$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1375/9BneQEOFwVmbNV9qi1-Mifgisio.roa File: 9BneQEOFwVmbNV9qi1-Mifgisio.roa (raw, json) Hash identifier: j8Zpmg3gffAltASgieZws8QEaUrwW5YvuNKDhkgVhao= Subject key identifier: F4:19:DE:40:43:85:C1:59:9B:35:5F:6A:8B:5F:8C:89:F8:22:B2:2A Certificate issuer: /CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Certificate serial: 1997 Authority key identifier: 3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/9BneQEOFwVmbNV9qi1-Mifgisio.roa Signing time: Tue 24 Sep 2024 00:19:51 +0000 ROA not before: Tue 24 Sep 2024 00:19:51 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 132369 IP address blocks: 45.115.228.0/22 maxlen: 24 45.127.216.0/22 maxlen: 24 103.56.8.0/22 maxlen: 24 103.196.204.0/22 maxlen: 24 103.207.48.0/22 maxlen: 24 210.16.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6551 (0x1997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Validity Not Before: Sep 24 00:19:51 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=F419DE404385C1599B355F6A8B5F8C89F822B22A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:93:64:e8:04:99:71:89:f9:cf:ba:24:9d:ea: fa:2e:54:ca:d7:07:32:6a:06:23:84:e4:fe:e8:cb: 63:16:24:4f:b2:a4:a2:b3:98:fd:b7:99:ce:40:27: d1:f6:13:43:74:e0:e6:28:e6:d3:0f:d1:4b:18:dd: 16:fb:e2:39:86:ad:37:b9:14:d4:0c:e7:11:1b:c8: af:54:55:f3:9b:7d:1b:19:5b:59:f9:7c:0d:97:1f: dc:28:17:a9:9d:41:b7:49:27:a4:27:05:b1:21:ef: fb:cc:fe:7b:0e:91:1c:eb:49:5d:8d:86:a8:b3:2a: ca:c1:37:dc:bc:eb:82:72:0c:a5:69:04:8c:a8:7e: 54:5d:89:3d:dd:33:ce:ce:ae:09:f1:5e:a8:0e:c1: b5:4a:e8:85:4b:86:1c:c1:15:cf:7e:da:79:79:f8: 7e:60:8d:a2:d4:29:14:26:1f:c2:04:59:17:99:43: 21:1d:79:8f:6e:94:a1:fd:c8:d3:0a:f7:bb:ed:8b: 0d:71:46:a3:88:8f:17:51:5e:d1:82:4e:15:c9:47: 14:c8:48:a0:34:9b:61:37:4b:33:20:70:fc:43:c1: e9:7f:5a:c0:d9:f0:1d:14:d2:e0:87:59:40:4c:23: 90:b4:68:7c:0d:d8:c0:c1:f5:c6:63:0e:ed:13:1b: 9f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:19:DE:40:43:85:C1:59:9B:35:5F:6A:8B:5F:8C:89:F8:22:B2:2A X509v3 Authority Key Identifier: keyid:3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/9BneQEOFwVmbNV9qi1-Mifgisio.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.115.228.0/22 45.127.216.0/22 103.56.8.0/22 103.196.204.0/22 103.207.48.0/22 210.16.104.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:3f:59:5d:1f:5f:62:05:01:0c:42:6e:b9:48:78:13:8b:71: ab:7f:68:b7:a9:83:fc:d6:dc:70:dc:25:35:55:69:ec:8b:fb: 81:e8:ab:c6:46:49:53:ec:d3:bd:a8:16:f4:72:47:41:14:7a: 4f:f3:88:8d:b0:f1:87:ef:36:c9:e1:1d:da:7f:14:d5:6f:a6: 80:28:63:88:c2:e9:31:92:2b:d4:66:6f:59:f9:de:48:ca:ae: ee:12:db:e1:1d:c8:b3:c6:bc:61:07:a8:5b:6f:19:02:c4:d7: 3c:77:9c:94:70:2f:1e:14:c9:97:8d:55:f7:75:34:a6:f2:4e: ee:0a:77:12:b2:d0:60:ed:d3:34:16:e4:b9:c9:9a:2b:0e:f8: e6:b4:00:ee:44:80:28:fe:c1:c1:fd:71:50:c8:62:5c:a8:47: e5:9b:50:56:74:ab:e0:a7:c7:82:7a:0a:59:d5:4b:9f:a6:17: e0:18:20:d2:86:f9:4d:ce:6b:db:f8:26:49:5c:f8:5f:b8:df: 61:aa:80:5a:07:b7:d3:4c:8b:00:b5:08:38:d0:4f:51:27:45: 9c:7f:6e:49:88:fa:ea:2c:4b:e2:92:78:f6:d4:4c:bd:e2:82: 8d:f2:b4:4c:fa:bb:55:e1:0f:24:f3:52:3f:86:c9:4a:e2:47: e0:b5:a6:c1 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgICGZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FC QThCNDI1MjMyQkU1ODk2ODM5NkRFMzJBOEVCNUEwNUVFQTY1ODAeFw0yNDA5MjQw MDE5NTFaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKEY0MTlERTQwNDM4NUMx NTk5QjM1NUY2QThCNUY4Qzg5RjgyMkIyMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfk2ToBJlxifnPuiSd6vouVMrXBzJqBiOE5P7oy2MWJE+ypKKz mP23mc5AJ9H2E0N04OYo5tMP0UsY3Rb74jmGrTe5FNQM5xEbyK9UVfObfRsZW1n5 fA2XH9woF6mdQbdJJ6QnBbEh7/vM/nsOkRzrSV2NhqizKsrBN9y864JyDKVpBIyo flRdiT3dM87OrgnxXqgOwbVK6IVLhhzBFc9+2nl5+H5gjaLUKRQmH8IEWReZQyEd eY9ulKH9yNMK97vtiw1xRqOIjxdRXtGCThXJRxTISKA0m2E3SzMgcPxDwel/WsDZ 8B0U0uCHWUBMI5C0aHwN2MDB9cZjDu0TG5/3AgMBAAGjggIRMIICDTAdBgNVHQ4E FgQU9BneQEOFwVmbNV9qi1+MifgisiowHwYDVR0jBBgwFoAUOrqLQlIyvliWg5be MqjrWgXuplgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 NS9PcnFMUWxJeXZsaVdnNWJlTXFqcldnWHVwbGcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09ycUxRbEl5dmxpV2c1YmVNcWpyV2dYdXBsZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzNzUvOUJuZVFFT0Z3Vm1i TlY5cWkxLU1pZmdpc2lvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEw JAMEAi1z5AMEAi1/2AMEAmc4CAMEAmfEzAMEAmfPMAMEAtIQaDANBgkqhkiG9w0B AQsFAAOCAQEATD9ZXR9fYgUBDEJuuUh4E4txq39ot6mD/NbccNwlNVVp7Iv7geir xkZJU+zTvagW9HJHQRR6T/OIjbDxh+82yeEd2n8U1W+mgChjiMLpMZIr1GZvWfne SMqu7hLb4R3Is8a8YQeoW28ZAsTXPHeclHAvHhTJl41V93U0pvJO7gp3ErLQYO3T NBbkucmaKw745rQA7kSAKP7Bwf1xUMhiXKhH5ZtQVnSr4KfHgnoKWdVLn6YX4Bgg 0ob5Tc5r2/gmSVz4X7jfYaqAWge300yLALUIONBPUSdFnH9uSYj66ixL4pJ49tRM veKCjfK0TPq7VeEPJPNSP4bJSuJH4LWmwQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:51 2024 by rpki-client on console-ams.rpki-client.org