$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2292/1eAS7-hUU41CTNzjdXn_5f-4mfk.roa File: 1eAS7-hUU41CTNzjdXn_5f-4mfk.roa (raw, json) Hash identifier: TJcoDrqM0c5Y89PzjxvrShrvCZeh2y3C8O6Py8QtCZI= Subject key identifier: D5:E0:12:EF:E8:54:53:8D:42:4C:DC:E3:75:79:FF:E5:FF:B8:99:F9 Certificate issuer: /CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Certificate serial: 0D20 Authority key identifier: 90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/1eAS7-hUU41CTNzjdXn_5f-4mfk.roa Signing time: Fri 24 May 2024 02:24:03 +0000 ROA not before: Fri 24 May 2024 02:24:03 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 398704 IP address blocks: 115.174.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Validity Not Before: May 24 02:24:03 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=D5E012EFE854538D424CDCE37579FFE5FFB899F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:70:4f:72:62:66:52:3a:c3:a8:44:69:c2:3f: cc:14:9c:ae:b6:13:fe:3a:01:27:cf:5a:aa:bb:0d: d6:a9:21:85:31:0d:68:3b:f0:fd:8a:93:de:62:9a: 43:b1:83:09:a7:3d:3b:9c:52:48:24:5b:66:dd:9d: ce:68:22:05:cf:cb:c5:8c:d6:91:c5:91:67:1c:3a: 26:03:03:61:d0:d6:22:c5:43:64:cb:bf:5a:83:94: b5:d1:be:8a:8a:1a:35:5e:2e:c4:bf:9e:67:c4:db: 21:d6:90:61:33:14:3d:d5:39:ad:dd:c0:a7:41:6d: 78:be:99:52:85:1c:4e:c6:2f:99:04:88:81:f7:91: 05:e3:7b:c0:8e:08:98:3a:9e:fd:57:c5:74:7d:99: d7:d2:be:ba:2b:04:0f:2e:83:0c:23:1a:bd:ee:d9: 05:7c:b8:ac:78:54:1a:05:27:a0:af:9e:fd:e7:96: 1f:c3:85:84:fd:1f:66:88:5c:0d:6c:74:8a:e0:fa: 9c:da:07:a1:73:18:74:34:d7:f9:9f:44:2c:b8:00: 68:d9:30:33:6c:4a:44:e4:c8:6e:cc:5d:de:7a:f8: 6c:55:8c:2e:fc:f6:16:ae:6e:ef:cf:7d:8a:d5:24: c3:01:a4:0e:e1:1a:b6:d5:f1:82:14:8d:98:c0:a8: e9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E0:12:EF:E8:54:53:8D:42:4C:DC:E3:75:79:FF:E5:FF:B8:99:F9 X509v3 Authority Key Identifier: keyid:90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/1eAS7-hUU41CTNzjdXn_5f-4mfk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.174.74.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:20:c6:18:6e:b9:37:66:34:c7:a4:dc:62:5a:83:57:b9:1b: 79:0f:35:ca:91:ce:27:63:ad:eb:d2:e3:b2:ae:cf:f8:79:40: 81:8e:5a:c8:00:4a:cf:1c:87:60:dc:47:7f:ea:c7:74:5e:4f: cd:d2:2b:6c:1d:6f:52:3b:a3:03:73:98:60:22:37:28:98:87: 37:05:b3:6c:8b:24:b4:7b:d5:27:f8:83:11:8b:bc:f7:06:a9: ee:d6:5a:49:9b:70:70:f7:42:19:ad:39:18:b0:ce:45:34:bf: a4:6e:67:44:e7:5a:a6:d2:03:89:db:63:84:5c:1b:f3:d7:a0: 2d:b8:b8:db:1f:b3:85:3b:bb:05:aa:2e:e9:40:52:e5:18:26: 91:ba:4a:3b:12:55:56:0b:e9:b4:a4:cd:b5:a3:3f:e7:a1:a9: af:de:aa:d4:2e:43:3a:c9:e4:40:da:e7:ee:24:01:6e:49:59: 0c:27:8e:ba:6b:44:a8:22:97:18:f3:aa:89:e8:38:d8:19:92: 2a:3a:62:46:7b:fb:fd:f5:4f:e4:1b:89:5a:70:30:0f:8c:65: 7f:3f:2a:d4:6d:d4:e4:ed:49:c8:49:f8:92:bb:6d:ea:34:8a: b6:66:e4:08:bb:3d:34:82:2b:43:40:ae:ed:aa:75:06:1b:6d: 8d:6f:0e:28 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTA4 NDAzOEI2NkY0NTI2QzQxQzc2NjhEMTQyOENEMjJCMzNGQkU3ODAeFw0yNDA1MjQw MjI0MDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEQ1RTAxMkVGRTg1NDUz OEQ0MjRDRENFMzc1NzlGRkU1RkZCODk5RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUcE9yYmZSOsOoRGnCP8wUnK62E/46ASfPWqq7DdapIYUxDWg7 8P2Kk95imkOxgwmnPTucUkgkW2bdnc5oIgXPy8WM1pHFkWccOiYDA2HQ1iLFQ2TL v1qDlLXRvoqKGjVeLsS/nmfE2yHWkGEzFD3VOa3dwKdBbXi+mVKFHE7GL5kEiIH3 kQXje8COCJg6nv1XxXR9mdfSvrorBA8ugwwjGr3u2QV8uKx4VBoFJ6Cvnv3nlh/D hYT9H2aIXA1sdIrg+pzaB6FzGHQ01/mfRCy4AGjZMDNsSkTkyG7MXd56+GxVjC78 9haubu/PfYrVJMMBpA7hGrbV8YIUjZjAqOkZAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU1eAS7+hUU41CTNzjdXn/5f+4mfkwHwYDVR0jBBgwFoAUkIQDi2b0UmxBx2aN FCjNIrM/vngwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjI5 Mi9rSVFEaTJiMFVteEJ4MmFORkNqTklyTV92bmcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tJUURpMmIwVW14QngyYU5GQ2pOSXJNX3ZuZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIyOTIvMWVBUzctaFVVNDFD VE56amRYbl81Zi00bWZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHOuSjANBgkqhkiG9w0BAQsFAAOCAQEASyDGGG65N2Y0x6TcYlqDV7kbeQ81 ypHOJ2Ot69Ljsq7P+HlAgY5ayABKzxyHYNxHf+rHdF5PzdIrbB1vUjujA3OYYCI3 KJiHNwWzbIsktHvVJ/iDEYu89wap7tZaSZtwcPdCGa05GLDORTS/pG5nROdaptID idtjhFwb89egLbi42x+zhTu7Baou6UBS5RgmkbpKOxJVVgvptKTNtaM/56Gpr96q 1C5DOsnkQNrn7iQBbklZDCeOumtEqCKXGPOqieg42BmSKjpiRnv7/fVP5BuJWnAw D4xlfz8q1G3U5O1JyEn4krtt6jSKtmbkCLs9NIIrQ0Cu7ap1BhttjW8OKA== -----END CERTIFICATE-----Generated at Fri Nov 22 09:32:43 2024 by rpki-client on console-fra.rpki-client.org