$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/59stqTAGvFuKM9PfMDusxqe5Btc.roa File: 59stqTAGvFuKM9PfMDusxqe5Btc.roa (raw, json) Hash identifier: 7owmdboO8zmSkyQffCAiGJfGckbrcj7c6mnG0RIpXHY= Subject key identifier: E7:DB:2D:A9:30:06:BC:5B:8A:33:D3:DF:30:3B:AC:C6:A7:B9:06:D7 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1251 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/59stqTAGvFuKM9PfMDusxqe5Btc.roa Signing time: Tue 20 Aug 2024 12:56:46 +0000 ROA not before: Tue 20 Aug 2024 12:56:46 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 984 IP address blocks: 180.223.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 06:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4689 (0x1251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Aug 20 12:56:46 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=E7DB2DA93006BC5B8A33D3DF303BACC6A7B906D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ed:c4:50:b3:aa:11:72:6b:f9:9c:5c:d0:50: 52:8f:6b:34:a7:b0:30:2b:f7:66:d2:59:65:56:31: 95:27:2a:0c:87:87:e5:27:e7:06:17:ab:1b:c9:ee: d6:16:a7:e1:5f:1d:7d:36:18:e0:51:68:b0:c3:f7: 7d:95:87:09:3b:a3:46:f3:96:94:31:19:dc:37:11: 8d:41:6d:bd:b7:1f:0d:0c:b9:4c:ec:bf:e5:e2:55: 21:ad:74:5d:08:85:67:e1:0d:94:fc:5f:03:0b:84: 95:5e:98:28:92:5e:e4:d0:b1:8a:d9:c4:c0:f8:a1: 00:71:1f:56:4c:6c:9e:48:b9:68:72:02:f9:22:1c: a8:6e:f0:6a:a1:66:80:33:ec:11:94:04:80:82:35: c6:97:de:6d:fb:16:18:3c:b9:50:46:2e:cb:b1:7f: 72:df:6c:91:f0:9e:cd:60:fc:54:38:94:a4:25:d2: 0e:d4:41:98:4b:65:72:21:cf:6d:97:1a:9a:f6:d2: f6:9f:8b:f8:9a:b0:ca:e2:0d:7c:fc:b9:b6:23:c1: 34:08:7d:25:c6:06:fc:97:2d:42:06:1e:fe:30:f9: 58:7d:30:cc:fd:5e:82:e1:00:7b:f2:d4:ac:bb:e5: f2:48:79:ea:0f:97:8c:33:26:b9:0f:37:d6:ce:50: 05:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DB:2D:A9:30:06:BC:5B:8A:33:D3:DF:30:3B:AC:C6:A7:B9:06:D7 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/59stqTAGvFuKM9PfMDusxqe5Btc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.124.0/23 Signature Algorithm: sha256WithRSAEncryption c8:84:25:e3:bf:7b:04:09:9f:0a:c5:ea:1e:3c:32:dc:9b:bc: 26:06:2a:81:ae:1b:23:99:31:71:4a:38:8d:b4:a2:9a:75:b4: 95:4a:1d:36:ce:6c:08:c8:10:42:d0:b8:1a:04:04:2e:4b:55: ae:0c:29:29:32:40:4b:02:9d:28:41:01:bc:e5:72:8e:0e:61: fa:cf:ec:43:a9:b1:e5:d4:27:c3:a1:87:b8:ea:9b:d7:b7:45: 20:5d:5b:25:11:03:33:e8:d0:af:96:75:6d:3a:d1:25:04:04: 44:50:0d:d2:7d:0a:74:76:90:a0:aa:ed:e7:73:23:ae:af:51: a1:80:7a:28:64:a4:ea:08:4d:5d:7e:de:0e:a2:41:5d:48:16: 27:b8:68:24:2c:a9:1d:cf:94:42:37:5c:84:ac:f2:2d:46:01: 3b:eb:1d:9a:09:a8:9f:92:24:fa:e5:85:02:61:44:39:a7:6c: 21:55:f5:f9:21:c6:99:bd:a8:be:62:49:5a:40:a2:f8:e8:4b: 6c:30:ce:d4:a9:fc:3b:1f:33:68:89:60:6b:68:3f:46:29:b1: 83:2e:38:d9:da:1f:5a:76:57:13:6c:40:ea:39:1a:fd:47:47: 16:a1:55:f3:a1:5c:d0:e1:ca:80:c3:17:59:08:0a:48:b5:df: 10:e6:f8:cc -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICElEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDA4MjAx MjU2NDZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEU3REIyREE5MzAwNkJD NUI4QTMzRDNERjMwM0JBQ0M2QTdCOTA2RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDl7cRQs6oRcmv5nFzQUFKPazSnsDAr92bSWWVWMZUnKgyHh+Un 5wYXqxvJ7tYWp+FfHX02GOBRaLDD932Vhwk7o0bzlpQxGdw3EY1Bbb23Hw0MuUzs v+XiVSGtdF0IhWfhDZT8XwMLhJVemCiSXuTQsYrZxMD4oQBxH1ZMbJ5IuWhyAvki HKhu8GqhZoAz7BGUBICCNcaX3m37Fhg8uVBGLsuxf3LfbJHwns1g/FQ4lKQl0g7U QZhLZXIhz22XGpr20vafi/iasMriDXz8ubYjwTQIfSXGBvyXLUIGHv4w+Vh9MMz9 XoLhAHvy1Ky75fJIeeoPl4wzJrkPN9bOUAXzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU59stqTAGvFuKM9PfMDusxqe5BtcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvNTlzdHFUQUd2RnVL TTlQZk1EdXN4cWU1QnRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAbTffDANBgkqhkiG9w0BAQsFAAOCAQEAyIQl4797BAmfCsXqHjwy3Ju8JgYq ga4bI5kxcUo4jbSimnW0lUodNs5sCMgQQtC4GgQELktVrgwpKTJASwKdKEEBvOVy jg5h+s/sQ6mx5dQnw6GHuOqb17dFIF1bJREDM+jQr5Z1bTrRJQQERFAN0n0KdHaQ oKrt53Mjrq9RoYB6KGSk6ghNXX7eDqJBXUgWJ7hoJCypHc+UQjdchKzyLUYBO+sd mgmon5Ik+uWFAmFEOadsIVX1+SHGmb2ovmJJWkCi+OhLbDDO1Kn8Ox8zaIlga2g/ Rimxgy442dofWnZXE2xA6jka/UdHFqFV86Fc0OHKgMMXWQgKSLXfEOb4zA== -----END CERTIFICATE-----Generated at Fri Nov 22 05:50:43 2024 by rpki-client on console-fra.rpki-client.org