$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/wBZIy5slY4_Ex2DEQKjnEn9VS-Q.roa File: wBZIy5slY4_Ex2DEQKjnEn9VS-Q.roa (raw, json) Hash identifier: K94OtWltjGskiCGXre7ReyHpfXs7iyJMLI+efDPK72U= Subject key identifier: C0:16:48:CB:9B:25:63:8F:C4:C7:60:C4:40:A8:E7:12:7F:55:4B:E4 Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 0637 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/wBZIy5slY4_Ex2DEQKjnEn9VS-Q.roa Signing time: Fri 23 Aug 2024 14:39:16 +0000 ROA not before: Fri 23 Aug 2024 14:39:16 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 2914 IP address blocks: 58.66.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1591 (0x637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Aug 23 14:39:16 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=C01648CB9B25638FC4C760C440A8E7127F554BE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6c:af:4b:31:c2:fa:37:56:95:e9:50:cc:a6: 71:26:75:fe:54:52:39:38:40:2d:e4:fc:57:50:21: cf:6c:4c:f1:5f:8f:d8:1d:f4:18:28:77:28:41:7b: 16:f3:6e:ea:34:3f:18:5a:64:5e:51:1f:57:57:8f: 99:70:c0:75:cc:03:b7:f7:35:65:29:3a:ca:7a:f8: 0f:27:d4:5a:48:89:63:80:2c:a7:57:e0:9a:9f:4e: 95:bc:0a:f5:1b:01:11:44:5f:41:d6:bd:32:17:d9: af:19:4c:88:2c:39:8a:ed:bf:fa:d9:7d:c7:ed:40: 5e:30:5f:06:10:7f:af:a7:59:f2:66:de:48:9a:9b: d2:54:66:0c:c0:50:96:88:54:a1:50:3b:19:26:46: a8:52:3c:32:25:e1:0d:cf:21:f5:d2:3d:de:40:5f: 6f:87:dd:03:8b:46:a2:c3:16:db:6b:9d:29:b9:5f: 75:06:90:2c:78:34:b3:7a:84:d7:5d:5b:2b:83:f6: fc:4f:32:f9:b5:47:62:27:9e:6d:d2:5a:19:6c:a1: a4:d2:96:90:15:21:f2:91:86:7d:bd:1b:2d:f2:84: 73:4e:df:eb:7e:3e:79:67:12:2c:bb:9a:d5:e6:80: ac:dc:bb:61:e7:98:59:63:53:00:7e:d3:99:26:5a: 86:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:16:48:CB:9B:25:63:8F:C4:C7:60:C4:40:A8:E7:12:7F:55:4B:E4 X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/wBZIy5slY4_Ex2DEQKjnEn9VS-Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.66.152.0/21 Signature Algorithm: sha256WithRSAEncryption 86:b7:af:88:ed:16:cb:f1:99:be:29:2f:7b:c3:c1:6d:b8:12: d0:0c:43:f3:18:a6:36:fd:ac:d2:1a:96:be:e5:dd:35:c0:0c: 1c:e8:30:a0:76:33:a9:fa:81:f9:4b:31:a0:75:df:79:56:16: 1b:53:d4:84:27:8a:54:1f:e9:d3:db:33:19:c2:7c:46:74:2d: be:9f:17:d6:21:7a:e7:ac:e0:3f:73:55:42:33:1a:b2:1b:d3: 4f:38:f3:9e:1e:ce:0a:fb:ef:ea:a8:4c:1a:ff:91:3c:7f:ca: 39:e2:e6:d0:28:b0:18:e0:18:f0:0f:bc:48:1a:af:58:70:6b: f7:f3:10:39:08:d5:16:3d:87:85:42:5a:a2:ec:c5:37:3c:80: 07:04:22:da:e6:aa:01:b7:13:32:62:12:64:5e:69:bd:57:67: 35:b2:9b:9c:74:b8:5b:f6:91:6a:4d:52:df:a9:c9:2d:9b:dc: 67:0e:6b:ba:7b:2c:a6:5b:34:a2:af:b1:3f:92:55:67:b5:9c: 73:32:16:2d:77:6f:7f:5d:8f:73:2d:00:03:92:b0:0d:1a:5e: 1e:18:97:9c:4e:e9:0d:c1:83:cf:f3:d6:30:a5:1e:a9:fb:a9: 21:97:36:36:cc:2e:42:5c:26:93:db:b1:74:8b:07:6e:95:9a: 40:23:2d:f3 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICBjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDA4MjMx NDM5MTZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEMwMTY0OENCOUIyNTYz OEZDNEM3NjBDNDQwQThFNzEyN0Y1NTRCRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCibK9LMcL6N1aV6VDMpnEmdf5UUjk4QC3k/FdQIc9sTPFfj9gd 9BgodyhBexbzbuo0PxhaZF5RH1dXj5lwwHXMA7f3NWUpOsp6+A8n1FpIiWOALKdX 4JqfTpW8CvUbARFEX0HWvTIX2a8ZTIgsOYrtv/rZfcftQF4wXwYQf6+nWfJm3kia m9JUZgzAUJaIVKFQOxkmRqhSPDIl4Q3PIfXSPd5AX2+H3QOLRqLDFttrnSm5X3UG kCx4NLN6hNddWyuD9vxPMvm1R2Innm3SWhlsoaTSlpAVIfKRhn29Gy3yhHNO3+t+ PnlnEiy7mtXmgKzcu2HnmFljUwB+05kmWobJAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUwBZIy5slY4/Ex2DEQKjnEn9VS+QwHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvd0JaSXk1c2xZNF9FeDJERVFL am5FbjlWUy1RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzpC mDANBgkqhkiG9w0BAQsFAAOCAQEAhreviO0Wy/GZvikve8PBbbgS0AxD8ximNv2s 0hqWvuXdNcAMHOgwoHYzqfqB+UsxoHXfeVYWG1PUhCeKVB/p09szGcJ8RnQtvp8X 1iF656zgP3NVQjMashvTTzjznh7OCvvv6qhMGv+RPH/KOeLm0CiwGOAY8A+8SBqv WHBr9/MQOQjVFj2HhUJaouzFNzyABwQi2uaqAbcTMmISZF5pvVdnNbKbnHS4W/aR ak1S36nJLZvcZw5runsspls0oq+xP5JVZ7WcczIWLXdvf12Pcy0AA5KwDRpeHhiX nE7pDcGDz/PWMKUeqfupIZc2NswuQlwmk9uxdIsHbpWaQCMt8w== -----END CERTIFICATE-----Generated at Fri Nov 22 00:25:29 2024 by rpki-client on console-fra.rpki-client.org