$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2329/B2mM_IiexAkmcUzoTmazlVFWQRE.roa File: B2mM_IiexAkmcUzoTmazlVFWQRE.roa (raw, json) Hash identifier: Gp9JWKe4sPgQjhwInIymHR0bR6hRV/QHMcAqC+egsYE= Subject key identifier: 07:69:8C:FC:88:9E:C4:09:26:71:4C:E8:4E:66:B3:95:51:56:41:11 Certificate issuer: /CN=EC10C93455759C659D2BB819FB07FF7063CECC32 Certificate serial: 15E7 Authority key identifier: EC:10:C9:34:55:75:9C:65:9D:2B:B8:19:FB:07:FF:70:63:CE:CC:32 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/B2mM_IiexAkmcUzoTmazlVFWQRE.roa Signing time: Wed 13 Mar 2024 01:22:26 +0000 ROA not before: Wed 13 Mar 2024 01:22:26 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 134769 IP address blocks: 118.184.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 17:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5607 (0x15e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC10C93455759C659D2BB819FB07FF7063CECC32 Validity Not Before: Mar 13 01:22:26 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=07698CFC889EC40926714CE84E66B39551564111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ee:b8:da:bf:7a:e0:af:e5:71:90:e0:56:4f: d6:28:c2:d0:c5:28:64:1c:1b:6c:84:80:07:06:2f: 84:77:93:02:71:5f:7e:5e:68:f9:be:a8:ce:95:79: 55:26:dc:a8:a0:8f:fb:bb:23:fb:bd:68:37:c5:d5: 54:db:b0:03:19:79:3c:e2:d5:8b:8b:76:e7:f0:4d: d4:eb:ea:52:99:3d:21:ff:6a:63:f2:b1:76:76:e2: 0f:2e:f3:ff:20:f8:a8:8a:8c:65:b7:03:fc:cd:c5: d9:9b:c2:6f:88:f2:67:73:99:6f:c5:50:e1:ef:1e: be:ce:33:e0:af:2d:0c:0f:c8:9a:0e:80:5c:07:2d: df:52:ef:35:dd:8a:77:09:51:39:e4:58:be:4d:e5: ef:77:d2:ee:81:eb:5d:c9:35:40:5d:0d:5f:c6:55: fc:36:a4:b7:49:c0:9a:de:db:92:e4:8b:18:d9:dc: c7:d1:45:85:a0:ae:4a:2c:3b:2e:03:36:8c:22:a3: a7:9c:e1:2d:86:8e:83:76:31:42:8b:c1:40:cc:f1: 42:9e:3a:c0:89:be:4c:b0:78:96:0d:a9:de:68:aa: 0d:ee:61:8d:b1:1b:c4:77:c1:99:fd:cb:c4:07:3f: fe:62:d7:c6:d7:42:18:b0:38:60:0f:6b:ce:d9:0b: 8b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:69:8C:FC:88:9E:C4:09:26:71:4C:E8:4E:66:B3:95:51:56:41:11 X509v3 Authority Key Identifier: keyid:EC:10:C9:34:55:75:9C:65:9D:2B:B8:19:FB:07:FF:70:63:CE:CC:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/B2mM_IiexAkmcUzoTmazlVFWQRE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.184.128.0/17 Signature Algorithm: sha256WithRSAEncryption 70:46:64:b1:91:90:99:12:23:76:f4:8b:3b:5f:c3:0a:fa:8e: dd:83:20:40:e4:51:95:34:d5:c0:9e:78:dc:3e:24:d8:6e:e5: 87:00:4c:7e:22:a6:ce:ba:30:ae:96:d5:09:af:3f:98:b9:00: 80:e0:b7:04:b8:f1:3e:e0:72:56:69:16:49:25:d3:02:87:71: a2:bd:0d:0f:ac:5e:de:95:8c:73:f4:d5:2a:ce:e5:d4:ad:83: 41:eb:84:7e:51:2a:f5:83:8d:fa:3b:67:97:12:1f:d3:01:a2: 1a:7c:e2:b5:d0:eb:fc:ec:f1:08:05:4a:59:15:e0:2b:e7:f4: ce:2c:57:d8:af:3d:ce:9c:77:87:08:e1:f7:87:9b:0b:0e:51: 2a:08:a4:6e:52:80:f8:57:3f:08:d9:78:c2:ab:bf:87:e1:74: 65:38:2b:5e:86:cb:3a:01:4d:95:b3:33:47:2e:7e:ca:18:a5: 69:e6:54:a7:b6:87:a1:4b:bb:a8:1e:ba:3a:4f:f0:e8:68:ba: c3:a0:d4:33:d8:74:62:4c:a2:dc:de:69:9b:a2:e5:60:b9:45: 1e:d9:45:0b:03:09:30:58:3d:b8:f2:97:27:00:05:3b:4c:57: 7e:30:82:a5:49:fd:47:17:45:5f:f4:46:37:3d:11:0a:2a:d9: 87:ba:19:ec -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUMx MEM5MzQ1NTc1OUM2NTlEMkJCODE5RkIwN0ZGNzA2M0NFQ0MzMjAeFw0yNDAzMTMw MTIyMjZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDA3Njk4Q0ZDODg5RUM0 MDkyNjcxNENFODRFNjZCMzk1NTE1NjQxMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCV7rjav3rgr+VxkOBWT9YowtDFKGQcG2yEgAcGL4R3kwJxX35e aPm+qM6VeVUm3Kigj/u7I/u9aDfF1VTbsAMZeTzi1YuLdufwTdTr6lKZPSH/amPy sXZ24g8u8/8g+KiKjGW3A/zNxdmbwm+I8mdzmW/FUOHvHr7OM+CvLQwPyJoOgFwH Ld9S7zXdincJUTnkWL5N5e930u6B613JNUBdDV/GVfw2pLdJwJre25LkixjZ3MfR RYWgrkosOy4DNowio6ec4S2GjoN2MUKLwUDM8UKeOsCJvkyweJYNqd5oqg3uYY2x G8R3wZn9y8QHP/5i18bXQhiwOGAPa87ZC4uHAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUB2mM/IiexAkmcUzoTmazlVFWQREwHwYDVR0jBBgwFoAU7BDJNFV1nGWdK7gZ +wf/cGPOzDIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjMy OS83QkRKTkZWMW5HV2RLN2daLXdmX2NHUE96REkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzdCREpORlYxbkdXZEs3Z1otd2ZfY0dQT3pESS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIzMjkvQjJtTV9JaWV4QWtt Y1V6b1RtYXpsVkZXUVJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB3a4gDANBgkqhkiG9w0BAQsFAAOCAQEAcEZksZGQmRIjdvSLO1/DCvqO3YMg QORRlTTVwJ543D4k2G7lhwBMfiKmzrowrpbVCa8/mLkAgOC3BLjxPuByVmkWSSXT Aodxor0ND6xe3pWMc/TVKs7l1K2DQeuEflEq9YON+jtnlxIf0wGiGnzitdDr/Ozx CAVKWRXgK+f0zixX2K89zpx3hwjh94ebCw5RKgikblKA+Fc/CNl4wqu/h+F0ZTgr XobLOgFNlbMzRy5+yhilaeZUp7aHoUu7qB66Ok/w6Gi6w6DUM9h0Ykyi3N5pm6Ll YLlFHtlFCwMJMFg9uPKXJwAFO0xXfjCCpUn9RxdFX/RGNz0RCirZh7oZ7A== -----END CERTIFICATE-----Generated at Wed Jun 26 13:21:58 2024 by rpki-client on console-fra.rpki-client.org