$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139392e302f32342d3234203d3e203536303436.roa File: 3132332e39392e3139392e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: z0CNegRcRsFkdUgwpwxZ9nN/Iy9HCXGKT0y4nw1eom4= Subject key identifier: 8D:D6:E9:03:41:7D:80:0F:17:AF:A0:19:B6:96:DE:BA:18:E9:26:61 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 044872AFB3C98822E7E25A190D0A184F5A7D0DB4 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139392e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:45:08 +0000 ROA not before: Tue 14 Apr 2026 07:40:08 +0000 ROA not after: Tue 13 Apr 2027 07:45:08 +0000 asID: 56046 IP address blocks: 123.99.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:48:72:af:b3:c9:88:22:e7:e2:5a:19:0d:0a:18:4f:5a:7d:0d:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:40:08 2026 GMT Not After : Apr 13 07:45:08 2027 GMT Subject: CN=8DD6E903417D800F17AFA019B696DEBA18E92661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:45:19:50:b2:90:0e:78:5c:3b:23:3c:f2:a4: 3c:e4:16:71:a3:96:8a:cc:e3:b0:ae:19:8d:75:f1: fd:0b:8b:3a:7b:17:2d:25:2a:7a:4d:46:1a:e9:ec: 85:f0:9e:f7:5d:48:b4:7f:a5:c7:65:8a:1e:fb:9b: f7:14:b9:6e:f9:23:9e:64:e6:08:e3:54:2f:65:da: cb:27:a8:69:19:cf:97:d8:19:f9:3e:07:e5:bd:f2: 18:52:6c:ed:48:48:6f:1a:13:5e:6a:94:8d:63:0e: ad:66:bf:35:bf:01:67:ef:24:29:df:c2:5d:c0:b1: f6:df:be:a2:eb:c3:c4:6c:fe:5e:68:5c:1b:72:fb: fd:bf:20:f0:6d:b3:da:1e:95:d7:d8:25:f3:5e:d1: dd:b0:87:de:c2:86:c7:1f:d4:13:c1:cf:db:2f:7a: e1:d3:41:09:5b:7e:94:fd:2e:10:fc:f4:2c:6f:93: e2:c8:cf:3d:de:c1:50:6d:d3:f1:e5:bd:f4:11:73: cf:ae:3d:8f:83:44:a8:87:68:4e:c4:59:d3:92:a8: a4:ae:70:6d:4a:13:29:ce:37:56:ce:18:7b:d8:8f: 02:be:ef:ae:0b:7f:c7:f4:49:42:a7:8c:58:e8:ef: e2:88:b6:51:0c:76:79:d3:44:cf:cd:0a:0e:57:9c: 53:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D6:E9:03:41:7D:80:0F:17:AF:A0:19:B6:96:DE:BA:18:E9:26:61 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3139392e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.99.199.0/24 Signature Algorithm: sha256WithRSAEncryption 16:6f:23:3e:f6:bf:82:38:e9:88:a5:6d:bb:e2:80:59:ac:3a: 4d:5b:6f:86:6e:c5:0b:56:ec:1e:49:c1:be:c6:be:4f:52:f1: ab:eb:1d:67:ac:c9:79:77:a5:71:f8:2c:ba:28:a4:1c:9c:c0: 08:55:68:3c:eb:21:32:2b:9a:b2:11:9f:a0:7c:ea:af:aa:30: 9b:22:71:da:de:de:37:66:aa:27:11:54:7d:83:98:1f:db:48: 26:30:d6:16:3b:9f:14:c2:59:6d:76:85:8f:d8:2c:2e:f2:c7: 47:6d:66:77:9d:2b:ac:34:e7:6b:80:90:b8:42:89:ec:e1:fd: c4:46:88:e2:91:e8:94:08:7b:ae:bd:ee:0e:b9:11:e5:2b:c6: ff:e4:ac:11:a6:9c:c1:af:fa:f7:dc:51:60:a6:79:c1:f2:b8: 08:45:ac:33:c4:c4:77:84:3d:d3:28:10:3f:74:f2:dc:71:73: 09:1b:1a:c1:60:6a:0c:6f:dc:1f:69:e0:f2:97:7f:dc:9a:fc: 14:5d:c9:03:e4:30:a3:a0:a5:e4:62:18:1f:82:29:e8:48:83: 5d:3d:e7:8d:09:63:f3:a2:fd:95:41:83:b9:13:64:97:56:4d: 2d:fb:62:05:f4:53:c2:51:6e:11:fb:60:7a:49:b5:03:f8:e1: be:d0:65:b8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUBEhyr7PJiCLn4loZDQoYT1p9DbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzQwMDhaFw0yNzA0MTMwNzQ1MDhaMDMxMTAvBgNV BAMTKDhERDZFOTAzNDE3RDgwMEYxN0FGQTAxOUI2OTZERUJBMThFOTI2NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkRRlQspAOeFw7IzzypDzkFnGj lorM47CuGY118f0Lizp7Fy0lKnpNRhrp7IXwnvddSLR/pcdlih77m/cUuW75I55k 5gjjVC9l2ssnqGkZz5fYGfk+B+W98hhSbO1ISG8aE15qlI1jDq1mvzW/AWfvJCnf wl3AsfbfvqLrw8Rs/l5oXBty+/2/IPBts9oeldfYJfNe0d2wh97Chscf1BPBz9sv euHTQQlbfpT9LhD89Cxvk+LIzz3ewVBt0/HlvfQRc8+uPY+DRKiHaE7EWdOSqKSu cG1KEynON1bOGHvYjwK+764Lf8f0SUKnjFjo7+KItlEMdnnTRM/NCg5XnFMTAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUjdbpA0F9gA8Xr6AZtpbeuhjpJmEwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzIzMzJlMzkz OTJlMzEzOTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtjxzANBgkqhkiG9w0BAQsFAAOCAQEAFm8jPva/gjjpiKVtu+KAWaw6 TVtvhm7FC1bsHknBvsa+T1Lxq+sdZ6zJeXelcfgsuiikHJzACFVoPOshMiuashGf oHzqr6owmyJx2t7eN2aqJxFUfYOYH9tIJjDWFjufFMJZbXaFj9gsLvLHR21md50r rDTna4CQuEKJ7OH9xEaI4pHolAh7rr3uDrkR5SvG/+SsEaacwa/699xRYKZ5wfK4 CEWsM8TEd4Q90ygQP3Ty3HFzCRsawWBqDG/cH2ng8pd/3Jr8FF3JA+Qwo6Cl5GIY H4Ip6EiDXT3njQlj86L9lUGDuRNkl1ZNLftiBfRTwlFuEftgekm1A/jhvtBluA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:55:56 2026 by rpki-client