$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/96UXZwluoXp_cuDA7A5n34i5u5o.roa File: 96UXZwluoXp_cuDA7A5n34i5u5o.roa (raw, json) Hash identifier: VluY8+Q+Yd3dNGBwKCSh5ceCZIy20NnF0hNP4y0zugQ= Subject key identifier: F7:A5:17:67:09:6E:A1:7A:7F:72:E0:C0:EC:0E:67:DF:88:B9:BB:9A Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 71 Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/96UXZwluoXp_cuDA7A5n34i5u5o.roa Signing time: Tue 11 Jun 2024 06:41:32 +0000 ROA not before: Tue 11 Jun 2024 06:41:32 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 139076 IP address blocks: 113.31.64.0/21 maxlen: 24 113.31.72.0/21 maxlen: 24 113.31.128.0/21 maxlen: 24 113.31.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jun 11 06:41:32 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=F7A51767096EA17A7F72E0C0EC0E67DF88B9BB9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:37:a1:49:d9:75:50:f3:01:80:f4:97:7d:a8: 3b:25:79:ee:97:dd:85:fe:0a:f0:3d:c9:7f:49:e8: 4c:49:fd:c2:b4:5f:e7:f4:fe:ab:5c:ea:74:cf:d7: 35:3a:48:dc:7f:cc:20:d9:ac:3e:25:37:d5:6a:03: 0f:30:33:1c:df:a8:93:c0:bc:52:04:18:4a:f6:0c: ba:e0:b4:79:74:ed:35:e9:9d:20:ab:17:da:17:9c: e4:f8:1f:fb:c9:4f:4d:44:0f:d3:73:75:f9:fe:17: dc:7e:7a:c2:97:de:e3:22:e5:9d:4b:83:4e:e1:f7: 06:8b:ee:98:ba:8e:48:e8:57:a6:05:5b:6d:48:c0: 50:63:d3:c4:02:ca:1e:76:b3:86:c9:c1:57:fe:48: fa:39:3c:49:15:29:02:ee:7b:b3:5c:ee:6d:a9:4e: 95:a4:c9:1a:2d:3d:7e:ee:3d:0d:5a:79:91:04:1f: 58:fa:04:40:40:43:40:81:2c:a5:d1:83:a8:e6:2d: 50:d3:ec:e9:c1:14:7f:7d:08:9d:7c:a3:4c:62:ef: e5:f1:f2:a9:a6:14:ef:14:9d:6d:2c:ad:5f:d0:78: 0c:7d:6f:c2:3d:01:af:3d:2e:33:7e:63:1a:ea:94: 18:d0:3e:7b:da:a3:9f:93:09:c7:66:29:5a:b9:f9: c3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A5:17:67:09:6E:A1:7A:7F:72:E0:C0:EC:0E:67:DF:88:B9:BB:9A X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/96UXZwluoXp_cuDA7A5n34i5u5o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.64.0/20 113.31.128.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:0b:6b:b0:35:28:05:40:e6:03:86:f8:b3:57:ba:a0:c0:4d: b8:a5:d9:f8:7b:a4:b1:a0:2b:b1:62:71:4d:b5:15:9a:9e:de: 2b:80:12:b9:e0:f2:da:61:fd:1e:24:b9:9b:01:62:84:99:24: fb:df:33:c4:1c:eb:86:89:a9:9a:67:42:7c:69:ba:4a:b3:85: 8e:07:5c:5a:92:e4:03:d8:c7:ad:cf:10:41:fe:f6:b1:80:5d: 3e:e9:f1:3a:0e:f9:69:33:1b:c3:1b:df:74:09:6a:f5:b2:15: 39:49:9d:e1:9e:2d:50:fa:53:82:16:9e:4e:e0:f3:23:70:26: 3a:34:2e:c5:da:35:6d:2d:30:9f:d7:aa:72:cb:3c:c2:51:2b: a5:fe:a8:0f:3d:41:23:56:d8:51:60:c2:ce:03:f0:69:fd:29: da:bd:4f:34:e9:8b:1c:43:a7:f3:b6:fd:c4:6b:12:5e:29:3d: bc:16:c0:6e:39:8a:23:d6:fc:65:5b:a3:6b:ec:fd:15:da:c3: e7:f0:db:40:d4:90:d8:3d:1d:88:3d:b5:c3:d7:65:12:15:91: 03:6e:98:63:41:e3:b2:73:bc:08:5a:a2:e6:de:34:48:c7:f8: f9:3c:07:a0:2b:6b:a2:e6:54:5f:f2:47:1c:ea:5c:cf:d3:9a: 11:d5:ec:7f -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3Nzcw QjczOUI5RUZDRUI4QkMxRkRBMDU2MEU0Nzg1NTYxRjJCQ0JGMB4XDTI0MDYxMTA2 NDEzMloXDTI1MDUyMTAzMzAxMFowMzExMC8GA1UEAxMoRjdBNTE3NjcwOTZFQTE3 QTdGNzJFMEMwRUMwRTY3REY4OEI5QkI5QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALE3oUnZdVDzAYD0l32oOyV57pfdhf4K8D3Jf0noTEn9wrRf5/T+ q1zqdM/XNTpI3H/MINmsPiU31WoDDzAzHN+ok8C8UgQYSvYMuuC0eXTtNemdIKsX 2hec5Pgf+8lPTUQP03N1+f4X3H56wpfe4yLlnUuDTuH3BovumLqOSOhXpgVbbUjA UGPTxALKHnazhsnBV/5I+jk8SRUpAu57s1zubalOlaTJGi09fu49DVp5kQQfWPoE QEBDQIEspdGDqOYtUNPs6cEUf30InXyjTGLv5fHyqaYU7xSdbSytX9B4DH1vwj0B rz0uM35jGuqUGNA+e9qjn5MJx2YpWrn5w98CAwEAAaOCAfcwggHzMB0GA1UdDgQW BBT3pRdnCW6hen9y4MDsDmffiLm7mjAfBgNVHSMEGDAWgBR3cLc5ue/OuLwf2gVg 5HhVYfK8vzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC80MTAv ZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9kM0MzT2JudnpyaThIOW9GWU9SNFZXSHl2TDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC80MTAvOTZVWFp3bHVvWHBfY3VE QTdBNW4zNGk1dTVvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAME BHEfQAMEBHEfgDANBgkqhkiG9w0BAQsFAAOCAQEADQtrsDUoBUDmA4b4s1e6oMBN uKXZ+HuksaArsWJxTbUVmp7eK4ASueDy2mH9HiS5mwFihJkk+98zxBzrhompmmdC fGm6SrOFjgdcWpLkA9jHrc8QQf72sYBdPunxOg75aTMbwxvfdAlq9bIVOUmd4Z4t UPpTghaeTuDzI3AmOjQuxdo1bS0wn9eqcss8wlErpf6oDz1BI1bYUWDCzgPwaf0p 2r1PNOmLHEOn87b9xGsSXik9vBbAbjmKI9b8ZVuja+z9FdrD5/DbQNSQ2D0diD21 w9dlEhWRA26YY0HjsnO8CFqi5t40SMf4+TwHoCtrouZUX/JHHOpcz9OaEdXsfw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:20 2024 by rpki-client on console-fra.rpki-client.org