$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa File: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (raw, json) Hash identifier: 2rZKXXkXswk5ebiy14m5FQa7T+HojkYnnBjqPbD+L9Q= Subject key identifier: 65:08:EE:CB:46:33:05:22:0C:A5:4C:D7:4E:B7:C0:EC:A9:1B:69:2D Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 69912667AB7439DC58181C89A375A354C45B48A8 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa Signing time: Wed 04 Jun 2025 03:12:22 +0000 ROA not before: Wed 04 Jun 2025 03:07:22 +0000 ROA not after: Wed 03 Jun 2026 03:12:22 +0000 asID: 4538 IP address blocks: 103.165.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 05:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:91:26:67:ab:74:39:dc:58:18:1c:89:a3:75:a3:54:c4:5b:48:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Jun 4 03:07:22 2025 GMT Not After : Jun 3 03:12:22 2026 GMT Subject: CN=6508EECB463305220CA54CD74EB7C0ECA91B692D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:52:0d:33:61:e3:f6:42:5f:fe:27:40:8f:4a: 2f:94:05:46:d4:41:82:78:d9:44:56:90:e8:58:e7: b5:65:eb:5b:d1:c6:59:27:0c:8a:70:f0:da:e0:81: df:8d:16:5f:09:31:19:af:47:8d:84:23:cb:03:1f: 04:84:b7:ba:8c:40:50:3f:39:50:41:d8:43:4c:cc: 0f:35:7d:87:83:1d:2d:26:1f:b0:38:81:93:7c:ce: 97:52:50:db:13:65:ae:63:e9:30:23:04:a4:6f:ed: 5b:37:c2:ab:80:a6:6e:23:56:73:d8:b3:ce:96:57: 1b:e7:c0:1b:3f:66:d3:0c:2d:26:6c:4e:c8:e6:3b: 8b:79:8f:47:96:92:2d:d2:68:68:42:30:08:c1:4e: b1:b7:fe:15:a5:d5:e2:48:ab:8e:fa:bc:bd:89:61: 8c:02:8f:e9:4b:2b:af:0c:5f:02:44:43:26:cf:ab: ed:cc:4a:51:7d:49:36:b5:a1:fe:8b:ad:c6:9f:14: c7:4e:03:bb:81:7f:f6:a5:1f:e2:a9:b2:bf:4a:d0: eb:4a:eb:b0:27:c8:8f:fd:ff:c9:a8:bc:50:de:55: 71:45:a7:9a:70:fc:f8:1a:2a:6a:68:f2:76:53:78: 39:7d:8c:d7:c9:bd:4b:e0:81:0b:a9:6d:28:7b:fb: 2f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:08:EE:CB:46:33:05:22:0C:A5:4C:D7:4E:B7:C0:EC:A9:1B:69:2D X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.110.0/24 Signature Algorithm: sha256WithRSAEncryption 67:00:dd:13:8b:bd:46:30:90:f0:16:5f:14:72:4c:4c:9b:ec: 7a:1f:ba:aa:4d:4d:b0:b8:14:c0:4b:1b:6f:5a:19:7d:cc:9e: 6b:24:7a:4a:11:c5:9d:d7:79:04:39:e5:f5:a7:96:49:39:9e: df:20:ea:b7:fc:cf:4a:aa:af:ae:3b:99:d1:12:3d:de:4a:29: 8a:ba:34:99:08:a2:3a:12:c2:33:69:c6:12:99:26:a6:e6:1e: b4:06:5b:f3:7f:cf:b4:8f:7d:12:6b:97:6d:55:8b:12:f2:df: 20:39:1d:df:51:dd:f6:c4:82:ed:15:58:ad:5f:5b:97:f1:dc: b8:f7:bc:dc:59:c5:2c:f1:22:46:c1:e1:d4:21:d0:99:23:8e: fa:51:f7:b4:d3:12:c5:7c:0b:3f:01:50:b8:eb:b5:c4:ad:09: 61:c3:4d:13:96:e6:68:42:e8:46:7e:c5:fc:67:fa:cc:8a:33: 0a:2a:fe:a8:fc:6f:e4:e9:91:29:c7:3d:d0:fa:a5:ff:2b:88: ee:e9:77:b2:67:58:b2:7b:13:77:6f:25:0c:09:26:83:d7:7e: fb:14:c2:e7:44:6f:08:ef:44:a9:54:ad:b9:d8:ad:c5:29:e9: 5e:1a:20:fc:e0:9a:4f:2c:81:bb:8b:a6:00:ac:27:03:7d:bd: ba:43:60:cd -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUaZEmZ6t0OdxYGByJo3WjVMRbSKgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDYwNDAzMDcyMloX DTI2MDYwMzAzMTIyMlowMzExMC8GA1UEAxMoNjUwOEVFQ0I0NjMzMDUyMjBDQTU0 Q0Q3NEVCN0MwRUNBOTFCNjkyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJSDTNh4/ZCX/4nQI9KL5QFRtRBgnjZRFaQ6FjntWXrW9HGWScMinDw2uCB 340WXwkxGa9HjYQjywMfBIS3uoxAUD85UEHYQ0zMDzV9h4MdLSYfsDiBk3zOl1JQ 2xNlrmPpMCMEpG/tWzfCq4CmbiNWc9izzpZXG+fAGz9m0wwtJmxOyOY7i3mPR5aS LdJoaEIwCMFOsbf+FaXV4kirjvq8vYlhjAKP6UsrrwxfAkRDJs+r7cxKUX1JNrWh /outxp8Ux04Du4F/9qUf4qmyv0rQ60rrsCfIj/3/yai8UN5VcUWnmnD8+Boqamjy dlN4OX2M18m9S+CBC6ltKHv7L0UCAwEAAaOCAfgwggH0MB0GA1UdDgQWBBRlCO7L RjMFIgylTNdOt8DsqRtpLTAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS8zMTMwMzMyZTMxMzYzNTJl MzEzMTMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMzMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpW4wDQYJKoZIhvcNAQELBQADggEBAGcA3ROLvUYwkPAWXxRyTEyb7HofuqpN TbC4FMBLG29aGX3MnmskekoRxZ3XeQQ55fWnlkk5nt8g6rf8z0qqr647mdESPd5K KYq6NJkIojoSwjNpxhKZJqbmHrQGW/N/z7SPfRJrl21VixLy3yA5Hd9R3fbEgu0V WK1fW5fx3Lj3vNxZxSzxIkbB4dQh0JkjjvpR97TTEsV8Cz8BULjrtcStCWHDTROW 5mhC6EZ+xfxn+syKMwoq/qj8b+TpkSnHPdD6pf8riO7pd7JnWLJ7E3dvJQwJJoPX fvsUwudEbwjvRKlUrbnYrcUp6V4aIPzgmk8sgbuLpgCsJwN9vbpDYM0= -----END CERTIFICATE-----Generated at Thu Jun 5 18:13:16 2025 by rpki-client