$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/L165PKAWt4p5QXHwafRgZcQhFdM.roa File: L165PKAWt4p5QXHwafRgZcQhFdM.roa (raw, json) Hash identifier: yl9tf5ctfRegVyRVPmAuyFdM17MfLasGRY0iCfNq6zI= Subject key identifier: 2F:5E:B9:3C:A0:16:B7:8A:79:41:71:F0:69:F4:60:65:C4:21:15:D3 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1354 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/L165PKAWt4p5QXHwafRgZcQhFdM.roa Signing time: Wed 09 Oct 2024 00:44:08 +0000 ROA not before: Wed 09 Oct 2024 00:44:08 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 2914 IP address blocks: 180.223.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4948 (0x1354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Oct 9 00:44:08 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=2F5EB93CA016B78A794171F069F46065C42115D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:3a:9d:85:2b:9e:9f:1b:4f:c4:c8:a0:bb: 08:0a:9d:d5:36:b1:a8:66:07:e7:ed:b5:76:d3:3c: 0e:9d:6e:b9:9a:d0:2c:9c:c7:a7:8c:4d:46:f6:42: 95:5d:12:e0:36:78:0a:75:e5:4c:eb:3a:9a:52:93: b6:63:cd:a4:6d:3f:ae:63:76:63:24:4c:b8:ed:ec: e4:f9:2b:91:75:31:6b:4f:97:b1:26:1a:5e:4a:0c: cc:94:de:a6:a2:94:93:26:e0:df:b9:84:60:58:0c: bc:64:18:c6:64:86:06:7c:af:a0:aa:3d:ac:c2:9d: cc:c8:92:3c:5b:bc:16:65:a2:55:7e:ed:54:76:a4: f5:b8:95:8b:1c:5b:59:04:83:3d:d9:a8:d1:f5:d9: 62:bc:61:2f:ff:3c:44:12:93:be:b2:81:57:b7:86: 9e:5b:a5:c4:c1:83:00:b6:57:12:f5:94:ac:c9:04: 19:35:94:32:aa:09:4e:74:12:30:ba:84:b5:75:e6: 57:2c:b2:6b:62:6d:ff:22:58:c1:74:3e:2a:98:e9: ce:77:c5:f9:83:e5:5c:93:c3:97:e0:a7:d5:ad:d9: 09:87:88:64:2e:9f:a7:8f:c6:de:2c:6d:90:95:07: 7b:46:66:07:be:67:01:82:62:23:33:ef:15:c1:c9: 53:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:5E:B9:3C:A0:16:B7:8A:79:41:71:F0:69:F4:60:65:C4:21:15:D3 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/L165PKAWt4p5QXHwafRgZcQhFdM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.192.0/24 Signature Algorithm: sha256WithRSAEncryption 25:49:56:c3:0e:85:b6:04:b9:f5:1e:a9:f9:95:59:2c:53:76: 09:1e:79:ae:27:0a:a2:c8:8d:b9:83:45:36:6a:b9:e4:4d:aa: 2a:b4:3f:81:7f:4a:0c:61:8a:b6:cf:fd:35:98:aa:75:7f:a0: e7:b3:ee:43:3d:ef:fd:94:3b:9c:d5:27:e7:42:6e:33:e8:e9: b2:35:c4:35:8d:e0:2d:88:4d:6e:72:95:d6:0f:04:5c:5d:71: fd:d9:ba:7c:39:36:36:d0:5e:5e:de:9b:26:7b:9c:71:c9:c1: b1:5d:5a:cf:d4:4f:35:dd:22:a6:ef:88:5f:d9:35:1b:3a:42: 7f:a9:82:0b:52:0c:87:41:2d:08:e1:9c:47:9e:ce:db:74:14: 93:2d:47:bc:d8:d4:3b:63:b5:f6:3f:4e:b9:21:62:cc:66:b5: 94:8d:03:c9:f5:6d:e7:11:dc:d1:c8:96:f7:28:22:3e:3d:47: ca:2a:b6:58:c6:d2:ff:59:e7:7b:6a:5e:d1:35:3d:64:82:2e: 46:c1:17:1c:fc:58:98:25:55:79:2a:c6:b4:8b:4c:35:07:57: f7:03:a4:c9:c3:59:9f:fd:d2:a8:28:54:c9:11:52:ff:8a:55: b3:eb:e8:1b:c7:35:16:df:8d:c1:c8:2c:64:bd:e1:f6:5f:0c: 71:0d:66:6e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICE1QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDEwMDkw MDQ0MDhaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDJGNUVCOTNDQTAxNkI3 OEE3OTQxNzFGMDY5RjQ2MDY1QzQyMTE1RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC00DqdhSuenxtPxMiguwgKndU2sahmB+fttXbTPA6dbrma0Cyc x6eMTUb2QpVdEuA2eAp15UzrOppSk7ZjzaRtP65jdmMkTLjt7OT5K5F1MWtPl7Em Gl5KDMyU3qailJMm4N+5hGBYDLxkGMZkhgZ8r6CqPazCnczIkjxbvBZlolV+7VR2 pPW4lYscW1kEgz3ZqNH12WK8YS//PEQSk76ygVe3hp5bpcTBgwC2VxL1lKzJBBk1 lDKqCU50EjC6hLV15lcssmtibf8iWMF0PiqY6c53xfmD5VyTw5fgp9Wt2QmHiGQu n6ePxt4sbZCVB3tGZge+ZwGCYiMz7xXByVPlAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUL165PKAWt4p5QXHwafRgZcQhFdMwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvTDE2NVBLQVd0NHA1 UVhId2FmUmdaY1FoRmRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfwDANBgkqhkiG9w0BAQsFAAOCAQEAJUlWww6FtgS59R6p+ZVZLFN2CR55 ricKosiNuYNFNmq55E2qKrQ/gX9KDGGKts/9NZiqdX+g57PuQz3v/ZQ7nNUn50Ju M+jpsjXENY3gLYhNbnKV1g8EXF1x/dm6fDk2NtBeXt6bJnucccnBsV1az9RPNd0i pu+IX9k1GzpCf6mCC1IMh0EtCOGcR57O23QUky1HvNjUO2O19j9OuSFizGa1lI0D yfVt5xHc0ciW9ygiPj1Hyiq2WMbS/1nne2pe0TU9ZIIuRsEXHPxYmCVVeSrGtItM NQdX9wOkycNZn/3SqChUyRFS/4pVs+voG8c1Ft+NwcgsZL3h9l8McQ1mbg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:02:47 2024 by rpki-client on console-ams.rpki-client.org