$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/E-M1zrZ1VgMPsvQs6ptKjjwBKEE.roa File: E-M1zrZ1VgMPsvQs6ptKjjwBKEE.roa (raw, json) Hash identifier: E+JlJ9owRGERj4fcb8S7sEUCY+F+gH0TcizADICZ0kc= Subject key identifier: 13:E3:35:CE:B6:75:56:03:0F:B2:F4:2C:EA:9B:4A:8E:3C:01:28:41 Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Certificate serial: 0EE9 Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/E-M1zrZ1VgMPsvQs6ptKjjwBKEE.roa Signing time: Tue 24 Sep 2024 00:18:32 +0000 ROA not before: Tue 24 Sep 2024 00:18:32 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 137443 IP address blocks: 103.139.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 10:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3817 (0xee9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Validity Not Before: Sep 24 00:18:32 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=13E335CEB67556030FB2F42CEA9B4A8E3C012841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:da:34:5f:d2:62:34:f8:05:a2:d6:1a:2a:31: b8:dd:a1:6f:7a:21:c4:db:49:a7:c5:11:f3:65:8b: 53:79:51:52:f7:07:d6:3c:d3:6d:aa:7c:1b:48:a0: 88:56:06:1d:0c:56:b4:60:81:f1:0f:b7:73:f6:c0: a4:00:5a:95:ce:17:cb:56:dc:b3:ff:a2:31:77:36: 0a:be:dd:6e:4a:c1:08:f5:8d:2d:6c:72:73:a7:09: 0e:b0:e1:f3:23:06:77:03:61:43:2a:ad:f3:67:77: e7:38:05:88:07:92:34:9a:7e:b5:93:49:1c:57:5d: 86:c9:28:ff:59:e6:fb:0e:11:63:a0:6b:87:16:24: da:1c:d9:bc:eb:31:d8:4e:d9:7c:22:a2:e9:4a:7b: 61:a5:c7:73:9f:99:ac:a2:f5:4b:97:aa:a0:9f:41: 1b:3b:72:f5:08:83:70:35:83:53:d1:a0:9f:ee:b0: 77:52:bc:c1:bb:fb:4c:23:b4:9a:cd:c8:20:44:9c: ff:c3:35:91:8e:7f:89:4e:01:0d:ad:12:95:39:fd: d0:d4:09:73:28:f0:74:65:a4:8c:31:cb:f4:6c:26: a9:93:75:a9:e6:cf:1f:bb:32:73:71:ef:13:bf:56: 97:e5:6a:fe:de:0a:18:37:98:15:31:a8:9d:26:ee: 61:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E3:35:CE:B6:75:56:03:0F:B2:F4:2C:EA:9B:4A:8E:3C:01:28:41 X509v3 Authority Key Identifier: keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/E-M1zrZ1VgMPsvQs6ptKjjwBKEE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.139.92.0/23 Signature Algorithm: sha256WithRSAEncryption 09:fd:80:89:9d:17:a0:71:95:81:18:f0:9c:04:b4:34:c0:05: 7e:81:a5:d5:c7:5b:95:6d:77:0d:c5:45:d5:fa:53:c4:96:fc: f2:ab:8c:68:13:f1:c6:b9:eb:19:ff:c0:8a:46:fd:ec:31:d5: d1:26:15:36:f9:35:b0:cf:84:de:7e:10:57:d5:08:78:28:8a: b8:b7:e6:0c:3a:b4:1b:74:86:0b:6e:3b:94:84:6d:63:f8:91: ce:bb:c5:25:91:5e:0b:e4:2b:6c:8f:6b:df:dd:6b:ef:0a:85: 73:77:01:6d:e4:a4:8e:6f:1c:35:3b:56:d4:f3:e7:65:5c:51: bb:20:83:0e:86:6d:86:84:b9:e5:08:f0:dd:17:aa:5b:c3:68: 2c:c1:6c:30:36:cf:ad:c1:32:d6:e8:34:72:64:09:29:1d:8c: 39:9b:42:27:12:8a:53:3f:b4:7b:9e:42:25:5e:f1:43:b7:b3: a3:b2:c1:15:24:bd:ee:8d:71:63:42:ce:cc:7b:09:57:8e:6d: d1:d2:02:60:48:04:f3:8d:e3:83:22:cc:b6:a4:8f:28:96:5c: 53:22:51:17:39:ad:46:96:0a:bd:46:77:99:27:00:ef:e1:f7: d7:ad:13:61:fb:15:69:ec:de:55:7c:8d:9c:95:3a:9b:0f:9f: 71:2c:07:55 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDJG QjA1REUzQzU0NEE5RjFDMzQ0QTYzRUI1RjZDRkREMzQ4MTE1NjAeFw0yNDA5MjQw MDE4MzJaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKDEzRTMzNUNFQjY3NTU2 MDMwRkIyRjQyQ0VBOUI0QThFM0MwMTI4NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa2jRf0mI0+AWi1hoqMbjdoW96IcTbSafFEfNli1N5UVL3B9Y8 022qfBtIoIhWBh0MVrRggfEPt3P2wKQAWpXOF8tW3LP/ojF3Ngq+3W5KwQj1jS1s cnOnCQ6w4fMjBncDYUMqrfNnd+c4BYgHkjSafrWTSRxXXYbJKP9Z5vsOEWOga4cW JNoc2bzrMdhO2XwioulKe2Glx3Ofmayi9UuXqqCfQRs7cvUIg3A1g1PRoJ/usHdS vMG7+0wjtJrNyCBEnP/DNZGOf4lOAQ2tEpU5/dDUCXMo8HRlpIwxy/RsJqmTdanm zx+7MnNx7xO/Vpflav7eChg3mBUxqJ0m7mG9AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUE+M1zrZ1VgMPsvQs6ptKjjwBKEEwHwYDVR0jBBgwFoAUAvsF3jxUSp8cNEpj 619s/dNIEVYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0F2c0YzanhVU3A4Y05FcGo2MTlzX2ROSUVWWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzEvRS1NMXpyWjFWZ01Q c3ZRczZwdEtqandCS0VFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeLXDANBgkqhkiG9w0BAQsFAAOCAQEACf2AiZ0XoHGVgRjwnAS0NMAFfoGl 1cdblW13DcVF1fpTxJb88quMaBPxxrnrGf/Aikb97DHV0SYVNvk1sM+E3n4QV9UI eCiKuLfmDDq0G3SGC247lIRtY/iRzrvFJZFeC+QrbI9r391r7wqFc3cBbeSkjm8c NTtW1PPnZVxRuyCDDoZthoS55Qjw3ReqW8NoLMFsMDbPrcEy1ug0cmQJKR2MOZtC JxKKUz+0e55CJV7xQ7ezo7LBFSS97o1xY0LOzHsJV45t0dICYEgE843jgyLMtqSP KJZcUyJRFzmtRpYKvUZ3mScA7+H3160TYfsVaezeVXyNnJU6mw+fcSwHVQ== -----END CERTIFICATE-----Generated at Fri Nov 22 06:38:11 2024 by rpki-client on console-ams.rpki-client.org