$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3095/WngGT87J6I5JTE0o1Fl0csFyjVw.roa File: WngGT87J6I5JTE0o1Fl0csFyjVw.roa (raw, json) Hash identifier: cL7TbjU2aCy5zj2eFMWllc69kuVLnMBDgFNYtg+ihbs= Subject key identifier: 5A:78:06:4F:CE:C9:E8:8E:49:4C:4D:28:D4:59:74:72:C1:72:8D:5C Certificate issuer: /CN=CB16707EAF0BDFD1326AFD9BDEC6AFFA6E63BA98 Certificate serial: 0714 Authority key identifier: CB:16:70:7E:AF:0B:DF:D1:32:6A:FD:9B:DE:C6:AF:FA:6E:63:BA:98 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yxZwfq8L39Eyav2b3sav-m5jupg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/WngGT87J6I5JTE0o1Fl0csFyjVw.roa Signing time: Tue 24 Sep 2024 00:17:54 +0000 ROA not before: Tue 24 Sep 2024 00:17:54 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 37968 IP address blocks: 103.2.164.0/22 maxlen: 24 103.168.98.0/23 maxlen: 24 202.46.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/yxZwfq8L39Eyav2b3sav-m5jupg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/yxZwfq8L39Eyav2b3sav-m5jupg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yxZwfq8L39Eyav2b3sav-m5jupg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 02:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1812 (0x714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB16707EAF0BDFD1326AFD9BDEC6AFFA6E63BA98 Validity Not Before: Sep 24 00:17:54 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=5A78064FCEC9E88E494C4D28D4597472C1728D5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:74:1e:5d:c5:82:aa:ee:53:72:d8:17:fd:6f: 83:a7:a2:b2:fe:b1:dd:f2:94:07:d2:bb:91:a1:b0: de:c8:22:38:f5:ef:57:7d:bc:c7:42:1c:96:cb:70: 1f:5b:08:f7:9e:16:5e:16:47:a7:e7:9b:3d:da:8c: ee:79:fc:dd:83:4e:be:41:d5:f7:0e:79:83:42:68: 2c:ec:06:aa:c9:1c:b7:4d:c9:d4:11:48:40:4d:6e: da:17:d9:4f:9b:cf:92:f7:aa:6b:6e:2e:80:21:67: c9:32:41:e4:0d:4a:f9:f6:f8:52:a9:b8:c7:c5:fe: 54:4e:7a:ac:2f:32:41:7a:86:e5:ce:48:8d:0f:20: 36:8b:d8:7a:88:60:68:8f:48:71:fe:17:4d:af:8a: 22:63:a4:79:b2:42:84:37:75:bd:3c:fe:23:9a:55: 0e:8a:49:e0:11:bc:81:87:f7:75:84:56:36:ee:66: 60:9e:3c:db:bf:45:82:49:cb:3e:f0:ae:9c:56:f2: c8:fd:b3:22:29:32:11:1c:23:1a:d2:9f:e5:53:b0: 9c:98:1e:3e:30:f7:09:c8:5e:8a:c7:46:62:e2:c1: 9a:40:57:0b:c7:f0:be:15:1d:c6:44:86:f1:d7:fe: 35:8b:8d:0f:7e:7c:9b:20:53:f8:c3:04:67:fe:d6: 4a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:78:06:4F:CE:C9:E8:8E:49:4C:4D:28:D4:59:74:72:C1:72:8D:5C X509v3 Authority Key Identifier: keyid:CB:16:70:7E:AF:0B:DF:D1:32:6A:FD:9B:DE:C6:AF:FA:6E:63:BA:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/yxZwfq8L39Eyav2b3sav-m5jupg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yxZwfq8L39Eyav2b3sav-m5jupg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/WngGT87J6I5JTE0o1Fl0csFyjVw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.2.164.0/22 