$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132342e3234382e36342e302f31382d3138203d3e203538343631.roa File: 3132342e3234382e36342e302f31382d3138203d3e203538343631.roa (raw, json) Hash identifier: 6Kh3kADdLzEQKYiGqBHcfED9YAZb77roeahrAkbO94E= Subject key identifier: CB:96:C1:E4:A4:5D:25:48:2B:EE:2C:4C:73:AD:28:79:96:ED:FE:7C Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 61971C4AB3DA09A03D64C53A0BE752226FDBD4C9 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132342e3234382e36342e302f31382d3138203d3e203538343631.roa Signing time: Tue 14 Apr 2026 07:45:08 +0000 ROA not before: Tue 14 Apr 2026 07:40:08 +0000 ROA not after: Tue 13 Apr 2027 07:45:08 +0000 asID: 58461 IP address blocks: 124.248.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:97:1c:4a:b3:da:09:a0:3d:64:c5:3a:0b:e7:52:22:6f:db:d4:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:40:08 2026 GMT Not After : Apr 13 07:45:08 2027 GMT Subject: CN=CB96C1E4A45D25482BEE2C4C73AD287996EDFE7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c4:98:88:cd:69:23:d6:9c:02:91:13:d7:19: 94:56:7b:13:71:a7:ee:03:2a:f1:0a:fa:4a:76:90: 4f:66:4f:4e:be:6b:e0:b7:c1:a2:ec:84:85:29:51: aa:0e:48:f7:97:e6:69:6f:3c:ea:90:df:0b:02:5f: 2d:52:d3:4d:d3:93:8a:d7:5e:03:52:78:42:67:1c: 36:f7:b7:ea:2b:9c:50:ae:fe:7c:16:b4:ee:c6:e6: ac:9b:dd:6a:c2:df:6e:f4:05:15:96:81:03:a0:7c: 04:d9:1f:d7:a4:09:74:51:bf:9c:a3:51:e7:23:fd: 68:bc:32:f5:0e:ac:86:33:5a:4b:d4:b1:3a:2a:05: 5e:9f:e2:5c:ad:ad:cb:a1:a2:2a:dc:5d:03:ee:74: ee:be:23:a5:88:13:c8:9e:32:fc:68:14:2d:f0:c8: d7:3d:3c:5c:a3:3e:ae:30:54:0b:d5:92:e0:5d:76: 96:b3:5b:eb:f9:66:09:90:d1:7a:67:d5:6a:36:16: fc:93:a9:80:6f:36:15:91:29:c0:41:9d:97:99:58: 41:8d:43:0f:fd:a8:11:e5:33:ab:68:80:2f:c0:5d: 70:55:40:d9:7b:cf:24:76:46:2f:c9:3e:a7:90:9b: 2f:3d:f3:9f:80:1e:e0:33:de:56:f1:7e:b9:b8:f0: f5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:96:C1:E4:A4:5D:25:48:2B:EE:2C:4C:73:AD:28:79:96:ED:FE:7C X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3132342e3234382e36342e302f31382d3138203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.248.64.0/18 Signature Algorithm: sha256WithRSAEncryption 74:ec:b2:9f:c1:e4:1c:82:28:7a:f0:a0:f7:f2:e4:f0:53:0f: af:b2:b0:f6:c1:90:2c:24:3a:1e:76:f4:a5:a6:3f:e9:3d:f2: 5b:c1:a1:56:88:82:28:35:c4:04:b8:77:90:b4:ed:c3:e2:ba: 09:9b:92:a1:c1:c8:8f:a5:c3:05:23:92:f3:9f:c5:89:d0:0d: 04:ce:e2:c2:2c:e9:c7:c8:7f:c8:09:c3:9a:ea:6b:6f:14:60: dc:34:82:d2:56:85:94:ad:7d:fb:3a:71:6b:bd:c4:af:78:41: 21:b2:f5:2e:38:6f:bc:bf:42:d7:01:4c:27:21:39:59:ec:0a: 4c:cd:54:cf:e6:b1:cd:4f:3f:ad:d2:6d:04:69:c7:85:be:2e: f0:1c:e2:53:22:c5:df:fa:3a:ec:c0:4c:9d:2d:fe:1b:7d:7a: f8:44:35:aa:71:dd:4a:fc:b7:5b:13:33:53:b0:e0:91:a1:fd: 4e:0f:0e:b6:e5:2c:f1:cf:ca:6b:a4:1a:2e:36:9b:ce:8d:a4: 25:48:e6:76:0f:73:c6:1d:a4:c1:15:bd:a9:42:f8:69:af:44: d0:8f:f3:04:0d:04:60:f8:ce:6e:5f:23:4a:68:eb:16:cf:9b: a0:b9:07:19:ed:85:86:ef:7f:d1:ef:4c:54:3a:cf:92:40:d1: 3f:5e:1d:87 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYZccSrPaCaA9ZMU6C+dSIm/b1MkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzQwMDhaFw0yNzA0MTMwNzQ1MDhaMDMxMTAvBgNV BAMTKENCOTZDMUU0QTQ1RDI1NDgyQkVFMkM0QzczQUQyODc5OTZFREZFN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTxJiIzWkj1pwCkRPXGZRWexNx p+4DKvEK+kp2kE9mT06+a+C3waLshIUpUaoOSPeX5mlvPOqQ3wsCXy1S003Tk4rX XgNSeEJnHDb3t+ornFCu/nwWtO7G5qyb3WrC3270BRWWgQOgfATZH9ekCXRRv5yj Uecj/Wi8MvUOrIYzWkvUsToqBV6f4lytrcuhoircXQPudO6+I6WIE8ieMvxoFC3w yNc9PFyjPq4wVAvVkuBddpazW+v5ZgmQ0Xpn1Wo2FvyTqYBvNhWRKcBBnZeZWEGN Qw/9qBHlM6togC/AXXBVQNl7zyR2Ri/JPqeQmy8985+AHuAz3lbxfrm48PU9AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUy5bB5KRdJUgr7ixMc60oeZbt/nwwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMxMzIzNDJlMzIz NDM4MmUzNjM0MmUzMDJmMzEzODJkMzEzODIwM2QzZTIwMzUzODM0MzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBnz4QDANBgkqhkiG9w0BAQsFAAOCAQEAdOyyn8HkHIIoevCg9/Lk8FMP r7Kw9sGQLCQ6Hnb0paY/6T3yW8GhVoiCKDXEBLh3kLTtw+K6CZuSocHIj6XDBSOS 85/FidANBM7iwizpx8h/yAnDmuprbxRg3DSC0laFlK19+zpxa73Er3hBIbL1Ljhv vL9C1wFMJyE5WewKTM1Uz+axzU8/rdJtBGnHhb4u8BziUyLF3/o67MBMnS3+G316 +EQ1qnHdSvy3WxMzU7DgkaH9Tg8OtuUs8c/Ka6QaLjabzo2kJUjmdg9zxh2kwRW9 qUL4aa9E0I/zBA0EYPjObl8jSmjrFs+boLkHGe2Fhu9/0e9MVDrPkkDRP14dhw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:49:36 2026 by rpki-client