$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa File: 3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa (raw, json) Hash identifier: 6MjfCdO/U3fL4/c/dCU0znKWIfM8vw+R1ZWDGwd991o= Subject key identifier: 0F:13:4D:D5:45:BA:50:D7:3E:60:C8:64:97:59:50:7F:EF:A5:32:A9 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 4AF9C768E464A1236FD604A95B410F2F3597E6F6 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa Signing time: Thu 17 Jul 2025 08:13:01 +0000 ROA not before: Thu 17 Jul 2025 08:08:01 +0000 ROA not after: Thu 16 Jul 2026 08:13:01 +0000 asID: 4538 IP address blocks: 103.165.110.0/23 maxlen: 27 Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 09:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f9:c7:68:e4:64:a1:23:6f:d6:04:a9:5b:41:0f:2f:35:97:e6:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Jul 17 08:08:01 2025 GMT Not After : Jul 16 08:13:01 2026 GMT Subject: CN=0F134DD545BA50D73E60C8649759507FEFA532A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:40:b5:df:a8:b8:eb:e3:4e:40:f3:28:90:57: 9f:59:86:61:ad:23:fc:c7:3b:b8:8d:1d:03:b2:bd: fd:5d:1b:33:3e:b4:e6:2e:31:71:8c:35:bf:89:56: 78:c7:f5:1b:8c:65:dc:bf:60:37:ff:d2:7b:9c:70: 33:a8:59:ed:ed:de:18:55:1e:6f:49:e0:3a:44:76: a0:ae:15:9c:fe:05:53:de:d9:f0:fa:64:d3:e9:51: 76:23:b3:3e:ce:0a:b7:4b:e4:7c:33:43:a0:5c:39: 72:59:18:ae:7b:e2:39:24:30:ac:e2:5e:4d:9b:72: 03:25:fd:d8:f2:5e:9f:a2:4d:78:e4:c2:3b:3d:2d: 14:25:5a:b4:b4:9a:8e:aa:fb:43:11:eb:38:cd:43: 14:08:df:7c:2c:80:80:3e:aa:52:01:b0:39:c2:bf: cb:53:bf:3f:24:45:cb:9a:d7:a6:9f:e0:3f:29:9e: fd:7e:d1:5d:c4:86:e3:6c:22:1d:02:85:b6:c7:03: 76:39:e6:9d:58:5b:ef:fd:07:f7:7d:3c:4c:08:e1: f6:b9:32:d9:73:98:6e:12:d4:7f:e1:fc:3b:f6:9f: c1:49:ec:d8:06:31:98:0e:b4:bb:06:46:cc:70:80: 7b:c1:4f:51:b5:bb:3a:08:e6:87:6f:ca:29:51:65: 0c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:13:4D:D5:45:BA:50:D7:3E:60:C8:64:97:59:50:7F:EF:A5:32:A9 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.110.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:c4:80:b0:d8:a6:6a:e9:f7:68:de:31:9a:03:5a:a6:1b:ea: 10:95:15:13:b8:cb:91:66:69:43:3d:1b:b7:0d:19:da:b1:96: c2:78:90:97:12:8e:bf:ee:a3:df:f5:0b:a0:a9:9c:69:52:8a: 0c:4c:14:57:eb:d6:6a:6d:5e:99:dd:dc:7e:8b:38:43:47:df: f6:da:37:a6:4c:ef:a9:56:ee:c7:86:21:7c:cd:c7:be:47:3f: e7:c3:c4:c2:1a:ff:28:67:14:83:90:09:ff:f7:ff:85:15:ea: 00:2e:ca:52:35:a8:c1:5b:ae:c0:9e:c4:ca:47:f5:be:f2:54: df:c5:75:b2:2f:be:bb:7b:14:2e:d6:51:fd:82:9b:49:fb:8a: 1f:bb:fd:9b:41:f9:1d:c1:b6:b1:11:dc:cf:65:b7:bc:f5:76: 21:68:ef:57:a1:62:de:96:42:88:f0:0c:78:21:31:17:aa:f4: 21:3d:37:f8:51:02:90:0a:d8:91:8c:2c:d9:2a:cd:f7:2a:26: 57:57:76:27:89:29:5c:93:90:a2:5a:67:5f:52:18:a4:3a:a4: e7:61:f8:25:1a:77:70:1b:f3:b9:64:35:63:18:e2:26:4a:d3: 4d:b8:e9:4c:e6:d0:e5:98:f2:26:61:33:e4:c0:0f:37:50:44: a8:c4:f3:5e -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUSvnHaORkoSNv1gSpW0EPLzWX5vYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDcxNzA4MDgwMVoX DTI2MDcxNjA4MTMwMVowMzExMC8GA1UEAxMoMEYxMzRERDU0NUJBNTBENzNFNjBD ODY0OTc1OTUwN0ZFRkE1MzJBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJAtd+ouOvjTkDzKJBXn1mGYa0j/Mc7uI0dA7K9/V0bMz605i4xcYw1v4lW eMf1G4xl3L9gN//Se5xwM6hZ7e3eGFUeb0ngOkR2oK4VnP4FU97Z8Ppk0+lRdiOz Ps4Kt0vkfDNDoFw5clkYrnviOSQwrOJeTZtyAyX92PJen6JNeOTCOz0tFCVatLSa jqr7QxHrOM1DFAjffCyAgD6qUgGwOcK/y1O/PyRFy5rXpp/gPyme/X7RXcSG42wi HQKFtscDdjnmnVhb7/0H9308TAjh9rky2XOYbhLUf+H8O/afwUns2AYxmA60uwZG zHCAe8FPUbW7Ogjmh2/KKVFlDMECAwEAAaOCAfgwggH0MB0GA1UdDgQWBBQPE03V RbpQ1z5gyGSXWVB/76UyqTAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS8zMTMwMzMyZTMxMzYzNTJl MzEzMTMwMmUzMDJmMzIzMzJkMzIzNzIwM2QzZTIwMzQzNTMzMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpW4wDQYJKoZIhvcNAQELBQADggEBAB7EgLDYpmrp92jeMZoDWqYb6hCVFRO4 y5FmaUM9G7cNGdqxlsJ4kJcSjr/uo9/1C6CpnGlSigxMFFfr1mptXpnd3H6LOENH 3/baN6ZM76lW7seGIXzNx75HP+fDxMIa/yhnFIOQCf/3/4UV6gAuylI1qMFbrsCe xMpH9b7yVN/FdbIvvrt7FC7WUf2Cm0n7ih+7/ZtB+R3BtrER3M9lt7z1diFo71eh Yt6WQojwDHghMReq9CE9N/hRApAK2JGMLNkqzfcqJldXdieJKVyTkKJaZ19SGKQ6 pOdh+CUad3Ab87lkNWMY4iZK00246Uzm0OWY8iZhM+TADzdQRKjE814= -----END CERTIFICATE-----Generated at Wed Jul 23 18:34:07 2025 by rpki-client