$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa File: 3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa (raw, json) Hash identifier: NEfA8mWwvqkmJr+jQ/m3MrcToDHVue40BU6t91UJn8A= Subject key identifier: 5B:99:99:1A:6F:52:8F:EB:42:6D:BC:A7:FA:62:90:4D:5C:4C:CD:57 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 181582557010A4196299DC3225C221E3766D25BA Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa Signing time: Wed 03 Sep 2025 08:43:09 +0000 ROA not before: Wed 03 Sep 2025 08:38:09 +0000 ROA not after: Wed 02 Sep 2026 08:43:09 +0000 asID: 4538 IP address blocks: 103.165.110.0/23 maxlen: 27 Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 16:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:15:82:55:70:10:a4:19:62:99:dc:32:25:c2:21:e3:76:6d:25:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Sep 3 08:38:09 2025 GMT Not After : Sep 2 08:43:09 2026 GMT Subject: CN=5B99991A6F528FEB426DBCA7FA62904D5C4CCD57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:e8:d6:23:72:1f:88:c4:cc:8e:ab:f6:cd: 60:df:79:a5:37:06:f4:3c:fb:eb:db:54:92:41:a1: 14:cd:ba:b0:8a:a1:a3:c1:9f:aa:a7:3c:00:9a:e7: fa:74:39:26:b1:93:56:76:2e:7e:d1:0d:69:33:73: d2:76:91:d6:67:8c:c1:03:a5:08:88:32:8d:63:00: f0:15:04:71:d0:d5:27:3d:b2:4d:62:fc:88:c6:e1: 46:0a:20:96:29:9a:0c:64:5f:03:b5:58:50:9b:ed: cc:ed:52:11:1b:ab:da:d6:c3:83:03:b7:ae:71:ff: 8b:9c:c4:c2:9d:da:ad:ae:1b:ac:92:b6:66:52:f3: 62:6c:da:b0:ac:ac:c5:01:6c:5b:0f:1d:df:7e:7d: 09:25:bf:73:e0:de:e9:4d:a5:95:e3:0a:46:aa:e4: 70:29:96:55:30:be:1c:e8:ce:20:60:b2:1e:d9:67: 3b:da:e1:df:74:0b:23:f8:df:7c:e5:6c:17:09:0a: 7b:1b:f4:3f:58:dc:e3:83:a8:f3:72:a0:0e:9c:f2: 57:58:28:47:32:17:24:f6:09:47:d9:26:0d:f6:ac: f5:c5:89:98:1d:14:8f:1e:d1:02:ff:87:82:62:aa: f6:7c:63:8b:7a:ce:65:85:88:f7:a8:8a:e4:3d:4c: af:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:99:99:1A:6F:52:8F:EB:42:6D:BC:A7:FA:62:90:4D:5C:4C:CD:57 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.110.0/23 Signature Algorithm: sha256WithRSAEncryption 67:1c:d3:45:e5:76:de:71:72:e8:39:9b:d6:46:37:f2:c2:27: 85:7a:bc:69:4a:95:b6:cc:1a:e6:ac:26:72:e0:b0:7b:86:1f: 1c:fb:5a:6a:80:fd:0f:6f:8e:05:5e:9e:b6:b8:7b:46:b9:2b: 8f:b3:6d:c5:8e:e4:dc:d7:3d:9f:03:3f:06:19:af:75:b9:b0: 72:46:37:2e:11:47:c4:98:6c:96:6b:d6:43:46:ec:28:c2:a9: aa:33:22:d0:e8:d4:3d:03:46:4c:e3:31:12:3a:ba:2d:26:09: ca:39:29:4f:fb:11:8d:80:0b:31:55:24:09:2d:fb:64:e4:ca: 01:9a:ad:f5:ef:2e:40:bc:92:05:32:8e:b5:07:1f:7d:45:a2: 25:9a:9b:c9:66:b4:24:03:74:2e:1c:b1:84:f8:e5:68:ec:73: eb:08:03:0e:53:8b:50:bc:c9:fa:48:58:df:a5:ef:06:a7:27: 1d:b5:2a:f6:d2:a4:1b:cd:7c:f5:76:8f:03:5f:b2:f7:e2:ed: 41:df:cb:25:56:cc:57:23:ad:81:f7:ba:32:65:95:ba:19:f1: ca:d4:bd:0e:e7:a8:a9:6b:26:3a:3f:6d:bc:55:71:0a:40:9f: 39:12:b7:26:92:7f:c3:93:86:d1:04:b8:91:4b:d8:23:c9:4b: d9:46:43:58 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUGBWCVXAQpBlimdwyJcIh43ZtJbowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDkwMzA4MzgwOVoX DTI2MDkwMjA4NDMwOVowMzExMC8GA1UEAxMoNUI5OTk5MUE2RjUyOEZFQjQyNkRC Q0E3RkE2MjkwNEQ1QzRDQ0Q1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7c6NYjch+IxMyOq/bNYN95pTcG9Dz769tUkkGhFM26sIqho8Gfqqc8AJrn +nQ5JrGTVnYuftENaTNz0naR1meMwQOlCIgyjWMA8BUEcdDVJz2yTWL8iMbhRgog limaDGRfA7VYUJvtzO1SERur2tbDgwO3rnH/i5zEwp3ara4brJK2ZlLzYmzasKys xQFsWw8d3359CSW/c+De6U2lleMKRqrkcCmWVTC+HOjOIGCyHtlnO9rh33QLI/jf fOVsFwkKexv0P1jc44Oo83KgDpzyV1goRzIXJPYJR9kmDfas9cWJmB0Ujx7RAv+H gmKq9nxji3rOZYWI96iK5D1Mr6UCAwEAAaOCAfgwggH0MB0GA1UdDgQWBBRbmZka b1KP60JtvKf6YpBNXEzNVzAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS8zMTMwMzMyZTMxMzYzNTJl MzEzMTMwMmUzMDJmMzIzMzJkMzIzNzIwM2QzZTIwMzQzNTMzMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpW4wDQYJKoZIhvcNAQELBQADggEBAGcc00Xldt5xcug5m9ZGN/LCJ4V6vGlK lbbMGuasJnLgsHuGHxz7WmqA/Q9vjgVenra4e0a5K4+zbcWO5NzXPZ8DPwYZr3W5 sHJGNy4RR8SYbJZr1kNG7CjCqaozItDo1D0DRkzjMRI6ui0mCco5KU/7EY2ACzFV JAkt+2TkygGarfXvLkC8kgUyjrUHH31FoiWam8lmtCQDdC4csYT45Wjsc+sIAw5T i1C8yfpIWN+l7wanJx21KvbSpBvNfPV2jwNfsvfi7UHfyyVWzFcjrYH3ujJllboZ 8crUvQ7nqKlrJjo/bbxVcQpAnzkStyaSf8OThtEEuJFL2CPJS9lGQ1g= -----END CERTIFICATE-----Generated at Tue Sep 9 07:08:35 2025 by rpki-client