$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2793/8K03zXUqP_1sscB7xAdXSPbJDWE.roa File: 8K03zXUqP_1sscB7xAdXSPbJDWE.roa (raw, json) Hash identifier: v9nZuOWYbRu9aY/p5sZ4SyV5/3+jxOhfmKk9fYYUoXs= Subject key identifier: F0:AD:37:CD:75:2A:3F:FD:6C:B1:C0:7B:C4:07:57:48:F6:C9:0D:61 Certificate issuer: /CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033 Certificate serial: 15C6 Authority key identifier: D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/8K03zXUqP_1sscB7xAdXSPbJDWE.roa Signing time: Wed 13 Mar 2024 01:24:10 +0000 ROA not before: Wed 13 Mar 2024 01:24:10 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 38344 IP address blocks: 103.9.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5574 (0x15c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033 Validity Not Before: Mar 13 01:24:10 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F0AD37CD752A3FFD6CB1C07BC4075748F6C90D61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:67:4a:9b:2d:05:f2:60:88:c1:9e:04:1e:8a: a5:0b:62:a0:92:4c:a6:29:4c:d6:8f:68:46:df:7a: f0:d3:d5:2c:10:37:6f:90:af:61:53:50:9a:2a:f8: e4:af:d3:fe:fd:88:db:c9:6d:62:05:37:c9:32:0e: 1d:93:bf:87:78:31:1f:13:b2:1d:4b:9e:66:89:9a: 6d:7e:70:0d:32:8b:c1:0e:17:83:11:39:3d:c5:13: ba:f8:0e:16:0d:07:45:79:86:eb:58:20:09:ba:26: 9e:6a:1e:b8:35:b1:f5:dd:cc:cc:31:9e:8d:e4:ce: 54:4e:72:fd:c7:55:59:b0:27:5b:c8:31:7d:20:9a: fc:e8:d2:54:0a:45:71:a1:c6:05:09:a5:1e:e1:c8: f6:f8:85:9e:40:7e:8a:0c:d4:aa:f4:27:ec:79:c0: e0:78:cf:a6:25:85:64:a4:d8:7a:61:05:15:35:78: 17:63:1d:f6:08:58:73:3c:c2:d3:b9:0e:67:37:5c: 09:cc:ab:a3:ee:bc:5a:20:9b:18:6c:6b:eb:62:13: ee:c4:3d:92:fd:ad:1a:23:5f:65:2b:35:15:ab:20: 93:7b:5b:85:7f:57:ae:56:65:0e:2f:01:69:5f:09: 0b:cb:5d:d1:ca:e9:9b:4c:66:12:68:67:1a:de:74: 27:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AD:37:CD:75:2A:3F:FD:6C:B1:C0:7B:C4:07:57:48:F6:C9:0D:61 X509v3 Authority Key Identifier: keyid:D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/8K03zXUqP_1sscB7xAdXSPbJDWE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.9.152.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:f8:40:9e:1f:77:13:70:90:4f:36:6d:37:d0:81:3a:7a:85: 97:15:e9:26:b8:85:bb:1b:05:06:c3:21:49:54:14:4e:3c:3e: 32:05:8a:2f:cb:a4:0f:eb:d1:fa:c4:97:b1:3b:ee:a1:c0:6d: 8d:af:76:7d:2a:61:dc:ca:eb:2a:49:d1:40:c4:4c:5d:e2:ae: 3d:95:e2:37:af:7a:cf:15:9f:ea:f2:19:a0:7a:4c:a2:7a:0d: 7a:eb:ec:bd:b6:ca:bd:9e:b6:b9:a2:c1:c8:88:ff:00:52:61: 42:ef:c2:90:9d:20:79:14:e0:66:f8:17:4c:56:55:f6:9e:21: 56:41:9e:5d:ea:de:53:d8:42:fb:32:a3:3c:cb:a2:73:d1:3c: 5b:1a:53:8f:38:84:67:3d:7b:c0:e2:99:14:e3:9c:17:69:99: 35:03:18:5f:1c:1f:06:79:f3:41:3f:14:ce:1e:43:1f:15:fa: f7:4c:25:b5:4d:34:09:f8:34:20:14:1f:67:73:0e:30:40:a0: ce:f2:8e:28:ae:c0:f0:33:c1:9b:c6:ec:e4:4c:d0:88:a5:24: ec:bc:77:7e:41:f2:94:c7:1d:e0:57:9d:36:fb:9e:70:e3:e3: 53:d6:cf:5f:15:b8:6c:68:07:44:2e:3e:d5:e9:f0:ab:01:21: e4:78:22:e4 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDZD NUMxOENDRTYwMzA3MzBCQzIyMkFCMTdGNEUzRDhGMTYwMzAzMzAeFw0yNDAzMTMw MTI0MTBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEYwQUQzN0NENzUyQTNG RkQ2Q0IxQzA3QkM0MDc1NzQ4RjZDOTBENjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbZ0qbLQXyYIjBngQeiqULYqCSTKYpTNaPaEbfevDT1SwQN2+Q r2FTUJoq+OSv0/79iNvJbWIFN8kyDh2Tv4d4MR8Tsh1LnmaJmm1+cA0yi8EOF4MR OT3FE7r4DhYNB0V5hutYIAm6Jp5qHrg1sfXdzMwxno3kzlROcv3HVVmwJ1vIMX0g mvzo0lQKRXGhxgUJpR7hyPb4hZ5AfooM1Kr0J+x5wOB4z6YlhWSk2HphBRU1eBdj HfYIWHM8wtO5Dmc3XAnMq6PuvFogmxhsa+tiE+7EPZL9rRojX2UrNRWrIJN7W4V/ V65WZQ4vAWlfCQvLXdHK6ZtMZhJoZxredCe/AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU8K03zXUqP/1sscB7xAdXSPbJDWEwHwYDVR0jBBgwFoAU1sXBjM5gMHMLwiKr F/Tj2PFgMDMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc5 My8xc1hCak01Z01ITUx3aUtyRl9UajJQRmdNRE0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzFzWEJqTTVnTUhNTHdpS3JGX1RqMlBGZ01ETS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3OTMvOEswM3pYVXFQXzFz c2NCN3hBZFhTUGJKRFdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcJmDANBgkqhkiG9w0BAQsFAAOCAQEAf/hAnh93E3CQTzZtN9CBOnqFlxXp JriFuxsFBsMhSVQUTjw+MgWKL8ukD+vR+sSXsTvuocBtja92fSph3MrrKknRQMRM XeKuPZXiN696zxWf6vIZoHpMonoNeuvsvbbKvZ62uaLByIj/AFJhQu/CkJ0geRTg ZvgXTFZV9p4hVkGeXereU9hC+zKjPMuic9E8WxpTjziEZz17wOKZFOOcF2mZNQMY XxwfBnnzQT8Uzh5DHxX690wltU00Cfg0IBQfZ3MOMECgzvKOKK7A8DPBm8bs5EzQ iKUk7Lx3fkHylMcd4FedNvuecOPjU9bPXxW4bGgHRC4+1enwqwEh5Hgi5A== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:10 2024 by rpki-client on console-fra.rpki-client.org