$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e39362e302f32312d3231203d3e203538343631.roa File: 3230332e3133352e39362e302f32312d3231203d3e203538343631.roa (raw, json) Hash identifier: oqeccvPR3+IpAwygIF/oeBAJSb31FyNOolE97M8bnZM= Subject key identifier: 66:C8:CF:ED:05:47:8F:89:FF:D6:C9:07:66:13:49:5F:B3:45:07:C7 Certificate issuer: /CN=709E5125176627846677AF908E76CAE21FB95460 Certificate serial: 30D87E442FBD65CD8A731E15BD3B728A8733B77D Authority key identifier: 70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e39362e302f32312d3231203d3e203538343631.roa Signing time: Tue 14 Apr 2026 07:29:25 +0000 ROA not before: Tue 14 Apr 2026 07:24:25 +0000 ROA not after: Tue 13 Apr 2027 07:29:25 +0000 asID: 58461 IP address blocks: 203.135.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d8:7e:44:2f:bd:65:cd:8a:73:1e:15:bd:3b:72:8a:87:33:b7:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=709E5125176627846677AF908E76CAE21FB95460 Validity Not Before: Apr 14 07:24:25 2026 GMT Not After : Apr 13 07:29:25 2027 GMT Subject: CN=66C8CFED05478F89FFD6C9076613495FB34507C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:be:6f:5b:42:94:18:36:f6:c5:3d:e8:a0:80: 10:cf:7c:50:ae:d0:ac:02:c0:33:8e:e9:d0:e1:bb: d7:33:d0:60:4a:ef:c2:3a:a2:d6:db:38:26:ca:c7: f3:7f:24:4c:90:c1:55:1f:64:aa:f7:b4:67:16:91: 2c:24:25:aa:b0:dc:00:70:14:95:8d:7e:c5:8a:92: 7a:11:62:d4:66:c0:f8:20:98:89:f3:a4:03:4e:03: e2:06:8e:6b:dd:0e:30:0c:6d:26:f7:b4:04:c9:3f: f1:7d:14:78:32:b3:79:f2:d8:34:a3:7a:9e:d1:28: 08:5f:a0:13:59:0b:32:1d:47:e8:e8:73:29:d8:5c: c6:17:4c:4c:16:62:e3:4d:ec:be:f3:ca:47:cd:5a: 62:74:7c:16:cf:a7:ac:57:0c:b0:aa:8d:ef:55:cb: 34:ff:6f:b0:13:bc:e0:3b:32:bd:e3:6a:1c:ca:20: a8:0f:f0:a1:89:69:31:e0:1b:f1:85:45:2d:a5:a2: 28:b4:f2:3c:63:b9:03:54:b8:5b:d8:56:be:fb:48: 40:5e:41:5a:9e:2d:67:b7:39:77:74:fc:2a:c4:a0: 8c:61:67:20:02:79:e9:9d:d3:47:96:45:e2:32:30: 03:01:a3:88:a9:b4:38:96:ac:a9:1d:fa:f2:38:fe: 2f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C8:CF:ED:05:47:8F:89:FF:D6:C9:07:66:13:49:5F:B3:45:07:C7 X509v3 Authority Key Identifier: keyid:70:9E:51:25:17:66:27:84:66:77:AF:90:8E:76:CA:E2:1F:B9:54:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/709E5125176627846677AF908E76CAE21FB95460.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/709E5125176627846677AF908E76CAE21FB95460.