$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa File: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (raw, json) Hash identifier: +KbuVadS5EMXwvfdbw3xW30kEBRsR8uU/wUkr+aUcZU= Subject key identifier: BD:6F:57:CC:20:26:D0:A7:F1:02:09:4C:1A:27:26:B6:DB:C5:F8:3C Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 7058EADB2719372774E06550B6D49072D7B56D88 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa Signing time: Tue 29 Apr 2025 09:18:17 +0000 ROA not before: Tue 29 Apr 2025 09:13:17 +0000 ROA not after: Tue 28 Apr 2026 09:18:17 +0000 asID: 4538 IP address blocks: 103.165.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 23:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:58:ea:db:27:19:37:27:74:e0:65:50:b6:d4:90:72:d7:b5:6d:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Apr 29 09:13:17 2025 GMT Not After : Apr 28 09:18:17 2026 GMT Subject: CN=BD6F57CC2026D0A7F102094C1A2726B6DBC5F83C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:21:03:23:ec:3b:c2:9c:16:60:ae:fe:83:eb: 5a:2e:13:4e:0d:86:fe:92:d1:4c:dc:32:7b:27:8d: b7:1f:a7:c5:51:c2:6e:c6:b7:85:cb:72:f8:21:b3: 25:8f:78:ef:ad:00:a1:cd:4f:79:a7:f0:d0:cb:3c: cc:72:f2:e5:e4:12:a5:29:0b:35:34:e8:3d:39:5b: 3c:d1:05:9a:fc:62:0a:07:7f:a3:97:ec:6e:72:0d: 22:27:9b:9a:00:e2:73:7f:c3:a2:30:d6:bb:53:62: ff:08:8e:d7:f4:40:a2:ab:22:c6:0a:11:31:82:b2: db:27:62:d3:e2:81:ab:8c:f2:dd:47:82:e9:f2:b4: f7:de:68:95:cb:32:47:00:94:6b:54:81:a0:09:be: cb:88:a5:0b:54:c0:03:85:73:21:9d:ea:4e:02:fe: 8f:8d:89:99:02:e5:6d:9b:d0:4b:53:42:a4:b7:8b: c2:b7:d3:0d:51:6c:d7:aa:4d:f2:11:50:79:7d:5c: 88:a2:00:a2:7d:97:2c:a3:00:06:cb:71:e7:e9:e4: d0:13:05:77:e6:8e:bf:ed:9c:5a:64:1e:a3:0f:d6: 9e:44:cb:a4:64:c5:42:85:b6:59:99:b8:d5:f7:7a: 44:11:63:f8:1c:8f:71:9a:35:c9:9e:c7:db:78:6d: 91:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6F:57:CC:20:26:D0:A7:F1:02:09:4C:1A:27:26:B6:DB:C5:F8:3C X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.110.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:7d:93:02:06:96:8b:1f:35:0b:af:d6:26:ea:7c:ab:65:b6: 80:5c:a3:9b:d9:c3:17:6b:e5:65:d5:a5:b4:90:81:9d:b9:cd: be:33:0c:2d:71:64:81:a8:87:cb:4d:f7:92:82:45:ac:f2:6b: 13:c7:8d:1e:b8:05:74:ad:6a:40:4e:33:d3:b1:c2:17:76:4e: 6c:e4:b9:b7:12:8e:20:00:e9:79:e1:aa:1a:45:73:5c:33:d8: 10:5f:e3:36:08:f0:4d:7f:f5:ea:60:88:42:55:7e:f3:66:c2: 8b:e6:6b:84:91:73:82:aa:26:6d:ed:0f:7b:f3:9d:83:31:4e: 91:0e:20:ae:80:64:44:07:fc:85:9a:a0:6d:c6:ac:bb:5c:7c: 45:3f:aa:d1:e1:42:f9:70:79:a8:e4:36:9e:02:37:1c:c0:1b: 65:74:37:8e:21:4d:1f:71:80:38:2e:f0:c1:e2:3e:6e:15:6d: 2d:10:89:a8:93:3e:af:36:f6:c2:ff:55:49:f9:04:31:97:50: 58:0a:e5:09:e8:af:4d:6c:13:c5:fd:91:89:1e:1b:92:4f:9b: 5e:e6:c5:56:3c:70:83:49:99:aa:cc:fb:03:37:7c:31:6b:50: 00:1c:77:14:a0:35:2c:b3:05:5e:3e:0a:9a:ab:42:43:1a:bf: 1a:9f:62:ef -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUcFjq2ycZNyd04GVQttSQcte1bYgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDQyOTA5MTMxN1oX DTI2MDQyODA5MTgxN1owMzExMC8GA1UEAxMoQkQ2RjU3Q0MyMDI2RDBBN0YxMDIw OTRDMUEyNzI2QjZEQkM1RjgzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0hAyPsO8KcFmCu/oPrWi4TTg2G/pLRTNwyeyeNtx+nxVHCbsa3hcty+CGz JY94760Aoc1Peafw0Ms8zHLy5eQSpSkLNTToPTlbPNEFmvxiCgd/o5fsbnINIieb mgDic3/DojDWu1Ni/wiO1/RAoqsixgoRMYKy2ydi0+KBq4zy3UeC6fK0995olcsy RwCUa1SBoAm+y4ilC1TAA4VzIZ3qTgL+j42JmQLlbZvQS1NCpLeLwrfTDVFs16pN 8hFQeX1ciKIAon2XLKMABstx5+nk0BMFd+aOv+2cWmQeow/WnkTLpGTFQoW2WZm4 1fd6RBFj+ByPcZo1yZ7H23htkVsCAwEAAaOCAfgwggH0MB0GA1UdDgQWBBS9b1fM ICbQp/ECCUwaJya228X4PDAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS8zMTMwMzMyZTMxMzYzNTJl MzEzMTMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMzMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpW4wDQYJKoZIhvcNAQELBQADggEBAC19kwIGlosfNQuv1ibqfKtltoBco5vZ wxdr5WXVpbSQgZ25zb4zDC1xZIGoh8tN95KCRazyaxPHjR64BXStakBOM9Oxwhd2 TmzkubcSjiAA6XnhqhpFc1wz2BBf4zYI8E1/9epgiEJVfvNmwovma4SRc4KqJm3t D3vznYMxTpEOIK6AZEQH/IWaoG3GrLtcfEU/qtHhQvlweajkNp4CNxzAG2V0N44h TR9xgDgu8MHiPm4VbS0QiaiTPq829sL/VUn5BDGXUFgK5Qnor01sE8X9kYkeG5JP m17mxVY8cINJmarM+wM3fDFrUAAcdxSgNSyzBV4+CpqrQkMavxqfYu8= -----END CERTIFICATE-----Generated at Sat May 10 05:29:56 2025 by rpki-client