$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1030/v7BCrE2vagBj7IKaaD72gqvDsZg.roa File: v7BCrE2vagBj7IKaaD72gqvDsZg.roa (raw, json) Hash identifier: 35v0vkO/Pxf5ZzM1m6kgzGZZX6mDLFimhwTmlHj8J5g= Subject key identifier: BF:B0:42:AC:4D:AF:6A:00:63:EC:82:9A:68:3E:F6:82:AB:C3:B1:98 Certificate issuer: /CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C Certificate serial: 0CA8 Authority key identifier: 7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/v7BCrE2vagBj7IKaaD72gqvDsZg.roa Signing time: Wed 13 Mar 2024 01:23:30 +0000 ROA not before: Wed 13 Mar 2024 01:23:30 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 131482 IP address blocks: 103.43.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 21:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C Validity Not Before: Mar 13 01:23:30 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=BFB042AC4DAF6A0063EC829A683EF682ABC3B198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1d:62:9e:9d:7c:c4:ee:46:25:e7:d3:38:6f: 35:a9:a9:a0:b9:33:d6:ba:b0:a2:36:a3:6a:8f:72: 17:8c:a0:09:95:24:55:9f:f2:1e:82:47:f9:76:20: c3:0f:52:97:91:55:ea:e9:bc:48:a2:c0:da:c6:fc: a8:9e:6b:5d:4a:6a:b6:aa:a1:20:5b:34:e4:27:ce: f1:df:b0:c7:57:dc:db:b5:e3:6f:fd:9a:fa:e4:38: 3c:cb:4c:52:33:49:f0:50:fd:84:69:9f:d8:4e:ba: ff:78:ee:9d:a8:d7:01:3b:33:c9:3e:0e:05:09:66: dd:e9:c1:f0:99:95:5a:19:63:6f:af:c8:e2:91:c3: 66:a4:1c:cf:3b:d1:9e:ba:6c:18:61:2c:dd:54:69: 11:8f:31:89:6b:92:7e:a2:27:24:a0:63:41:cf:27: e7:21:68:47:96:b7:30:25:cb:5a:5b:4a:08:2a:0f: 22:39:d2:df:a8:34:0a:8e:f5:75:f5:41:df:d5:dc: b4:af:bc:04:3a:0d:42:1c:fc:43:1d:03:90:d5:c3: f5:11:a1:b6:67:f0:0b:63:b1:6b:bc:be:34:b9:7d: 33:45:af:ed:2c:81:8b:1c:76:e8:b9:14:41:30:b5: eb:03:65:08:24:b5:44:79:3b:86:64:6a:b5:03:ed: 4c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B0:42:AC:4D:AF:6A:00:63:EC:82:9A:68:3E:F6:82:AB:C3:B1:98 X509v3 Authority Key Identifier: keyid:7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/v7BCrE2vagBj7IKaaD72gqvDsZg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.192.0/22 Signature Algorithm: sha256WithRSAEncryption 38:2e:ad:b1:19:46:39:34:75:8e:65:4a:a7:24:12:22:4b:17: 08:3a:4c:bb:83:1a:ce:5d:34:86:5b:96:40:92:42:d2:0c:7c: f8:66:c4:97:c8:bf:ae:1b:5c:8e:47:74:bb:a4:db:93:09:d4: 01:d7:02:6e:32:7d:b5:c5:24:1f:7f:34:29:59:7e:af:b1:f9: 20:41:63:4b:c4:5d:03:fe:78:73:eb:72:a7:04:fb:27:d3:9a: 61:ad:a3:37:fa:6f:8c:e2:cc:c8:a0:01:60:61:8f:be:9c:4f: f5:9a:c5:05:b6:14:2a:4f:0d:ff:c1:23:ca:db:e0:f2:98:5f: f8:f1:5d:05:4f:fb:99:b5:39:fe:36:66:64:c2:bc:94:ad:ce: 17:21:d6:42:c1:3a:d7:e6:be:e8:54:ea:72:f4:eb:ad:54:be: 13:ca:08:d2:81:f9:b7:11:4b:1e:80:50:1d:4c:3d:32:44:15: da:40:6e:96:10:3f:f1:9f:01:e7:bb:68:27:f7:38:89:fc:f4: f5:7c:43:1a:6c:e9:0b:17:48:2f:41:d0:6f:9b:ee:9d:2b:6c: e4:d6:78:fd:80:61:14:47:03:d0:f1:15:86:cd:bd:41:d0:50: 1d:42:31:2c:cb:2a:6f:87:f5:30:79:a2:e2:ff:6d:7a:ed:5c: 16:8e:cf:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0FC NkUyRjRDNDU3MzFEMDNDMjdBRUFGREQ2MDg2MTE4NzFCNDIzQzAeFw0yNDAzMTMw MTIzMzBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEJGQjA0MkFDNERBRjZB MDA2M0VDODI5QTY4M0VGNjgyQUJDM0IxOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDHWKenXzE7kYl59M4bzWpqaC5M9a6sKI2o2qPcheMoAmVJFWf 8h6CR/l2IMMPUpeRVerpvEiiwNrG/Kiea11KaraqoSBbNOQnzvHfsMdX3Nu142/9 mvrkODzLTFIzSfBQ/YRpn9hOuv947p2o1wE7M8k+DgUJZt3pwfCZlVoZY2+vyOKR w2akHM870Z66bBhhLN1UaRGPMYlrkn6iJySgY0HPJ+chaEeWtzAly1pbSggqDyI5 0t+oNAqO9XX1Qd/V3LSvvAQ6DUIc/EMdA5DVw/URobZn8AtjsWu8vjS5fTNFr+0s gYscdui5FEEwtesDZQgktUR5O4ZkarUD7UzTAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUv7BCrE2vagBj7IKaaD72gqvDsZgwHwYDVR0jBBgwFoAUerbi9MRXMdA8J66v 3WCGEYcbQjwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTAz MC9lcmJpOU1SWE1kQThKNjZ2M1dDR0VZY2JRancuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2VyYmk5TVJYTWRBOEo2NnYzV0NHRVljYlFqdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwMzAvdjdCQ3JFMnZhZ0Jq N0lLYWFENzJncXZEc1pnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcrwDANBgkqhkiG9w0BAQsFAAOCAQEAOC6tsRlGOTR1jmVKpyQSIksXCDpM u4Mazl00hluWQJJC0gx8+GbEl8i/rhtcjkd0u6TbkwnUAdcCbjJ9tcUkH380KVl+ r7H5IEFjS8RdA/54c+typwT7J9OaYa2jN/pvjOLMyKABYGGPvpxP9ZrFBbYUKk8N /8Ejytvg8phf+PFdBU/7mbU5/jZmZMK8lK3OFyHWQsE61+a+6FTqcvTrrVS+E8oI 0oH5txFLHoBQHUw9MkQV2kBulhA/8Z8B57toJ/c4ifz09XxDGmzpCxdIL0HQb5vu nSts5NZ4/YBhFEcD0PEVhs29QdBQHUIxLMsqb4f1MHmi4v9teu1cFo7P8Q== -----END CERTIFICATE-----Generated at Tue Jun 25 19:54:05 2024 by rpki-client on console-fra.rpki-client.org