$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/6f5E7d7WPmZSftgs9ezOKogP4Ds.roa File: 6f5E7d7WPmZSftgs9ezOKogP4Ds.roa (raw, json) Hash identifier: HkXsm2cg6s99F50j5mNIIXYYWPHYSg307dJAHV2SP50= Subject key identifier: E9:FE:44:ED:DE:D6:3E:66:52:7E:D8:2C:F5:EC:CE:2A:88:0F:E0:3B Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 1E7B Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/6f5E7d7WPmZSftgs9ezOKogP4Ds.roa Signing time: Wed 13 Mar 2024 01:21:37 +0000 ROA not before: Wed 13 Mar 2024 01:21:37 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 134762 IP address blocks: 43.226.144.0/20 maxlen: 20 103.45.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7803 (0x1e7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Mar 13 01:21:37 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=E9FE44EDDED63E66527ED82CF5ECCE2A880FE03B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9d:09:65:75:ae:e8:76:6f:27:57:a6:67:56: 19:7d:c0:69:35:07:70:3d:1b:dc:0f:83:7e:15:6c: b5:ab:ab:6f:10:9d:55:50:77:81:fb:12:c5:e8:fa: 67:0b:c0:5b:d9:44:8b:d4:16:3a:88:78:5a:46:c3: 87:a9:ab:a1:cd:c5:e2:be:8f:9d:47:7d:da:9f:4d: a7:8e:7e:a3:27:09:6d:e8:3a:ed:f2:ba:0b:47:27: 19:f5:9a:80:7c:4b:c8:66:4a:c2:a7:50:42:c3:7e: 39:46:61:57:7c:45:85:cd:0d:99:a4:3c:ca:52:6a: 35:43:74:27:21:d9:21:d7:e5:1d:8d:12:09:df:60: e1:ee:b8:ff:55:0c:ad:9d:91:e5:49:bc:0a:70:00: 4d:82:78:da:1d:52:fb:44:97:b8:66:73:75:59:45: 55:10:7d:f8:e1:cb:47:61:25:1e:fc:1a:e2:36:e3: 44:43:c5:7b:9b:d9:a3:9e:79:e9:3c:98:54:53:fd: 53:7c:a7:13:99:a5:e7:39:71:34:fb:50:3e:31:1b: 9b:68:09:c5:48:7b:e1:52:3d:c8:61:62:e2:e8:d8: a4:5a:6e:fb:0d:2f:b4:50:22:f9:66:b2:bf:49:70: 58:05:a2:2b:ca:bd:ae:60:e1:31:f2:1a:b9:2c:41: 1c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FE:44:ED:DE:D6:3E:66:52:7E:D8:2C:F5:EC:CE:2A:88:0F:E0:3B X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/6f5E7d7WPmZSftgs9ezOKogP4Ds.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.144.0/20 103.45.176.0/20 Signature Algorithm: sha256WithRSAEncryption 39:4d:b6:e8:2e:7d:c2:c6:58:4c:b4:72:7f:c4:9c:28:f1:2f: 6a:b6:17:34:bd:4b:22:fb:16:b7:74:36:0f:ce:a2:87:45:cf: 06:a7:ee:ca:8b:9f:0a:d2:36:94:98:22:08:bd:95:e4:8e:82: d9:7e:29:23:5c:27:50:a8:c9:27:9a:db:85:f2:c1:2e:a4:d7: 91:22:ee:63:ff:97:46:b9:b1:d3:0e:18:c8:07:40:05:13:67: eb:0d:57:26:90:1f:70:00:f7:00:e1:30:0c:4a:0a:d1:15:0b: 65:75:4c:9a:77:94:67:41:12:aa:a2:06:30:33:9a:64:71:65: 53:d5:ae:35:0b:a6:7f:23:95:8a:89:20:1f:c0:00:f3:4c:f1: 7e:f8:c3:af:c6:d5:8b:ae:28:e8:91:3a:be:1c:72:a6:4e:df: 4d:59:96:58:d1:c7:1d:52:b0:f6:16:d6:0f:2b:09:d3:0a:81: f0:af:1e:a6:92:0f:20:82:54:cf:1d:8d:aa:a6:04:1f:6c:c6: 5d:b0:f8:8d:db:16:6c:04:e6:e6:ac:0e:26:15:e4:de:34:ea: 13:d9:22:34:7a:b3:20:56:7d:da:7c:74:60:1a:b1:bc:08:43: f4:fa:58:67:2f:b8:6d:e3:fb:9d:00:ed:13:72:bc:c8:71:61: 18:2d:57:1f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICHnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNDAzMTMw MTIxMzdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEU5RkU0NEVEREVENjNF NjY1MjdFRDgyQ0Y1RUNDRTJBODgwRkUwM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCunQllda7odm8nV6ZnVhl9wGk1B3A9G9wPg34VbLWrq28QnVVQ d4H7EsXo+mcLwFvZRIvUFjqIeFpGw4epq6HNxeK+j51HfdqfTaeOfqMnCW3oOu3y ugtHJxn1moB8S8hmSsKnUELDfjlGYVd8RYXNDZmkPMpSajVDdCch2SHX5R2NEgnf YOHuuP9VDK2dkeVJvApwAE2CeNodUvtEl7hmc3VZRVUQffjhy0dhJR78GuI240RD xXub2aOeeek8mFRT/VN8pxOZpec5cTT7UD4xG5toCcVIe+FSPchhYuLo2KRabvsN L7RQIvlmsr9JcFgFoivKva5g4THyGrksQRxZAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQU6f5E7d7WPmZSftgs9ezOKogP4DswHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvNmY1RTdkN1dQbVpT ZnRnczllek9Lb2dQNERzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEw DAMEBCvikAMEBGctsDANBgkqhkiG9w0BAQsFAAOCAQEAOU226C59wsZYTLRyf8Sc KPEvarYXNL1LIvsWt3Q2D86ih0XPBqfuyoufCtI2lJgiCL2V5I6C2X4pI1wnUKjJ J5rbhfLBLqTXkSLuY/+XRrmx0w4YyAdABRNn6w1XJpAfcAD3AOEwDEoK0RULZXVM mneUZ0ESqqIGMDOaZHFlU9WuNQumfyOViokgH8AA80zxfvjDr8bVi64o6JE6vhxy pk7fTVmWWNHHHVKw9hbWDysJ0wqB8K8eppIPIIJUzx2NqqYEH2zGXbD4jdsWbATm 5qwOJhXk3jTqE9kiNHqzIFZ92nx0YBqxvAhD9PpYZy+4beP7nQDtE3K8yHFhGC1X Hw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:09 2024 by rpki-client on console-fra.rpki-client.org