$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/uTIJihFlE-8M_jNZAVGAOw5gcAQ.roa File: uTIJihFlE-8M_jNZAVGAOw5gcAQ.roa (raw, json) Hash identifier: E7ahjr89SFAR/Nx9H06GMvfBslObIieScVHLL602RTk= Subject key identifier: B9:32:09:8A:11:65:13:EF:0C:FE:33:59:01:51:80:3B:0E:60:70:04 Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 0393 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/uTIJihFlE-8M_jNZAVGAOw5gcAQ.roa Signing time: Tue 23 Apr 2024 15:11:28 +0000 ROA not before: Tue 23 Apr 2024 15:11:28 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 2914 IP address blocks: 124.175.64.0/21 maxlen: 24 124.175.72.0/21 maxlen: 24 124.175.80.0/21 maxlen: 24 124.175.88.0/21 maxlen: 24 124.175.96.0/21 maxlen: 24 124.175.104.0/21 maxlen: 24 124.175.112.0/21 maxlen: 24 124.175.120.0/21 maxlen: 24 124.175.160.0/21 maxlen: 24 124.175.168.0/21 maxlen: 24 124.175.176.0/21 maxlen: 24 124.175.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 01:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Apr 23 15:11:28 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=B932098A116513EF0CFE33590151803B0E607004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ae:be:66:ce:f1:b2:15:d0:74:d4:e0:2f:f8: e9:09:b3:b3:b5:42:5b:0f:8c:ce:93:3d:ce:cd:f9: 87:8c:6e:35:1f:19:85:b3:79:69:ac:16:e2:f6:6e: 46:42:5e:93:7f:8a:11:29:60:9e:89:c4:61:9f:be: 0f:d6:e5:c7:5a:4f:1b:5e:66:42:f8:ac:bf:9d:22: a9:f8:81:43:19:c1:51:06:f9:e0:79:77:01:27:ed: a4:b0:f8:45:08:e6:b8:93:92:34:2b:bc:72:a8:f6: 92:86:ef:05:f8:8f:0a:5d:c9:f2:d9:93:e5:f7:28: 1a:b4:43:a7:4c:ec:a8:5b:74:26:2a:2f:7b:43:85: 39:8e:62:b5:9c:69:be:5b:6d:21:75:86:59:a4:52: 77:cd:bd:fd:2b:a1:1a:03:6b:28:56:3e:8d:35:1f: d9:f4:49:48:1e:65:8f:bb:c0:c7:7f:03:5c:a7:0b: 69:6e:f6:62:8c:10:52:08:2d:67:2e:dc:0d:93:cb: 28:83:f9:e6:8c:03:fe:56:11:ad:9e:2f:1e:1f:9e: 30:f6:f8:91:cc:5a:54:44:02:49:08:96:d6:e5:4e: 29:6a:4c:b8:bb:f4:1e:cc:b3:b3:ff:4d:06:60:f7: 0d:81:ed:29:b5:2e:38:5f:04:9b:dd:83:77:c9:54: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:32:09:8A:11:65:13:EF:0C:FE:33:59:01:51:80:3B:0E:60:70:04 X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/uTIJihFlE-8M_jNZAVGAOw5gcAQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.175.64.0/18 124.175.160.0/19 Signature Algorithm: sha256WithRSAEncryption 27:05:57:77:38:ea:7c:31:7e:da:74:a3:1f:21:4e:91:e7:7a: e5:02:30:83:bf:98:b9:03:ad:51:70:da:bd:78:03:82:37:85: 24:e1:88:88:f0:94:0d:38:12:2b:4d:83:ee:91:e7:a9:17:a4: 67:ff:09:0b:d6:da:ab:83:3c:f6:5b:09:ea:ba:41:07:2a:54: 6b:c4:6c:02:0f:d1:a6:49:1a:e7:a5:f3:63:72:d2:f4:61:7b: 59:cc:4d:58:04:fe:84:96:73:f2:5d:87:87:41:04:fe:12:19: 82:ec:6a:ae:73:11:d3:d4:6e:db:18:d2:f3:95:72:4d:5d:ed: c9:01:a7:5b:6f:33:dc:0c:44:40:98:94:2e:c1:03:ad:3c:ec: 08:68:f6:d3:4a:50:a6:a3:86:e3:63:f7:42:1b:68:26:56:f0: 1b:21:e1:93:57:d8:91:de:b7:b9:69:5e:66:c8:1e:c0:f5:3f: c9:05:28:15:fb:a9:74:d6:42:a3:53:dc:6d:9b:9f:f3:5c:ad: bb:e7:31:a8:0a:8a:e6:94:2e:c6:c2:fe:d9:56:b8:7e:6a:7b: a9:ab:97:fa:19:03:21:43:3a:1e:d6:e1:7c:75:45:d3:8d:93: 0a:fa:0f:fb:e5:6a:1a:c4:e3:a9:4b:17:a0:d5:9b:8a:a8:02: 92:36:d3:38 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDA0MjMx NTExMjhaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEI5MzIwOThBMTE2NTEz RUYwQ0ZFMzM1OTAxNTE4MDNCMEU2MDcwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCarr5mzvGyFdB01OAv+OkJs7O1QlsPjM6TPc7N+YeMbjUfGYWz eWmsFuL2bkZCXpN/ihEpYJ6JxGGfvg/W5cdaTxteZkL4rL+dIqn4gUMZwVEG+eB5 dwEn7aSw+EUI5riTkjQrvHKo9pKG7wX4jwpdyfLZk+X3KBq0Q6dM7KhbdCYqL3tD hTmOYrWcab5bbSF1hlmkUnfNvf0roRoDayhWPo01H9n0SUgeZY+7wMd/A1ynC2lu 9mKMEFIILWcu3A2TyyiD+eaMA/5WEa2eLx4fnjD2+JHMWlREAkkIltblTilqTLi7 9B7Ms7P/TQZg9w2B7Sm1LjhfBJvdg3fJVDoxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUuTIJihFlE+8M/jNZAVGAOw5gcAQwHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvdVRJSmloRmxFLThNX2pOWkFW R0FPdzVnY0FRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBnyv QAMEBXyvoDANBgkqhkiG9w0BAQsFAAOCAQEAJwVXdzjqfDF+2nSjHyFOked65QIw g7+YuQOtUXDavXgDgjeFJOGIiPCUDTgSK02D7pHnqRekZ/8JC9baq4M89lsJ6rpB BypUa8RsAg/Rpkka56XzY3LS9GF7WcxNWAT+hJZz8l2Hh0EE/hIZguxqrnMR09Ru 2xjS85VyTV3tyQGnW28z3AxEQJiULsEDrTzsCGj200pQpqOG42P3QhtoJlbwGyHh k1fYkd63uWleZsgewPU/yQUoFfupdNZCo1PcbZuf81ytu+cxqAqK5pQuxsL+2Va4 fmp7qauX+hkDIUM6HtbhfHVF042TCvoP++VqGsTjqUsXoNWbiqgCkjbTOA== -----END CERTIFICATE-----Generated at Sun May 5 23:30:09 2024 by rpki-client on console-ams.rpki-client.org