$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1407/6vSxA0diVCR8XMmvW-nu2EPxVx4.roa File: 6vSxA0diVCR8XMmvW-nu2EPxVx4.roa (raw, json) Hash identifier: JVPAyeOrMTMc4c6qkPIL4jxz1GwHHYoSVQr8/TXy3C8= Subject key identifier: EA:F4:B1:03:47:62:54:24:7C:5C:C9:AF:5B:E9:EE:D8:43:F1:57:1E Certificate issuer: /CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E Certificate serial: 19A9 Authority key identifier: 5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/6vSxA0diVCR8XMmvW-nu2EPxVx4.roa Signing time: Tue 24 Sep 2024 00:18:56 +0000 ROA not before: Tue 24 Sep 2024 00:18:56 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 17408 IP address blocks: 103.20.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6569 (0x19a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E Validity Not Before: Sep 24 00:18:56 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=EAF4B103476254247C5CC9AF5BE9EED843F1571E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ef:f3:e0:1e:84:bc:b2:d5:e8:9a:f2:03:d0: f3:a6:b9:58:62:0a:9a:9f:07:46:88:28:0e:91:ea: 87:1b:81:af:76:4b:e0:3d:3e:c0:77:26:bc:32:78: a4:2b:1f:f6:59:81:c0:bf:1f:3c:58:c5:44:17:ed: 05:bb:9f:49:f7:4f:bd:ee:8b:c1:19:8f:4b:33:45: 97:52:04:df:14:3f:f8:35:01:60:11:f2:88:8e:06: f5:9d:54:a2:45:85:dd:d0:f9:51:5c:95:9c:7c:e1: c0:32:06:90:bc:ab:13:30:48:58:4c:bb:61:ad:9c: e7:0c:a5:76:76:3b:3f:7a:60:05:0e:38:20:89:ab: 1d:91:ee:4f:ad:8e:aa:b0:c5:ee:24:49:a5:3a:2d: dc:d4:bf:55:c5:56:49:b5:ff:d4:a7:3a:3d:0d:8e: e9:8f:48:65:05:c1:45:68:ca:54:10:06:2f:6d:ca: de:86:95:34:d7:63:97:b5:f0:b4:5c:c4:1e:11:cc: e3:18:30:e4:17:a4:c6:28:76:ea:3e:67:ef:a4:ec: f4:c8:b0:11:d3:dd:6f:bd:19:5c:8b:d1:94:43:1a: da:12:6c:9f:bc:36:7b:4b:73:6b:ab:4a:f2:10:b9: 14:c5:7b:ff:61:4b:f5:97:89:22:a6:55:85:d8:34: ce:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F4:B1:03:47:62:54:24:7C:5C:C9:AF:5B:E9:EE:D8:43:F1:57:1E X509v3 Authority Key Identifier: keyid:5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/6vSxA0diVCR8XMmvW-nu2EPxVx4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.20.46.0/24 Signature Algorithm: sha256WithRSAEncryption 17:67:5a:23:dd:97:f2:38:8e:73:c4:58:f1:ab:56:d1:54:5a: c3:90:0a:6c:f3:c6:a6:bb:01:d5:bf:83:7e:3e:93:af:4f:9f: b3:cf:8e:d4:d2:5f:6f:46:66:ca:81:85:ce:59:05:30:56:0c: 5d:37:89:3c:19:28:41:ea:a3:d6:9a:ff:4f:1f:05:8c:a8:b7: 69:2a:e5:e9:92:08:f6:d1:79:a0:59:dc:5c:14:42:ee:9b:ee: ba:fc:65:79:de:e6:49:2d:27:92:30:31:61:97:9e:64:6d:f3: a9:d2:4d:aa:16:2f:ff:1a:cd:af:4e:14:2b:48:2e:6a:e3:17: 9f:40:e8:1c:d0:45:97:89:3d:c0:a5:02:c3:02:23:39:80:dd: 93:7d:19:5f:83:1a:eb:ae:84:33:17:4c:97:58:61:c9:2a:13: af:3c:36:24:f8:5f:6d:a4:75:23:02:ac:f0:fa:db:14:48:64: b1:c9:1c:bc:59:3d:cd:d9:65:97:ad:06:bc:c8:eb:5a:8e:32: bd:ef:a7:bc:bf:b9:b8:74:e1:24:52:10:44:3e:01:0d:a9:13: f3:4c:c2:2c:17:81:16:7b:f8:29:ee:41:ce:17:2c:1d:7f:5a: 4f:8d:21:14:77:ea:bb:be:2b:dd:6b:7a:02:94:67:ca:82:b0: 0b:2e:0f:b3 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNURB MEE1RUNDMjE4MkRCMDBFQjg1QzYyMzEzRDU3Qjk2QjdGRDY4RTAeFw0yNDA5MjQw MDE4NTZaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKEVBRjRCMTAzNDc2MjU0 MjQ3QzVDQzlBRjVCRTlFRUQ4NDNGMTU3MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC57/PgHoS8stXomvID0POmuVhiCpqfB0aIKA6R6ocbga92S+A9 PsB3JrwyeKQrH/ZZgcC/HzxYxUQX7QW7n0n3T73ui8EZj0szRZdSBN8UP/g1AWAR 8oiOBvWdVKJFhd3Q+VFclZx84cAyBpC8qxMwSFhMu2GtnOcMpXZ2Oz96YAUOOCCJ qx2R7k+tjqqwxe4kSaU6LdzUv1XFVkm1/9SnOj0NjumPSGUFwUVoylQQBi9tyt6G lTTXY5e18LRcxB4RzOMYMOQXpMYoduo+Z++k7PTIsBHT3W+9GVyL0ZRDGtoSbJ+8 NntLc2urSvIQuRTFe/9hS/WXiSKmVYXYNM5PAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU6vSxA0diVCR8XMmvW+nu2EPxVx4wHwYDVR0jBBgwFoAUXaCl7MIYLbAOuFxi MT1XuWt/1o4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQw Ny9YYUNsN01JWUxiQU91RnhpTVQxWHVXdF8xbzQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1hhQ2w3TUlZTGJBT3VGeGlNVDFYdVd0XzFvNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MDcvNnZTeEEwZGlWQ1I4 WE1tdlctbnUyRVB4Vng0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcULjANBgkqhkiG9w0BAQsFAAOCAQEAF2daI92X8jiOc8RY8atW0VRaw5AK bPPGprsB1b+Dfj6Tr0+fs8+O1NJfb0ZmyoGFzlkFMFYMXTeJPBkoQeqj1pr/Tx8F jKi3aSrl6ZII9tF5oFncXBRC7pvuuvxled7mSS0nkjAxYZeeZG3zqdJNqhYv/xrN r04UK0guauMXn0DoHNBFl4k9wKUCwwIjOYDdk30ZX4Ma666EMxdMl1hhySoTrzw2 JPhfbaR1IwKs8PrbFEhksckcvFk9zdlll60GvMjrWo4yve+nvL+5uHThJFIQRD4B DakT80zCLBeBFnv4Ke5BzhcsHX9aT40hFHfqu74r3Wt6ApRnyoKwCy4Psw== -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:23 2024 by rpki-client on console-ams.rpki-client.org