$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2722/mpcN_c00_qcsygTKHEC579o4zp8.roa File: mpcN_c00_qcsygTKHEC579o4zp8.roa (raw, json) Hash identifier: YxIOIUqSTWFY0MNHe+CnkncD1TPvhkuAiiSonl6C1Ag= Subject key identifier: 9A:97:0D:FD:CD:34:FE:A7:2C:CA:04:CA:1C:40:B9:EF:DA:38:CE:9F Certificate issuer: /CN=75637BADD837B67150E80F9C8E2F0C5AE551B791 Certificate serial: 15DB Authority key identifier: 75:63:7B:AD:D8:37:B6:71:50:E8:0F:9C:8E:2F:0C:5A:E5:51:B7:91 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dWN7rdg3tnFQ6A-cji8MWuVRt5E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2722/mpcN_c00_qcsygTKHEC579o4zp8.roa Signing time: Wed 13 Mar 2024 01:24:01 +0000 ROA not before: Wed 13 Mar 2024 01:24:01 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 137806 IP address blocks: 103.114.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2722/dWN7rdg3tnFQ6A-cji8MWuVRt5E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2722/dWN7rdg3tnFQ6A-cji8MWuVRt5E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dWN7rdg3tnFQ6A-cji8MWuVRt5E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5595 (0x15db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75637BADD837B67150E80F9C8E2F0C5AE551B791 Validity Not Before: Mar 13 01:24:01 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=9A970DFDCD34FEA72CCA04CA1C40B9EFDA38CE9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f0:1d:80:f4:54:a7:c6:eb:4f:29:33:72:9c: 49:1a:37:8c:03:cb:0d:7b:ef:cc:59:28:35:48:31: 97:07:fc:26:87:81:66:70:8c:d7:46:62:3c:b0:c8: c7:dc:db:c4:85:12:a8:7b:2b:06:58:4f:91:c2:4d: d4:65:a2:47:29:0c:2b:94:c5:a5:a6:0c:a1:0c:e7: 2e:b6:7d:da:07:af:4a:1b:4a:30:c6:1b:fd:92:c0: 76:ae:d8:0c:0a:0c:40:f4:81:02:ea:fd:73:e5:ce: 04:21:2f:66:f5:68:a0:08:e6:e4:9b:51:89:db:de: ad:c1:de:c8:42:18:ef:fb:4f:32:e6:65:85:e6:11: 02:eb:94:8e:bd:e4:17:cc:ec:86:f3:ec:d0:35:c4: 38:7c:62:59:71:8d:28:ce:46:f6:67:78:fc:97:60: 07:9d:77:b8:e7:4d:4d:01:6e:a7:e0:6a:84:4c:f1: 62:af:1c:6f:c5:22:86:b5:44:f2:1b:14:7b:b9:c7: 5d:f7:67:04:de:a8:e5:6a:40:b2:ec:18:24:d5:a1: 74:35:e9:b7:b5:04:ca:ee:f9:98:df:df:50:66:69: eb:da:8b:15:50:d8:a3:69:02:a0:5d:e3:6d:d7:8e: 29:34:3e:d6:74:dc:19:9e:38:fe:eb:bf:9e:0f:d6: d0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:97:0D:FD:CD:34:FE:A7:2C:CA:04:CA:1C:40:B9:EF:DA:38:CE:9F X509v3 Authority Key Identifier: keyid:75:63:7B:AD:D8:37:B6:71:50:E8:0F:9C:8E:2F:0C:5A:E5:51:B7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2722/dWN7rdg3tnFQ6A-cji8MWuVRt5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dWN7rdg3tnFQ6A-cji8MWuVRt5E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2722/mpcN_c00_qcsygTKHEC579o4zp8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.114.236.