$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1375/tRswCJdL2GSrkhJ4sEMCKesQ7Qc.roa File: tRswCJdL2GSrkhJ4sEMCKesQ7Qc.roa (raw, json) Hash identifier: G0Oe7HR1J3rXDzcBIqEhXwBkH9bfb0Jw85W7o7SLlc0= Subject key identifier: B5:1B:30:08:97:4B:D8:64:AB:92:12:78:B0:43:02:29:EB:10:ED:07 Certificate issuer: /CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Certificate serial: 1996 Authority key identifier: 3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/tRswCJdL2GSrkhJ4sEMCKesQ7Qc.roa Signing time: Tue 24 Sep 2024 00:19:50 +0000 ROA not before: Tue 24 Sep 2024 00:19:50 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 31972 IP address blocks: 45.115.228.0/22 maxlen: 24 45.127.216.0/22 maxlen: 24 103.56.8.0/22 maxlen: 24 103.196.204.0/22 maxlen: 24 103.207.48.0/22 maxlen: 24 210.16.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6550 (0x1996) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Validity Not Before: Sep 24 00:19:50 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=B51B3008974BD864AB921278B0430229EB10ED07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:95:34:80:2f:ec:fc:b0:60:38:ee:ad:da:bc: 77:f1:37:39:a3:15:9b:b1:22:8a:c9:c0:8e:f1:b0: 9d:50:dc:de:0f:c7:a5:87:ac:5b:d5:09:8f:c0:29: 3a:e1:46:9e:e5:95:22:05:f0:5b:12:33:f2:01:8c: f9:08:98:d0:25:d6:4c:48:1b:29:e7:99:6d:bf:bb: 93:21:12:e0:d2:04:a4:88:c0:71:28:97:d5:4d:a2: df:6f:d4:20:7d:64:42:a9:70:b5:e9:f0:87:e3:b7: ca:9a:d1:db:58:49:5d:54:6a:47:3f:64:ab:64:7d: e2:d2:c4:8e:c5:74:df:64:57:e5:a6:a1:04:a4:3b: 51:69:75:9c:e5:9a:e7:47:f3:ef:f5:23:c2:15:7b: b7:f2:c0:33:64:a5:b9:99:aa:d6:96:62:0f:89:6c: b5:e7:49:37:fa:1a:6c:4b:91:12:7a:25:b4:ef:47: 9f:1a:bc:3f:e6:52:ae:60:f6:52:7b:04:ff:db:ab: 2b:1c:18:2a:25:55:9a:e7:28:41:f6:50:6e:e7:37: e4:62:82:4b:81:41:c0:ee:32:74:b6:3e:96:12:8b: 48:b3:c2:30:e0:e6:80:ad:d4:28:ce:db:e0:a3:b9: e2:fb:ed:d3:89:c6:0c:68:28:70:a9:fd:27:2d:1f: ce:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:1B:30:08:97:4B:D8:64:AB:92:12:78:B0:43:02:29:EB:10:ED:07 X509v3 Authority Key Identifier: keyid:3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/tRswCJdL2GSrkhJ4sEMCKesQ7Qc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.115.228.0/22 45.127.216.0/22 103.56.8.0/22 103.196.204.0/22 103.207.48.0/22 210.16.104.0/22 Signature Algorithm: sha256WithRSAEncryption d0:74:1f:dd:85:9c:7d:98:f2:ee:76:07:d6:37:91:be:6d:e5: