$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130362e302f32342d3234203d3e203536303436.roa File: 3230332e3133352e3130362e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: n9hcF/+Tr2NlYM1oUk+MToyoZXtLGqNqAzWKTnB77ZM= Subject key identifier: 87:CB:87:CF:F6:F4:16:79:F4:7A:76:F7:3E:5D:17:00:7A:E1:01:09 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 064DF7A9EE8867E5B72CF988FA617AC9AFFC6411 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130362e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:29:25 +0000 ROA not before: Tue 14 Apr 2026 07:24:25 +0000 ROA not after: Tue 13 Apr 2027 07:29:25 +0000 asID: 56046 IP address blocks: 203.135.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:4d:f7:a9:ee:88:67:e5:b7:2c:f9:88:fa:61:7a:c9:af:fc:64:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:25 2026 GMT Not After : Apr 13 07:29:25 2027 GMT Subject: CN=87CB87CFF6F41679F47A76F73E5D17007AE10109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:4e:0b:40:59:4f:c7:61:88:08:d8:2c:12: 89:c0:2f:3f:b6:6e:67:29:c5:25:2b:9c:89:d0:2d: e7:7b:42:56:7a:83:a3:f8:90:86:ad:b5:60:8f:df: dd:bb:29:7b:d0:99:93:71:6b:8f:85:11:5b:cb:69: d6:30:1d:f8:37:97:80:00:c5:20:f8:02:30:32:a0: 33:a7:77:8e:c0:ed:30:e4:dc:af:53:57:ac:d5:d3: a5:5f:9d:3e:61:4a:6a:4b:cd:ef:98:eb:31:7b:5f: bb:81:d2:c1:d3:ea:ff:74:82:b1:7d:43:18:b9:21: d9:34:a1:b9:34:aa:be:b3:99:2d:00:48:1c:8c:9e: 13:22:f9:96:e5:d6:c1:d2:64:06:c4:67:90:38:3e: 8d:99:0a:9f:86:6f:dd:c6:4e:51:96:17:de:c7:3e: fe:a9:84:02:ef:b3:c4:e0:9f:76:c3:96:89:63:38: 92:7a:40:28:6a:eb:52:c3:37:71:0d:b6:52:77:f3: fb:23:6e:2d:c0:ab:69:84:95:98:af:b2:1a:3c:0a: 12:31:35:86:67:57:d7:55:10:b4:cc:b3:fd:16:27: 8c:06:0e:4d:b6:56:ac:eb:f9:7c:38:32:68:8b:de: 75:0f:75:11:3e:13:2d:8f:60:68:53:a1:8c:0b:04: 38:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:CB:87:CF:F6:F4:16:79:F4:7A:76:F7:3E:5D:17:00:7A:E1:01:09 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130362e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.135.106.0/24 Signature Algorithm: sha256WithRSAEncryption 41:e5:09:8b:02:75:fd:c2:52:29:39:f6:15:58:47:28:65:9b: 12:a0:cb:f7:f7:74:b0:eb:33:8e:0e:a8:27:cf:db:43:02:d0: 5c:02:3d:26:20:dd:92:56:0e:f8:c1:44:19:72:14:74:9a:5b: 9b:32:82:23:c2:a0:1e:3e:91:a2:41:91:a2:93:0f:57:c8:46: 67:c2:17:26:7f:be:dc:e6:6c:f7:a1:16:fd:f7:cc:a8:69:3c: 06:28:75:8c:1f:18:9d:f3:f9:1a:34:a7:ab:f7:41:42:f0:85: 45:11:91:bf:80:7f:8c:fc:44:b7:f6:8e:b7:b4:56:c3:15:35: 36:7c:d1:f9:91:99:11:68:b3:1a:28:49:b7:9c:06:0b:08:f5: ef:52:ff:5f:cf:13:bb:47:82:81:32:17:e3:31:71:2d:e3:ed: c3:3e:c4:02:93:41:40:69:1a:fc:c7:09:59:d1:5c:60:98:99: 6c:26:48:da:ca:cf:71:1f:89:c9:b8:96:a2:1b:bf:b9:54:22: 25:71:43:86:a8:84:55:80:44:86:bb:34:0d:6f:88:42:27:f6: 4c:27:01:02:16:12:41:40:db:0f:00:44:00:e3:80:f2:ec:5c: 21:b0:13:82:24:d3:fd:ea:57:c6:aa:00:51:b5:49:58:6b:08: f1:fd:af:19 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUBk33qe6IZ+W3LPmI+mF6ya/8ZBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjVaFw0yNzA0MTMwNzI5MjVaMDMxMTAvBgNV BAMTKDg3Q0I4N0NGRjZGNDE2NzlGNDdBNzZGNzNFNUQxNzAwN0FFMTAxMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIg04LQFlPx2GICNgsEonALz+2 bmcpxSUrnInQLed7QlZ6g6P4kIattWCP3927KXvQmZNxa4+FEVvLadYwHfg3l4AA xSD4AjAyoDOnd47A7TDk3K9TV6zV06VfnT5hSmpLze+Y6zF7X7uB0sHT6v90grF9 Qxi5Idk0obk0qr6zmS0ASByMnhMi+Zbl1sHSZAbEZ5A4Po2ZCp+Gb93GTlGWF97H Pv6phALvs8Tgn3bDloljOJJ6QChq61LDN3ENtlJ38/sjbi3Aq2mElZivsho8ChIx NYZnV9dVELTMs/0WJ4wGDk22Vqzr+Xw4MmiL3nUPdRE+Ey2PYGhToYwLBDizAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUh8uHz/b0Fnn0enb3Pl0XAHrhAQkwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYzMzA4NTkwOTIzNzc2MDEvMC8zMjMwMzMyZTMx MzMzNTJlMzEzMDM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuHajANBgkqhkiG9w0BAQsFAAOCAQEAQeUJiwJ1/cJSKTn2FVhH KGWbEqDL9/d0sOszjg6oJ8/bQwLQXAI9JiDdklYO+MFEGXIUdJpbmzKCI8KgHj6R okGRopMPV8hGZ8IXJn++3OZs96EW/ffMqGk8Bih1jB8YnfP5GjSnq/dBQvCFRRGR v4B/jPxEt/aOt7RWwxU1NnzR+ZGZEWizGihJt5wGCwj171L/X88Tu0eCgTIX4zFx LePtwz7EApNBQGka/McJWdFcYJiZbCZI2srPcR+JybiWohu/uVQiJXFDhqiEVYBE hrs0DW+IQif2TCcBAhYSQUDbDwBEAOOA8uxcIbATgiTT/epXxqoAUbVJWGsI8f2v GQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:52:47 2026 by rpki-client