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092377601/0/3230332e3133352e39362e302f32312d3231203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.135.96.0/21 Signature Algorithm: sha256WithRSAEncryption 31:d4:1a:7c:29:87:69:05:7f:2f:d1:12:60:5e:a7:e6:c6:3c: 7d:c0:c6:51:17:b9:aa:af:e5:71:a4:29:e5:95:0d:97:c1:6b: ca:7d:3d:d6:98:5f:dd:97:66:24:b4:03:fe:7f:df:a8:71:12: 07:1e:98:89:2b:a0:46:c6:22:37:79:2e:dd:9c:c9:f1:4f:a0: 19:ad:72:4f:22:69:18:a5:db:f8:3c:07:cd:f0:c8:d2:c7:ea: 61:b1:70:c2:33:a9:2a:35:fe:24:47:f6:06:97:df:6c:33:8d: 96:f7:0a:ec:1d:64:28:33:c6:96:30:4d:af:e1:7b:0a:77:c3: 2f:e3:a8:27:c7:84:76:3d:76:52:0e:41:39:f1:8a:ea:fc:8f: 2b:2f:c5:66:6b:c1:91:cf:cf:5f:b5:72:fc:f6:cc:68:69:a6: 8c:da:e1:ff:7c:5a:04:a6:15:b3:79:e2:c8:e9:44:2a:da:83: 12:ac:94:32:d9:0c:93:94:5a:16:f7:42:27:67:dd:87:3b:67: 2c:f5:ee:32:87:65:81:f2:c0:aa:ea:d9:42:21:36:1f:d2:29: 10:6b:03:c9:23:6b:cf:1e:40:04:4c:e7:c6:16:8e:14:87:e4: 5d:a6:95:73:85:4e:60:14:3c:c1:5b:95:f5:46:35:de:49:88: 65:39:6d:95 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUMNh+RC+9Zc2Kcx4VvTtyioczt30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIx RkI5NTQ2MDAeFw0yNjA0MTQwNzI0MjVaFw0yNzA0MTMwNzI5MjVaMDMxMTAvBgNV BAMTKDY2QzhDRkVEMDU0NzhGODlGRkQ2QzkwNzY2MTM0OTVGQjM0NTA3QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5vm9bQpQYNvbFPeiggBDPfFCu 0KwCwDOO6dDhu9cz0GBK78I6otbbOCbKx/N/JEyQwVUfZKr3tGcWkSwkJaqw3ABw FJWNfsWKknoRYtRmwPggmInzpANOA+IGjmvdDjAMbSb3tATJP/F9FHgys3ny2DSj ep7RKAhfoBNZCzIdR+jocynYXMYXTEwWYuNN7L7zykfNWmJ0fBbPp6xXDLCqje9V yzT/b7ATvOA7Mr3jahzKIKgP8KGJaTHgG/GFRS2loii08jxjuQNUuFvYVr77SEBe QVqeLWe3OXd0/CrEoIxhZyACeemd00eWReIyMAMBo4iptDiWrKkd+vI4/i8DAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUZsjP7QVHj4n/1skHZhNJX7NFB8cwHwYDVR0j BBgwFoAUcJ5RJRdmJ4Rmd6+QjnbK4h+5VGAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjM3NzYwMS8wLzcwOUU1MTI1MTc2NjI3ODQ2Njc3QUY5MDhFNzZD QUUyMUZCOTU0NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzA5RTUxMjUxNzY2Mjc4NDY2NzdBRjkwOEU3NkNBRTIxRkI5NTQ2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMzMDg1OTA5MjM3NzYwMS8wLzMyMzAzMzJlMzEz MzM1MmUzOTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzODM0MzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA8uHYDANBgkqhkiG9w0BAQsFAAOCAQEAMdQafCmHaQV/L9ESYF6n5sY8 fcDGURe5qq/lcaQp5ZUNl8Fryn091phf3ZdmJLQD/n/fqHESBx6YiSugRsYiN3ku 3ZzJ8U+gGa1yTyJpGKXb+DwHzfDI0sfqYbFwwjOpKjX+JEf2BpffbDONlvcK7B1k KDPGljBNr+F7CnfDL+OoJ8eEdj12Ug5BOfGK6vyPKy/FZmvBkc/PX7Vy/PbMaGmm jNrh/3xaBKYVs3niyOlEKtqDEqyUMtkMk5RaFvdCJ2fdhztnLPXuModlgfLAqurZ QiE2H9IpEGsDySNrzx5ABEznxhaOFIfkXaaVc4VOYBQ8wVuV9UY13kmIZTltlQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:50:42 2026 by rpki-client