$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3130332e3132302e37322e302f32342d3234203d3e203538343631.roa File: 3130332e3132302e37322e302f32342d3234203d3e203538343631.roa (raw, json) Hash identifier: LhgzEloXM1//B37y4gExKVofK8riLORDS4SNhrFc0gw= Subject key identifier: 7F:AB:1D:2E:F1:A2:90:D1:01:8E:7C:CE:26:43:CD:37:AC:FD:EE:93 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 3FD74EAEA133C7511D2BF612715D4CD0301EDADA Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3130332e3132302e37322e302f32342d3234203d3e203538343631.roa Signing time: Tue 14 Apr 2026 07:29:25 +0000 ROA not before: Tue 14 Apr 2026 07:24:25 +0000 ROA not after: Tue 13 Apr 2027 07:29:25 +0000 asID: 58461 IP address blocks: 103.120.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:d7:4e:ae:a1:33:c7:51:1d:2b:f6:12:71:5d:4c:d0:30:1e:da:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:25 2026 GMT Not After : Apr 13 07:29:25 2027 GMT Subject: CN=7FAB1D2EF1A290D1018E7CCE2643CD37ACFDEE93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f5:ef:0b:d6:7c:2a:17:69:56:0a:de:48:eb: 8e:cd:16:1c:3c:b9:58:9d:ce:95:47:74:c9:1a:0e: 98:9b:71:66:3b:1b:dc:14:60:e5:53:f4:7f:6d:5c: e8:32:42:49:82:68:38:66:94:b0:e9:ac:87:d9:b0: 70:de:a9:20:6f:4d:ba:58:bf:c9:87:e7:8c:7c:c6: b4:92:9d:44:bf:e0:a6:73:a9:b5:58:f9:1d:54:13: 41:86:5a:ef:16:94:e1:4a:64:52:a9:a1:2c:e0:ef: 56:61:22:89:4e:13:9a:4b:58:71:8f:01:00:03:00: 4f:e9:f5:9c:28:e8:40:69:8a:0c:67:e7:ea:e0:8d: 2b:6c:54:b1:0a:07:01:25:0d:43:31:55:db:4e:da: 9a:e4:47:f1:6e:47:f3:e8:05:70:83:9c:00:c7:c0: 6f:1d:65:33:bc:c1:70:03:3c:71:7a:13:22:75:36: e0:12:64:99:f2:ce:46:0c:0e:0b:19:1f:f2:1b:70: 91:18:f4:e5:c1:c7:cf:7d:dc:26:3b:f2:f7:d0:0b: 8c:2e:0e:7d:9e:2e:53:c5:bd:22:6d:08:82:d1:5d: 08:bc:6d:88:4d:0f:89:b8:8c:a0:ba:41:29:9a:7d: e8:44:6e:85:7b:90:90:be:ef:5a:ec:4f:23:cb:fc: 13:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AB:1D:2E:F1:A2:90:D1:01:8E:7C:CE:26:43:CD:37:AC:FD:EE:93 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3130332e3132302e37322e302f32342d3234203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.72.0/24 Signature Algorithm: sha256WithRSAEncryption 16:ca:77:1e:c1:d5:67:4b:7d:f3:c3:b3:62:80:13:61:a5:7f: 71:0e:dd:10:a2:26:5e:1e:cf:52:be:92:ab:50:ab:07:ea:90: f9:ff:a8:03:6e:75:72:45:49:04:45:8e:ab:1f:d4:9d:d0:e8: bd:78:84:5d:a2:a3:2b:77:69:aa:82:26:5a:51:7c:f0:3c:0a: 44:4d:e3:05:a7:0f:e0:30:2d:f1:8f:b7:98:17:be:dd:8b:1c: 30:4e:3c:6f:1d:e6:76:ac:5a:ff:5a:06:71:16:c6:47:a5:6e: e7:ec:60:dc:6a:c9:17:8e:2e:f4:9b:18:80:b6:75:c8:8d:4f: 81:71:da:a9:6d:c6:ef:31:60:1c:7e:c9:b5:34:12:75:81:cb: 2a:1b:ef:ec:d7:f5:7c:19:53:95:c2:6b:b4:89:75:b2:e4:2c: ae:ad:87:1d:b7:09:26:f5:d3:3c:38:62:4d:ca:bb:e6:fd:51: 6a:47:16:76:31:03:db:93:4a:fe:0b:f0:3e:66:7d:36:1c:81: 6b:33:b7:96:84:f1:b9:30:07:bd:67:3b:85:75:c1:0d:f1:ac: 75:cf:e7:dc:0f:d4:7a:a5:61:46:a4:e4:35:5f:e3:a3:3f:a3: ac:e7:74:30:d7:97:b3:26:36:10:c7:39:50:5a:ba:48:83:19: ab:5e:94:f9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUP9dOrqEzx1EdK/YScV1M0DAe2towDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjVaFw0yNzA0MTMwNzI5MjVaMDMxMTAvBgNV BAMTKDdGQUIxRDJFRjFBMjkwRDEwMThFN0NDRTI2NDNDRDM3QUNGREVFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC09e8L1nwqF2lWCt5I647NFhw8 uVidzpVHdMkaDpibcWY7G9wUYOVT9H9tXOgyQkmCaDhmlLDprIfZsHDeqSBvTbpY v8mH54x8xrSSnUS/4KZzqbVY+R1UE0GGWu8WlOFKZFKpoSzg71ZhIolOE5pLWHGP AQADAE/p9Zwo6EBpigxn5+rgjStsVLEKBwElDUMxVdtO2prkR/FuR/PoBXCDnADH wG8dZTO8wXADPHF6EyJ1NuASZJnyzkYMDgsZH/IbcJEY9OXBx8993CY78vfQC4wu Dn2eLlPFvSJtCILRXQi8bYhND4m4jKC6QSmafehEboV7kJC+71rsTyPL/BNpAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUf6sdLvGikNEBjnzOJkPNN6z97pMwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzAzMzJlMzEz MjMwMmUzNzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd4SDANBgkqhkiG9w0BAQsFAAOCAQEAFsp3HsHVZ0t988OzYoATYaV/ cQ7dEKImXh7PUr6Sq1CrB+qQ+f+oA251ckVJBEWOqx/UndDovXiEXaKjK3dpqoIm WlF88DwKRE3jBacP4DAt8Y+3mBe+3YscME48bx3mdqxa/1oGcRbGR6Vu5+xg3GrJ F44u9JsYgLZ1yI1PgXHaqW3G7zFgHH7JtTQSdYHLKhvv7Nf1fBlTlcJrtIl1suQs rq2HHbcJJvXTPDhiTcq75v1RakcWdjED25NK/gvwPmZ9NhyBazO3loTxuTAHvWc7 hXXBDfGsdc/n3A/UeqVhRqTkNV/joz+jrOd0MNeXsyY2EMc5UFq6SIMZq16U+Q== -----END CERTIFICATE-----Generated at Fri Apr 17 18:23:08 2026 by rpki-client