$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/MVvWgysP4qsjHTwDN0k-e8Qiv20.roa File: MVvWgysP4qsjHTwDN0k-e8Qiv20.roa (raw, json) Hash identifier: dZnUHxrFN5GvUsbgsBtvmVHoIcULFfzF7AtgnY7xjWE= Subject key identifier: 31:5B:D6:83:2B:0F:E2:AB:23:1D:3C:03:37:49:3E:7B:C4:22:BF:6D Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 0E8B Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/MVvWgysP4qsjHTwDN0k-e8Qiv20.roa Signing time: Tue 08 Oct 2024 07:23:02 +0000 ROA not before: Tue 08 Oct 2024 07:23:02 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 55990 IP address blocks: 113.45.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3723 (0xe8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Oct 8 07:23:02 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=315BD6832B0FE2AB231D3C0337493E7BC422BF6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:3e:fe:83:61:78:6b:8b:64:96:e7:3b:44: cf:9d:65:f3:86:9d:3e:6a:5b:36:0b:f6:b7:87:61: 0d:9e:5f:d0:24:83:43:f2:f8:7c:0a:a7:bf:c4:94: de:63:30:13:cd:89:00:99:59:ea:8c:c0:ff:a3:69: 61:57:d6:94:11:b2:2d:64:7e:03:80:65:21:c0:00: dc:a3:25:e0:df:dc:29:e3:3a:87:ca:ae:28:b4:79: 63:ec:04:ad:0c:d7:49:55:95:1f:0e:ac:bd:92:80: d4:5e:14:ee:b4:36:ee:c6:54:e2:1a:1c:d5:41:73: 5c:69:66:8c:9e:c7:21:4d:70:68:ee:fa:d4:7b:fa: de:12:22:e7:5e:4d:7e:55:bd:f8:c0:9d:65:0c:6b: a0:f3:f1:2e:d0:f8:33:bb:9f:ba:92:74:80:a0:9a: e1:6f:92:ac:29:2e:8a:b4:eb:2a:80:da:40:ec:7f: 98:a0:dc:56:44:e4:3a:9a:f6:61:a5:e1:54:20:f2: 42:be:75:6e:72:f3:30:85:e1:f5:de:95:4c:79:eb: e1:3f:6a:07:fe:a9:9c:f6:f3:9a:95:83:6a:6d:61: e2:c6:f3:6b:84:71:7f:8e:2d:74:bb:3e:45:3c:3b: d6:7b:d0:f6:1c:24:3f:ef:0f:f2:65:74:73:91:4e: 31:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5B:D6:83:2B:0F:E2:AB:23:1D:3C:03:37:49:3E:7B:C4:22:BF:6D X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/MVvWgysP4qsjHTwDN0k-e8Qiv20.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.45.0.0/18 Signature Algorithm: sha256WithRSAEncryption 8c:69:ef:b3:5b:68:5d:35:41:49:51:c4:f1:99:00:08:0d:f3: 7b:5c:45:bb:ab:07:3c:72:a4:2f:8e:91:c1:59:ec:93:33:03: d7:1a:b3:72:e3:c7:e7:18:ff:e5:ec:11:05:47:f2:cb:92:4b: 88:e7:43:a8:92:00:96:37:79:b0:b7:e8:fa:ca:fc:12:9b:75: 3a:dc:23:df:4b:f0:5d:59:5f:04:63:cd:b3:1d:7d:b9:a4:e1: 5c:62:9b:1a:e0:85:f3:37:75:2b:4d:25:e0:4b:17:93:ef:c6: 7b:1c:0f:6e:f4:d8:10:66:59:f6:db:9a:f2:ae:eb:b4:85:30: c3:80:0a:71:4a:c9:dd:d2:19:6c:7e:ac:7d:c8:a8:a1:e3:ff: c7:55:5a:95:95:d6:4b:21:bc:87:de:ca:15:75:f4:b2:91:1b: 31:95:d9:af:c8:93:be:09:09:97:66:cd:b5:05:8e:80:b3:27: 40:d2:3a:e1:08:dc:7c:30:1c:5f:2b:fc:f4:00:31:ae:de:88: 50:f2:da:95:7c:78:9a:43:dc:af:11:56:13:96:a8:ec:61:ab: 0d:8c:1c:14:a1:c7:99:9a:43:c4:5d:f1:d6:69:36:44:da:a6: 4c:df:79:19:46:25:37:93:8a:ba:02:65:98:e5:50:97:52:30: 90:73:e4:fd -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDoswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNDEwMDgw NzIzMDJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDMxNUJENjgzMkIwRkUy QUIyMzFEM0MwMzM3NDkzRTdCQzQyMkJGNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBwD7+g2F4a4tkluc7RM+dZfOGnT5qWzYL9reHYQ2eX9Akg0Py +HwKp7/ElN5jMBPNiQCZWeqMwP+jaWFX1pQRsi1kfgOAZSHAANyjJeDf3CnjOofK rii0eWPsBK0M10lVlR8OrL2SgNReFO60Nu7GVOIaHNVBc1xpZoyexyFNcGju+tR7 +t4SIudeTX5VvfjAnWUMa6Dz8S7Q+DO7n7qSdICgmuFvkqwpLoq06yqA2kDsf5ig 3FZE5Dqa9mGl4VQg8kK+dW5y8zCF4fXelUx56+E/agf+qZz285qVg2ptYeLG82uE cX+OLXS7PkU8O9Z70PYcJD/vD/JldHORTjGHAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUMVvWgysP4qsjHTwDN0k+e8Qiv20wHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvTVZ2V2d5c1A0cXNq SFR3RE4way1lOFFpdjIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBnEtADANBgkqhkiG9w0BAQsFAAOCAQEAjGnvs1toXTVBSVHE8ZkACA3ze1xF u6sHPHKkL46RwVnskzMD1xqzcuPH5xj/5ewRBUfyy5JLiOdDqJIAljd5sLfo+sr8 Ept1Otwj30vwXVlfBGPNsx19uaThXGKbGuCF8zd1K00l4EsXk+/GexwPbvTYEGZZ 9tua8q7rtIUww4AKcUrJ3dIZbH6sfciooeP/x1ValZXWSyG8h97KFXX0spEbMZXZ r8iTvgkJl2bNtQWOgLMnQNI64QjcfDAcXyv89AAxrt6IUPLalXx4mkPcrxFWE5ao 7GGrDYwcFKHHmZpDxF3x1mk2RNqmTN95GUYlN5OKugJlmOVQl1IwkHPk/Q== -----END CERTIFICATE-----Generated at Fri Nov 22 13:38:14 2024 by rpki-client on console-fra.rpki-client.org