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:95:c1:d7:87:6e:7e:72:52:11:da:30:4d:6c:60:02:22:26: 28:fc:d6:7e:67:dc:60:fa:cb:3c:32:e4:21:98:e1:53:6e:ba: e7:06:aa:d5:f5:91:ec:eb:24:46:97:52:09:73:32:98:c9:2e: 02:0c:5d:7e:e3:33:3a:26:40:67:90:1d:c2:d9:66:78:63:60: cb:4f:dd:ee:32:f6:1d:4f:d1:c5:c8:a4:08:f5:cf:66:61:96: 61:3f:08:bc:2d:db:35:9b:4e:79:df:91:47:0c:0a:45:97:9a: b9:33:be:c2:a2:87:5e:17:1e:6a:60:cd:81:5a:60:1a:96:f3: 0a:da:df:57:95:51:ea:b2:fc:58:8d:c1:1b:f0:a7:f0:bc:64: 18:bb:c0:85:a0:46:6b:03:e8:3c:db:09:1e:d8:d5:5b:f9:c3: 6f:67:63:d6:76:03:6d:6d:ce:31:29:1c:c0:07:7e:74:68:49: 8b:e4:97:08:93:7f:53:69:cd:23:9f:f8:ee:9a:fc:69:3c:b3: df:ed:53:b9:16:e0:5f:b2:94:43:1b:4a:18:05:12:7e:6e:20: 8f:19:c3:62:3f:6a:3f:aa:b4:d3:a0:6f:01:cf:da:ec:95:3b: af:d5:25:a4:f6:5e:75:da:ad:8b:3b:20:ba:73:cf:03:57:bb: de:01:6d:0e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzU2 MzdCQUREODM3QjY3MTUwRTgwRjlDOEUyRjBDNUFFNTUxQjc5MTAeFw0yNDAzMTMw MTI0MDFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDlBOTcwREZEQ0QzNEZF QTcyQ0NBMDRDQTFDNDBCOUVGREEzOENFOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK8B2A9FSnxutPKTNynEkaN4wDyw1778xZKDVIMZcH/CaHgWZw jNdGYjywyMfc28SFEqh7KwZYT5HCTdRlokcpDCuUxaWmDKEM5y62fdoHr0obSjDG G/2SwHau2AwKDED0gQLq/XPlzgQhL2b1aKAI5uSbUYnb3q3B3shCGO/7TzLmZYXm EQLrlI695BfM7Ibz7NA1xDh8YllxjSjORvZnePyXYAedd7jnTU0BbqfgaoRM8WKv HG/FIoa1RPIbFHu5x133ZwTeqOVqQLLsGCTVoXQ16be1BMru+Zjf31BmaevaixVQ 2KNpAqBd423Xjik0PtZ03BmeOP7rv54P1tCVAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUmpcN/c00/qcsygTKHEC579o4zp8wHwYDVR0jBBgwFoAUdWN7rdg3tnFQ6A+c ji8MWuVRt5EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcy Mi9kV043cmRnM3RuRlE2QS1jamk4TVd1VlJ0NUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2RXTjdyZGczdG5GUTZBLWNqaThNV3VWUnQ1RS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MjIvbXBjTl9jMDBfcWNz eWdUS0hFQzU3OW80enA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdy7DANBgkqhkiG9w0BAQsFAAOCAQEAjpXB14dufnJSEdowTWxgAiImKPzW fmfcYPrLPDLkIZjhU2665waq1fWR7OskRpdSCXMymMkuAgxdfuMzOiZAZ5Adwtlm eGNgy0/d7jL2HU/RxcikCPXPZmGWYT8IvC3bNZtOed+RRwwKRZeauTO+wqKHXhce amDNgVpgGpbzCtrfV5VR6rL8WI3BG/Cn8LxkGLvAhaBGawPoPNsJHtjVW/nDb2dj 1nYDbW3OMSkcwAd+dGhJi+SXCJN/U2nNI5/47pr8aTyz3+1TuRbgX7KUQxtKGAUS fm4gjxnDYj9qP6q006BvAc/a7JU7r9UlpPZeddqtizsgunPPA1e73gFtDg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:10 2024 by rpki-client on console-fra.rpki-client.org