$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2967/GSeJw6gocA-6TdelhnzEkVQTZlk.roa File: GSeJw6gocA-6TdelhnzEkVQTZlk.roa (raw, json) Hash identifier: W/JXPK+/G+mCNjIlk6uiq7fykIwyAztgkjarvxTTELk= Subject key identifier: 19:27:89:C3:A8:28:70:0F:BA:4D:D7:A5:86:7C:C4:91:54:13:66:59 Certificate issuer: /CN=0AB6F528865292E198F98B68B72D98D130AF532E Certificate serial: 0CA4 Authority key identifier: 0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/GSeJw6gocA-6TdelhnzEkVQTZlk.roa Signing time: Wed 13 Mar 2024 01:22:19 +0000 ROA not before: Wed 13 Mar 2024 01:22:19 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 131482 IP address blocks: 103.150.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AB6F528865292E198F98B68B72D98D130AF532E Validity Not Before: Mar 13 01:22:19 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=192789C3A828700FBA4DD7A5867CC49154136659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:03:db:39:8d:48:62:76:8c:e0:fa:c9:d0:74: 48:d8:83:66:35:8a:86:5f:0e:a0:bb:10:05:1f:81: 13:c3:b3:2e:4b:3d:53:f1:3f:4c:a0:99:46:d0:69: 8b:66:4a:7a:9e:e2:b4:c4:f0:b7:3d:2d:9a:72:00: d5:33:c7:bb:7b:26:b0:4e:21:bd:7a:cc:69:26:05: 4d:3f:17:36:f9:98:0a:df:15:c9:45:23:d7:25:9b: 56:0a:46:25:38:7f:e9:bc:b4:51:4c:ec:13:41:a8: 43:a0:45:8f:c1:f5:c1:d3:0a:01:99:60:54:85:97: d5:32:ac:2a:b4:32:fb:db:83:71:a8:e3:7a:26:af: 25:06:0d:a5:67:0d:2f:d2:46:2d:0c:1c:1e:2c:87: 28:a7:97:3e:56:d6:cb:e7:b4:57:dc:77:64:6d:2a: 96:d2:6f:bf:70:f2:c4:b0:f8:d6:8a:f0:a3:30:1d: 75:2a:65:61:f9:81:08:ef:ae:34:27:77:55:20:6e: c2:2e:92:35:07:e9:f9:4a:14:8f:1f:93:dd:66:45: b5:a3:cb:4a:d7:3e:7e:1f:13:6e:7b:fe:8b:5d:53: 46:03:a6:cf:f5:39:cb:b6:2d:9d:c7:b3:65:18:85: 35:7f:cc:cd:c4:36:c9:fd:34:77:d8:60:ed:3d:98: 42:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:27:89:C3:A8:28:70:0F:BA:4D:D7:A5:86:7C:C4:91:54:13:66:59 X509v3 Authority Key Identifier: keyid:0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/GSeJw6gocA-6TdelhnzEkVQTZlk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.150.130.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:2b:bd:72:66:9b:26:85:f9:59:0f:a3:73:c1:32:17:32:ca: f7:75:48:c7:d5:f5:12:fc:1e:fd:1d:44:57:5a:59:01:bd:83: a3:f8:50:4a:64:18:fb:b3:5b:ce:1c:64:0a:96:92:06:96:50: 0f:8f:bd:54:28:22:c0:8a:28:0a:9e:99:64:e9:36:96:48:d2: af:d9:6a:a4:15:5b:d7:ee:5a:ab:74:de:de:ba:9e:61:2b:7e: a9:f1:3a:ca:6d:b5:bd:94:06:40:ff:02:4d:a2:c4:55:bc:af: d3:bf:74:d0:b4:62:2d:47:e3:74:84:64:9e:20:1d:3e:97:0f: ba:62:5d:4c:8d:8a:d2:5c:66:90:63:cb:15:9d:17:7e:94:a0: b0:51:52:3a:c0:7b:2c:47:73:04:cd:df:d8:21:25:3e:8b:99: c3:0d:99:6d:b4:0a:da:90:a1:e9:40:27:6d:f2:55:c3:20:40: 78:2c:0a:78:95:1d:30:27:ce:32:b9:21:24:45:10:18:60:a7: 2b:61:8c:95:9b:6e:ae:33:d0:d0:aa:db:4a:23:a5:97:b4:43: 07:92:77:95:60:7e:ff:da:5f:25:cb:7f:67:15:27:83:8a:1f: 2e:1f:c8:f6:4a:9d:7b:f9:00:b4:2f:46:1e:ca:a9:68:ac:25: 09:31:66:0f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEFC NkY1Mjg4NjUyOTJFMTk4Rjk4QjY4QjcyRDk4RDEzMEFGNTMyRTAeFw0yNDAzMTMw MTIyMTlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDE5Mjc4OUMzQTgyODcw MEZCQTRERDdBNTg2N0NDNDkxNTQxMzY2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYA9s5jUhidozg+snQdEjYg2Y1ioZfDqC7EAUfgRPDsy5LPVPx P0ygmUbQaYtmSnqe4rTE8Lc9LZpyANUzx7t7JrBOIb16zGkmBU0/Fzb5mArfFclF I9clm1YKRiU4f+m8tFFM7BNBqEOgRY/B9cHTCgGZYFSFl9UyrCq0Mvvbg3Go43om ryUGDaVnDS/SRi0MHB4shyinlz5W1svntFfcd2RtKpbSb79w8sSw+NaK8KMwHXUq ZWH5gQjvrjQnd1UgbsIukjUH6flKFI8fk91mRbWjy0rXPn4fE257/otdU0YDps/1 Ocu2LZ3Hs2UYhTV/zM3ENsn9NHfYYO09mEI9AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUGSeJw6gocA+6TdelhnzEkVQTZlkwHwYDVR0jBBgwFoAUCrb1KIZSkuGY+Yto ty2Y0TCvUy4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk2 Ny9DcmIxS0laU2t1R1ktWXRvdHkyWTBUQ3ZVeTQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0NyYjFLSVpTa3VHWS1ZdG90eTJZMFRDdlV5NC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5NjcvR1NlSnc2Z29jQS02 VGRlbGhuekVrVlFUWmxrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeWgjANBgkqhkiG9w0BAQsFAAOCAQEAeiu9cmabJoX5WQ+jc8EyFzLK93VI x9X1Evwe/R1EV1pZAb2Do/hQSmQY+7NbzhxkCpaSBpZQD4+9VCgiwIooCp6ZZOk2 lkjSr9lqpBVb1+5aq3Te3rqeYSt+qfE6ym21vZQGQP8CTaLEVbyv07900LRiLUfj dIRkniAdPpcPumJdTI2K0lxmkGPLFZ0XfpSgsFFSOsB7LEdzBM3f2CElPouZww2Z bbQK2pCh6UAnbfJVwyBAeCwKeJUdMCfOMrkhJEUQGGCnK2GMlZturjPQ0KrbSiOl l7RDB5J3lWB+/9pfJct/ZxUng4ofLh/I9kqde/kAtC9GHsqpaKwlCTFmDw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:10 2024 by rpki-client on console-fra.rpki-client.org