$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2739/pliSBYripMQbPQzowsHz-PBjGgY.roa File: pliSBYripMQbPQzowsHz-PBjGgY.roa (raw, json) Hash identifier: tPPIsGERCoDY2fwpkEA6Z08tYaDTAGwF5EeCMdq0kW0= Subject key identifier: A6:58:92:05:8A:E2:A4:C4:1B:3D:0C:E8:C2:C1:F3:F8:F0:63:1A:06 Certificate issuer: /CN=65DA61BDCA2CC0F8CA95D24D3942BC087D8C92A6 Certificate serial: 1595 Authority key identifier: 65:DA:61:BD:CA:2C:C0:F8:CA:95:D2:4D:39:42:BC:08:7D:8C:92:A6 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZdphvcoswPjKldJNOUK8CH2MkqY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/pliSBYripMQbPQzowsHz-PBjGgY.roa Signing time: Wed 13 Mar 2024 01:22:04 +0000 ROA not before: Wed 13 Mar 2024 01:22:04 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 137797 IP address blocks: 103.116.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/ZdphvcoswPjKldJNOUK8CH2MkqY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/ZdphvcoswPjKldJNOUK8CH2MkqY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZdphvcoswPjKldJNOUK8CH2MkqY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5525 (0x1595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DA61BDCA2CC0F8CA95D24D3942BC087D8C92A6 Validity Not Before: Mar 13 01:22:04 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=A65892058AE2A4C41B3D0CE8C2C1F3F8F0631A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a7:52:cd:5e:22:05:09:93:b7:e2:ff:65:e7: d7:db:0c:d8:b6:6b:0a:dd:a6:35:1e:35:2b:0e:d0: e0:6c:d3:f1:f8:3b:84:4d:27:de:6c:fc:1f:25:f5: cc:1f:ed:64:da:ea:66:1b:3a:23:cb:79:33:a6:18: 14:25:af:fd:8e:72:1a:38:43:99:89:f7:b4:3e:44: 0c:bc:a2:bb:11:c6:44:8d:69:cd:b2:42:32:d0:3e: 46:5a:f9:0c:67:05:6b:b8:d0:8b:d0:79:b4:3e:95: 4f:6e:8d:67:42:15:33:8a:61:33:5b:43:34:28:ce: f2:6a:b9:87:f6:c4:d9:eb:05:41:c3:9f:2e:61:93: 9b:00:a1:17:f1:46:09:d9:e3:31:64:dc:13:b7:06: ee:2d:72:cb:88:75:cd:e2:0b:3d:74:da:07:0b:7f: ef:47:90:85:22:ec:36:8b:89:d8:48:ab:06:62:b5: 3a:18:e3:30:f8:85:17:71:81:c8:62:74:83:7d:4e: 15:cf:6a:8e:3c:af:0a:e6:a4:05:0c:4a:95:5a:59: 98:88:72:0a:bc:6b:9c:6e:05:e4:25:82:ce:da:31: c7:59:da:e5:4d:34:06:0a:b4:1b:6c:a1:52:85:11: f8:37:31:e1:f3:08:2e:59:4f:56:78:75:00:fa:dc: 50:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:58:92:05:8A:E2:A4:C4:1B:3D:0C:E8:C2:C1:F3:F8:F0:63:1A:06 X509v3 Authority Key Identifier: keyid:65:DA:61:BD:CA:2C:C0:F8:CA:95:D2:4D:39:42:BC:08:7D:8C:92:A6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/ZdphvcoswPjKldJNOUK8CH2MkqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZdphvcoswPjKldJNOUK8CH2MkqY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/pliSBYripMQbPQzowsHz-PBjGgY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.120.0/24 