$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3230352e302f32342d3234203d3e203536303436.roa File: 3132332e39392e3230352e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: A+JYZYaX7pfDnwPKiZwgf7VueKfY89J+t/cO6gXEw1A= Subject key identifier: D9:EE:47:D9:04:E4:ED:0A:58:BB:BD:A1:5E:EE:FF:2E:D9:67:DC:A6 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 3279938A30A37E9A36ACF02864D884073FFBE297 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3230352e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:45:08 +0000 ROA not before: Tue 14 Apr 2026 07:40:08 +0000 ROA not after: Tue 13 Apr 2027 07:45:08 +0000 asID: 56046 IP address blocks: 123.99.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:79:93:8a:30:a3:7e:9a:36:ac:f0:28:64:d8:84:07:3f:fb:e2:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:40:08 2026 GMT Not After : Apr 13 07:45:08 2027 GMT Subject: CN=D9EE47D904E4ED0A58BBBDA15EEEFF2ED967DCA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:54:d1:2a:5a:fc:2b:4f:25:02:4e:c6:8b: ff:ee:02:57:25:47:27:0d:c2:35:85:d1:19:af:91: ad:f2:3f:54:db:04:62:7d:79:0e:8a:e0:ec:fb:f0: 2e:8a:20:fc:d6:d9:73:5a:c5:4c:98:7e:b3:0a:39: 19:b3:0a:4a:13:b1:49:2e:7f:47:8a:f9:3c:fa:7a: 2e:57:92:28:29:aa:b1:ea:b0:22:7e:06:a1:a8:2b: be:37:04:cd:9c:5e:b4:97:c0:7f:bf:83:9c:00:d4: 2c:31:6e:78:8c:72:22:88:74:0e:78:d7:dd:28:22: c9:e6:30:99:ef:71:28:86:31:46:d3:ad:ff:52:6f: 75:4a:b1:30:e1:2c:85:7e:fb:28:05:1f:06:13:e4: 3f:4e:f5:75:0c:57:85:93:4a:15:8e:f5:af:2e:b4: 69:c9:57:f8:b4:a0:bb:f0:7d:e9:ec:82:d3:30:f6: f9:21:8f:64:ec:42:5b:ac:2d:b3:25:68:a4:15:04: f5:6c:68:d1:e3:d1:2d:5c:90:77:4b:ad:95:16:72: 87:de:df:15:77:a1:dc:ff:7e:08:00:3a:38:68:eb: db:98:1e:f4:db:3a:af:92:a7:57:6e:59:ec:b4:80: ea:1c:6b:dd:28:3b:c6:54:47:10:f1:84:00:e1:8e: 0c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:EE:47:D9:04:E4:ED:0A:58:BB:BD:A1:5E:EE:FF:2E:D9:67:DC:A6 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132332e39392e3230352e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.99.205.0/24 Signature Algorithm: sha256WithRSAEncryption b5:3e:4e:ed:da:a4:25:d8:b8:d0:9a:c6:7a:a4:85:09:e8:32: a2:8a:03:14:8e:15:81:71:c7:1f:81:17:ef:84:b0:86:73:99: 6d:60:71:04:45:cb:8b:d3:5f:de:8a:b6:9b:f9:0a:a2:a1:7b: 29:f3:cb:c3:cd:d6:8c:14:e6:de:2b:e6:b7:7b:72:1d:a1:da: 45:78:78:31:d8:52:94:64:c7:86:a2:31:22:49:23:50:38:39: 25:7c:00:e7:cc:e7:df:67:82:ef:63:b0:08:98:d1:00:4d:06: 13:21:82:ee:5c:a1:c7:2c:62:0e:ab:a5:7a:28:c3:de:04:74: 67:fb:b9:0d:73:28:99:a6:41:28:e1:63:94:63:70:a1:a6:ac: 67:31:22:3d:93:2c:fb:bc:4c:2c:b9:22:ac:3b:1f:ce:6c:85: e4:0d:c9:fa:de:f3:5f:f9:69:3f:1b:c6:5a:a0:21:a5:cf:0a: 4e:3f:79:cd:e3:85:b3:34:b1:1a:78:00:0a:97:77:78:d4:ef: 80:b3:7e:99:d2:5e:2b:49:4e:78:bb:67:37:94:a2:e0:5c:8e: 83:4a:aa:9d:62:5a:98:3c:57:f1:29:2b:d0:fb:3b:b4:0d:15: 8a:bc:71:8d:7e:ab:a1:bf:f1:5b:04:11:20:b4:0b:f6:10:a8: 24:8e:4d:f2 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUMnmTijCjfpo2rPAoZNiEBz/74pcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzQwMDhaFw0yNzA0MTMwNzQ1MDhaMDMxMTAvBgNV BAMTKEQ5RUU0N0Q5MDRFNEVEMEE1OEJCQkRBMTVFRUVGRjJFRDk2N0RDQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMNlTRKlr8K08lAk7Gi//uAlcl RycNwjWF0Rmvka3yP1TbBGJ9eQ6K4Oz78C6KIPzW2XNaxUyYfrMKORmzCkoTsUku f0eK+Tz6ei5XkigpqrHqsCJ+BqGoK743BM2cXrSXwH+/g5wA1CwxbniMciKIdA54 190oIsnmMJnvcSiGMUbTrf9Sb3VKsTDhLIV++ygFHwYT5D9O9XUMV4WTShWO9a8u tGnJV/i0oLvwfensgtMw9vkhj2TsQlusLbMlaKQVBPVsaNHj0S1ckHdLrZUWcofe 3xV3odz/fggAOjho69uYHvTbOq+Sp1duWey0gOoca90oO8ZURxDxhADhjgxLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU2e5H2QTk7QpYu72hXu7/Ltln3KYwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzIzMzJlMzkz OTJlMzIzMDM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtjzTANBgkqhkiG9w0BAQsFAAOCAQEAtT5O7dqkJdi40JrGeqSFCegy oooDFI4VgXHHH4EX74SwhnOZbWBxBEXLi9Nf3oq2m/kKoqF7KfPLw83WjBTm3ivm t3tyHaHaRXh4MdhSlGTHhqIxIkkjUDg5JXwA58zn32eC72OwCJjRAE0GEyGC7lyh xyxiDquleijD3gR0Z/u5DXMomaZBKOFjlGNwoaasZzEiPZMs+7xMLLkirDsfzmyF 5A3J+t7zX/lpPxvGWqAhpc8KTj95zeOFszSxGngACpd3eNTvgLN+mdJeK0lOeLtn N5Si4FyOg0qqnWJamDxX8Skr0Ps7tA0VirxxjX6rob/xWwQRILQL9hCoJI5N8g== -----END CERTIFICATE-----Generated at Fri Apr 17 17:37:53 2026 by rpki-client