$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/cvXcghsRG1VCVF-IgqqoEdFmmpM.roa File: cvXcghsRG1VCVF-IgqqoEdFmmpM.roa (raw, json) Hash identifier: nOCCrZVdK6NGkBGI9+Doy4uuY//vL6O85FvniyvZzM0= Subject key identifier: 72:F5:DC:82:1B:11:1B:55:42:54:5F:88:82:AA:A8:11:D1:66:9A:93 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 135E Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/cvXcghsRG1VCVF-IgqqoEdFmmpM.roa Signing time: Wed 09 Oct 2024 00:44:12 +0000 ROA not before: Wed 09 Oct 2024 00:44:12 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 2914 IP address blocks: 180.223.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 01:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4958 (0x135e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Oct 9 00:44:12 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=72F5DC821B111B5542545F8882AAA811D1669A93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:43:97:64:95:37:ad:72:ba:e9:cc:fd:e1:1f: d3:a7:fd:29:10:7c:08:0a:a2:69:13:57:c1:08:cf: 56:d1:3b:11:cb:8f:f8:5c:88:da:52:5a:9a:b4:b1: 83:37:8b:c5:af:dd:8b:9f:2d:de:7c:dc:47:d1:18: a5:62:f1:a8:63:39:bf:d8:5c:fa:c2:cb:a3:b0:38: 9b:a1:bc:26:35:a7:a9:49:14:99:cb:b9:31:59:ec: 66:4e:cc:71:a3:4a:7b:f1:44:33:bf:06:d2:73:eb: d6:88:d4:ed:2a:19:85:7a:c7:0d:f6:72:0b:05:7a: c3:7e:af:0c:b8:c4:f5:f4:f8:69:33:d3:48:71:16: d6:91:d8:f4:4f:05:8e:2d:5d:b2:aa:f6:12:95:ec: 85:03:c3:06:12:69:de:f9:a8:35:b9:ca:08:4c:1d: fe:22:0e:dd:bb:30:fe:b8:75:80:aa:67:13:a6:af: 58:8c:dc:6d:29:a7:75:e4:d3:63:85:ec:c5:6a:12: 9e:e1:39:45:cd:40:68:d2:e7:1a:ee:63:61:1d:a0: a9:29:7d:15:65:2b:ac:9b:6a:52:5c:c5:af:07:ac: 1a:bf:4f:5c:2d:fe:4d:a8:88:aa:fe:c2:3e:fc:16: 69:b3:91:33:3f:49:43:43:8c:1c:c4:23:80:55:f0: 02:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F5:DC:82:1B:11:1B:55:42:54:5F:88:82:AA:A8:11:D1:66:9A:93 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/cvXcghsRG1VCVF-IgqqoEdFmmpM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.199.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:11:ea:ff:8b:ae:8b:53:9b:2a:99:83:ab:98:a8:d6:f4:96: 69:5e:ab:f0:af:ed:75:11:9d:71:54:f0:da:df:b3:9f:74:d7: 1b:e1:db:b8:d7:4a:fb:1e:00:1d:8c:7a:2b:cf:b8:90:b7:54: 2b:7e:e5:c5:97:7e:4d:e7:4e:82:9e:aa:26:3f:d8:06:1f:ef: 1e:b0:92:25:58:42:6e:39:1d:61:01:6e:60:8c:d7:dd:80:d8: 71:b9:37:7f:79:17:55:c7:03:6a:8c:15:bd:54:9f:1c:9b:6f: e6:c7:ea:a1:ce:19:88:66:b9:21:fa:7b:ac:c8:d4:17:ee:bd: cc:75:36:88:53:0f:f7:eb:2c:48:1e:b5:49:c0:91:26:3f:09: 1c:b3:0b:53:b4:d6:8f:48:49:40:75:f0:e1:f3:fc:cc:f8:67: 95:c0:52:a9:93:78:e8:cc:77:e5:a9:9d:3a:3e:dc:81:24:7b: cf:4b:e7:05:a6:89:9c:8b:a6:95:54:ef:44:a2:89:4c:82:33: 0d:5d:1d:56:d4:42:0f:dd:ff:37:57:8a:68:d1:ec:52:95:85: 28:ac:e6:17:6f:52:e9:29:7d:e5:c8:f8:68:d2:b0:63:c5:94: 56:43:64:ef:06:5a:b8:47:d9:58:83:90:5b:f0:c2:4e:5f:83: e5:fb:7a:d0 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICE14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDEwMDkw MDQ0MTJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDcyRjVEQzgyMUIxMTFC NTU0MjU0NUY4ODgyQUFBODExRDE2NjlBOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAQ5dklTetcrrpzP3hH9On/SkQfAgKomkTV8EIz1bROxHLj/hc iNpSWpq0sYM3i8Wv3YufLd583EfRGKVi8ahjOb/YXPrCy6OwOJuhvCY1p6lJFJnL uTFZ7GZOzHGjSnvxRDO/BtJz69aI1O0qGYV6xw32cgsFesN+rwy4xPX0+Gkz00hx FtaR2PRPBY4tXbKq9hKV7IUDwwYSad75qDW5yghMHf4iDt27MP64dYCqZxOmr1iM 3G0pp3Xk02OF7MVqEp7hOUXNQGjS5xruY2EdoKkpfRVlK6ybalJcxa8HrBq/T1wt /k2oiKr+wj78FmmzkTM/SUNDjBzEI4BV8ALJAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUcvXcghsRG1VCVF+IgqqoEdFmmpMwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvY3ZYY2doc1JHMVZD VkYtSWdxcW9FZEZtbXBNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfxzANBgkqhkiG9w0BAQsFAAOCAQEAPRHq/4uui1ObKpmDq5io1vSWaV6r 8K/tdRGdcVTw2t+zn3TXG+HbuNdK+x4AHYx6K8+4kLdUK37lxZd+TedOgp6qJj/Y Bh/vHrCSJVhCbjkdYQFuYIzX3YDYcbk3f3kXVccDaowVvVSfHJtv5sfqoc4ZiGa5 Ifp7rMjUF+69zHU2iFMP9+ssSB61ScCRJj8JHLMLU7TWj0hJQHXw4fP8zPhnlcBS qZN46Mx35amdOj7cgSR7z0vnBaaJnIumlVTvRKKJTIIzDV0dVtRCD93/N1eKaNHs UpWFKKzmF29S6Sl95cj4aNKwY8WUVkNk7wZauEfZWIOQW/DCTl+D5ft60A== -----END CERTIFICATE-----Generated at Fri Nov 22 00:25:26 2024 by rpki-client on console-fra.rpki-client.org