$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/rvbJkAwmirX-a5XBD_hrghToK5I.roa File: rvbJkAwmirX-a5XBD_hrghToK5I.roa (raw, json) Hash identifier: fKEd92k5LZWZi9IpGV/TxxXQzPPomM7RInYAWT6xn9Q= Subject key identifier: AE:F6:C9:90:0C:26:8A:B5:FE:6B:95:C1:0F:F8:6B:82:14:E8:2B:92 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 0D5F Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/rvbJkAwmirX-a5XBD_hrghToK5I.roa Signing time: Tue 13 Aug 2024 03:22:39 +0000 ROA not before: Tue 13 Aug 2024 03:22:39 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 136907 IP address blocks: 110.41.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 04:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3423 (0xd5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Aug 13 03:22:39 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=AEF6C9900C268AB5FE6B95C10FF86B8214E82B92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c6:f1:df:ef:d4:37:2b:a4:aa:af:db:37:5f: cc:a7:8d:10:b1:f3:7b:27:60:d3:3e:f1:07:b2:89: 9e:e0:f3:44:79:dc:4b:ac:4c:d5:6a:6e:83:03:48: 5f:02:0f:26:f3:f5:37:25:8a:6f:2e:03:80:ec:8c: c5:b7:da:7a:24:eb:72:0c:37:a1:c8:b8:7a:b2:57: 4f:1c:98:c6:fb:4b:00:bb:61:51:64:4e:0e:20:a0: f9:bb:57:52:ab:e7:57:d9:13:d9:2e:dd:0f:f0:51: 7e:49:2c:c4:29:66:7e:30:0d:be:83:cb:7a:7a:8f: 9b:da:fa:70:90:52:21:6a:9f:bf:82:ef:bf:1b:39: f7:18:2e:f2:e5:af:02:84:42:58:4e:9c:c8:cd:de: 9a:61:42:e0:7c:d3:19:f4:06:f7:c8:58:35:55:1e: 3e:b5:a6:be:24:5f:94:5d:9a:c2:21:71:42:6a:10: ea:25:72:15:c5:b4:72:52:74:48:85:8e:f3:67:c7: 4a:59:9d:1e:55:73:74:06:30:72:33:6d:12:b1:79: 01:41:20:6d:c2:dd:b9:6f:b9:e8:b8:5f:35:40:e8: ca:cf:0b:ca:80:0c:e9:d8:a2:ea:db:a4:77:e2:46: aa:4b:58:ef:ac:dd:ad:18:69:1d:18:f6:45:bc:57: ab:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F6:C9:90:0C:26:8A:B5:FE:6B:95:C1:0F:F8:6B:82:14:E8:2B:92 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/rvbJkAwmirX-a5XBD_hrghToK5I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.41.210.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:cc:80:80:15:d5:f0:bb:06:c1:5d:8a:0c:b4:05:44:22:0a: 0d:51:7a:1e:7e:a5:4a:63:f7:dd:5a:b3:4b:99:10:f4:43:91: c2:5a:56:82:4e:6b:80:29:8b:39:1e:d7:2e:34:38:b4:b3:03: c3:6c:24:1a:80:54:e0:3a:fb:dd:f2:98:53:1a:d4:4a:2e:c1: c1:2f:8e:5e:1e:5d:2e:1a:af:05:3f:ef:51:e3:21:91:9a:1f: 80:56:22:63:95:cd:01:59:18:63:17:f5:77:f9:46:44:0f:d3: fc:96:a2:6e:e9:a5:d7:e6:9d:65:cd:ff:32:fe:d4:d9:d2:1e: c5:65:b4:0d:44:62:31:cd:7f:72:2e:bf:df:1e:38:9c:74:08: 96:07:cc:55:8d:2e:3a:52:b6:7d:2e:9c:24:18:90:14:e4:1d: fd:85:32:de:8b:6b:b4:9b:a0:e6:fe:87:36:16:2b:a5:31:af: ff:b5:f4:84:74:70:d9:31:d8:42:cf:d8:44:4e:dd:d1:0a:34: 95:c6:31:2c:e4:a6:7a:82:9b:7b:4f:be:2e:fe:e9:68:bd:e4: 01:2b:0b:29:3b:ea:03:7b:93:c8:05:38:64:73:80:05:ba:59: fb:b1:db:6e:59:6c:40:a0:7b:fb:e8:95:6c:75:8b:52:3d:5e: e8:98:6e:43 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNDA4MTMw MzIyMzlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEFFRjZDOTkwMEMyNjhB QjVGRTZCOTVDMTBGRjg2QjgyMTRFODJCOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0xvHf79Q3K6Sqr9s3X8ynjRCx83snYNM+8QeyiZ7g80R53Eus TNVqboMDSF8CDybz9Tclim8uA4DsjMW32nok63IMN6HIuHqyV08cmMb7SwC7YVFk Tg4goPm7V1Kr51fZE9ku3Q/wUX5JLMQpZn4wDb6Dy3p6j5va+nCQUiFqn7+C778b OfcYLvLlrwKEQlhOnMjN3pphQuB80xn0BvfIWDVVHj61pr4kX5RdmsIhcUJqEOol chXFtHJSdEiFjvNnx0pZnR5Vc3QGMHIzbRKxeQFBIG3C3blvuei4XzVA6MrPC8qA DOnYourbpHfiRqpLWO+s3a0YaR0Y9kW8V6sfAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUrvbJkAwmirX+a5XBD/hrghToK5IwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvcnZiSmtBd21pclgt YTVYQkRfaHJnaFRvSzVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAG4p0jANBgkqhkiG9w0BAQsFAAOCAQEAPsyAgBXV8LsGwV2KDLQFRCIKDVF6 Hn6lSmP33VqzS5kQ9EORwlpWgk5rgCmLOR7XLjQ4tLMDw2wkGoBU4Dr73fKYUxrU Si7BwS+OXh5dLhqvBT/vUeMhkZofgFYiY5XNAVkYYxf1d/lGRA/T/Jaibuml1+ad Zc3/Mv7U2dIexWW0DURiMc1/ci6/3x44nHQIlgfMVY0uOlK2fS6cJBiQFOQd/YUy 3otrtJug5v6HNhYrpTGv/7X0hHRw2THYQs/YRE7d0Qo0lcYxLOSmeoKbe0++Lv7p aL3kASsLKTvqA3uTyAU4ZHOABbpZ+7HbbllsQKB7++iVbHWLUj1e6JhuQw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:37:57 2024 by rpki-client on console-fra.rpki-client.org