$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2738/P_zn1bBIrBUhyvji1gbHOKtVhNc.roa File: P_zn1bBIrBUhyvji1gbHOKtVhNc.roa (raw, json) Hash identifier: R5ICvkhVFgRwlrgIYz/MhUorH6qql94PSSGMt2HSZGg= Subject key identifier: 3F:FC:E7:D5:B0:48:AC:15:21:CA:F8:E2:D6:06:C7:38:AB:55:84:D7 Certificate issuer: /CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Certificate serial: 0CA6 Authority key identifier: 8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/P_zn1bBIrBUhyvji1gbHOKtVhNc.roa Signing time: Wed 13 Mar 2024 01:22:08 +0000 ROA not before: Wed 13 Mar 2024 01:22:08 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 137798 IP address blocks: 103.116.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Validity Not Before: Mar 13 01:22:08 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3FFCE7D5B048AC1521CAF8E2D606C738AB5584D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:82:e7:56:f1:91:e3:dc:4d:36:e4:5c:be: 6f:de:10:c5:5e:cf:f9:87:cb:b0:db:7f:0c:72:cb: 36:1a:94:ad:ea:77:ba:e1:6c:64:0a:da:97:9e:09: 4e:43:c2:9d:68:29:71:f5:95:a4:d2:c8:14:f5:e9: 7b:36:a6:69:08:f6:ee:09:3e:91:ed:62:ae:3d:8f: f4:3a:45:7e:64:93:bc:b6:92:50:dd:c0:dd:f0:66: 2e:ab:be:bb:c0:04:c8:9c:e4:c0:f5:2e:b9:93:1d: 2f:78:83:00:a4:62:32:48:8c:27:0e:71:53:89:9f: c9:2b:c5:32:5a:b0:6b:e7:31:1e:ea:f9:cf:68:ca: e7:ff:e4:4a:ce:f3:15:b9:d0:d1:a1:5b:7b:e5:dd: 96:be:f0:00:2f:a3:4a:fb:25:a5:29:eb:39:24:5e: 0f:9b:2f:57:1e:fd:a5:95:d8:d9:a9:52:d4:25:2b: 52:88:ba:73:c5:ac:9d:2b:68:6a:8a:39:b4:6e:39: f6:ce:a9:86:65:12:9e:83:81:6e:f3:95:09:7c:86: 1f:da:13:3e:15:2a:e2:cc:35:01:0c:7a:c5:ab:e9: 8d:11:7b:ad:57:74:7a:56:d7:ae:40:71:e5:49:0b: 02:90:2a:34:e1:13:bd:57:f6:0a:a7:6f:99:a6:2d: b7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FC:E7:D5:B0:48:AC:15:21:CA:F8:E2:D6:06:C7:38:AB:55:84:D7 X509v3 Authority Key Identifier: keyid:8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/P_zn1bBIrBUhyvji1gbHOKtVhNc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.92.0/24 Signature Algorithm: sha256WithRSAEncryption c9:47:1e:b2:de:7f:6d:bb:09:12:97:8e:d1:fe:4c:60:b0:55: 67:1a:8b:40:58:fc:d4:b8:a1:51:00:09:4f:38:b2:cd:28:23: b2:b4:51:9b:f8:df:12:02:7d:f5:d3:30:2a:71:1e:2b:2f:54: 17:6e:8a:3c:e1:09:81:9b:3c:0b:ed:0c:6b:a1:37:9d:d9:a8: 17:21:99:15:5d:0c:ec:7a:d8:75:27:59:5d:e2:c8:d6:1e:a6: 18:e4:4b:31:0d:75:f8:91:51:46:7f:b6:32:24:49:33:48:85: d3:18:6c:b1:c7:d6:b2:09:ad:24:c2:00:78:4b:36:77:3c:d2: d9:a2:d1:9a:06:14:f4:e7:43:21:ff:33:4e:ef:57:b7:ed:42: f1:7c:5f:b3:2a:9b:19:88:bf:95:32:59:9c:b1:f1:1a:08:18: f1:7e:b0:9d:09:d5:12:d5:2a:3b:6d:48:a4:af:b7:1c:24:16: 03:13:2f:fb:23:e7:5e:30:bf:49:e7:1f:30:27:37:73:41:7e: 3c:c0:c3:db:3c:2d:cb:b3:75:70:56:c9:4c:ce:8a:a2:ef:b4: a4:00:4f:07:e4:51:59:d4:99:53:e9:03:2a:3b:02:97:bb:4e: 73:b6:b8:b9:a1:c8:1d:f4:fb:c0:08:94:56:f6:73:9f:06:57: bd:b8:f9:b4 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEUz RTAyNzE0MkM2MzNENTY1OTg0MThERjZERUJDMDFCREQ4MDA4QzAeFw0yNDAzMTMw MTIyMDhaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNGRkNFN0Q1QjA0OEFD MTUyMUNBRjhFMkQ2MDZDNzM4QUI1NTg0RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHILnVvGR49xNNuRcvm/eEMVez/mHy7DbfwxyyzYalK3qd7rh bGQK2peeCU5Dwp1oKXH1laTSyBT16Xs2pmkI9u4JPpHtYq49j/Q6RX5kk7y2klDd wN3wZi6rvrvABMic5MD1LrmTHS94gwCkYjJIjCcOcVOJn8krxTJasGvnMR7q+c9o yuf/5ErO8xW50NGhW3vl3Za+8AAvo0r7JaUp6zkkXg+bL1ce/aWV2NmpUtQlK1KI unPFrJ0raGqKObRuOfbOqYZlEp6DgW7zlQl8hh/aEz4VKuLMNQEMesWr6Y0Re61X dHpW165AceVJCwKQKjThE71X9gqnb5mmLbejAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUP/zn1bBIrBUhyvji1gbHOKtVhNcwHwYDVR0jBBgwFoAUjj4CcULGM9VlmEGN 9t68Ab3YAIwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcz OC9qajRDY1VMR005VmxtRUdOOXQ2OEFiM1lBSXcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2pqNENjVUxHTTlWbG1FR045dDY4QWIzWUFJdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MzgvUF96bjFiQklyQlVo eXZqaTFnYkhPS3RWaE5jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGd0XDANBgkqhkiG9w0BAQsFAAOCAQEAyUcest5/bbsJEpeO0f5MYLBVZxqL QFj81LihUQAJTziyzSgjsrRRm/jfEgJ99dMwKnEeKy9UF26KPOEJgZs8C+0Ma6E3 ndmoFyGZFV0M7HrYdSdZXeLI1h6mGORLMQ11+JFRRn+2MiRJM0iF0xhsscfWsgmt JMIAeEs2dzzS2aLRmgYU9OdDIf8zTu9Xt+1C8XxfsyqbGYi/lTJZnLHxGggY8X6w nQnVEtUqO21IpK+3HCQWAxMv+yPnXjC/SecfMCc3c0F+PMDD2zwty7N1cFbJTM6K ou+0pABPB+RRWdSZU+kDKjsCl7tOc7a4uaHIHfT7wAiUVvZznwZXvbj5tA== -----END CERTIFICATE-----Generated at Sun Jun 2 12:47:01 2024 by rpki-client on console-ams.rpki-client.org