$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3132302e302f32312d3231203d3e203538343631.roa File: 3230332e3133352e3132302e302f32312d3231203d3e203538343631.roa (raw, json) Hash identifier: RGywVuvY0/L3+wg4ACHqETGFImk1flLfvL0SNc861ew= Subject key identifier: 3F:89:C4:44:B9:45:E5:B9:21:0E:C5:B5:48:E8:D0:BF:28:4A:14:03 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 2F494B885000C07E763AB1D5CFC93C388326275D Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3132302e302f32312d3231203d3e203538343631.roa Signing time: Tue 14 Apr 2026 07:29:24 +0000 ROA not before: Tue 14 Apr 2026 07:24:24 +0000 ROA not after: Tue 13 Apr 2027 07:29:24 +0000 asID: 58461 IP address blocks: 203.135.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:49:4b:88:50:00:c0:7e:76:3a:b1:d5:cf:c9:3c:38:83:26:27:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:24 2026 GMT Not After : Apr 13 07:29:24 2027 GMT Subject: CN=3F89C444B945E5B9210EC5B548E8D0BF284A1403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d8:24:bc:20:b2:05:94:40:4f:32:b0:e7:bc: 36:98:ae:03:93:0f:1e:f7:94:e2:8c:a0:97:65:43: 46:bd:87:73:7a:bb:6b:0c:3f:80:cf:ee:b1:29:8f: a2:6e:9c:02:65:86:ee:ff:60:85:6f:2f:d2:e6:c6: b8:02:4c:22:90:62:79:46:f2:44:1a:e1:02:89:35: fc:7a:fc:0d:99:01:18:b8:e0:14:81:7c:60:1f:ad: a5:91:a5:37:8b:5a:54:bb:25:d6:c4:8a:fb:7e:c3: b7:cc:da:ed:48:5c:7c:20:31:ff:45:0c:3c:46:60: df:7f:4b:db:90:05:dc:6c:18:12:df:c7:5f:2e:d5: c7:da:56:ca:ae:17:18:b4:f3:29:16:82:ec:bd:03: 24:a7:96:f3:34:bf:30:01:57:ca:43:85:51:a2:11: d0:0f:fa:a0:db:65:7d:49:9c:ab:fe:1d:b0:89:59: 95:82:6a:c7:4c:6f:da:45:f3:19:85:1d:b0:c2:a3: 57:1f:52:78:0d:5f:15:fa:ac:6e:5b:2a:44:2c:08: e4:ec:a4:ca:ab:3b:bd:ef:70:81:50:1c:d1:ad:f1: 6e:cd:55:b8:41:a5:b9:29:76:da:a9:3c:74:7d:fd: 20:55:0d:90:9c:93:99:53:61:7a:e1:3b:cb:65:47: 90:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:89:C4:44:B9:45:E5:B9:21:0E:C5:B5:48:E8:D0:BF:28:4A:14:03 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e3132302e302f32312d3231203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.135.120.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:9f:0a:b3:92:f0:0e:9e:56:45:30:73:7f:70:31:2d:0d:5b: 6c:94:6f:df:b5:1d:6a:a3:0a:28:4f:a3:c0:1a:4a:ec:5c:1f: e3:73:b7:f6:28:8d:9b:a7:6e:59:91:ab:6b:4c:5e:8d:e7:60: fa:b8:dd:69:16:a8:98:5e:09:58:15:bf:22:e4:b6:51:da:8c: 26:0b:7d:97:09:34:21:f0:d0:ee:3b:63:14:44:9e:9a:a1:a0: 5c:15:b7:ae:3f:7d:6d:01:b1:9b:e6:6a:dd:61:a7:fc:f7:5a: 6e:63:e0:01:e7:fd:31:f6:9f:1b:b7:9f:43:4e:66:b9:6e:2e: bd:a1:8f:4b:fb:e2:62:e1:3d:44:c8:bf:cf:fa:02:b1:ab:85: 9f:c7:9f:2e:22:de:da:ba:ee:13:1f:8e:44:6f:53:e7:d9:63: d9:2c:85:9f:af:99:7d:8f:51:9f:60:ea:ca:73:4e:fc:db:69: 51:7c:cc:2b:0a:b6:c2:b5:f0:80:4c:2f:df:5c:57:e3:ed:0a: 81:37:02:09:87:89:c0:f0:86:61:68:4a:71:f4:97:e1:e4:f3: 1d:38:48:83:64:c3:14:b7:da:5a:da:e8:0c:1a:c1:fd:5f:95: a8:f4:2b:25:59:a5:e6:82:b3:eb:8b:9f:81:37:ea:9a:24:39: e8:ae:4d:9d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUL0lLiFAAwH52OrHVz8k8OIMmJ10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjRaFw0yNzA0MTMwNzI5MjRaMDMxMTAvBgNV BAMTKDNGODlDNDQ0Qjk0NUU1QjkyMTBFQzVCNTQ4RThEMEJGMjg0QTE0MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi2CS8ILIFlEBPMrDnvDaYrgOT Dx73lOKMoJdlQ0a9h3N6u2sMP4DP7rEpj6JunAJlhu7/YIVvL9LmxrgCTCKQYnlG 8kQa4QKJNfx6/A2ZARi44BSBfGAfraWRpTeLWlS7JdbEivt+w7fM2u1IXHwgMf9F DDxGYN9/S9uQBdxsGBLfx18u1cfaVsquFxi08ykWguy9AySnlvM0vzABV8pDhVGi EdAP+qDbZX1JnKv+HbCJWZWCasdMb9pF8xmFHbDCo1cfUngNXxX6rG5bKkQsCOTs pMqrO73vcIFQHNGt8W7NVbhBpbkpdtqpPHR9/SBVDZCck5lTYXrhO8tlR5DRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUP4nERLlF5bkhDsW1SOjQvyhKFAMwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYzMzA4NTkwOTIzNzc2MDEvMC8zMjMwMzMyZTMx MzMzNTJlMzEzMjMwMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzODM0MzYzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA8uHeDANBgkqhkiG9w0BAQsFAAOCAQEAXJ8Ks5LwDp5WRTBzf3Ax LQ1bbJRv37UdaqMKKE+jwBpK7Fwf43O39iiNm6duWZGra0xejedg+rjdaRaomF4J WBW/IuS2UdqMJgt9lwk0IfDQ7jtjFESemqGgXBW3rj99bQGxm+Zq3WGn/PdabmPg Aef9MfafG7efQ05muW4uvaGPS/viYuE9RMi/z/oCsauFn8efLiLe2rruEx+ORG9T 59lj2SyFn6+ZfY9Rn2DqynNO/NtpUXzMKwq2wrXwgEwv31xX4+0KgTcCCYeJwPCG YWhKcfSX4eTzHThIg2TDFLfaWtroDBrB/V+VqPQrJVml5oKz64ufgTfqmiQ56K5N nQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:50:40 2026 by rpki-client