b2:6a:de:de:43:b1:33:ea:85:77: fb:e2:5e:0e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKQG4ldEK67F8mH5EGGCu6j316WwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzQwMDlaFw0yNzA0MTMwNzQ1MDlaMDMxMTAvBgNV BAMTKDkzRjI4RjYyRkY3MzZDMDQyNjc2NTI1RTI4OTdDMEM2OUYwQjJEMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqoKNeumtwx1c0Cg7LyP/lYg+q qmZiER/8dlmNkXB0iriWzwnHJ9twlwayojMgmPQVQdM6rYHuw2KIL4b3g6DnBNRn dVJ2iRJZ0+0/tERdTPkNgLpimvXFqYeXhCcucSTs3wFbxhuaUmXUX0AGkOTWulpE QhMvACkMsG6T4jlYW9n7ufHQlO+gYRumIlgUHSFFJKVQlgVa5IUinJ9l4KtmEB3f bf46+jFFWUxmOVLSNDlVLCEh+0XE8CurOdb+aZRQjr4Clz82rxF7XXMt1WhblCmI x1xQI0PfLOvuzhAjcC/01Sz3rMkLLCdjnyivL0Fyk7xoj+LCZ/dLPaTig/BlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUk/KPYv9zbAQmdlJeKJfAxp8LLRcwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzIzMzJlMzkz OTJlMzEzOTM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtjxjANBgkqhkiG9w0BAQsFAAOCAQEAqLnm5pLRrX2kQX8DQGaQ3ijS hTFgWVhj6++GlstgH7o6aRQldlGIpHVtXWvRtziWArI68caoqvpOts5JRmuyVLf7 yRTQZHWoM3Xf8RRwenapHpQ/xV7TQ0NSCuFVX+ZQErvxsv8KsAKVBY76ZcxPVsH7 kb9B07D3LO1Ad1TM0OcBa8TAwl5GVSyYwF3u3mBteLlp8/afmhwET8NmISvyDo7A QIrczKJjpgha7kr0AG/ZJmN2VRtrUNghftGi5QPGCehTbScmVO066+gG8sjqXkgM HyhbV/+pVaR2/KPM1X/0ofjK0YoVx3hwaujXnV/Eg3Cyat7eQ7Ez6oV3++JeDg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:24:37 2026 by rpki-client