$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/v6IND1bHC7torTVM_ZJoWg4BNgA.roa File: v6IND1bHC7torTVM_ZJoWg4BNgA.roa (raw, json) Hash identifier: KluG9iXVVyYvpRINVtgloiTT51mkWtSTpjlN1wvxQA0= Subject key identifier: BF:A2:0D:0F:56:C7:0B:BB:68:AD:35:4C:FD:92:68:5A:0E:01:36:00 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 102D Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/v6IND1bHC7torTVM_ZJoWg4BNgA.roa Signing time: Wed 25 Dec 2024 03:25:02 +0000 ROA not before: Wed 25 Dec 2024 03:25:02 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 55990 IP address blocks: 113.47.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4141 (0x102d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Dec 25 03:25:02 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=BFA20D0F56C70BBB68AD354CFD92685A0E013600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5e:2a:3c:38:cd:48:44:3b:9b:76:2a:7d:73: ed:9f:ed:10:46:78:9b:b5:3a:3d:a2:80:9d:8f:a9: 6f:dd:6d:91:ea:3d:9d:f9:bb:74:b0:d2:ac:56:14: ca:a1:55:af:3a:f0:13:d8:0c:8c:3e:fd:78:52:2b: 2d:38:a4:e8:63:bf:1d:c7:61:93:8f:85:aa:b2:55: d1:d7:e0:09:48:7d:fc:72:cc:ff:e7:ef:61:c6:f1: 2f:49:21:0e:42:fd:95:7e:96:51:b8:c1:36:86:96: c7:ec:d8:c1:3c:77:58:82:03:76:e7:d4:9f:f8:fd: cc:9a:e1:79:df:67:c3:ba:3c:2a:d4:71:ed:3d:22: 2c:d7:6c:14:d1:57:eb:a1:2f:79:7a:75:dc:18:af: 13:eb:09:06:8a:2a:ad:fb:b4:1d:ce:4a:5e:cf:fe: 83:24:ed:a9:da:a4:3a:7c:ee:70:48:1e:73:83:9c: 68:07:4d:1d:c5:c1:3c:00:0d:90:2e:a4:05:90:0e: 08:93:db:6e:40:61:d9:72:d2:92:42:b1:fc:f0:5c: 31:9f:ba:42:fb:c7:74:1f:f3:43:3e:92:a8:4c:ad: 27:cd:5f:33:7c:c3:73:b6:52:45:e1:7b:33:0e:48: 21:5a:10:83:78:af:e6:a2:24:cc:17:72:8d:bc:ba: 74:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A2:0D:0F:56:C7:0B:BB:68:AD:35:4C:FD:92:68:5A:0E:01:36:00 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/v6IND1bHC7torTVM_ZJoWg4BNgA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.47.64.0/19 Signature Algorithm: sha256WithRSAEncryption 32:e7:ff:b0:15:6c:87:15:ff:56:2a:e9:8b:11:8e:28:ea:b2: 42:98:d6:c7:39:38:a6:43:24:b2:1b:0e:3c:78:c4:c1:0d:7e: 01:b5:bf:5e:ad:d1:6b:b4:cc:d5:4d:9b:8b:2e:1a:dd:67:4c: 6e:89:f9:38:94:ae:31:fc:e6:9b:3c:1e:4d:ba:cd:1b:42:7d: 44:da:b2:3d:7e:a2:06:3c:4c:de:ab:85:cd:12:f4:5e:d3:6a: e4:eb:7b:b2:5e:01:8f:9e:15:24:89:96:70:96:99:7f:c2:59: 66:16:28:c7:2f:6c:d2:48:ec:92:59:bc:63:e3:22:bd:e8:2f: 24:86:3f:eb:9b:59:06:1a:80:a2:a5:01:23:31:5a:28:35:54: c6:72:4e:05:66:bc:c1:0c:6f:a1:42:2c:08:58:d5:76:58:69: 67:ec:c4:81:05:97:c9:15:a0:9e:aa:4e:c1:36:13:a2:ab:54: 6c:c8:ba:c7:9e:81:89:32:08:8d:aa:37:5a:a8:4e:94:00:ba: 82:71:dd:74:89:b6:0b:43:13:b0:1d:64:ee:b4:c1:31:c0:7d: 5c:3b:8a:c7:38:d3:9b:65:34:a5:d6:34:6e:71:d7:ba:a4:91: 27:7e:cd:cf:59:41:a9:31:26:ad:13:24:df:94:7a:f4:d4:a0: 16:fa:7d:99 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNDEyMjUw MzI1MDJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEJGQTIwRDBGNTZDNzBC QkI2OEFEMzU0Q0ZEOTI2ODVBMEUwMTM2MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhXio8OM1IRDubdip9c+2f7RBGeJu1Oj2igJ2PqW/dbZHqPZ35 u3Sw0qxWFMqhVa868BPYDIw+/XhSKy04pOhjvx3HYZOPhaqyVdHX4AlIffxyzP/n 72HG8S9JIQ5C/ZV+llG4wTaGlsfs2ME8d1iCA3bn1J/4/cya4XnfZ8O6PCrUce09 IizXbBTRV+uhL3l6ddwYrxPrCQaKKq37tB3OSl7P/oMk7anapDp87nBIHnODnGgH TR3FwTwADZAupAWQDgiT225AYdly0pJCsfzwXDGfukL7x3Qf80M+kqhMrSfNXzN8 w3O2UkXhezMOSCFaEIN4r+aiJMwXco28unStAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUv6IND1bHC7torTVM/ZJoWg4BNgAwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvdjZJTkQxYkhDN3Rv clRWTV9aSm9XZzRCTmdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXEvQDANBgkqhkiG9w0BAQsFAAOCAQEAMuf/sBVshxX/VirpixGOKOqyQpjW xzk4pkMkshsOPHjEwQ1+AbW/Xq3Ra7TM1U2biy4a3WdMbon5OJSuMfzmmzweTbrN G0J9RNqyPX6iBjxM3quFzRL0XtNq5Ot7sl4Bj54VJImWcJaZf8JZZhYoxy9s0kjs klm8Y+MivegvJIY/65tZBhqAoqUBIzFaKDVUxnJOBWa8wQxvoUIsCFjVdlhpZ+zE gQWXyRWgnqpOwTYToqtUbMi6x56BiTIIjao3WqhOlAC6gnHddIm2C0MTsB1k7rTB McB9XDuKxzjTm2U0pdY0bnHXuqSRJ37Nz1lBqTEmrRMk35R69NSgFvp9mQ== -----END CERTIFICATE-----Generated at Fri Apr 4 18:33:22 2025 by rpki-client