$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/mYuMh8RZwHblW9vpBBxM4YFzBmk.roa File: mYuMh8RZwHblW9vpBBxM4YFzBmk.roa (raw, json) Hash identifier: 3oTv5O8d+q1+iLsqrQ66x5XP5IxP2Xe8t6XLA/aPXOw= Subject key identifier: 99:8B:8C:87:C4:59:C0:76:E5:5B:DB:E9:04:1C:4C:E1:81:73:06:69 Certificate issuer: /CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB Certificate serial: 2A6B Authority key identifier: 5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/mYuMh8RZwHblW9vpBBxM4YFzBmk.roa Signing time: Sat 15 Jun 2024 19:55:43 +0000 ROA not before: Sat 15 Jun 2024 19:55:43 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 151492 IP address blocks: 103.186.136.0/24 maxlen: 24 103.186.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10859 (0x2a6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB Validity Not Before: Jun 15 19:55:43 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=998B8C87C459C076E55BDBE9041C4CE181730669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:97:a3:de:df:fa:ea:66:d6:e4:fd:a4:4d:6f: aa:f1:1b:92:58:3d:7d:d6:63:c3:f5:6c:1d:c1:18: 47:79:49:45:35:b2:09:56:cf:70:ba:68:f2:f8:4c: 45:d9:4c:fe:c0:60:6f:8e:82:bf:f7:e1:10:63:c4: e3:4e:15:a8:a6:e1:e3:11:04:46:a2:ae:3e:d6:b8: a3:20:ae:36:ef:b3:b2:79:af:ba:d9:f1:53:fa:eb: eb:4e:b1:a9:28:78:cf:7b:cd:4c:2b:9a:d5:f5:de: 0f:38:90:39:a7:c2:70:a4:10:7d:89:dc:77:95:d2: 50:bb:39:3e:6c:8f:e9:dc:bc:5d:cb:d6:44:59:42: 20:24:17:63:ce:e3:1b:80:00:59:61:ca:0b:f6:56: a2:b3:cf:79:2d:25:71:10:47:44:c9:54:91:50:33: 6f:f2:22:5b:fd:2d:a4:2e:30:3d:26:58:61:dc:dc: 73:39:c7:7c:e8:67:7f:d3:e3:6d:21:b6:28:78:3b: 24:5a:4d:1d:2f:ee:0d:fa:7d:44:32:6b:d0:19:2e: 1e:98:b4:86:18:e0:45:03:78:10:52:32:4e:e5:7e: 77:9a:98:86:02:aa:50:b7:9f:fc:15:43:17:cf:c5: 08:f6:6b:50:68:18:56:3c:50:a2:61:25:c0:43:e6: 78:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8B:8C:87:C4:59:C0:76:E5:5B:DB:E9:04:1C:4C:E1:81:73:06:69 X509v3 Authority Key Identifier: keyid:5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/mYuMh8RZwHblW9vpBBxM4YFzBmk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.186.136.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:2f:a0:4a:72:ee:5c:f3:36:66:d4:8e:07:ce:ae:94:0a:e6: 4a:b6:73:76:b6:82:41:e9:0c:a2:93:88:7e:4d:7a:e1:26:82: c7:ae:47:55:35:68:79:40:86:5e:d3:38:04:88:08:e1:bc:00: 38:1a:7c:98:40:1e:f3:e9:12:4c:7a:2d:ef:00:57:3e:73:09: 99:5f:2d:35:28:9a:6e:65:25:1c:04:88:32:cb:71:a0:fb:54: 56:78:c2:b2:db:bd:ba:89:2b:cd:78:61:b9:af:3d:91:30:b3: 3e:7f:d5:00:79:3d:89:bc:4e:3a:31:98:89:cd:e0:0c:2e:ed: 6c:6e:50:be:11:59:0e:23:59:e9:9f:ec:97:d6:c3:c9:50:81: e0:fb:77:ed:e6:79:83:e4:2b:ec:5c:ba:92:09:43:fe:d1:5d: 6e:21:e9:1d:d1:cc:f5:a9:aa:77:88:d7:a1:e4:f2:94:b1:cf: ac:9e:2a:24:6e:8b:00:36:fe:21:2d:12:82:13:16:9d:81:76: 92:d0:3c:83:2f:8d:93:46:f9:e7:2f:b6:ca:b5:fc:17:b1:6d: 24:a8:84:fc:bb:fc:c9:29:44:2c:a8:b5:46:54:4a:3f:23:bd: 07:ba:2c:06:23:dd:a9:d8:c2:ab:c9:72:6b:b7:cd:70:c2:fa: 78:9a:3e:a1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICKmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUY0 NzhGNDNGMEFGOEZFQUNDQjgxRURDN0E5Qzc2MTQzMTgwQzlBQjAeFw0yNDA2MTUx OTU1NDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDk5OEI4Qzg3QzQ1OUMw NzZFNTVCREJFOTA0MUM0Q0UxODE3MzA2NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrl6Pe3/rqZtbk/aRNb6rxG5JYPX3WY8P1bB3BGEd5SUU1sglW z3C6aPL4TEXZTP7AYG+Ogr/34RBjxONOFaim4eMRBEairj7WuKMgrjbvs7J5r7rZ 8VP66+tOsakoeM97zUwrmtX13g84kDmnwnCkEH2J3HeV0lC7OT5sj+ncvF3L1kRZ QiAkF2PO4xuAAFlhygv2VqKzz3ktJXEQR0TJVJFQM2/yIlv9LaQuMD0mWGHc3HM5 x3zoZ3/T420htih4OyRaTR0v7g36fUQya9AZLh6YtIYY4EUDeBBSMk7lfneamIYC qlC3n/wVQxfPxQj2a1BoGFY8UKJhJcBD5ni5AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUmYuMh8RZwHblW9vpBBxM4YFzBmkwHwYDVR0jBBgwFoAUX0ePQ/Cvj+rMuB7c epx2FDGAyaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE0 Ni9YMGVQUV9Ddmotck11QjdjZXB4MkZER0F5YXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1gwZVBRX0N2ai1yTXVCN2NlcHgyRkRHQXlhcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNDYvbVl1TWg4Ulp3SGJs Vzl2cEJCeE00WUZ6Qm1rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWe6iDANBgkqhkiG9w0BAQsFAAOCAQEAay+gSnLuXPM2ZtSOB86ulArmSrZz draCQekMopOIfk164SaCx65HVTVoeUCGXtM4BIgI4bwAOBp8mEAe8+kSTHot7wBX PnMJmV8tNSiabmUlHASIMstxoPtUVnjCstu9uokrzXhhua89kTCzPn/VAHk9ibxO OjGYic3gDC7tbG5QvhFZDiNZ6Z/sl9bDyVCB4Pt37eZ5g+Qr7Fy6kglD/tFdbiHp HdHM9amqd4jXoeTylLHPrJ4qJG6LADb+IS0SghMWnYF2ktA8gy+Nk0b55y+2yrX8 F7FtJKiE/Lv8ySlELKi1RlRKPyO9B7osBiPdqdjCq8lya7fNcML6eJo+oQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:45 2024 by rpki-client on console-ams.rpki-client.org