$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa File: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (raw, json) Hash identifier: JFCS9e0aLryMYeNDBnDNiNrsCRSXbd1lFhCNwVkVDrU= Subject key identifier: 2A:6F:A5:14:E3:46:B1:A6:A5:74:BD:72:64:34:25:D5:1A:58:A4:D1 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 6F64B92630FB226A7FB4EB2B3453B9271392A47D Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa Signing time: Tue 28 May 2024 09:14:24 +0000 ROA not before: Tue 28 May 2024 09:09:24 +0000 ROA not after: Tue 27 May 2025 09:14:24 +0000 asID: 4538 IP address blocks: 103.165.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 07:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:64:b9:26:30:fb:22:6a:7f:b4:eb:2b:34:53:b9:27:13:92:a4:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: May 28 09:09:24 2024 GMT Not After : May 27 09:14:24 2025 GMT Subject: CN=2A6FA514E346B1A6A574BD72643425D51A58A4D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fb:41:3d:52:1f:cc:67:b9:6f:3f:7e:55:02: e1:07:aa:96:06:dd:bb:37:ac:19:df:a2:92:fb:a8: c4:73:bd:ca:9f:84:7a:a4:cb:0a:0c:43:32:9d:aa: 12:7b:eb:2c:b4:a3:6f:8f:e6:63:c8:1a:55:d8:72: 32:58:70:08:31:34:9e:06:0d:93:74:19:60:7c:ac: 26:3b:28:17:ea:5e:ff:e8:00:61:fa:68:d2:24:7c: 11:2b:a8:91:b7:9c:30:79:88:66:3f:51:4c:d3:6e: 2e:a3:d5:be:8b:8b:6f:2c:0f:a3:4a:dd:fe:93:16: 6b:ee:6a:bb:67:4d:a0:52:b0:a3:9d:3f:9d:2e:14: 82:0a:be:33:3d:88:69:99:9c:81:0f:d8:ca:75:2a: 18:36:4c:9c:e5:d9:6f:80:f6:49:ef:d9:24:aa:52: 6f:e7:8e:74:75:72:b1:47:16:e4:28:84:00:74:fa: 30:9d:a7:2a:07:9e:b8:1c:04:e4:14:ca:90:40:e6: 62:e9:b7:f7:91:70:c6:fe:a1:79:87:cd:82:2a:5b: c4:de:3a:30:af:4d:89:71:ae:9d:b0:85:0f:69:e5: 6c:e6:22:75:6b:67:01:41:2a:1d:d6:ef:b8:95:dc: 9b:d3:2f:36:84:1d:ff:e1:69:e8:bd:ba:36:7c:01: b2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6F:A5:14:E3:46:B1:A6:A5:74:BD:72:64:34:25:D5:1A:58:A4:D1 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.110.0/24 Signature Algorithm: sha256WithRSAEncryption 95:64:0c:d1:94:6e:5a:c4:b2:7a:5a:eb:f1:41:ef:b4:5b:2b: cb:46:47:77:5e:18:07:2a:f8:1d:96:5f:1a:62:db:df:7a:a9: 39:64:66:cc:12:96:64:7b:6a:3f:b1:9c:93:cc:87:49:9a:eb: 2e:4f:b7:14:12:5f:45:b6:31:23:43:b7:c4:22:ea:17:fb:96: 68:50:8b:79:a6:0d:f5:7c:b7:ec:79:5b:71:e0:5b:99:93:86: 97:dd:73:41:68:dd:e5:77:9c:83:74:4a:80:6b:89:26:17:37: 7e:7b:dd:19:d6:40:b0:31:c5:1b:b6:7b:2d:22:da:c6:43:61: 1c:6d:07:95:d9:ce:54:db:2f:8a:67:b1:c4:27:37:6a:4f:8c: 90:f3:79:e2:c0:03:91:8a:0f:69:e2:fb:f1:07:f3:df:92:c4: f5:80:34:fc:2a:f2:ed:8a:06:7c:fa:77:a3:62:31:28:2f:f3: f2:4d:cd:a4:00:39:b7:7a:77:e3:04:9c:5c:1f:d1:c4:9d:58: d9:a9:e2:4b:69:cd:46:8b:c7:50:dd:8b:73:ac:4d:04:fa:f9: cc:c3:6d:cd:e2:13:9d:80:a5:68:b9:fd:5a:1b:1f:8e:ac:71: 4c:13:58:54:92:98:61:c5:14:c7:98:33:8c:a7:53:fe:4d:6d: 25:27:b2:ff -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUb2S5JjD7Imp/tOsrNFO5JxOSpH0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI0MDUyODA5MDkyNFoX DTI1MDUyNzA5MTQyNFowMzExMC8GA1UEAxMoMkE2RkE1MTRFMzQ2QjFBNkE1NzRC RDcyNjQzNDI1RDUxQTU4QTREMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ77QT1SH8xnuW8/flUC4QeqlgbduzesGd+ikvuoxHO9yp+EeqTLCgxDMp2q EnvrLLSjb4/mY8gaVdhyMlhwCDE0ngYNk3QZYHysJjsoF+pe/+gAYfpo0iR8ESuo kbecMHmIZj9RTNNuLqPVvouLbywPo0rd/pMWa+5qu2dNoFKwo50/nS4Uggq+Mz2I aZmcgQ/YynUqGDZMnOXZb4D2Se/ZJKpSb+eOdHVysUcW5CiEAHT6MJ2nKgeeuBwE 5BTKkEDmYum395Fwxv6heYfNgipbxN46MK9NiXGunbCFD2nlbOYidWtnAUEqHdbv uJXcm9MvNoQd/+Fp6L26NnwBspkCAwEAAaOCAfgwggH0MB0GA1UdDgQWBBQqb6UU 40axpqV0vXJkNCXVGlik0TAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS8zMTMwMzMyZTMxMzYzNTJl MzEzMTMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMzMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpW4wDQYJKoZIhvcNAQELBQADggEBAJVkDNGUblrEsnpa6/FB77RbK8tGR3de GAcq+B2WXxpi2996qTlkZswSlmR7aj+xnJPMh0ma6y5PtxQSX0W2MSNDt8Qi6hf7 lmhQi3mmDfV8t+x5W3HgW5mThpfdc0Fo3eV3nIN0SoBriSYXN3573RnWQLAxxRu2 ey0i2sZDYRxtB5XZzlTbL4pnscQnN2pPjJDzeeLAA5GKD2ni+/EH89+SxPWANPwq 8u2KBnz6d6NiMSgv8/JNzaQAObd6d+MEnFwf0cSdWNmp4ktpzUaLx1Ddi3OsTQT6 +czDbc3iE52ApWi5/VobH46scUwTWFSSmGHFFMeYM4ynU/5NbSUnsv8= -----END CERTIFICATE-----Generated at Sat Jun 1 05:49:28 2024 by rpki-client on console-fra.rpki-client.org