$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/E-GuEQ2nl9BDt4HSs9IGy-irfaM.roa File: E-GuEQ2nl9BDt4HSs9IGy-irfaM.roa (raw, json) Hash identifier: 4xpdUMK6u8CCYrZMPQwIAZ/4cVl6aW8KRZNrJmyfROM= Subject key identifier: 13:E1:AE:11:0D:A7:97:D0:43:B7:81:D2:B3:D2:06:CB:E8:AB:7D:A3 Certificate issuer: /CN=1817D1D97E8A11B6D73F1C165EEAAE97483DFDE9 Certificate serial: 0D2F Authority key identifier: 18:17:D1:D9:7E:8A:11:B6:D7:3F:1C:16:5E:EA:AE:97:48:3D:FD:E9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GBfR2X6KEbbXPxwWXuqul0g9_ek.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/E-GuEQ2nl9BDt4HSs9IGy-irfaM.roa Signing time: Sat 03 Feb 2024 02:50:00 +0000 ROA not before: Sat 03 Feb 2024 02:50:00 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 41717 IP address blocks: 103.99.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/GBfR2X6KEbbXPxwWXuqul0g9_ek.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/GBfR2X6KEbbXPxwWXuqul0g9_ek.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GBfR2X6KEbbXPxwWXuqul0g9_ek.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1817D1D97E8A11B6D73F1C165EEAAE97483DFDE9 Validity Not Before: Feb 3 02:50:00 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=13E1AE110DA797D043B781D2B3D206CBE8AB7DA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f0:cc:15:41:d7:e4:a4:8d:13:a9:05:c4:c1: 52:d2:9b:d5:23:56:ee:23:8e:65:80:98:7c:b7:9d: 4a:1c:d8:ae:86:a5:07:0c:82:36:5e:98:a4:6b:90: b9:78:af:10:ec:93:7d:eb:2e:1d:cc:b9:c1:9b:b8: bd:61:14:2b:b0:18:4d:6c:58:dc:60:05:c2:a2:e7: 68:15:ec:ad:b8:bf:9f:46:54:12:e2:80:ce:6b:42: 8e:21:1b:a7:24:73:f0:0a:d0:1b:db:fe:fd:05:27: d1:7f:66:c3:db:e2:a4:b2:6f:c5:ab:1c:44:c4:41: 18:35:56:1e:55:eb:f4:f2:cb:ef:d8:d9:87:bc:06: e8:07:5f:f1:51:1b:95:fa:ec:77:85:0e:e9:53:cb: 05:62:68:e7:b2:7c:4e:fe:c7:d7:9d:70:11:a9:49: 49:94:f8:cb:55:eb:fa:67:3b:3b:20:2a:f3:eb:3d: 10:27:45:cf:ab:97:68:a0:6c:72:cc:cd:56:c5:cb: 47:a4:ee:00:a8:49:13:ba:06:46:ac:20:d7:93:ec: 6d:f4:bd:11:5d:4f:64:f1:93:ce:e8:f5:e9:54:ff: bc:3c:a7:80:93:d5:67:56:54:3f:78:4b:f1:1b:fa: 0d:af:5d:57:79:05:ab:03:cb:98:81:27:8a:24:a1: 48:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E1:AE:11:0D:A7:97:D0:43:B7:81:D2:B3:D2:06:CB:E8:AB:7D:A3 X509v3 Authority Key Identifier: keyid:18:17:D1:D9:7E:8A:11:B6:D7:3F:1C:16:5E:EA:AE:97:48:3D:FD:E9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/GBfR2X6KEbbXPxwWXuqul0g9_ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GBfR2X6KEbbXPxwWXuqul0g9_ek.