$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2815/t1Y8TkIKy-Y6d0FRqfZA7bzvwQI.roa File: t1Y8TkIKy-Y6d0FRqfZA7bzvwQI.roa (raw, json) Hash identifier: jCLxu/qBbSEAzWraGyYK11WAkgmtaPk2EY/JcQPKA4Y= Subject key identifier: B7:56:3C:4E:42:0A:CB:E6:3A:77:41:51:A9:F6:40:ED:BC:EF:C1:02 Certificate issuer: /CN=6E0ECC3BB7C7B01BE09A1189FBD223579E75A39F Certificate serial: 21 Authority key identifier: 6E:0E:CC:3B:B7:C7:B0:1B:E0:9A:11:89:FB:D2:23:57:9E:75:A3:9F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/bg7MO7fHsBvgmhGJ-9IjV551o58.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/t1Y8TkIKy-Y6d0FRqfZA7bzvwQI.roa Signing time: Fri 28 Jun 2024 08:29:07 +0000 ROA not before: Fri 28 Jun 2024 08:29:07 +0000 ROA not after: Sat 28 Jun 2025 06:53:05 +0000 asID: 132019 IP address blocks: 103.69.116.0/24 maxlen: 24 103.69.117.0/24 maxlen: 24 103.69.118.0/24 maxlen: 24 103.69.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/bg7MO7fHsBvgmhGJ-9IjV551o58.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/bg7MO7fHsBvgmhGJ-9IjV551o58.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/bg7MO7fHsBvgmhGJ-9IjV551o58.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E0ECC3BB7C7B01BE09A1189FBD223579E75A39F Validity Not Before: Jun 28 08:29:07 2024 GMT Not After : Jun 28 06:53:05 2025 GMT Subject: CN=B7563C4E420ACBE63A774151A9F640EDBCEFC102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:79:1e:cb:32:90:2f:54:8d:22:38:f9:d5:00: 3a:d6:7b:98:da:49:0c:a2:4f:1e:4d:ff:57:b1:d9: 59:03:95:38:24:4a:aa:ed:72:39:ef:da:4a:3b:62: c2:fb:a4:43:a9:16:5d:d7:55:fd:8e:9d:99:6b:de: 4e:04:5d:94:1d:b0:86:a8:ef:b7:a2:56:80:d0:ec: 93:02:99:df:32:92:0b:67:75:7a:7d:ba:ad:2c:bc: 66:86:3e:0f:42:ed:7c:c3:39:e1:3e:d4:6e:02:ee: 66:48:4d:3e:64:5e:9f:74:e7:4b:03:0d:68:2c:e4: da:f8:ab:ff:68:9c:a4:15:88:24:c2:d5:47:32:5f: 37:55:31:a8:04:4e:91:9f:af:92:96:d0:f9:18:58: f4:64:dd:83:f5:2d:c4:d8:00:64:32:c3:34:cc:11: a4:6b:03:6d:ee:bd:58:8c:b8:6b:d2:5b:a1:e3:c5: c9:7e:61:63:10:01:56:b5:8f:90:6d:5b:f8:f7:2d: 9b:e6:9c:8e:1a:e1:e2:bc:be:12:51:84:63:35:02: ac:a9:8d:26:fb:37:58:d6:2b:fa:46:72:8e:66:7d: 0e:b8:80:67:3a:5c:43:49:9f:f4:7f:0a:40:79:e9: 9d:3e:11:f5:83:8b:34:a7:d6:fb:74:0f:3b:8e:64: 0c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:56:3C:4E:42:0A:CB:E6:3A:77:41:51:A9:F6:40:ED:BC:EF:C1:02 X509v3 Authority Key Identifier: keyid:6E:0E:CC:3B:B7:C7:B0:1B:E0:9A:11:89:FB:D2:23:57:9E:75:A3:9F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/bg7MO7fHsBvgmhGJ-9IjV551o58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/bg7MO7fHsBvgmhGJ-9IjV551o58.