$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130342e302f32342d3234203d3e203536303436.roa File: 3230332e3133352e3130342e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: GZliXQ1/MKT4kSXUQTbCC3oZd0ZgyhX/v4L01AAk4ZY= Subject key identifier: A5:66:3F:34:36:9C:DF:AC:E6:6B:6D:F6:4A:D2:10:F1:62:9B:98:7A Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 18E2300C82F031BE49B27AAB837EFD32613C663D Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130342e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:29:24 +0000 ROA not before: Tue 14 Apr 2026 07:24:24 +0000 ROA not after: Tue 13 Apr 2027 07:29:24 +0000 asID: 56046 IP address blocks: 203.135.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e2:30:0c:82:f0:31:be:49:b2:7a:ab:83:7e:fd:32:61:3c:66:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:24 2026 GMT Not After : Apr 13 07:29:24 2027 GMT Subject: CN=A5663F34369CDFACE66B6DF64AD210F1629B987A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:40:28:01:2b:f5:b5:6f:46:ae:7b:29:9a:68: 03:25:e3:61:39:ec:6a:9d:03:5f:5d:fb:b7:f1:c5: 7b:85:91:9e:dd:53:1c:4a:d9:cb:9d:b2:01:f2:f2: e8:ff:5e:2a:1b:dd:16:c7:e2:1d:ab:20:50:87:dc: 7f:6c:de:b6:33:64:8f:ee:bf:ec:32:c5:03:8b:64: 69:02:0c:f9:c8:0f:0f:48:fd:62:48:51:b6:82:78: b0:48:bd:2b:26:68:17:e1:c5:2f:47:09:69:14:90: cf:5a:62:24:9f:f4:b1:2e:62:8a:e0:b3:33:a9:47: 71:ab:b5:8e:08:03:a0:4a:bc:9a:87:98:b9:70:39: df:c3:48:12:30:1a:60:b0:6e:02:f4:86:41:e8:ff: 2f:22:a9:3e:ca:73:10:9f:9d:61:2f:04:3d:12:18: d8:1e:ac:5d:55:99:b8:a2:e4:a4:a1:d7:3c:91:fb: 16:e3:75:97:27:94:d0:53:1f:5e:00:44:c8:18:d7: f4:ea:6c:63:33:5e:e2:4e:40:55:57:19:70:0c:c8: ae:3c:11:ad:da:d5:7b:c6:53:f5:fe:07:11:8a:c7: 6b:00:35:95:7f:ae:33:cd:f1:78:c2:9f:35:76:83: 54:d9:fd:15:e6:f3:cf:26:8a:ee:57:02:cd:3d:fa: a5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:66:3F:34:36:9C:DF:AC:E6:6B:6D:F6:4A:D2:10:F1:62:9B:98:7A X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130342e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.135.104.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:70:fc:d4:10:9e:de:d9:e3:8a:fe:63:c1:4a:2c:e3:62:0c: a7:cc:43:4b:8e:14:c7:55:0b:0d:10:fd:97:11:9d:30:c9:32: fb:2b:5e:9f:d0:b6:f1:67:c5:b4:f3:ed:3d:f5:e7:b6:fc:7b: 60:c0:a7:9d:9d:dd:ea:3f:e6:81:eb:e8:64:d1:b8:27:02:9b: f7:a3:54:cd:04:0c:72:2e:15:91:b0:7c:01:30:81:93:05:ce: 2b:8c:39:d1:29:99:28:9a:ef:c6:31:43:00:d0:9e:0b:d8:f4: 01:6e:e4:c6:e6:8c:ce:5e:62:5c:be:2e:c8:35:a2:c2:d3:79: 00:61:91:00:39:10:9a:2b:b9:7e:02:44:97:51:f5:ac:02:03: 01:81:e5:56:e1:28:f1:99:ae:4d:5e:c6:c1:7e:01:63:1f:aa: 9c:3d:31:d3:83:38:7a:26:19:6a:f3:2b:3c:8f:6a:bb:68:b6: bc:ba:ab:d9:64:38:71:77:eb:03:c6:79:eb:8f:c1:39:7f:e8: 59:b9:79:5e:fa:29:52:dd:e2:90:bf:73:20:80:f4:e0:a7:32: ba:77:75:ca:1a:4b:db:03:bc:fc:09:0c:54:b3:62:34:de:9c: e2:5c:5c:ed:08:af:c8:d1:ed:4e:5f:e7:74:c3:79:a8:e8:0f: 17:03:5e:d4 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGOIwDILwMb5Jsnqrg379MmE8Zj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjRaFw0yNzA0MTMwNzI5MjRaMDMxMTAvBgNV BAMTKEE1NjYzRjM0MzY5Q0RGQUNFNjZCNkRGNjRBRDIxMEYxNjI5Qjk4N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQCgBK/W1b0aueymaaAMl42E5 7GqdA19d+7fxxXuFkZ7dUxxK2cudsgHy8uj/Xiob3RbH4h2rIFCH3H9s3rYzZI/u v+wyxQOLZGkCDPnIDw9I/WJIUbaCeLBIvSsmaBfhxS9HCWkUkM9aYiSf9LEuYorg szOpR3GrtY4IA6BKvJqHmLlwOd/DSBIwGmCwbgL0hkHo/y8iqT7KcxCfnWEvBD0S GNgerF1Vmbii5KSh1zyR+xbjdZcnlNBTH14ARMgY1/TqbGMzXuJOQFVXGXAMyK48 Ea3a1XvGU/X+BxGKx2sANZV/rjPN8XjCnzV2g1TZ/RXm888miu5XAs09+qWDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUpWY/NDac36zma232StIQ8WKbmHowHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYzMzA4NTkwOTIzNzc2MDEvMC8zMjMwMzMyZTMx MzMzNTJlMzEzMDM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuHaDANBgkqhkiG9w0BAQsFAAOCAQEAHXD81BCe3tnjiv5jwUos 42IMp8xDS44Ux1ULDRD9lxGdMMky+yten9C28WfFtPPtPfXntvx7YMCnnZ3d6j/m gevoZNG4JwKb96NUzQQMci4VkbB8ATCBkwXOK4w50SmZKJrvxjFDANCeC9j0AW7k xuaMzl5iXL4uyDWiwtN5AGGRADkQmiu5fgJEl1H1rAIDAYHlVuEo8ZmuTV7GwX4B Yx+qnD0x04M4eiYZavMrPI9qu2i2vLqr2WQ4cXfrA8Z564/BOX/oWbl5XvopUt3i kL9zIID04Kcyund1yhpL2wO8/AkMVLNiNN6c4lxc7QivyNHtTl/ndMN5qOgPFwNe 1A== -----END CERTIFICATE-----Generated at Fri Apr 17 23:25:50 2026 by rpki-client