$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2841/lQvLDG_mv178O0KF8URyzoLmZcA.roa File: lQvLDG_mv178O0KF8URyzoLmZcA.roa (raw, json) Hash identifier: 2NFk73TF7Cy4yVF8cyEauhy2PbGQ/N7hIgaF2fP+N/U= Subject key identifier: 95:0B:CB:0C:6F:E6:BF:5E:FC:3B:42:85:F1:44:72:CE:82:E6:65:C0 Certificate issuer: /CN=51A5666D323BF842F6044CE71059773E2271B013 Certificate serial: 198C Authority key identifier: 51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/lQvLDG_mv178O0KF8URyzoLmZcA.roa Signing time: Tue 24 Sep 2024 00:19:48 +0000 ROA not before: Tue 24 Sep 2024 00:19:48 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 137571 IP address blocks: 103.126.101.0/24 maxlen: 24 103.126.102.0/24 maxlen: 24 103.126.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6540 (0x198c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51A5666D323BF842F6044CE71059773E2271B013 Validity Not Before: Sep 24 00:19:48 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=950BCB0C6FE6BF5EFC3B4285F14472CE82E665C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2e:29:58:e8:55:e5:b3:ec:eb:7e:1f:81:37: cb:f3:c9:14:72:7e:48:b4:b4:85:90:c3:f1:d2:03: 46:e2:88:39:28:17:cb:a9:d3:39:95:21:f1:d9:f6: f9:9f:27:a5:dc:95:b7:71:5f:ad:a6:b7:29:51:79: 81:c4:fd:af:36:ab:a5:7a:69:70:86:a7:a1:c2:c0: 7c:a5:e8:6a:f9:d6:12:14:f1:c4:b3:f6:6d:75:4e: d9:f2:b9:88:9e:85:ab:e0:a7:47:78:32:46:52:cc: 4c:fe:65:fd:42:5d:48:bf:be:9e:1d:ff:d6:1b:c6: dc:fe:da:56:3a:d0:c8:7f:86:b8:8a:50:d7:5e:b1: 4a:7b:62:a4:d8:5a:85:2d:88:a7:3d:f7:b1:68:02: a6:50:17:ab:fa:44:4f:7c:b8:ba:6d:76:eb:58:cb: 2e:fd:06:38:f4:0f:97:1b:4d:fe:ec:cb:3d:6d:24: 99:86:92:68:94:60:f5:34:10:79:db:81:01:ed:fc: f5:ff:85:aa:e8:32:e6:83:fe:32:23:97:b5:16:5c: 76:f5:9e:37:4e:d3:6e:5a:1a:39:ed:f0:fb:7b:ca: ac:55:d3:d5:3e:d9:1b:fd:7c:bc:9a:78:66:6f:d7: f0:47:1c:d1:91:9e:85:56:25:52:0c:29:b1:0e:94: cf:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0B:CB:0C:6F:E6:BF:5E:FC:3B:42:85:F1:44:72:CE:82:E6:65:C0 X509v3 Authority Key Identifier: keyid:51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/lQvLDG_mv178O0KF8URyzoLmZcA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.101.0-103.126.103.255 Signature Algorithm: sha256WithRSAEncryption 00:b4:c8:06:69:1a:62:36:2d:4b:7e:48:37:16:44:9c:13:46: cb:ef:53:10:34:b0:20:c0:39:0b:1e:69:21:c1:81:84:5f:62: 98:88:75:2e:c8:c7:7f:2f:a8:dc:ad:3a:e2:d1:0c:a4:13:65: 1d:84:92:7b:af:0e:cb:92:0a:86:7c:85:2e:b8:5a:c6:6b:7b: 57:37:ba:8a:fc:9b:d1:1e:6e:7f:41:f8:c6:13:eb:e5:ee:24: 42:58:ae:29:71:6a:83:c6:48:b8:9b:8f:50:ed:70:56:cb:15: 61:20:6b:88:4c:b8:06:f7:98:db:7f:5a:f8:f1:84:9e:db:df: 90:b8:98:67:4b:98:d1:d2:f1:93:81:53:60:53:73:49:03:0b: e1:d9:9a:0c:1e:0b:83:cc:2a:ed:6d:e0:80:3d:4e:bc:70:6c: b0:4d:0d:be:03:46:0e:be:40:ce:f7:a4:6a:9b:ee:40:97:08: 66:47:11:b5:62:50:89:9e:e6:bc:9c:8f:8d:41:f2:1c:47:12: b9:dc:05:0c:07:fe:e6:73:e4:74:cb:2c:85:ef:e1:cb:fd:b7: d0:56:e8:7c:b7:ac:44:b9:a0:14:38:28:18:0d:df:a8:16:fc: 26:87:8e:fa:e6:94:f0:b3:9d:40:48:07:d2:69:a2:5c:12:24: 22:e9:94:90 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICGYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTFB NTY2NkQzMjNCRjg0MkY2MDQ0Q0U3MTA1OTc3M0UyMjcxQjAxMzAeFw0yNDA5MjQw MDE5NDhaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKDk1MEJDQjBDNkZFNkJG NUVGQzNCNDI4NUYxNDQ3MkNFODJFNjY1QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyLilY6FXls+zrfh+BN8vzyRRyfki0tIWQw/HSA0biiDkoF8up 0zmVIfHZ9vmfJ6XclbdxX62mtylReYHE/a82q6V6aXCGp6HCwHyl6Gr51hIU8cSz 9m11TtnyuYiehavgp0d4MkZSzEz+Zf1CXUi/vp4d/9Ybxtz+2lY60Mh/hriKUNde sUp7YqTYWoUtiKc997FoAqZQF6v6RE98uLptdutYyy79Bjj0D5cbTf7syz1tJJmG kmiUYPU0EHnbgQHt/PX/haroMuaD/jIjl7UWXHb1njdO025aGjnt8Pt7yqxV09U+ 2Rv9fLyaeGZv1/BHHNGRnoVWJVIMKbEOlM+HAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQUlQvLDG/mv178O0KF8URyzoLmZcAwHwYDVR0jBBgwFoAUUaVmbTI7+EL2BEzn EFl3PiJxsBMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg0 MS9VYVZtYlRJNy1FTDJCRXpuRUZsM1BpSnhzQk0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VhVm1iVEk3LUVMMkJFem5FRmwzUGlKeHNCTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4NDEvbFF2TERHX212MTc4 TzBLRjhVUnl6b0xtWmNBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEw DjAMAwQAZ35lAwQDZ35gMA0GCSqGSIb3DQEBCwUAA4IBAQAAtMgGaRpiNi1Lfkg3 FkScE0bL71MQNLAgwDkLHmkhwYGEX2KYiHUuyMd/L6jcrTri0QykE2UdhJJ7rw7L kgqGfIUuuFrGa3tXN7qK/JvRHm5/QfjGE+vl7iRCWK4pcWqDxki4m49Q7XBWyxVh IGuITLgG95jbf1r48YSe29+QuJhnS5jR0vGTgVNgU3NJAwvh2ZoMHguDzCrtbeCA PU68cGywTQ2+A0YOvkDO96Rqm+5AlwhmRxG1YlCJnua8nI+NQfIcRxK53AUMB/7m c+R0yyyF7+HL/bfQVuh8t6xEuaAUOCgYDd+oFvwmh4765pTws51ASAfSaaJcEiQi 6ZSQ -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org