$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/LH2PyxaebTwUWCqIBs1Kq9jLOjU.roa File: LH2PyxaebTwUWCqIBs1Kq9jLOjU.roa (raw, json) Hash identifier: L04+TBCa3SIZMlFAdOVBBd3Gf27YDwcU8ancEUoAIfY= Subject key identifier: 2C:7D:8F:CB:16:9E:6D:3C:14:58:2A:88:06:CD:4A:AB:D8:CB:3A:35 Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Certificate serial: 06 Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/LH2PyxaebTwUWCqIBs1Kq9jLOjU.roa Signing time: Mon 24 Jun 2024 01:33:11 +0000 ROA not before: Mon 24 Jun 2024 01:33:11 +0000 ROA not after: Tue 24 Jun 2025 01:23:54 +0000 asID: 146762 IP address blocks: 114.111.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Validity Not Before: Jun 24 01:33:11 2024 GMT Not After : Jun 24 01:23:54 2025 GMT Subject: CN=2C7D8FCB169E6D3C14582A8806CD4AABD8CB3A35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6f:41:80:fc:5b:0d:ac:c6:2b:dc:cf:20:71: 56:b4:0a:0f:1d:1a:8e:75:77:dc:85:91:bb:8b:37: 98:3d:cf:62:bf:33:8c:c0:ec:f3:32:bf:f1:cf:32: e0:36:23:fa:9f:b5:7c:a0:67:cc:fa:cc:a2:26:96: c8:99:55:cf:f3:ce:6c:e4:cf:c3:a4:a1:f8:88:6b: 7a:58:8b:6c:b1:bb:f9:1c:ad:e2:32:ba:02:23:26: c9:e0:3d:f7:a7:0c:c3:da:4b:9e:b6:c9:d6:84:13: e3:f2:37:34:c5:18:df:d9:ca:0c:29:58:5e:2c:32: 83:d7:20:1e:83:aa:7c:1c:8d:2d:2f:fe:38:4c:af: 56:c1:9c:6a:ca:50:8e:54:9d:c0:98:ad:65:ad:f2: 60:2e:6a:2a:4a:37:48:37:08:4d:60:16:ab:16:35: d0:3f:95:83:09:66:c6:e5:5e:43:99:cd:d0:a9:4f: ea:7f:ea:c9:e0:64:8b:68:69:5e:1a:b5:b9:6d:c3: 8a:0f:ca:b4:3b:2a:7c:71:de:7c:e4:85:b0:96:af: 2c:19:ed:dc:21:68:7c:95:36:70:c4:3e:48:c5:19: c8:e3:00:4d:7c:5b:06:76:df:f8:a2:a9:5e:a1:b9: 13:a4:ed:b9:ae:18:6e:34:7e:b0:36:87:eb:2c:23: 44:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7D:8F:CB:16:9E:6D:3C:14:58:2A:88:06:CD:4A:AB:D8:CB:3A:35 X509v3 Authority Key Identifier: keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/LH2PyxaebTwUWCqIBs1Kq9jLOjU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.111.176.0/20 Signature Algorithm: sha256WithRSAEncryption 73:77:43:61:34:af:61:fc:35:67:37:d8:7a:e5:7b:bb:ae:df: 36:33:e3:3c:fd:30:0d:99:56:92:7b:99:43:99:56:78:e7:03: 4f:98:e8:cf:e7:00:92:81:bd:3d:3e:fd:62:e4:9a:52:e1:5b: 78:5b:21:ed:d4:a3:7f:ee:39:de:5a:c7:9c:20:31:89:44:f9: c8:49:c4:77:be:fa:8a:2a:1c:eb:fe:16:6d:09:d2:54:2a:67: e7:c7:46:0b:a1:11:f5:d1:08:71:21:a3:b3:f9:68:34:1c:28: 27:48:25:9a:19:22:a5:3b:56:8f:41:d1:00:4d:7d:54:aa:d0: d7:8f:e9:39:31:8d:6a:80:6a:bf:9d:e4:1a:5d:83:19:a0:0d: 49:a0:8d:c5:78:c4:d6:58:0c:e8:46:0d:6e:b7:4f:01:79:b3: 70:d1:db:b0:b7:e0:ac:0d:99:a2:4f:e2:37:86:7e:0c:52:f9: a7:83:b1:91:9d:bb:ed:4f:dc:20:4c:75:fb:33:e6:96:ed:df: 28:ee:ae:52:b7:51:45:56:22:12:de:df:85:41:61:68:9b:bd: 68:1f:61:15:27:a2:d0:52:67:11:56:ae:79:12:25:b7:b2:c2: 27:e7:6c:4d:90:cc:f0:f1:2f:67:aa:71:1d:06:11:d4:ed:14: 1f:04:d9:c3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkM2 RDlBOUY0QTIyNkE2MUY1RkExQTkxNjM5NDFENEIzNUJBMzVCMB4XDTI0MDYyNDAx MzMxMVoXDTI1MDYyNDAxMjM1NFowMzExMC8GA1UEAxMoMkM3RDhGQ0IxNjlFNkQz QzE0NTgyQTg4MDZDRDRBQUJEOENCM0EzNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKxvQYD8Ww2sxivczyBxVrQKDx0ajnV33IWRu4s3mD3PYr8zjMDs 8zK/8c8y4DYj+p+1fKBnzPrMoiaWyJlVz/PObOTPw6Sh+IhreliLbLG7+Ryt4jK6 AiMmyeA996cMw9pLnrbJ1oQT4/I3NMUY39nKDClYXiwyg9cgHoOqfByNLS/+OEyv VsGcaspQjlSdwJitZa3yYC5qKko3SDcITWAWqxY10D+VgwlmxuVeQ5nN0KlP6n/q yeBki2hpXhq1uW3Dig/KtDsqfHHefOSFsJavLBnt3CFofJU2cMQ+SMUZyOMATXxb Bnbf+KKpXqG5E6Ttua4YbjR+sDaH6ywjRDMCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQsfY/LFp5tPBRYKogGzUqr2Ms6NTAfBgNVHSMEGDAWgBQbxtmp9KImph9foakW OUHUs1ujWzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMTM0 L0c4YlpxZlNpSnFZZlg2R3BGamxCMUxOYm8xcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvRzhiWnFmU2lKcVlmWDZHcEZqbEIxTE5ibzFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEzNC9MSDJQeXhhZWJUd1VX Q3FJQnMxS3E5akxPalUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEcm+wMA0GCSqGSIb3DQEBCwUAA4IBAQBzd0NhNK9h/DVnN9h65Xu7rt82M+M8 /TANmVaSe5lDmVZ45wNPmOjP5wCSgb09Pv1i5JpS4Vt4WyHt1KN/7jneWsecIDGJ RPnIScR3vvqKKhzr/hZtCdJUKmfnx0YLoRH10QhxIaOz+Wg0HCgnSCWaGSKlO1aP QdEATX1UqtDXj+k5MY1qgGq/neQaXYMZoA1JoI3FeMTWWAzoRg1ut08BebNw0duw t+CsDZmiT+I3hn4MUvmng7GRnbvtT9wgTHX7M+aW7d8o7q5St1FFViIS3t+FQWFo m71oH2EVJ6LQUmcRVq55EiW3ssIn52xNkMzw8S9nqnEdBhHU7RQfBNnD -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org