$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/FV9diK9xoELHOamGQ_gExVbEJ6Y.roa File: FV9diK9xoELHOamGQ_gExVbEJ6Y.roa (raw, json) Hash identifier: xX5BIslM1q1/9RrtVtfpBidYmcwzKg1XpPy27t8K8Oo= Subject key identifier: 15:5F:5D:88:AF:71:A0:42:C7:39:A9:86:43:F8:04:C5:56:C4:27:A6 Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 04D8 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/FV9diK9xoELHOamGQ_gExVbEJ6Y.roa Signing time: Wed 26 Jun 2024 13:39:40 +0000 ROA not before: Wed 26 Jun 2024 13:39:40 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 18811 IP address blocks: 124.175.48.0/21 maxlen: 24 124.175.56.0/21 maxlen: 24 124.175.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 10:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1240 (0x4d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Jun 26 13:39:40 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=155F5D88AF71A042C739A98643F804C556C427A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:c9:07:45:bf:eb:9e:d8:b1:f5:0b:b4:ee: d3:08:99:4e:ec:3a:5d:94:ac:4e:56:a4:4c:71:ad: e2:dc:19:96:ec:e7:14:e0:ab:fa:84:ac:c3:4b:ca: 9d:62:e7:a6:99:17:0b:45:47:3c:fa:fd:10:29:a0: 86:f0:59:29:18:e8:ed:a7:a7:20:80:13:3d:6e:16: a8:86:02:4f:58:7a:48:34:10:8e:5e:4b:11:58:f1: 4b:8b:f8:cb:aa:5c:cc:67:8b:4e:e7:8e:a8:c2:92: 6d:2a:f8:20:14:4f:80:8a:9b:6c:30:e4:89:8b:df: 87:de:f4:73:93:46:8d:06:a3:92:d5:47:2f:6d:43: cf:86:39:0c:21:54:f2:c6:a6:ad:cf:f5:4e:3a:3b: f6:db:bf:85:48:f6:32:8c:01:db:92:b3:fc:d8:b5: 4a:2b:a9:49:2c:a6:e5:71:a1:de:9d:5a:1d:da:2c: e4:d5:e6:f3:5a:40:e8:3c:a1:9a:79:75:1a:d7:fc: c7:10:58:42:05:cb:c4:af:5d:fe:2b:13:01:8c:38: 06:9d:7b:39:94:5a:e7:1a:64:d8:5a:e7:38:1b:8c: 0f:1d:03:72:3a:1b:cc:46:7d:5f:9d:f8:9e:cf:44: da:4c:43:76:0e:bf:3e:96:6d:bb:dd:2d:1f:42:f8: 97:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:5F:5D:88:AF:71:A0:42:C7:39:A9:86:43:F8:04:C5:56:C4:27:A6 X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/FV9diK9xoELHOamGQ_gExVbEJ6Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.175.48.0/20 124.175.200.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:11:c1:12:04:26:b6:68:69:a9:77:01:ef:75:f1:79:50:e1: 15:8b:74:58:68:d4:ba:52:9e:ac:58:e9:be:ee:30:62:c2:b1: 4f:72:99:b8:b1:89:21:e7:ea:29:a1:08:ac:76:5a:ac:9d:0f: 72:dc:ac:2e:30:28:cd:45:a8:f3:3f:7d:6e:5c:bd:a7:62:0c: 66:ed:c5:05:82:dc:e9:32:ed:86:8a:b3:e0:59:92:bd:87:6d: 39:36:27:02:6d:de:c1:ea:e7:b6:e5:f1:cb:8a:aa:43:a5:70: 25:75:fe:4e:9c:ba:a4:7e:ce:27:69:bc:43:4d:b7:16:ad:cd: 60:f7:ca:6b:3f:1d:09:f7:06:90:e5:2b:56:73:e3:b8:d8:de: 2a:c0:47:05:e9:ce:be:72:44:99:4c:9c:17:7c:ee:b4:c8:3f: dc:eb:4c:05:2f:b3:7b:a1:61:cd:be:99:1e:d6:61:2e:12:69: f3:be:f1:4e:8a:b2:bc:dd:17:d3:86:f9:f7:22:09:6e:20:9f: a5:05:77:a4:04:b5:8b:d1:0d:2c:2c:fe:d2:ab:ad:84:40:76: fe:b0:c7:ba:87:04:6f:29:25:73:6f:8b:a8:26:dc:58:3c:e0: 5e:b1:0c:89:a8:08:3c:f8:c8:07:2b:17:a2:fd:6f:41:f7:79: 4b:7e:b1:aa -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBNgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDA2MjYx MzM5NDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDE1NUY1RDg4QUY3MUEw NDJDNzM5QTk4NjQzRjgwNEM1NTZDNDI3QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9RMkHRb/rntix9Qu07tMImU7sOl2UrE5WpExxreLcGZbs5xTg q/qErMNLyp1i56aZFwtFRzz6/RApoIbwWSkY6O2npyCAEz1uFqiGAk9Yekg0EI5e SxFY8UuL+MuqXMxni07njqjCkm0q+CAUT4CKm2ww5ImL34fe9HOTRo0Go5LVRy9t Q8+GOQwhVPLGpq3P9U46O/bbv4VI9jKMAduSs/zYtUorqUkspuVxod6dWh3aLOTV 5vNaQOg8oZp5dRrX/McQWEIFy8SvXf4rEwGMOAadezmUWucaZNha5zgbjA8dA3I6 G8xGfV+d+J7PRNpMQ3YOvz6WbbvdLR9C+JcVAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUFV9diK9xoELHOamGQ/gExVbEJ6YwHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvRlY5ZGlLOXhvRUxIT2FtR1Ff Z0V4VmJFSjZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBHyv MAMEA3yvyDANBgkqhkiG9w0BAQsFAAOCAQEAOhHBEgQmtmhpqXcB73XxeVDhFYt0 WGjUulKerFjpvu4wYsKxT3KZuLGJIefqKaEIrHZarJ0PctysLjAozUWo8z99bly9 p2IMZu3FBYLc6TLthoqz4FmSvYdtOTYnAm3ewerntuXxy4qqQ6VwJXX+Tpy6pH7O J2m8Q023Fq3NYPfKaz8dCfcGkOUrVnPjuNjeKsBHBenOvnJEmUycF3zutMg/3OtM BS+ze6Fhzb6ZHtZhLhJp877xToqyvN0X04b59yIJbiCfpQV3pAS1i9ENLCz+0qut hEB2/rDHuocEbyklc2+LqCbcWDzgXrEMiagIPPjIBysXov1vQfd5S36xqg== -----END CERTIFICATE-----Generated at Sun Jun 30 06:33:28 2024 by rpki-client on console-fra.rpki-client.org