$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130372e302f32342d3234203d3e203536303436.roa File: 3230332e3133352e3130372e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: V/wj4NINZBkYbI6ksTEXDQ4vhVi7K1iFwrB6sRiPXCE= Subject key identifier: 11:09:68:35:F3:46:2F:82:CE:E0:D8:33:9D:12:33:ED:20:5B:A0:6B Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 4A34EFFFE632C06AC41C4AD84ECD90D739667D08 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130372e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:29:24 +0000 ROA not before: Tue 14 Apr 2026 07:24:24 +0000 ROA not after: Tue 13 Apr 2027 07:29:24 +0000 asID: 56046 IP address blocks: 203.135.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:34:ef:ff:e6:32:c0:6a:c4:1c:4a:d8:4e:cd:90:d7:39:66:7d:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:24 2026 GMT Not After : Apr 13 07:29:24 2027 GMT Subject: CN=11096835F3462F82CEE0D8339D1233ED205BA06B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:16:49:dc:0e:21:87:6f:a0:78:8e:bc:ce:b3: 7b:9e:5c:74:af:ca:f1:74:fb:7f:d9:2b:53:23:ad: d6:ac:c7:69:88:21:de:c2:6c:df:cb:2e:a5:ab:68: 5f:83:d6:d3:51:67:f5:d1:cd:c9:c6:08:c7:ce:a5: da:34:48:5b:c4:30:47:25:a4:b2:a7:3b:e4:0b:77: e8:f8:b3:9e:25:d5:26:46:39:4a:32:89:3c:0f:3a: b8:88:ee:73:50:7a:0b:5a:fe:ce:36:aa:37:03:8c: 2b:9f:73:9d:9a:3a:40:75:1e:2d:0e:2d:e6:f6:4c: 0e:33:58:de:98:fa:b4:b3:11:f2:28:86:28:58:bd: 3d:44:fa:b5:fe:48:e7:dc:40:76:b8:3f:6a:29:26: 4f:43:c6:67:68:96:2e:00:a0:b5:6d:e5:11:8f:6d: 7e:f7:c9:c9:1f:df:66:db:22:a3:2a:27:bb:37:de: 9c:b8:00:f5:79:03:2d:46:c4:6a:2c:c3:6e:99:ac: 55:c3:92:d2:9a:39:bf:34:22:3c:3d:78:d1:58:0b: d9:9e:5a:ad:f2:16:5d:ee:13:e9:54:ba:b2:25:0a: 80:ed:d6:30:dd:c7:91:1c:65:ff:ce:0d:12:38:77: 80:5d:ed:69:91:4d:01:e8:44:27:e1:66:33:fe:b1: 8d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:09:68:35:F3:46:2F:82:CE:E0:D8:33:9D:12:33:ED:20:5B:A0:6B X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130372e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.135.107.0/24 Signature Algorithm: sha256WithRSAEncryption 19:89:95:57:5e:b9:6e:c1:37:36:fb:32:ba:5f:93:82:fb:7d: 4b:55:b6:4f:19:5e:bc:f2:91:1f:d1:91:45:d5:c1:b9:3d:f5: 0a:fb:9c:6e:00:5e:08:97:8c:a5:05:f2:33:51:4e:56:29:a7: 1b:8e:2e:d9:65:54:86:36:82:be:14:f8:ee:c7:b3:6d:3d:e3: 9d:03:51:31:91:98:86:61:eb:b9:b6:e6:9c:97:fb:a8:16:3c: 7e:8b:aa:68:4f:82:58:90:08:ab:4f:8e:d4:10:62:2f:ee:48: 87:a1:6c:09:14:6e:c4:fe:08:70:52:ce:08:45:fd:72:77:8d: 83:94:df:f2:e7:0a:c4:d0:b6:4e:1c:49:d2:96:b3:62:ee:4b: 8b:67:06:ff:04:73:60:7d:3f:b9:fa:71:97:f4:2d:28:c9:c0: 8b:09:5f:22:f4:12:16:73:4b:55:fc:79:3b:f4:95:44:f6:d4: 46:33:74:ac:49:63:94:a3:29:42:df:d0:c0:50:56:53:d7:9b: b2:24:f5:b9:84:2f:bb:c7:0a:75:8d:10:0d:9a:10:9e:ab:89: 42:4d:53:d5:7b:3a:e8:ed:bd:5e:63:63:3b:76:54:ac:10:91: cc:f7:ab:b5:00:8a:72:c7:29:4d:7e:75:f3:32:55:c1:f5:44: 3a:17:79:0a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUSjTv/+YywGrEHErYTs2Q1zlmfQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjRaFw0yNzA0MTMwNzI5MjRaMDMxMTAvBgNV BAMTKDExMDk2ODM1RjM0NjJGODJDRUUwRDgzMzlEMTIzM0VEMjA1QkEwNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFFkncDiGHb6B4jrzOs3ueXHSv yvF0+3/ZK1Mjrdasx2mIId7CbN/LLqWraF+D1tNRZ/XRzcnGCMfOpdo0SFvEMEcl pLKnO+QLd+j4s54l1SZGOUoyiTwPOriI7nNQegta/s42qjcDjCufc52aOkB1Hi0O Leb2TA4zWN6Y+rSzEfIohihYvT1E+rX+SOfcQHa4P2opJk9Dxmdoli4AoLVt5RGP bX73yckf32bbIqMqJ7s33py4APV5Ay1GxGosw26ZrFXDktKaOb80Ijw9eNFYC9me Wq3yFl3uE+lUurIlCoDt1jDdx5EcZf/ODRI4d4Bd7WmRTQHoRCfhZjP+sY0lAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUEQloNfNGL4LO4NgznRIz7SBboGswHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYzMzA4NTkwOTIzNzc2MDEvMC8zMjMwMzMyZTMx MzMzNTJlMzEzMDM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuHazANBgkqhkiG9w0BAQsFAAOCAQEAGYmVV165bsE3Nvsyul+T gvt9S1W2TxlevPKRH9GRRdXBuT31CvucbgBeCJeMpQXyM1FOVimnG44u2WVUhjaC vhT47sezbT3jnQNRMZGYhmHrubbmnJf7qBY8fouqaE+CWJAIq0+O1BBiL+5Ih6Fs CRRuxP4IcFLOCEX9cneNg5Tf8ucKxNC2ThxJ0pazYu5Li2cG/wRzYH0/ufpxl/Qt KMnAiwlfIvQSFnNLVfx5O/SVRPbURjN0rEljlKMpQt/QwFBWU9ebsiT1uYQvu8cK dY0QDZoQnquJQk1T1Xs66O29XmNjO3ZUrBCRzPertQCKcscpTX518zJVwfVEOhd5 Cg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:01:48 2026 by rpki-client