$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/HJL5RBDyBswe8c17Kee2oeu8OPc.roa File: HJL5RBDyBswe8c17Kee2oeu8OPc.roa (raw, json) Hash identifier: D/n8ftsHAlZ2ypp/rh5Q/3krkWj+L83r0/hVkEv4FvQ= Subject key identifier: 1C:92:F9:44:10:F2:06:CC:1E:F1:CD:7B:29:E7:B6:A1:EB:BC:38:F7 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1361 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/HJL5RBDyBswe8c17Kee2oeu8OPc.roa Signing time: Wed 09 Oct 2024 00:44:13 +0000 ROA not before: Wed 09 Oct 2024 00:44:13 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 2914 IP address blocks: 180.223.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 01:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4961 (0x1361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Oct 9 00:44:13 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=1C92F94410F206CC1EF1CD7B29E7B6A1EBBC38F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:62:cf:0e:b7:da:2d:5f:11:50:f8:e2:0e:be: 22:6c:ec:e9:70:3f:93:a1:34:34:48:1d:77:0d:2c: 67:2a:95:f2:cd:b6:a6:b9:db:20:64:3e:33:c1:79: 53:9e:bf:33:3b:8a:57:53:6a:96:e5:50:5e:66:94: fb:bb:1c:bc:2b:8d:b2:55:79:f1:3a:dd:6a:fe:08: f2:54:35:26:62:31:a6:75:81:6a:fd:4f:47:4c:2c: 7b:af:e1:dc:00:fa:0d:29:13:eb:30:3e:7c:7d:9d: b4:fc:80:79:5c:59:9f:98:4d:af:45:3d:9f:70:ac: 12:e7:87:58:fe:9f:f8:ae:d2:4e:39:77:1e:f9:34: 4e:e1:b4:d2:b6:75:42:73:d3:13:c6:af:40:db:eb: ee:7a:4e:3a:3c:59:36:86:ab:0e:26:4b:45:fe:b6: 5e:d8:20:48:73:fc:e2:91:ab:8d:b0:17:c1:34:12: 5d:71:e9:43:d3:c7:f6:a2:33:35:87:dd:50:f7:2c: 86:13:a0:71:72:58:72:e7:05:b3:69:77:a9:21:23: b2:0c:81:06:67:eb:18:bc:4d:0e:7e:57:8a:37:75: 92:85:6b:2c:76:dd:ae:1b:f5:26:bc:e0:3f:41:6e: da:17:e1:f7:dc:23:9e:3f:18:9f:5b:f0:4f:9f:5c: 34:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:92:F9:44:10:F2:06:CC:1E:F1:CD:7B:29:E7:B6:A1:EB:BC:38:F7 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/HJL5RBDyBswe8c17Kee2oeu8OPc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.207.0/24 Signature Algorithm: sha256WithRSAEncryption 23:44:5c:bd:22:14:c9:ac:a0:de:f4:3f:1f:84:3a:a2:a4:67: 9b:73:70:92:fa:bd:d9:0b:11:c4:43:f5:d5:04:83:f4:a7:5d: b0:5c:0a:13:00:bd:9c:98:fe:25:d0:c7:83:61:a8:29:42:8c: ad:0e:ce:9c:27:38:61:88:17:7c:43:6c:98:32:71:8e:73:ca: 1e:9b:ed:9d:aa:69:3c:41:b1:b9:4d:a1:d2:78:43:22:e6:8d: c1:b3:cc:f4:3a:23:6a:bc:76:5b:49:d0:87:7a:6f:69:c7:19: ce:79:cf:05:ee:59:41:68:0e:4d:1e:88:45:10:f8:e9:b4:92: e3:b4:d9:35:84:56:06:60:b2:e8:79:b3:4e:d5:e7:22:83:55: 57:5a:20:9c:a9:28:06:42:fa:2b:88:49:5e:53:65:ed:e1:09: 0b:e7:40:9e:5f:1a:09:be:f5:1e:7a:fc:5f:08:ce:2c:ef:e1: e3:fc:a3:ab:3f:9d:4c:f6:14:61:bc:95:f5:2f:4a:e2:a7:80: 10:28:05:b6:41:03:99:54:a4:23:8d:9f:0a:f4:86:1e:93:ca: 1f:92:c9:8c:c2:13:9b:ba:43:c8:5d:52:d6:ab:61:88:8e:8e: 31:88:00:6f:29:f6:42:91:f0:65:eb:99:39:e0:41:00:72:f6: 18:80:07:7e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICE2EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDEwMDkw MDQ0MTNaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDFDOTJGOTQ0MTBGMjA2 Q0MxRUYxQ0Q3QjI5RTdCNkExRUJCQzM4RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlYs8Ot9otXxFQ+OIOviJs7OlwP5OhNDRIHXcNLGcqlfLNtqa5 2yBkPjPBeVOevzM7ildTapblUF5mlPu7HLwrjbJVefE63Wr+CPJUNSZiMaZ1gWr9 T0dMLHuv4dwA+g0pE+swPnx9nbT8gHlcWZ+YTa9FPZ9wrBLnh1j+n/iu0k45dx75 NE7htNK2dUJz0xPGr0Db6+56Tjo8WTaGqw4mS0X+tl7YIEhz/OKRq42wF8E0El1x 6UPTx/aiMzWH3VD3LIYToHFyWHLnBbNpd6khI7IMgQZn6xi8TQ5+V4o3dZKFayx2 3a4b9Sa84D9BbtoX4ffcI54/GJ9b8E+fXDSHAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUHJL5RBDyBswe8c17Kee2oeu8OPcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvSEpMNVJCRHlCc3dl OGMxN0tlZTJvZXU4T1BjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfzzANBgkqhkiG9w0BAQsFAAOCAQEAI0RcvSIUyayg3vQ/H4Q6oqRnm3Nw kvq92QsRxEP11QSD9KddsFwKEwC9nJj+JdDHg2GoKUKMrQ7OnCc4YYgXfENsmDJx jnPKHpvtnappPEGxuU2h0nhDIuaNwbPM9Dojarx2W0nQh3pvaccZznnPBe5ZQWgO TR6IRRD46bSS47TZNYRWBmCy6HmzTtXnIoNVV1ognKkoBkL6K4hJXlNl7eEJC+dA nl8aCb71Hnr8XwjOLO/h4/yjqz+dTPYUYbyV9S9K4qeAECgFtkEDmVSkI42fCvSG HpPKH5LJjMITm7pDyF1S1qthiI6OMYgAbyn2QpHwZeuZOeBBAHL2GIAHfg== -----END CERTIFICATE-----Generated at Fri Nov 22 00:25:26 2024 by rpki-client on console-fra.rpki-client.org