103.168.98.0/23 202.46.224.0/22 Signature Algorithm: sha256WithRSAEncryption 88:03:3e:50:cc:9e:43:a6:b7:51:16:1a:53:2d:fd:52:70:9d: 3b:9b:ff:17:59:f8:34:f9:7b:25:75:7a:9f:f0:e2:f6:11:53: cb:ad:99:65:33:47:9b:0e:49:61:0f:64:a5:b5:bb:48:55:50: d0:4f:d7:44:9c:65:4c:54:12:b2:74:0d:d7:5f:24:d8:e4:d6: 18:7d:d4:8e:4e:9a:7e:e6:ce:39:c0:fa:cc:70:67:10:6e:ef: 0a:00:07:84:15:e3:91:30:49:9c:55:a3:97:75:e5:3e:3f:7f: 85:83:c9:7e:ce:b4:73:8b:70:e4:58:02:82:e2:da:51:e6:a3: 22:a3:07:1e:0e:82:bf:d4:6f:de:57:c2:ee:83:c0:fd:a3:84: bf:82:45:c2:a3:36:46:7c:b5:41:b3:3f:a3:e8:af:2b:f7:9b: 29:03:90:ed:c0:5a:c5:f2:bf:23:8d:82:48:9d:d4:9f:62:bd: d9:76:d2:5a:54:f9:b8:e7:6a:bc:d1:e6:45:b5:e5:cc:c8:97: e1:11:83:bc:27:d6:c0:0e:e4:e8:46:5b:83:aa:fd:de:20:d3: 42:a5:15:06:43:e4:b4:d3:5c:83:1a:e3:a5:0a:45:a1:45:90: 21:4e:b0:bd:62:0a:b6:2e:f7:60:58:64:43:b5:05:ca:c7:23: d2:9f:fb:3f -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ix NjcwN0VBRjBCREZEMTMyNkFGRDlCREVDNkFGRkE2RTYzQkE5ODAeFw0yNDA5MjQw MDE3NTRaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKDVBNzgwNjRGQ0VDOUU4 OEU0OTRDNEQyOEQ0NTk3NDcyQzE3MjhENUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxdB5dxYKq7lNy2Bf9b4OnorL+sd3ylAfSu5GhsN7IIjj171d9 vMdCHJbLcB9bCPeeFl4WR6fnmz3ajO55/N2DTr5B1fcOeYNCaCzsBqrJHLdNydQR SEBNbtoX2U+bz5L3qmtuLoAhZ8kyQeQNSvn2+FKpuMfF/lROeqwvMkF6huXOSI0P IDaL2HqIYGiPSHH+F02viiJjpHmyQoQ3db08/iOaVQ6KSeARvIGH93WEVjbuZmCe PNu/RYJJyz7wrpxW8sj9syIpMhEcIxrSn+VTsJyYHj4w9wnIXorHRmLiwZpAVwvH 8L4VHcZEhvHX/jWLjQ9+fJsgU/jDBGf+1kpNAgMBAAGjggH/MIIB+zAdBgNVHQ4E FgQUWngGT87J6I5JTE0o1Fl0csFyjVwwHwYDVR0jBBgwFoAUyxZwfq8L39Eyav2b 3sav+m5jupgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 NS95eFp3ZnE4TDM5RXlhdjJiM3Nhdi1tNWp1cGcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3l4WndmcThMMzlFeWF2MmIzc2F2LW01anVwZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTUvV25nR1Q4N0o2STVK VEUwbzFGbDBjc0Z5alZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEw EgMEAmcCpAMEAWeoYgMEAsou4DANBgkqhkiG9w0BAQsFAAOCAQEAiAM+UMyeQ6a3 URYaUy39UnCdO5v/F1n4NPl7JXV6n/Di9hFTy62ZZTNHmw5JYQ9kpbW7SFVQ0E/X RJxlTFQSsnQN118k2OTWGH3Ujk6afubOOcD6zHBnEG7vCgAHhBXjkTBJnFWjl3Xl Pj9/hYPJfs60c4tw5FgCguLaUeajIqMHHg6Cv9Rv3lfC7oPA/aOEv4JFwqM2Rny1 QbM/o+ivK/ebKQOQ7cBaxfK/I42CSJ3Un2K92XbSWlT5uOdqvNHmRbXlzMiX4RGD vCfWwA7k6EZbg6r93iDTQqUVBkPktNNcgxrjpQpFoUWQIU6wvWIKti73YFhkQ7UF yscj0p/7Pw== -----END CERTIFICATE-----Generated at Fri Nov 22 23:40:45 2024 by rpki-client on console-fra.rpki-client.org