$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1823/U-B3ogXeY-wwWRdqIqwuT-4qN10.roa File: U-B3ogXeY-wwWRdqIqwuT-4qN10.roa (raw, json) Hash identifier: jrDdvfnk8B/sYKgkj77NjX6xZgBgV9xbm9nmRo8AyvQ= Subject key identifier: 53:E0:77:A2:05:DE:63:EC:30:59:17:6A:22:AC:2E:4F:EE:2A:37:5D Certificate issuer: /CN=46E7400FC97FC7A2093E054CF0DF42CB77564023 Certificate serial: 08 Authority key identifier: 46:E7:40:0F:C9:7F:C7:A2:09:3E:05:4C:F0:DF:42:CB:77:56:40:23 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/RudAD8l_x6IJPgVM8N9Cy3dWQCM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/U-B3ogXeY-wwWRdqIqwuT-4qN10.roa Signing time: Thu 26 Sep 2024 01:43:03 +0000 ROA not before: Thu 26 Sep 2024 01:43:03 +0000 ROA not after: Thu 25 Sep 2025 02:59:40 +0000 asID: 59065 IP address blocks: 103.59.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/RudAD8l_x6IJPgVM8N9Cy3dWQCM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/RudAD8l_x6IJPgVM8N9Cy3dWQCM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/RudAD8l_x6IJPgVM8N9Cy3dWQCM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46E7400FC97FC7A2093E054CF0DF42CB77564023 Validity Not Before: Sep 26 01:43:03 2024 GMT Not After : Sep 25 02:59:40 2025 GMT Subject: CN=53E077A205DE63EC3059176A22AC2E4FEE2A375D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:78:06:a7:d8:03:80:84:30:c6:a6:e0:94:a4: 72:e4:ff:8e:f9:3d:bf:f1:79:f7:8c:40:39:ed:11: a3:2b:d4:5e:ad:ef:e2:be:c8:98:05:1b:da:2e:71: c4:15:d0:0a:af:30:7a:88:60:ee:bc:a5:4f:34:6f: b8:be:74:ab:3a:1e:5f:85:ec:b9:3c:71:c5:13:a1: 2d:93:e1:77:66:15:a7:3f:ec:10:40:d5:bf:6c:dd: 57:9d:51:f0:07:ea:14:94:d4:ba:74:05:34:30:e4: a1:5f:ff:f6:fb:09:03:c8:7b:f1:8a:84:9b:23:86: 68:38:3c:43:5e:49:78:45:04:6a:20:61:54:5f:d4: c6:df:aa:1f:5b:15:b5:35:a4:03:38:eb:4c:d3:40: 72:ad:f1:bb:88:e6:20:c9:38:0e:8b:10:d2:27:c7: 7d:35:2f:14:5a:3d:c1:b6:ea:25:8c:d9:ff:52:a2: 42:a4:43:a4:3b:35:36:3a:c0:a0:ec:01:6f:f8:41: d9:11:65:93:92:16:c6:50:57:16:90:fc:bc:14:64: ad:f2:fd:13:3f:a9:d7:99:3d:aa:c7:1a:7a:12:9f: 87:9b:1f:86:4e:91:01:87:69:81:2a:27:94:c8:28: 81:ec:5d:db:7e:04:4a:0c:65:90:2a:ce:6c:89:07: 67:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E0:77:A2:05:DE:63:EC:30:59:17:6A:22:AC:2E:4F:EE:2A:37:5D X509v3 Authority Key Identifier: keyid:46:E7:40:0F:C9:7F:C7:A2:09:3E:05:4C:F0:DF:42:CB:77:56:40:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/RudAD8l_x6IJPgVM8N9Cy3dWQCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/RudAD8l_x6IJPgVM8N9Cy3dWQCM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/U-B3ogXeY-wwWRdqIqwuT-4qN10.