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/t1Y8TkIKy-Y6d0FRqfZA7bzvwQI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.116.0/22 Signature Algorithm: sha256WithRSAEncryption 10:1c:3d:c2:b1:09:d3:b5:54:44:9b:25:4d:c4:58:3e:50:b3: 53:d7:ca:0a:7d:5c:18:b4:af:20:df:dc:02:0d:fd:84:77:d1: 0e:de:b9:83:c9:03:86:6f:7a:6d:22:1c:16:5f:56:19:9b:4f: 45:14:ad:56:3b:ad:34:ec:87:a0:34:96:3c:fc:1b:f6:de:02: 5c:c6:3a:12:cf:cf:ef:9e:fa:20:b3:e3:05:8e:f0:08:2c:16: 22:4c:cd:6d:4d:19:fc:33:55:82:4a:2f:97:be:bf:3a:a9:44: 48:26:f4:15:76:14:6c:82:bb:7e:14:ce:aa:d9:d4:21:25:8f: 04:a5:2a:b7:de:3b:be:fc:cb:a7:c6:2e:e6:55:dc:89:9d:1b: 79:98:5c:67:11:20:b5:19:96:45:c6:3a:a2:3d:e4:0e:1a:9d: 47:19:62:11:d4:bf:88:35:79:e4:c4:d4:2e:02:ef:6e:ea:8b: bc:29:23:56:ae:8e:03:54:c9:e3:fb:6e:80:67:2a:c8:1b:35: d1:3b:5b:8e:76:ee:27:47:a7:be:46:bf:48:eb:18:b6:1f:b2: 40:d2:61:b8:17:62:68:13:d7:76:b7:24:3f:03:d9:a1:5a:5d: 5e:c8:de:ed:9f:fd:64:e6:74:80:82:86:cc:3a:fd:d0:41:55: f6:8c:f7:19 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RTBF Q0MzQkI3QzdCMDFCRTA5QTExODlGQkQyMjM1NzlFNzVBMzlGMB4XDTI0MDYyODA4 MjkwN1oXDTI1MDYyODA2NTMwNVowMzExMC8GA1UEAxMoQjc1NjNDNEU0MjBBQ0JF NjNBNzc0MTUxQTlGNjQwRURCQ0VGQzEwMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALx5HssykC9UjSI4+dUAOtZ7mNpJDKJPHk3/V7HZWQOVOCRKqu1y Oe/aSjtiwvukQ6kWXddV/Y6dmWveTgRdlB2whqjvt6JWgNDskwKZ3zKSC2d1en26 rSy8ZoY+D0LtfMM54T7UbgLuZkhNPmRen3TnSwMNaCzk2vir/2icpBWIJMLVRzJf N1UxqAROkZ+vkpbQ+RhY9GTdg/UtxNgAZDLDNMwRpGsDbe69WIy4a9JboePFyX5h YxABVrWPkG1b+Pctm+acjhrh4ry+ElGEYzUCrKmNJvs3WNYr+kZyjmZ9DriAZzpc Q0mf9H8KQHnpnT4R9YOLNKfW+3QPO45kDKsCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBS3VjxOQgrL5jp3QVGp9kDtvO/BAjAfBgNVHSMEGDAWgBRuDsw7t8ewG+CaEYn7 0iNXnnWjnzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yODE1 L2JnN01PN2ZIc0J2Z21oR0otOUlqVjU1MW81OC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvYmc3TU83ZkhzQnZnbWhHSi05SWpWNTUxbzU4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjgxNS90MVk4VGtJS3ktWTZk MEZScWZaQTdienZ3UUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ0V0MA0GCSqGSIb3DQEBCwUAA4IBAQAQHD3CsQnTtVREmyVNxFg+ULNT18oK fVwYtK8g39wCDf2Ed9EO3rmDyQOGb3ptIhwWX1YZm09FFK1WO6007IegNJY8/Bv2 3gJcxjoSz8/vnvogs+MFjvAILBYiTM1tTRn8M1WCSi+Xvr86qURIJvQVdhRsgrt+ FM6q2dQhJY8EpSq33ju+/Munxi7mVdyJnRt5mFxnESC1GZZFxjqiPeQOGp1HGWIR 1L+INXnkxNQuAu9u6ou8KSNWro4DVMnj+26AZyrIGzXRO1uOdu4nR6e+Rr9I6xi2 H7JA0mG4F2JoE9d2tyQ/A9mhWl1eyN7tn/1k5nSAgobMOv3QQVX2jPcZ -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org