$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/JxyIr7k6-KxrcmJF70ebRDEIqZA.roa File: JxyIr7k6-KxrcmJF70ebRDEIqZA.roa (raw, json) Hash identifier: PFw5DBVo9Dr6fmNN43aXR5mc0Ei7giQQxYz18EVduhc= Subject key identifier: 27:1C:88:AF:B9:3A:F8:AC:6B:72:62:45:EF:47:9B:44:31:08:A9:90 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1358 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/JxyIr7k6-KxrcmJF70ebRDEIqZA.roa Signing time: Wed 09 Oct 2024 00:44:10 +0000 ROA not before: Wed 09 Oct 2024 00:44:10 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 2914 IP address blocks: 180.223.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4952 (0x1358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Oct 9 00:44:10 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=271C88AFB93AF8AC6B726245EF479B443108A990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:c2:18:c3:6a:98:be:2f:2a:fd:36:e2:b8: 21:2e:6a:7c:f3:80:98:45:1b:24:00:5b:fd:bf:e2: 6a:5e:07:12:5e:0b:e3:fc:6e:7c:74:03:0c:a7:a6: e1:8c:a7:43:19:51:ae:b5:bc:e9:50:7d:e8:d3:53: fd:3a:e2:5c:30:c6:8b:ac:0b:c2:d0:06:23:2c:4b: 36:8b:43:22:cf:09:90:03:40:95:a1:7e:89:74:a0: a6:c6:57:6c:ec:d5:dd:f8:56:d9:01:26:47:13:37: 3e:4d:0c:31:17:7d:0a:59:2f:26:15:96:15:20:3f: f8:a3:ca:98:04:63:29:c6:9c:8b:21:0b:23:40:97: cb:46:f3:30:21:be:78:c2:5e:68:68:ac:53:3e:dd: ad:c7:cc:f9:89:0a:27:44:ab:1e:7d:7a:e8:a7:fe: 82:51:d1:fc:b4:e2:97:58:25:04:7a:f9:42:9c:0f: 08:94:81:e0:2e:07:96:6a:c2:33:00:3f:af:f6:62: 9a:0a:dc:ad:36:71:54:b3:95:ab:15:8d:54:fe:bf: c1:6e:98:1c:63:c8:72:e8:ee:1d:47:82:56:ff:1b: 86:0c:6b:63:1a:bf:3d:06:84:18:b8:a1:3e:85:1d: d4:93:90:d6:c7:5f:dc:96:a1:86:60:9a:70:8d:29: 44:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:1C:88:AF:B9:3A:F8:AC:6B:72:62:45:EF:47:9B:44:31:08:A9:90 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/JxyIr7k6-KxrcmJF70ebRDEIqZA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.193.0/24 Signature Algorithm: sha256WithRSAEncryption 91:11:da:51:73:5c:2b:a4:98:40:48:7b:ae:fb:fb:27:97:94: 39:99:f3:48:18:d4:51:e5:d4:ec:5f:4f:e6:79:29:7f:09:f2: 40:c6:9a:ba:5d:4b:e6:73:c8:bf:f3:6b:45:33:33:68:22:94: 24:4c:2f:6e:90:a6:28:03:e0:4c:87:a0:cc:ac:20:88:b4:0d: 81:d6:ad:ec:0b:9a:9e:b2:7b:cf:65:8f:d8:84:4f:60:4b:1a: d5:88:a9:f5:07:f1:1c:12:a5:84:8c:ad:f6:f7:33:c1:0d:64: d8:ed:66:03:27:c2:70:b4:57:94:b3:a3:b4:3b:d5:05:20:04: 12:6b:f8:34:0d:fa:32:af:41:b2:9b:06:6e:1a:b9:65:6b:94: 87:49:57:75:f7:72:c1:49:0e:8c:b8:b5:94:c4:f8:4c:67:f6: 7b:e6:a9:0d:79:bf:1a:6c:ae:ac:24:f1:81:65:7e:70:45:3e: 95:c9:a4:30:56:1c:a0:9f:dd:34:21:2e:98:e1:81:ac:c6:fe: c5:be:9c:b5:50:12:8b:96:af:56:13:14:8f:d4:dd:86:95:52: a0:ff:f4:19:f1:b9:85:44:48:a3:ef:f5:57:1a:8b:57:07:ed: ea:4b:5b:39:f9:da:c5:2d:37:d2:0d:b5:b9:75:bc:32:d1:f4: d5:a4:0f:7f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICE1gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDEwMDkw MDQ0MTBaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDI3MUM4OEFGQjkzQUY4 QUM2QjcyNjI0NUVGNDc5QjQ0MzEwOEE5OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtj8IYw2qYvi8q/TbiuCEuanzzgJhFGyQAW/2/4mpeBxJeC+P8 bnx0AwynpuGMp0MZUa61vOlQfejTU/064lwwxousC8LQBiMsSzaLQyLPCZADQJWh fol0oKbGV2zs1d34VtkBJkcTNz5NDDEXfQpZLyYVlhUgP/ijypgEYynGnIshCyNA l8tG8zAhvnjCXmhorFM+3a3HzPmJCidEqx59euin/oJR0fy04pdYJQR6+UKcDwiU geAuB5ZqwjMAP6/2YpoK3K02cVSzlasVjVT+v8FumBxjyHLo7h1Hglb/G4YMa2Ma vz0GhBi4oT6FHdSTkNbHX9yWoYZgmnCNKUS/AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUJxyIr7k6+KxrcmJF70ebRDEIqZAwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvSnh5SXI3azYtS3hy Y21KRjcwZWJSREVJcVpBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfwTANBgkqhkiG9w0BAQsFAAOCAQEAkRHaUXNcK6SYQEh7rvv7J5eUOZnz SBjUUeXU7F9P5nkpfwnyQMaaul1L5nPIv/NrRTMzaCKUJEwvbpCmKAPgTIegzKwg iLQNgdat7AuanrJ7z2WP2IRPYEsa1Yip9QfxHBKlhIyt9vczwQ1k2O1mAyfCcLRX lLOjtDvVBSAEEmv4NA36Mq9BspsGbhq5ZWuUh0lXdfdywUkOjLi1lMT4TGf2e+ap DXm/GmyurCTxgWV+cEU+lcmkMFYcoJ/dNCEumOGBrMb+xb6ctVASi5avVhMUj9Td hpVSoP/0GfG5hURIo+/1VxqLVwft6ktbOfnaxS030g21uXW8MtH01aQPfw== -----END CERTIFICATE-----Generated at Sun Nov 24 23:12:31 2024 by rpki-client on console-ams.rpki-client.org