$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/Bow1ygpoCopifdVGAmxL82uArDE.roa File: Bow1ygpoCopifdVGAmxL82uArDE.roa (raw, json) Hash identifier: Lmw0Mvpxth5s/gBuL9Yk0CDcXLMz9YMnxZKJG2qW87E= Subject key identifier: 06:8C:35:CA:0A:68:0A:8A:62:7D:D5:46:02:6C:4B:F3:6B:80:AC:31 Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094 Certificate serial: 0762 Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/Bow1ygpoCopifdVGAmxL82uArDE.roa Signing time: Mon 14 Aug 2023 04:33:58 +0000 ROA not before: Mon 14 Aug 2023 04:33:58 +0000 ROA not after: Sat 10 Aug 2024 07:41:13 +0000 asID: 4134 IP address blocks: 103.79.228.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 04:56:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094 Validity Not Before: Aug 14 04:33:58 2023 GMT Not After : Aug 10 07:41:13 2024 GMT Subject: CN=068C35CA0A680A8A627DD546026C4BF36B80AC31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8d:63:ef:7a:6b:28:21:92:6f:ff:61:b8:f2: 71:84:e4:e1:91:3b:01:f2:0e:b3:b9:b1:9a:7a:b8: 75:d9:5d:86:e3:75:dd:23:bc:7a:c3:c1:7b:4b:26: 76:d3:e6:4c:16:1e:64:c6:ce:12:1c:8c:f9:39:9c: 4a:50:51:cd:5b:31:b2:16:37:b3:31:ae:cd:92:ad: 8c:91:12:08:51:35:79:ec:fe:3e:f5:af:02:a5:28: fc:c3:74:4b:b8:40:76:2e:2f:2e:80:14:8f:54:a8: 70:0f:59:39:e4:fd:fc:8d:ad:db:36:be:4b:26:4f: 2c:04:4c:90:c3:47:fc:78:86:75:02:78:15:94:da: 31:ef:92:ad:bd:43:e4:94:92:22:17:c5:5a:46:86: af:6f:e7:4d:31:46:89:0b:69:49:9e:ca:e1:69:2d: 2c:d7:1f:11:e4:e7:b3:c0:bf:58:b8:76:f3:8d:e6: 85:2a:f9:f0:c3:86:4f:23:24:66:d6:7d:34:ff:8e: 08:17:db:3a:6c:92:95:e6:8c:da:f3:c2:ff:90:26: c1:f0:d6:3a:96:5e:2b:05:b6:68:aa:c4:23:7c:4d: 05:a2:fc:98:d9:93:2b:79:fd:28:6a:5f:b4:43:04: 60:6c:05:c8:93:55:d1:51:ae:76:fa:c1:a3:e6:ca: 7b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8C:35:CA:0A:68:0A:8A:62:7D:D5:46:02:6C:4B:F3:6B:80:AC:31 X509v3 Authority Key Identifier: keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/Bow1ygpoCopifdVGAmxL82uArDE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.79.228.0/23 Signature Algorithm: sha256WithRSAEncryption 12:2a:f2:35:bd:ad:35:21:bd:82:2b:a4:79:4c:ab:ee:8c:43: 59:c3:fe:9b:e9:51:0d:aa:a4:cb:46:75:23:43:58:6e:09:ca: aa:ea:53:da:0f:22:3f:15:db:99:b8:17:bb:ad:7e:a4:6e:cb: 7c:bd:ea:7c:77:27:30:e7:f2:3f:90:c4:ea:ae:c1:99:c0:a9: da:a2:27:d9:f6:43:9c:9c:70:55:af:11:eb:fd:e5:ee:b6:c8: 57:74:58:98:b5:b6:cf:60:d7:cd:2f:b4:cb:f9:d0:bb:e0:aa: f8:ba:fc:0e:b8:b1:95:50:d7:d1:6a:4c:a1:a0:a1:68:eb:9f: 34:57:8c:fc:e8:c8:ec:e8:0b:0d:fd:22:f2:5a:8c:5c:50:c4: 8f:79:18:da:9d:27:10:64:e7:f7:79:66:11:61:fc:95:04:99: e8:48:81:ea:14:fc:c2:a3:59:8c:4e:f8:f3:98:81:cf:bf:b2: 69:d2:04:75:34:63:b8:ec:35:9e:8f:7d:e6:89:3e:5a:35:59: 2a:78:2b:d6:0c:96:48:47:79:d3:a1:86:60:97:8e:9c:e1:9d: ce:9f:ea:ab:26:be:cd:a4:bf:dd:0b:86:d1:87:bd:be:a2:24: 54:f2:42:67:f3:c2:87:3c:87:32:dd:cb:94:64:50:6e:bb:5b: a6:45:99:51 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjQw OTg3RjQwQTYwMzBDREZBMzNERUQxRUVFN0NGNERDN0MzMDA5NDAeFw0yMzA4MTQw NDMzNThaFw0yNDA4MTAwNzQxMTNaMDMxMTAvBgNVBAMTKDA2OEMzNUNBMEE2ODBB OEE2MjdERDU0NjAyNkM0QkYzNkI4MEFDMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIjWPvemsoIZJv/2G48nGE5OGROwHyDrO5sZp6uHXZXYbjdd0j vHrDwXtLJnbT5kwWHmTGzhIcjPk5nEpQUc1bMbIWN7Mxrs2SrYyREghRNXns/j71 rwKlKPzDdEu4QHYuLy6AFI9UqHAPWTnk/fyNrds2vksmTywETJDDR/x4hnUCeBWU 2jHvkq29Q+SUkiIXxVpGhq9v500xRokLaUmeyuFpLSzXHxHk57PAv1i4dvON5oUq +fDDhk8jJGbWfTT/jggX2zpskpXmjNrzwv+QJsHw1jqWXisFtmiqxCN8TQWi/JjZ kyt5/ShqX7RDBGBsBciTVdFRrnb6waPmyntpAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUBow1ygpoCopifdVGAmxL82uArDEwHwYDVR0jBBgwFoAUJAmH9ApgMM36M97R 7ufPTcfDAJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 OC9KQW1IOUFwZ01NMzZNOTdSN3VmUFRjZkRBSlEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0pBbUg5QXBnTU0zNk05N1I3dWZQVGNmREFKUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjgvQm93MXlncG9Db3Bp ZmRWR0FteEw4MnVBckRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWdP5DANBgkqhkiG9w0BAQsFAAOCAQEAEiryNb2tNSG9giukeUyr7oxDWcP+ m+lRDaqky0Z1I0NYbgnKqupT2g8iPxXbmbgXu61+pG7LfL3qfHcnMOfyP5DE6q7B mcCp2qIn2fZDnJxwVa8R6/3l7rbIV3RYmLW2z2DXzS+0y/nQu+Cq+Lr8DrixlVDX 0WpMoaChaOufNFeM/OjI7OgLDf0i8lqMXFDEj3kY2p0nEGTn93lmEWH8lQSZ6EiB 6hT8wqNZjE7485iBz7+yadIEdTRjuOw1no995ok+WjVZKngr1gyWSEd506GGYJeO nOGdzp/qqya+zaS/3QuG0Ye9vqIkVPJCZ/PChzyHMt3LlGRQbrtbpkWZUQ== -----END CERTIFICATE-----Generated at Sun Jun 23 01:04:36 2024 by rpki-client on console-ams.rpki-client.org