$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2742/nS3XTb_kaBIm_IHiQlLu3AG8XM0.roa File: nS3XTb_kaBIm_IHiQlLu3AG8XM0.roa (raw, json) Hash identifier: 1Hije3eS0Oir6gJLgyDq4B6MFi4Bdv1Wi+6JbgHp5LY= Subject key identifier: 9D:2D:D7:4D:BF:E4:68:12:26:FC:81:E2:42:52:EE:DC:01:BC:5C:CD Certificate issuer: /CN=D6DD0B467EE8D75B15146628C991AC3140558F94 Certificate serial: 1575 Authority key identifier: D6:DD:0B:46:7E:E8:D7:5B:15:14:66:28:C9:91:AC:31:40:55:8F:94 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/nS3XTb_kaBIm_IHiQlLu3AG8XM0.roa Signing time: Wed 13 Mar 2024 01:22:40 +0000 ROA not before: Wed 13 Mar 2024 01:22:40 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 56005 IP address blocks: 103.22.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5493 (0x1575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6DD0B467EE8D75B15146628C991AC3140558F94 Validity Not Before: Mar 13 01:22:40 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=9D2DD74DBFE4681226FC81E24252EEDC01BC5CCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:6a:6c:21:db:b0:2a:9a:ba:37:f6:2f:47: 40:19:7e:8b:ef:8e:85:e5:e6:50:66:22:49:40:90: 08:7a:b9:18:e4:e6:01:87:af:6a:28:0c:5d:e0:1f: 55:fb:2a:d3:2c:ee:9e:89:85:f7:1c:ae:b9:b8:e4: 60:fb:7f:6f:09:82:6c:c3:24:ea:b0:aa:17:af:71: 95:d4:19:f3:89:2b:9c:4a:be:02:17:9e:cc:97:ce: ea:87:13:bc:93:0a:7f:c8:80:05:f9:a8:be:f8:03: 67:6d:1b:14:ae:d4:e5:fc:68:69:59:2e:ce:e1:4d: 23:0c:06:2e:2e:58:55:7c:3e:10:e9:c6:db:ee:1f: 94:af:8f:67:9c:d7:9f:07:f0:90:bd:95:4c:f8:47: 51:76:65:f7:02:f1:43:7b:7f:df:ad:53:c8:a7:7b: da:d2:ed:7c:f5:24:50:8b:05:fd:fe:fe:c2:52:f9: 01:73:58:40:32:28:15:4a:8c:08:e7:90:7a:6c:83: e6:f0:13:9d:ba:8f:cb:f9:04:0e:33:0f:27:c5:e6: bb:af:31:b6:95:ee:ed:70:7b:ed:bd:ea:07:ef:21: e2:f4:8b:19:86:97:f8:0a:db:e1:d8:44:b6:56:0c: 84:07:df:0f:9a:d2:4c:57:76:95:06:4f:3c:c6:ec: 48:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2D:D7:4D:BF:E4:68:12:26:FC:81:E2:42:52:EE:DC:01:BC:5C:CD X509v3 Authority Key Identifier: keyid:D6:DD:0B:46:7E:E8:D7:5B:15:14:66:28:C9:91:AC:31:40:55:8F:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/nS3XTb_kaBIm_IHiQlLu3AG8XM0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.22.188.0/24 Signature Algorithm: sha256WithRSAEncryption d4:b6:fe:c1:dc:90:65:1a:aa:fc:04:5e:66:5b:83:66:f1:3f: 17:02:be:c4:0d:9d:e6:21:35:e9:38:2d:0c:c9:65:31:8e:d0: 88:0f:98:31:40:e7:10:71:38:10:9f:39:95:b5:0d:68:99:2d: c0:bf:e0:02:f8:37:7c:9f:48:d8:39:b7:32:72:33:07:6a:8e: ae:d2:dd:4a:7c:65:e8:1c:aa:2c:21:f1:b1:a9:76:4b:40:23: 46:c6:13:c5:9f:86:c7:ca:bb:0c:3e:10:19:a4:46:9a:5c:90: 47:cb:db:ff:19:f5:1d:d3:09:d6:91:f2:18:a6:75:64:2e:19: bb:27:0f:be:0e:fd:a6:af:e2:36:13:31:cd:2e:42:9e:b4:58: bd:d1:91:00:3d:e6:d6:02:c9:92:45:e7:42:19:cb:b2:58:ae: c8:d9:45:10:02:91:61:7b:ec:4e:50:e0:4e:74:79:9b:c0:4d: 8c:46:d3:a4:e3:30:57:30:4e:c3:ea:c9:6b:ce:bb:58:57:e7: 05:2d:22:e5:dc:67:c3:6c:6c:b2:28:a8:0c:93:b1:36:b5:f3: a9:07:b4:04:2d:1a:ba:36:a8:3d:29:e4:cc:c0:fb:72:d4:4e: ba:ec:55:cb:7b:60:af:4b:dc:06:13:34:56:32:1f:f0:c6:22: 7d:2f:f0:7a -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDZE RDBCNDY3RUU4RDc1QjE1MTQ2NjI4Qzk5MUFDMzE0MDU1OEY5NDAeFw0yNDAzMTMw MTIyNDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDlEMkRENzREQkZFNDY4 MTIyNkZDODFFMjQyNTJFRURDMDFCQzVDQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCempsIduwKpq6N/YvR0AZfovvjoXl5lBmIklAkAh6uRjk5gGH r2ooDF3gH1X7KtMs7p6Jhfccrrm45GD7f28JgmzDJOqwqhevcZXUGfOJK5xKvgIX nsyXzuqHE7yTCn/IgAX5qL74A2dtGxSu1OX8aGlZLs7hTSMMBi4uWFV8PhDpxtvu H5Svj2ec158H8JC9lUz4R1F2ZfcC8UN7f9+tU8ine9rS7Xz1JFCLBf3+/sJS+QFz WEAyKBVKjAjnkHpsg+bwE526j8v5BA4zDyfF5ruvMbaV7u1we+296gfvIeL0ixmG l/gK2+HYRLZWDIQH3w+a0kxXdpUGTzzG7EijAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUnS3XTb/kaBIm/IHiQlLu3AG8XM0wHwYDVR0jBBgwFoAU1t0LRn7o11sVFGYo yZGsMUBVj5QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 Mi8xdDBMUm43bzExc1ZGR1lveVpHc01VQlZqNVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzF0MExSbjdvMTFzVkZHWW95WkdzTVVCVmo1US5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDIvblMzWFRiX2thQklt X0lIaVFsTHUzQUc4WE0wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcWvDANBgkqhkiG9w0BAQsFAAOCAQEA1Lb+wdyQZRqq/AReZluDZvE/FwK+ xA2d5iE16TgtDMllMY7QiA+YMUDnEHE4EJ85lbUNaJktwL/gAvg3fJ9I2Dm3MnIz B2qOrtLdSnxl6ByqLCHxsal2S0AjRsYTxZ+Gx8q7DD4QGaRGmlyQR8vb/xn1HdMJ 1pHyGKZ1ZC4ZuycPvg79pq/iNhMxzS5CnrRYvdGRAD3m1gLJkkXnQhnLsliuyNlF EAKRYXvsTlDgTnR5m8BNjEbTpOMwVzBOw+rJa867WFfnBS0i5dxnw2xssiioDJOx NrXzqQe0BC0aujaoPSnkzMD7ctROuuxVy3tgr0vcBhM0VjIf8MYifS/weg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org