$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa File: 7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa (raw, json) Hash identifier: Fypc5S3wysoSbXk7yh6NHgb67GpfLGm2tLs4epy1xF8= Subject key identifier: EC:66:53:2B:94:30:4B:CB:E7:4E:66:2C:E1:7F:BC:FB:F6:52:E0:F3 Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Certificate serial: 0D Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa Signing time: Mon 24 Jun 2024 07:33:56 +0000 ROA not before: Mon 24 Jun 2024 07:33:56 +0000 ROA not after: Tue 24 Jun 2025 01:23:54 +0000 asID: 146761 IP address blocks: 103.183.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 21:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Validity Not Before: Jun 24 07:33:56 2024 GMT Not After : Jun 24 01:23:54 2025 GMT Subject: CN=EC66532B94304BCBE74E662CE17FBCFBF652E0F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:53:47:26:40:b2:3d:38:b8:e9:76:50:98: d2:0a:25:4a:90:3a:b9:f1:8d:36:f7:c1:61:3b:70: 51:51:a3:be:e2:ef:fd:f3:2d:46:4d:5c:e9:2c:32: 05:68:91:31:75:76:31:35:b4:92:7e:74:54:95:8f: 67:5f:2d:58:7d:32:30:a9:6d:d6:5a:0f:53:3c:65: be:b0:ff:02:54:e8:f3:71:a2:4e:a3:ac:f1:d7:7f: 26:a6:48:76:b5:5d:b5:ba:e0:71:23:e6:eb:f5:02: 2e:c5:ac:ab:b4:98:ac:07:a1:41:7b:54:23:e8:fe: 15:24:38:f4:bd:c0:9b:bc:56:dc:6f:a5:68:cb:dc: 0b:10:81:21:92:99:5a:c9:d0:4d:80:a4:d5:50:3d: 82:32:ec:4b:6e:9a:31:1d:4d:27:79:d9:c4:2d:3f: d8:03:92:83:92:df:a6:bd:f0:c7:50:13:22:93:ed: 1a:b5:57:6d:47:2c:19:37:a7:5d:cb:ed:8c:fe:50: 52:11:05:d6:32:d0:e7:84:02:94:b0:a8:b7:95:e7: 42:23:3b:87:8a:80:ea:80:f9:14:24:5f:ef:0c:80: e1:8e:c1:6f:45:89:28:d1:9c:d9:a2:00:eb:97:b6: b2:e7:7d:f7:8a:4e:8b:b5:f2:0e:6c:b5:b6:ed:ce: df:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:66:53:2B:94:30:4B:CB:E7:4E:66:2C:E1:7F:BC:FB:F6:52:E0:F3 X509v3 Authority Key Identifier: keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.26.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:38:45:9e:d4:f5:b4:6c:4f:31:a9:e0:57:e8:42:85:5e:c1: 02:17:1e:86:0d:08:e7:01:39:82:6d:71:67:60:bc:bd:4a:aa: 38:3e:f0:f3:0a:a4:ee:97:7e:5a:b5:4a:9c:5a:c4:df:be:73: eb:43:ff:31:51:05:c1:7a:f7:d4:c3:54:87:d5:3b:93:58:3c: 1f:a1:fc:33:ce:45:ea:f7:05:75:e2:45:e9:b1:7b:e0:d0:b3: 2c:e6:2f:04:bc:56:2b:1a:1d:bb:34:3d:ce:06:da:c3:a7:54: 00:d2:fe:08:65:c8:4b:d2:70:7b:bc:47:88:89:bc:ee:21:d2: 5b:b5:49:2d:e4:dc:39:99:c8:a5:c1:58:67:ee:af:ba:59:b7: 81:4b:d7:f5:d5:57:f7:4f:fd:13:35:91:f7:fc:81:61:31:0a: a4:5c:02:ec:ae:77:6c:94:49:7c:ec:73:97:6f:32:bc:f4:f5: 80:9f:ae:fc:c1:5a:36:9f:0c:be:fb:68:73:96:ea:8b:6a:96: 73:d0:20:fb:b1:57:09:ea:c5:eb:96:57:d3:fe:a9:81:bb:4e: f1:e1:2a:55:dc:82:90:6a:fa:cd:3f:a5:7c:de:3a:bf:2e:1c: 40:61:15:1d:4b:dc:69:e4:fa:a7:fe:32:65:4b:6d:8e:62:c1: d9:d2:b8:ec -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkM2 RDlBOUY0QTIyNkE2MUY1RkExQTkxNjM5NDFENEIzNUJBMzVCMB4XDTI0MDYyNDA3 MzM1NloXDTI1MDYyNDAxMjM1NFowMzExMC8GA1UEAxMoRUM2NjUzMkI5NDMwNEJD QkU3NEU2NjJDRTE3RkJDRkJGNjUyRTBGMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMVuU0cmQLI9OLjpdlCY0golSpA6ufGNNvfBYTtwUVGjvuLv/fMt Rk1c6SwyBWiRMXV2MTW0kn50VJWPZ18tWH0yMKlt1loPUzxlvrD/AlTo83GiTqOs 8dd/JqZIdrVdtbrgcSPm6/UCLsWsq7SYrAehQXtUI+j+FSQ49L3Am7xW3G+laMvc CxCBIZKZWsnQTYCk1VA9gjLsS26aMR1NJ3nZxC0/2AOSg5Lfpr3wx1ATIpPtGrVX bUcsGTenXcvtjP5QUhEF1jLQ54QClLCot5XnQiM7h4qA6oD5FCRf7wyA4Y7Bb0WJ KNGc2aIA65e2sud994pOi7XyDmy1tu3O33kCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTsZlMrlDBLy+dOZizhf7z79lLg8zAfBgNVHSMEGDAWgBQbxtmp9KImph9foakW OUHUs1ujWzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMTM0 L0c4YlpxZlNpSnFZZlg2R3BGamxCMUxOYm8xcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvRzhiWnFmU2lKcVlmWDZHcEZqbEIxTE5ibzFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEzNC83R1pUSzVRd1M4dm5U bVlzNFgtOC1fWlM0UE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ7caMA0GCSqGSIb3DQEBCwUAA4IBAQB/OEWe1PW0bE8xqeBX6EKFXsECFx6G DQjnATmCbXFnYLy9Sqo4PvDzCqTul35atUqcWsTfvnPrQ/8xUQXBevfUw1SH1TuT WDwfofwzzkXq9wV14kXpsXvg0LMs5i8EvFYrGh27ND3OBtrDp1QA0v4IZchL0nB7 vEeIibzuIdJbtUkt5Nw5mcilwVhn7q+6WbeBS9f11Vf3T/0TNZH3/IFhMQqkXALs rndslEl87HOXbzK89PWAn678wVo2nwy++2hzluqLapZz0CD7sVcJ6sXrllfT/qmB u07x4SpV3IKQavrNP6V83jq/LhxAYRUdS9xp5Pqn/jJlS22OYsHZ0rjs -----END CERTIFICATE-----Generated at Fri Nov 22 19:57:41 2024 by rpki-client on console-ams.rpki-client.org