$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1823/ayu9kcpWhG5hIjkYHUhRn1_OmFo.roa File: ayu9kcpWhG5hIjkYHUhRn1_OmFo.roa (raw, json) Hash identifier: BG+85GQegt3hbdSsNTDNvGqZWNrmlQ4Pi4MwUcJAZRE= Subject key identifier: 6B:2B:BD:91:CA:56:84:6E:61:22:39:18:1D:48:51:9F:5F:CE:98:5A Certificate issuer: /CN=46E7400FC97FC7A2093E054CF0DF42CB77564023 Certificate serial: 0A Authority key identifier: 46:E7:40:0F:C9:7F:C7:A2:09:3E:05:4C:F0:DF:42:CB:77:56:40:23 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/RudAD8l_x6IJPgVM8N9Cy3dWQCM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/ayu9kcpWhG5hIjkYHUhRn1_OmFo.roa Signing time: Thu 26 Sep 2024 01:45:19 +0000 ROA not before: Thu 26 Sep 2024 01:45:19 +0000 ROA not after: Thu 25 Sep 2025 02:59:40 +0000 asID: 1449 IP address blocks: 103.59.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/RudAD8l_x6IJPgVM8N9Cy3dWQCM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/RudAD8l_x6IJPgVM8N9Cy3dWQCM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/RudAD8l_x6IJPgVM8N9Cy3dWQCM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46E7400FC97FC7A2093E054CF0DF42CB77564023 Validity Not Before: Sep 26 01:45:19 2024 GMT Not After : Sep 25 02:59:40 2025 GMT Subject: CN=6B2BBD91CA56846E612239181D48519F5FCE985A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:a1:c9:19:5c:01:e8:cc:06:11:2a:17:18: 81:aa:4e:42:aa:9d:1a:a2:dc:bc:85:ff:fa:62:68: 1e:56:84:bd:0b:d9:ad:31:96:63:17:c7:00:e0:2f: 20:5e:f7:8a:75:30:ae:89:8a:33:f5:9f:19:e2:b5: c6:a8:c0:39:26:ff:80:7a:63:dd:1f:1c:a3:83:24: 17:11:dc:1d:aa:0f:d0:25:2b:0f:09:4a:32:86:b7: 3c:68:47:fe:36:58:f4:74:59:45:2a:b6:bd:70:23: 45:8c:0a:c1:94:67:27:33:29:a4:2f:48:65:b4:13: 2d:9a:7b:c6:fa:aa:89:30:b9:6c:86:b8:25:9f:a0: e9:bb:d1:0c:e1:8e:14:e0:59:98:47:03:29:5c:0f: 6b:30:92:f7:c0:0f:b7:ae:b0:00:26:a9:f5:c8:7c: 0e:8b:9e:3f:d7:49:af:26:08:6a:73:49:c3:e4:e8: 23:5b:f8:fe:24:21:bd:39:d2:3b:56:51:cd:64:34: 5e:e0:50:df:1c:d1:0b:81:4e:59:05:e6:a1:f4:e2: 5a:bf:8a:f5:2d:10:23:86:fa:f1:c9:8d:e0:1e:ba: 6a:97:71:77:14:fc:32:f1:5e:83:87:dc:e6:7f:d0: a9:30:08:42:df:ac:5f:7e:e0:9b:3b:8c:bb:55:9d: 3a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2B:BD:91:CA:56:84:6E:61:22:39:18:1D:48:51:9F:5F:CE:98:5A X509v3 Authority Key Identifier: keyid:46:E7:40:0F:C9:7F:C7:A2:09:3E:05:4C:F0:DF:42:CB:77:56:40:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/RudAD8l_x6IJPgVM8N9Cy3dWQCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/RudAD8l_x6IJPgVM8N9Cy3dWQCM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1823/ayu9kcpWhG5hIjkYHUhRn1_OmFo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.59.122.0/24 