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.59.122.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:4a:0a:60:94:86:d0:6b:ae:81:8b:1d:88:6d:88:1d:33:7c: 4b:f3:df:6a:19:ab:b1:2a:c8:1b:55:02:dc:39:c2:b5:c1:eb: fc:68:e8:54:07:e2:64:8b:16:6d:b5:8c:02:9e:bc:fe:13:de: 41:bd:ea:7a:7c:bc:d0:21:d6:b8:9e:8a:e0:77:a3:56:4f:d0: 7c:1d:20:5e:38:83:18:c5:f5:f5:fb:f8:3f:3f:41:67:16:88: b5:d2:7c:ae:40:84:77:6c:27:7e:3d:72:c7:c4:f3:37:b2:2d: 41:cd:27:d2:84:47:8c:80:9d:8b:cc:44:ab:3e:02:f8:65:bb: 49:a2:c2:e7:47:9d:6a:56:70:af:e4:94:24:e0:bf:fb:89:cb: e4:24:8d:80:73:2d:29:9f:f1:ae:a3:f9:5d:46:03:c0:88:df: f9:be:75:dc:aa:e7:5d:07:21:73:de:ad:c1:1a:96:27:8e:51: 10:08:51:6a:ca:a0:81:e2:91:fb:3c:1f:c4:76:62:b9:34:9c: c4:77:fc:26:d8:80:4e:ea:1e:36:63:95:49:2b:79:21:08:65: e0:97:25:63:fa:e5:a8:dc:e2:b4:26:cd:d2:3e:50:78:29:5b: d6:a0:b0:c6:31:7b:e9:92:ba:7c:ab:f7:c7:5c:be:fe:d4:bb: 18:07:aa:c7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0NkU3 NDAwRkM5N0ZDN0EyMDkzRTA1NENGMERGNDJDQjc3NTY0MDIzMB4XDTI0MDkyNjAx NDMwM1oXDTI1MDkyNTAyNTk0MFowMzExMC8GA1UEAxMoNTNFMDc3QTIwNURFNjNF QzMwNTkxNzZBMjJBQzJFNEZFRTJBMzc1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMJ4BqfYA4CEMMam4JSkcuT/jvk9v/F594xAOe0RoyvUXq3v4r7I mAUb2i5xxBXQCq8weohg7rylTzRvuL50qzoeX4XsuTxxxROhLZPhd2YVpz/sEEDV v2zdV51R8AfqFJTUunQFNDDkoV//9vsJA8h78YqEmyOGaDg8Q15JeEUEaiBhVF/U xt+qH1sVtTWkAzjrTNNAcq3xu4jmIMk4DosQ0ifHfTUvFFo9wbbqJYzZ/1KiQqRD pDs1NjrAoOwBb/hB2RFlk5IWxlBXFpD8vBRkrfL9Ez+p15k9qscaehKfh5sfhk6R AYdpgSonlMgogexd234ESgxlkCrObIkHZz8CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRT4HeiBd5j7DBZF2oirC5P7io3XTAfBgNVHSMEGDAWgBRG50APyX/Hogk+BUzw 30LLd1ZAIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xODIz L1J1ZEFEOGxfeDZJSlBnVk04TjlDeTNkV1FDTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvUnVkQUQ4bF94NklKUGdWTThOOUN5M2RXUUNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTgyMy9VLUIzb2dYZVktd3dX UmRxSXF3dVQtNHFOMTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZzt6MA0GCSqGSIb3DQEBCwUAA4IBAQB7SgpglIbQa66Bix2IbYgdM3xL899q GauxKsgbVQLcOcK1wev8aOhUB+JkixZttYwCnrz+E95Bvep6fLzQIda4norgd6NW T9B8HSBeOIMYxfX1+/g/P0FnFoi10nyuQIR3bCd+PXLHxPM3si1BzSfShEeMgJ2L zESrPgL4ZbtJosLnR51qVnCv5JQk4L/7icvkJI2Acy0pn/Guo/ldRgPAiN/5vnXc quddByFz3q3BGpYnjlEQCFFqyqCB4pH7PB/EdmK5NJzEd/wm2IBO6h42Y5VJK3kh CGXglyVj+uWo3OK0Js3SPlB4KVvWoLDGMXvpkrp8q/fHXL7+1LsYB6rH -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:09 2024 by rpki-client on console-fra.rpki-client.org