ec:02:b8:fd:9a:c2:a7:a7:be:83:88:66:23:dd:f0:fb:4b:39: 84:b1:78:91:35:0d:87:2e:16:1f:36:67:96:bb:0c:79:d4:50: 1c:b9:b9:61:0c:38:d1:5e:d4:a1:4e:b2:20:9e:10:75:6c:54: 9e:95:7c:23:4e:f3:93:d4:92:44:22:09:90:b0:d3:ff:b3:b9: bc:61:08:48:20:f3:a8:57:86:86:96:3b:89:1b:9c:fd:d5:23: db:03:a9:55:7e:25:9b:b3:89:86:04:65:49:c4:16:c1:0a:97: e4:d2:08:d6:f5:33:b3:95:f6:38:f1:53:46:d4:57:ce:87:3e: 36:39:aa:66:27:2d:ad:a4:7a:96:f4:0f:a9:ed:d7:79:0a:31: d4:19:e3:50:dd:ea:0e:ad:5d:b9:9b:4d:0b:cc:e8:c7:5e:bc: fc:4a:13:d5:ce:35:55:2f:bb:e0:11:97:82:1a:6a:fc:89:84: 76:e3:ca:b3:ea:17:00:ff:d2:c8:e2:61:71:42:f0:41:a9:44: 75:c9:71:89:07:c4:90:44:8b:7b:6c:ef:0f:63:27:b6:e2:c8: 26:a7:7f:d7:c8:d2:9f:00:33:36:41:a3:e6:73:d2:44:21:b1: d1:37:21:13 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgICGZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FC QThCNDI1MjMyQkU1ODk2ODM5NkRFMzJBOEVCNUEwNUVFQTY1ODAeFw0yNDA5MjQw MDE5NTBaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKEI1MUIzMDA4OTc0QkQ4 NjRBQjkyMTI3OEIwNDMwMjI5RUIxMEVEMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOlTSAL+z8sGA47q3avHfxNzmjFZuxIorJwI7xsJ1Q3N4Px6WH rFvVCY/AKTrhRp7llSIF8FsSM/IBjPkImNAl1kxIGynnmW2/u5MhEuDSBKSIwHEo l9VNot9v1CB9ZEKpcLXp8Ifjt8qa0dtYSV1Uakc/ZKtkfeLSxI7FdN9kV+WmoQSk O1FpdZzlmudH8+/1I8IVe7fywDNkpbmZqtaWYg+JbLXnSTf6GmxLkRJ6JbTvR58a vD/mUq5g9lJ7BP/bqyscGColVZrnKEH2UG7nN+RigkuBQcDuMnS2PpYSi0izwjDg 5oCt1CjO2+CjueL77dOJxgxoKHCp/SctH87jAgMBAAGjggIRMIICDTAdBgNVHQ4E FgQUtRswCJdL2GSrkhJ4sEMCKesQ7QcwHwYDVR0jBBgwFoAUOrqLQlIyvliWg5be MqjrWgXuplgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 NS9PcnFMUWxJeXZsaVdnNWJlTXFqcldnWHVwbGcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09ycUxRbEl5dmxpV2c1YmVNcWpyV2dYdXBsZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzNzUvdFJzd0NKZEwyR1Ny a2hKNHNFTUNLZXNRN1FjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEw JAMEAi1z5AMEAi1/2AMEAmc4CAMEAmfEzAMEAmfPMAMEAtIQaDANBgkqhkiG9w0B AQsFAAOCAQEA0HQf3YWcfZjy7nYH1jeRvm3l7AK4/ZrCp6e+g4hmI93w+0s5hLF4 kTUNhy4WHzZnlrsMedRQHLm5YQw40V7UoU6yIJ4QdWxUnpV8I07zk9SSRCIJkLDT /7O5vGEISCDzqFeGhpY7iRuc/dUj2wOpVX4lm7OJhgRlScQWwQqX5NII1vUzs5X2 OPFTRtRXzoc+NjmqZictraR6lvQPqe3XeQox1BnjUN3qDq1duZtNC8zox168/EoT 1c41VS+74BGXghpq/ImEduPKs+oXAP/SyOJhcULwQalEdclxiQfEkESLe2zvD2Mn tuLIJqd/18jSnwAzNkGj5nPSRCGx0TchEw== -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:51 2024 by rpki-client on console-ams.rpki-client.org