$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2292/logUXtFfJPDLAdmPfgBY-hH8HXs.roa File: logUXtFfJPDLAdmPfgBY-hH8HXs.roa (raw, json) Hash identifier: yESiK6QZQaiNnZGjeAzh3xBTo04O42ubTX56rHYGSlo= Subject key identifier: 96:88:14:5E:D1:5F:24:F0:CB:01:D9:8F:7E:00:58:FA:11:FC:1D:7B Certificate issuer: /CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Certificate serial: 06D2 Authority key identifier: 90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/logUXtFfJPDLAdmPfgBY-hH8HXs.roa Signing time: Thu 06 Jul 2023 08:24:58 +0000 ROA not before: Thu 06 Jul 2023 08:24:58 +0000 ROA not after: Fri 07 Jun 2024 02:16:11 +0000 asID: 398704 IP address blocks: 115.174.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 04:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Validity Not Before: Jul 6 08:24:58 2023 GMT Not After : Jun 7 02:16:11 2024 GMT Subject: CN=9688145ED15F24F0CB01D98F7E0058FA11FC1D7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ad:0f:98:16:84:d6:50:cc:e0:eb:a9:fe:0d: ad:03:48:2a:6a:ae:6d:d6:f2:83:4a:93:98:fe:15: 0a:a2:43:0a:17:17:ea:90:d7:af:72:80:55:18:40: 82:79:6d:57:95:99:76:f3:02:83:3d:b3:3a:af:5b: 60:3a:0c:ee:9e:a4:4e:fb:c9:4e:b5:8e:4c:a6:db: 28:5a:c6:95:f2:79:55:b6:b4:ef:a7:83:fe:00:01: 79:d5:fd:6c:8a:ee:8c:fb:b7:70:a0:4f:21:2d:bd: dd:55:87:ef:ba:cb:1e:ec:3a:83:f5:21:b1:c2:14: 8f:89:a2:f7:3b:79:c3:66:77:ef:d0:5f:0b:ec:4b: 00:b1:15:28:5a:32:6d:c1:49:79:94:5a:34:75:a9: cb:fd:26:24:98:b6:27:39:ba:12:c0:f7:d4:43:3e: 5e:78:7a:62:35:8e:9e:e1:58:66:62:f2:54:cb:66: 7e:46:5c:f0:84:3d:ec:98:e3:f0:37:ee:71:5f:69: 5f:fa:ca:dc:2a:36:fd:8e:ad:7f:11:11:33:b3:95: 06:1a:dc:9f:6f:bb:69:74:f6:cc:b0:29:35:cc:c6: 83:69:7c:e5:a2:d0:e7:3f:c3:68:69:71:a9:04:84: 9e:fc:b4:c9:3d:48:22:11:e6:c6:da:ed:0a:4b:af: 0b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:88:14:5E:D1:5F:24:F0:CB:01:D9:8F:7E:00:58:FA:11:FC:1D:7B X509v3 Authority Key Identifier: keyid:90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/logUXtFfJPDLAdmPfgBY-hH8HXs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.174.74.0/24 Signature Algorithm: sha256WithRSAEncryption b4:23:32:e2:e3:15:6f:df:30:ec:1a:74:81:c2:70:de:28:f4: ce:4b:01:53:bf:36:b8:ce:65:bf:f0:3b:17:06:31:7b:96:33: 4f:43:fd:d9:ac:a7:f6:59:98:68:42:90:a0:87:00:d1:15:9a: 37:56:16:b1:78:b5:6c:58:af:3e:76:6b:2f:2d:6f:fe:af:f4: 63:21:8c:89:47:63:f1:2c:3c:4f:0c:c0:9e:69:24:21:fd:5c: 6c:3f:59:b1:53:b3:4b:d3:22:1a:65:39:0b:e3:dd:63:06:71: 39:bd:2f:66:c2:d8:d5:b4:4e:6e:69:35:e0:e1:5c:4d:de:c1: f0:09:26:25:3e:d1:f3:5f:6c:55:96:70:98:c9:b1:44:fb:5d: 8b:60:f0:a8:e8:aa:c8:cf:39:ad:c4:83:3a:fd:fd:f9:22:68: e6:36:9b:c3:05:66:f3:53:d6:e5:9d:84:6e:c3:7e:4f:d5:f1: a6:4f:f3:bf:c9:da:c8:a5:06:fd:41:0f:85:61:ee:ae:ba:77: 2d:6c:7f:c4:ea:06:de:67:f2:e6:89:05:4a:7d:a4:7a:61:e5: af:a4:86:78:59:a4:d8:eb:39:84:5d:93:51:32:93:5f:dc:20: 2d:79:84:b2:15:2f:6e:94:69:5b:d1:8f:f9:8d:42:ad:e6:5e: a5:74:37:db -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTA4 NDAzOEI2NkY0NTI2QzQxQzc2NjhEMTQyOENEMjJCMzNGQkU3ODAeFw0yMzA3MDYw ODI0NThaFw0yNDA2MDcwMjE2MTFaMDMxMTAvBgNVBAMTKDk2ODgxNDVFRDE1RjI0 RjBDQjAxRDk4RjdFMDA1OEZBMTFGQzFEN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLrQ+YFoTWUMzg66n+Da0DSCpqrm3W8oNKk5j+FQqiQwoXF+qQ 169ygFUYQIJ5bVeVmXbzAoM9szqvW2A6DO6epE77yU61jkym2yhaxpXyeVW2tO+n g/4AAXnV/WyK7oz7t3CgTyEtvd1Vh++6yx7sOoP1IbHCFI+Jovc7ecNmd+/QXwvs SwCxFShaMm3BSXmUWjR1qcv9JiSYtic5uhLA99RDPl54emI1jp7hWGZi8lTLZn5G XPCEPeyY4/A37nFfaV/6ytwqNv2OrX8RETOzlQYa3J9vu2l09sywKTXMxoNpfOWi 0Oc/w2hpcakEhJ78tMk9SCIR5sba7QpLrwt5AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUlogUXtFfJPDLAdmPfgBY+hH8HXswHwYDVR0jBBgwFoAUkIQDi2b0UmxBx2aN FCjNIrM/vngwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjI5 Mi9rSVFEaTJiMFVteEJ4MmFORkNqTklyTV92bmcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tJUURpMmIwVW14QngyYU5GQ2pOSXJNX3ZuZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIyOTIvbG9nVVh0RmZKUERM QWRtUGZnQlktaEg4SFhzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHOuSjANBgkqhkiG9w0BAQsFAAOCAQEAtCMy4uMVb98w7Bp0gcJw3ij0zksB U782uM5lv/A7FwYxe5YzT0P92ayn9lmYaEKQoIcA0RWaN1YWsXi1bFivPnZrLy1v /q/0YyGMiUdj8Sw8TwzAnmkkIf1cbD9ZsVOzS9MiGmU5C+PdYwZxOb0vZsLY1bRO bmk14OFcTd7B8AkmJT7R819sVZZwmMmxRPtdi2DwqOiqyM85rcSDOv39+SJo5jab wwVm81PW5Z2EbsN+T9Xxpk/zv8nayKUG/UEPhWHurrp3LWx/xOoG3mfy5okFSn2k emHlr6SGeFmk2Os5hF2TUTKTX9wgLXmEshUvbpRpW9GP+Y1CreZepXQ32w== -----END CERTIFICATE-----Generated at Sun May 5 01:46:04 2024 by rpki-client on console-fra.rpki-client.org