Signature Algorithm: sha256WithRSAEncryption 58:0e:39:dc:08:af:6c:97:28:25:3b:8b:93:45:ca:a3:0a:27: ba:b1:5e:99:2f:ca:1d:f8:ae:a1:19:03:11:6e:0c:66:94:21: b1:77:7e:63:e6:39:e6:1f:48:32:fa:6c:3d:83:9a:a1:c7:74: 9a:2e:de:24:f2:c2:58:49:db:ac:8e:8a:8b:c7:de:dc:d0:da: 13:72:98:1f:72:e0:ae:4b:36:d8:73:3d:b8:56:1f:f4:9d:c9: fa:9e:a9:0a:11:1b:e2:3d:e7:ee:07:8a:4b:61:c4:b1:7e:a9: 42:06:84:37:4e:a8:ff:ab:1a:55:4f:0c:67:63:fc:1a:23:2d: b0:b4:7d:7a:8e:49:8f:3a:d7:5f:f2:1c:1d:33:98:3a:e0:38: ed:03:2f:a8:8c:23:96:b3:fe:87:39:b6:7d:23:98:b5:87:9b: ad:e4:cd:6e:76:12:5c:14:9e:19:0b:c2:8f:22:4f:4d:a4:0e: 93:c7:67:63:32:a6:04:94:94:3f:d5:6e:ca:22:14:21:85:6a: 7e:f7:80:31:9d:d0:1b:2d:47:a4:87:45:eb:aa:0b:0a:0c:de: ee:ff:93:bc:e1:89:d3:a2:e8:a5:6c:fe:8e:bf:e7:22:2c:93: d0:ae:ff:0f:5a:c6:01:ac:1c:2f:4c:60:d2:d7:a8:ff:e7:a8: 32:b3:2c:ed -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjVE QTYxQkRDQTJDQzBGOENBOTVEMjREMzk0MkJDMDg3RDhDOTJBNjAeFw0yNDAzMTMw MTIyMDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEE2NTg5MjA1OEFFMkE0 QzQxQjNEMENFOEMyQzFGM0Y4RjA2MzFBMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZp1LNXiIFCZO34v9l59fbDNi2awrdpjUeNSsO0OBs0/H4O4RN J95s/B8l9cwf7WTa6mYbOiPLeTOmGBQlr/2Ocho4Q5mJ97Q+RAy8orsRxkSNac2y QjLQPkZa+QxnBWu40IvQebQ+lU9ujWdCFTOKYTNbQzQozvJquYf2xNnrBUHDny5h k5sAoRfxRgnZ4zFk3BO3Bu4tcsuIdc3iCz102gcLf+9HkIUi7DaLidhIqwZitToY 4zD4hRdxgchidIN9ThXPao48rwrmpAUMSpVaWZiIcgq8a5xuBeQlgs7aMcdZ2uVN NAYKtBtsoVKFEfg3MeHzCC5ZT1Z4dQD63FCnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUpliSBYripMQbPQzowsHz+PBjGgYwHwYDVR0jBBgwFoAUZdphvcoswPjKldJN OUK8CH2MkqYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcz OS9aZHBodmNvc3dQaktsZEpOT1VLOENIMk1rcVkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1pkcGh2Y29zd1BqS2xkSk5PVUs4Q0gyTWtxWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MzkvcGxpU0JZcmlwTVFi UFF6b3dzSHotUEJqR2dZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGd0eDANBgkqhkiG9w0BAQsFAAOCAQEAWA453AivbJcoJTuLk0XKowonurFe mS/KHfiuoRkDEW4MZpQhsXd+Y+Y55h9IMvpsPYOaocd0mi7eJPLCWEnbrI6Ki8fe 3NDaE3KYH3Lgrks22HM9uFYf9J3J+p6pChEb4j3n7geKS2HEsX6pQgaEN06o/6sa VU8MZ2P8GiMtsLR9eo5JjzrXX/IcHTOYOuA47QMvqIwjlrP+hzm2fSOYtYebreTN bnYSXBSeGQvCjyJPTaQOk8dnYzKmBJSUP9VuyiIUIYVqfveAMZ3QGy1HpIdF66oL Cgze7v+TvOGJ06LopWz+jr/nIiyT0K7/D1rGAawcL0xg0teo/+eoMrMs7Q== -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org