$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2309/P7yG7EH_lru5WZOmH05-MybVOeI.roa File: P7yG7EH_lru5WZOmH05-MybVOeI.roa (raw, json) Hash identifier: Ex1GOcmqwC8VhMygwQSDIdTq8VDfD/xVpG/AMDcqfxM= Subject key identifier: 3F:BC:86:EC:41:FF:96:BB:B9:59:93:A6:1F:4E:7E:33:26:D5:39:E2 Certificate issuer: /CN=060C00BF17A55FDB85CAF4578BE833056E028B43 Certificate serial: 11EE Authority key identifier: 06:0C:00:BF:17:A5:5F:DB:85:CA:F4:57:8B:E8:33:05:6E:02:8B:43 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/P7yG7EH_lru5WZOmH05-MybVOeI.roa Signing time: Thu 14 Nov 2024 08:20:03 +0000 ROA not before: Thu 14 Nov 2024 08:20:03 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 62387 IP address blocks: 103.83.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BgwAvxelX9uFyvRXi-gzBW4Ci0M.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BgwAvxelX9uFyvRXi-gzBW4Ci0M.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4590 (0x11ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=060C00BF17A55FDB85CAF4578BE833056E028B43 Validity Not Before: Nov 14 08:20:03 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=3FBC86EC41FF96BBB95993A61F4E7E3326D539E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:63:d2:67:2b:5b:51:ba:ac:b3:eb:c2:93: 30:db:a6:49:64:ea:73:27:79:27:07:b1:4c:21:50: 8e:fa:c2:12:a4:bb:ef:95:59:2e:bd:95:53:fe:73: bc:8d:2a:8a:72:15:d4:ac:db:48:4d:e2:d0:00:ef: 53:a8:e7:c2:02:38:b7:fc:df:18:cb:fa:1c:d0:50: 9b:4e:a0:8f:a2:79:4e:9e:b9:ca:73:49:a8:60:ac: 63:39:e5:76:9c:de:61:02:da:2f:af:3b:2f:e8:35: 1d:64:51:d6:6c:80:24:42:60:c9:f8:d1:86:61:7d: bd:40:52:12:b1:00:90:b5:ab:36:1f:8b:94:af:aa: 1f:f8:e6:b6:ac:45:ec:7b:e4:7e:8e:2f:b9:47:f9: ed:b8:85:0f:59:56:f5:bf:38:01:9f:36:5a:29:23: 3c:93:78:e6:af:2b:3a:3c:da:f3:15:46:14:df:ed: 92:f1:a2:95:1f:fc:e9:30:f5:90:b0:b3:9a:54:25: b4:80:f5:b2:e5:58:e6:17:f9:8e:90:c8:1f:1b:b8: a3:f5:5c:39:4d:03:b0:dc:81:3a:66:7c:66:fc:13: 3a:4c:ca:dc:79:8e:b6:70:75:23:40:cd:22:70:54: 7b:7c:6a:11:a2:39:3f:eb:74:b7:c1:5b:49:68:1b: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BC:86:EC:41:FF:96:BB:B9:59:93:A6:1F:4E:7E:33:26:D5:39:E2 X509v3 Authority Key Identifier: keyid:06:0C:00:BF:17:A5:5F:DB:85:CA:F4:57:8B:E8:33:05:6E:02:8B:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BgwAvxelX9uFyvRXi-gzBW4Ci0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/P7yG7EH_lru5WZOmH05-MybVOeI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.83.180.0/22 