$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130392e302f32342d3234203d3e203536303436.roa File: 3230332e3133352e3130392e302f32342d3234203d3e203536303436.roa (raw, json) Hash identifier: bAuEotOBWkfK+l0XMBi4UbaQgMPZlvEWFIj/aCt7iIk= Subject key identifier: 41:3D:03:00:BF:47:8D:67:1D:48:14:93:5F:58:09:3B:29:6B:0C:EE Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 4EF2AFEC14288F49A2981FCFB947CC69CC0699B7 Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130392e302f32342d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:29:25 +0000 ROA not before: Tue 14 Apr 2026 07:24:25 +0000 ROA not after: Tue 13 Apr 2027 07:29:25 +0000 asID: 56046 IP address blocks: 203.135.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f2:af:ec:14:28:8f:49:a2:98:1f:cf:b9:47:cc:69:cc:06:99:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:25 2026 GMT Not After : Apr 13 07:29:25 2027 GMT Subject: CN=413D0300BF478D671D4814935F58093B296B0CEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a0:55:9b:04:06:67:b6:67:a5:5a:93:46:15: 36:fb:41:b8:ad:73:27:21:21:68:26:3f:0b:7c:9c: ec:92:f3:02:ec:e5:98:50:8a:1d:ea:16:9f:1e:db: 33:96:df:b4:1d:47:cb:91:07:06:80:f1:2c:c9:0a: a9:d5:29:df:cd:5f:11:da:4d:28:67:1f:79:5e:f3: 4f:3f:cf:99:33:46:27:84:20:5a:ce:03:cd:96:f7: 36:a0:e3:a8:46:4e:e8:65:01:01:3a:22:8a:49:de: b4:a0:1d:b6:4d:dd:ae:a6:df:8b:96:1e:f1:48:cc: 9c:40:0a:79:06:c1:34:87:25:ab:f7:71:2f:a4:92: d9:d8:64:88:82:10:c2:0b:6a:8d:31:19:d3:68:1e: 41:65:7c:8b:03:a8:b3:a5:59:ba:dd:a3:97:7e:24: c4:a5:59:fd:90:ef:bc:f2:6e:5c:3c:bb:25:d8:7d: 33:5e:8b:9a:8b:f9:20:be:29:4a:18:94:c9:51:a4: 89:16:fd:dc:1a:e9:5b:9d:60:70:04:7e:d5:de:77: c2:73:ff:4b:be:fc:68:46:94:9c:a9:ab:f1:cf:6c: a5:4c:2e:cc:30:32:b9:a0:86:59:ef:58:f8:52:5d: 0d:e2:4c:7d:6d:9a:54:a0:ec:19:1a:e7:ba:5a:2b: 24:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3D:03:00:BF:47:8D:67:1D:48:14:93:5F:58:09:3B:29:6B:0C:EE X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3130392e302f32342d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.135.109.0/24 Signature Algorithm: sha256WithRSAEncryption 69:95:bb:bd:d8:5a:99:7a:4f:ac:45:98:86:1d:fd:e5:56:a5: d3:ca:2f:ec:79:98:dc:b5:c6:36:7e:fc:c9:d9:66:30:24:06: b7:a9:9d:1f:cc:a4:ea:9f:05:c7:0e:19:11:0c:39:9b:d6:dd: 65:bf:68:8b:c8:9d:21:72:f4:c3:61:c3:34:86:f5:fd:69:5b: dd:b7:2a:b3:d2:24:ee:ea:24:cb:f8:e4:59:43:47:c8:1e:d2: 77:78:84:67:19:fa:95:a6:a0:d9:14:7e:21:8e:a1:5d:f6:f2: c6:8c:1a:64:67:c2:df:10:46:8f:fe:03:53:86:12:37:ed:25: 5c:0c:3c:e0:02:dc:4f:8f:9d:b4:48:cc:ff:c8:a3:80:c0:03: 7c:3a:69:8a:ca:e6:ba:2a:b1:5a:31:cb:bc:42:2f:d5:d8:4e: 1a:14:0c:65:50:10:cb:5d:3f:b5:1c:9f:9a:85:c9:0c:da:7c: 06:01:17:1f:ba:82:f6:bc:19:c3:95:7d:db:e3:e6:f6:cf:17: 9a:00:0c:18:ce:39:92:1f:e6:18:59:30:7e:b2:8a:da:d2:07: 97:db:bc:bb:f9:ca:35:f9:11:61:65:ce:2b:a4:bf:e1:05:b0: 9f:f7:1c:39:52:d1:74:4a:8d:a1:98:43:19:0f:c6:cf:f7:3b: a7:2c:5e:3b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTvKv7BQoj0mimB/PuUfMacwGmbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjVaFw0yNzA0MTMwNzI5MjVaMDMxMTAvBgNV BAMTKDQxM0QwMzAwQkY0NzhENjcxRDQ4MTQ5MzVGNTgwOTNCMjk2QjBDRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLoFWbBAZntmelWpNGFTb7Qbit cychIWgmPwt8nOyS8wLs5ZhQih3qFp8e2zOW37QdR8uRBwaA8SzJCqnVKd/NXxHa TShnH3le808/z5kzRieEIFrOA82W9zag46hGTuhlAQE6IopJ3rSgHbZN3a6m34uW HvFIzJxACnkGwTSHJav3cS+kktnYZIiCEMILao0xGdNoHkFlfIsDqLOlWbrdo5d+ JMSlWf2Q77zyblw8uyXYfTNei5qL+SC+KUoYlMlRpIkW/dwa6VudYHAEftXed8Jz /0u+/GhGlJypq/HPbKVMLswwMrmghlnvWPhSXQ3iTH1tmlSg7Bka57paKyQxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQT0DAL9HjWcdSBSTX1gJOylrDO4wHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYzMzA4NTkwOTIzNzc2MDEvMC8zMjMwMzMyZTMx MzMzNTJlMzEzMDM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuHbTANBgkqhkiG9w0BAQsFAAOCAQEAaZW7vdhamXpPrEWYhh39 5Val08ov7HmY3LXGNn78ydlmMCQGt6mdH8yk6p8Fxw4ZEQw5m9bdZb9oi8idIXL0 w2HDNIb1/Wlb3bcqs9Ik7uoky/jkWUNHyB7Sd3iEZxn6laag2RR+IY6hXfbyxowa ZGfC3xBGj/4DU4YSN+0lXAw84ALcT4+dtEjM/8ijgMADfDppisrmuiqxWjHLvEIv 1dhOGhQMZVAQy10/tRyfmoXJDNp8BgEXH7qC9rwZw5V92+Pm9s8XmgAMGM45kh/m GFkwfrKK2tIHl9u8u/nKNfkRYWXOK6S/4QWwn/ccOVLRdEqNoZhDGQ/Gz/c7pyxe Ow== -----END CERTIFICATE-----Generated at Fri Apr 17 18:23:12 2026 by rpki-client