Signature Algorithm: sha256WithRSAEncryption 93:13:4c:9d:c2:ea:8e:51:78:45:41:14:ac:41:de:9b:91:bc: a9:df:c4:2e:d0:28:e0:aa:9a:31:23:76:10:23:13:b6:bf:d9: b0:d0:9f:c7:6e:af:4a:b4:9a:6b:3d:7e:c6:a5:30:6e:0a:b4: 9c:90:d0:41:4c:01:11:d0:4a:2e:17:44:ca:a5:51:d9:89:78: 3d:2e:af:5c:d5:3c:b9:36:14:2c:2d:82:e2:87:db:ef:fb:7e: 3d:bb:a1:09:0b:25:6e:77:e1:b6:62:e0:ec:a8:5b:0b:4e:d0: 04:61:69:75:4e:5f:9e:a2:24:9b:b1:3a:e2:5b:eb:a5:da:49: cb:97:67:eb:6f:e9:b9:e7:3e:52:b0:91:97:8d:a1:7f:be:2d: 3f:02:88:36:99:ba:ed:b2:b0:40:76:bd:e0:ff:2f:48:b0:c6: b6:2b:b3:65:a4:af:65:18:a2:1a:e7:de:50:a0:bb:2a:f6:b8: f9:e9:90:55:16:de:e5:f1:11:0e:3b:4b:6a:81:ec:fc:88:22: bb:b7:4c:68:97:51:85:c4:4f:c5:16:3a:f3:97:4f:4d:94:da: d1:b0:53:7f:61:2c:fa:37:0e:1e:4c:3d:1d:20:39:43:2f:bd: 0b:b4:3c:cc:c7:c2:09:4f:a4:5a:7a:26:62:13:d1:17:7c:b6: de:58:a3:b6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0NkU3 NDAwRkM5N0ZDN0EyMDkzRTA1NENGMERGNDJDQjc3NTY0MDIzMB4XDTI0MDkyNjAx NDUxOVoXDTI1MDkyNTAyNTk0MFowMzExMC8GA1UEAxMoNkIyQkJEOTFDQTU2ODQ2 RTYxMjIzOTE4MUQ0ODUxOUY1RkNFOTg1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALDxockZXAHozAYRKhcYgapOQqqdGqLcvIX/+mJoHlaEvQvZrTGW YxfHAOAvIF73inUwromKM/WfGeK1xqjAOSb/gHpj3R8co4MkFxHcHaoP0CUrDwlK Moa3PGhH/jZY9HRZRSq2vXAjRYwKwZRnJzMppC9IZbQTLZp7xvqqiTC5bIa4JZ+g 6bvRDOGOFOBZmEcDKVwPazCS98APt66wACap9ch8DoueP9dJryYIanNJw+ToI1v4 /iQhvTnSO1ZRzWQ0XuBQ3xzRC4FOWQXmofTiWr+K9S0QI4b68cmN4B66apdxdxT8 MvFeg4fc5n/QqTAIQt+sX37gmzuMu1WdOmcCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRrK72RylaEbmEiORgdSFGfX86YWjAfBgNVHSMEGDAWgBRG50APyX/Hogk+BUzw 30LLd1ZAIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xODIz L1J1ZEFEOGxfeDZJSlBnVk04TjlDeTNkV1FDTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvUnVkQUQ4bF94NklKUGdWTThOOUN5M2RXUUNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTgyMy9heXU5a2NwV2hHNWhJ amtZSFVoUm4xX09tRm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZzt6MA0GCSqGSIb3DQEBCwUAA4IBAQCTE0ydwuqOUXhFQRSsQd6bkbyp38Qu 0CjgqpoxI3YQIxO2v9mw0J/Hbq9KtJprPX7GpTBuCrSckNBBTAER0EouF0TKpVHZ iXg9Lq9c1Ty5NhQsLYLih9vv+349u6EJCyVud+G2YuDsqFsLTtAEYWl1Tl+eoiSb sTriW+ul2knLl2frb+m55z5SsJGXjaF/vi0/Aog2mbrtsrBAdr3g/y9IsMa2K7Nl pK9lGKIa595QoLsq9rj56ZBVFt7l8REOO0tqgez8iCK7t0xol1GFxE/FFjrzl09N lNrRsFN/YSz6Nw4eTD0dIDlDL70LtDzMx8IJT6RaeiZiE9EXfLbeWKO2 -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:09 2024 by rpki-client on console-fra.rpki-client.org