Signature Algorithm: sha256WithRSAEncryption 52:1c:d1:42:3a:3c:f1:5a:d0:09:a7:35:13:fb:06:15:61:56: 39:3e:56:43:92:a4:1e:04:8d:94:5e:62:f5:b8:97:70:4b:c8: 51:ab:19:ba:77:c6:f5:b3:85:c0:29:60:a3:c7:e3:9d:7b:04: 74:dd:f4:63:48:de:4a:51:40:74:b5:de:1e:0a:5d:15:0c:8c: c5:b0:fc:6e:5e:6f:81:4f:f3:57:4d:6b:75:6d:76:65:d2:f8: ab:52:26:0b:72:71:53:3f:af:d3:57:17:56:3c:89:78:70:09: e7:70:f8:00:5b:59:7e:bc:ef:f7:aa:e7:05:8a:2a:35:76:0e: 97:90:1c:84:1e:18:6e:91:89:5e:62:f7:a8:9a:eb:aa:bc:96: ba:8f:48:f9:6d:bb:4f:e3:43:2d:cf:28:97:66:f0:48:a5:8e: 3a:c1:3e:25:0e:ca:de:51:db:50:03:c5:4f:a6:eb:48:6d:5d: 78:4c:f1:9c:7a:31:fb:20:42:07:4d:85:a4:09:48:ac:d2:5e: 23:95:e8:b2:3f:a7:fd:26:3c:53:f8:75:f5:a1:9f:ff:e8:3e: 66:c4:87:40:2c:30:3b:2b:d2:6f:2c:54:91:f5:aa:8f:55:4f: f1:c7:c1:fa:0d:1b:05:48:a0:3b:41:27:66:0c:47:80:3e:0c: 8c:c4:9d:22 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDYw QzAwQkYxN0E1NUZEQjg1Q0FGNDU3OEJFODMzMDU2RTAyOEI0MzAeFw0yNDExMTQw ODIwMDNaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDNGQkM4NkVDNDFGRjk2 QkJCOTU5OTNBNjFGNEU3RTMzMjZENTM5RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDu2PSZytbUbqss+vCkzDbpklk6nMneScHsUwhUI76whKku++V WS69lVP+c7yNKopyFdSs20hN4tAA71Oo58ICOLf83xjL+hzQUJtOoI+ieU6eucpz SahgrGM55Xac3mEC2i+vOy/oNR1kUdZsgCRCYMn40YZhfb1AUhKxAJC1qzYfi5Sv qh/45rasRex75H6OL7lH+e24hQ9ZVvW/OAGfNlopIzyTeOavKzo82vMVRhTf7ZLx opUf/Okw9ZCws5pUJbSA9bLlWOYX+Y6QyB8buKP1XDlNA7DcgTpmfGb8EzpMytx5 jrZwdSNAzSJwVHt8ahGiOT/rdLfBW0loGwfxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUP7yG7EH/lru5WZOmH05+MybVOeIwHwYDVR0jBBgwFoAUBgwAvxelX9uFyvRX i+gzBW4Ci0MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjMw OS9CZ3dBdnhlbFg5dUZ5dlJYaS1nekJXNENpME0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0Jnd0F2eGVsWDl1Rnl2UlhpLWd6Qlc0Q2kwTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIzMDkvUDd5RzdFSF9scnU1 V1pPbUgwNS1NeWJWT2VJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdTtDANBgkqhkiG9w0BAQsFAAOCAQEAUhzRQjo88VrQCac1E/sGFWFWOT5W Q5KkHgSNlF5i9biXcEvIUasZunfG9bOFwClgo8fjnXsEdN30Y0jeSlFAdLXeHgpd FQyMxbD8bl5vgU/zV01rdW12ZdL4q1ImC3JxUz+v01cXVjyJeHAJ53D4AFtZfrzv 96rnBYoqNXYOl5AchB4YbpGJXmL3qJrrqryWuo9I+W27T+NDLc8ol2bwSKWOOsE+ JQ7K3lHbUAPFT6brSG1deEzxnHox+yBCB02FpAlIrNJeI5Xosj+n/SY8U/h19aGf /+g+ZsSHQCwwOyvSbyxUkfWqj1VP8cfB+g0bBUigO0EnZgxHgD4MjMSdIg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:09 2024 by rpki-client on console-fra.rpki-client.org