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/E-GuEQ2nl9BDt4HSs9IGy-irfaM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.76.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:42:36:d5:2e:b2:6d:4c:46:0b:d1:50:18:63:7e:e7:08:3d: c2:68:13:8f:bb:1f:62:b7:53:2e:07:01:ae:70:73:11:33:80: d6:12:82:dd:b9:8f:8f:69:68:d8:e8:74:a9:d3:f5:4d:be:43: fd:05:c3:c7:23:67:82:c0:48:c9:5a:14:ce:ad:21:0d:ad:56: 02:ca:0b:06:94:2b:b7:38:89:f2:56:93:9c:13:79:a3:34:d1: 1e:22:da:23:36:5f:46:a4:22:96:b0:90:87:e5:e9:dc:69:8a: a5:87:be:3e:f8:8b:28:dc:7d:08:7b:a6:97:ec:84:e9:cd:86: ab:d1:44:9e:32:ea:25:86:10:40:b5:58:ae:e4:be:a9:1d:50: 02:37:79:46:49:19:6e:3e:eb:33:58:ac:74:bd:a7:5c:e3:d0: 69:a5:ac:2c:9b:bb:ab:c6:5b:f4:84:e5:34:e6:68:94:9b:ed: 06:16:f4:48:cd:50:39:45:03:5c:c7:56:0d:0b:65:86:6c:b9: cb:4e:99:54:77:01:c0:34:1f:43:92:00:af:7e:77:b9:b1:6f: f7:8b:fd:23:29:e5:55:22:83:55:5d:ab:5d:96:e7:98:dc:fa: 7e:ce:55:72:01:b1:51:fb:21:c2:25:6a:ef:db:2b:d0:57:0e: aa:3b:85:26 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTgx N0QxRDk3RThBMTFCNkQ3M0YxQzE2NUVFQUFFOTc0ODNERkRFOTAeFw0yNDAyMDMw MjUwMDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDEzRTFBRTExMERBNzk3 RDA0M0I3ODFEMkIzRDIwNkNCRThBQjdEQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC38MwVQdfkpI0TqQXEwVLSm9UjVu4jjmWAmHy3nUoc2K6GpQcM gjZemKRrkLl4rxDsk33rLh3MucGbuL1hFCuwGE1sWNxgBcKi52gV7K24v59GVBLi gM5rQo4hG6ckc/AK0Bvb/v0FJ9F/ZsPb4qSyb8WrHETEQRg1Vh5V6/Tyy+/Y2Ye8 BugHX/FRG5X67HeFDulTywViaOeyfE7+x9edcBGpSUmU+MtV6/pnOzsgKvPrPRAn Rc+rl2igbHLMzVbFy0ek7gCoSRO6BkasINeT7G30vRFdT2Txk87o9elU/7w8p4CT 1WdWVD94S/Eb+g2vXVd5BasDy5iBJ4okoUjvAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUE+GuEQ2nl9BDt4HSs9IGy+irfaMwHwYDVR0jBBgwFoAUGBfR2X6KEbbXPxwW Xuqul0g9/ekwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU3 OC9HQmZSMlg2S0ViYlhQeHdXWHVxdWwwZzlfZWsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0dCZlIyWDZLRWJiWFB4d1dYdXF1bDBnOV9lay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1NzgvRS1HdUVRMm5sOUJE dDRIU3M5SUd5LWlyZmFNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdjTDANBgkqhkiG9w0BAQsFAAOCAQEAnkI21S6ybUxGC9FQGGN+5wg9wmgT j7sfYrdTLgcBrnBzETOA1hKC3bmPj2lo2Oh0qdP1Tb5D/QXDxyNngsBIyVoUzq0h Da1WAsoLBpQrtziJ8laTnBN5ozTRHiLaIzZfRqQilrCQh+Xp3GmKpYe+PviLKNx9 CHuml+yE6c2Gq9FEnjLqJYYQQLVYruS+qR1QAjd5RkkZbj7rM1isdL2nXOPQaaWs LJu7q8Zb9ITlNOZolJvtBhb0SM1QOUUDXMdWDQtlhmy5y06ZVHcBwDQfQ5IAr353 ubFv94v9IynlVSKDVV2rXZbnmNz6fs5VcgGxUfshwiVq79sr0FcOqjuFJg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:42:21 2024 by rpki-client on console-ams.rpki-client.org