$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/bGDdvDCWdAGyEibfBn5swNGvjtE.roa File: bGDdvDCWdAGyEibfBn5swNGvjtE.roa (raw, json) Hash identifier: C3DU7y+/2HvqeUkgAPjDBWh4olulMlNsBYbI1G3K2YA= Subject key identifier: 6C:60:DD:BC:30:96:74:01:B2:12:26:DF:06:7E:6C:C0:D1:AF:8E:D1 Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Certificate serial: 0F5A Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/bGDdvDCWdAGyEibfBn5swNGvjtE.roa Signing time: Tue 15 Oct 2024 09:41:08 +0000 ROA not before: Tue 15 Oct 2024 09:41:08 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 137443 IP address blocks: 103.197.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 10:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3930 (0xf5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Validity Not Before: Oct 15 09:41:08 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=6C60DDBC30967401B21226DF067E6CC0D1AF8ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c1:88:17:ef:cb:6f:15:2c:d1:a7:31:f2:eb: 88:69:d7:44:a3:2d:64:ab:10:9a:62:c0:e1:19:2e: 55:f5:54:e0:a7:14:dd:0e:d6:2c:58:28:f4:16:0a: 91:f5:7d:64:ba:db:cf:3f:a6:7b:28:e0:38:35:da: cc:4e:d0:4a:43:a8:09:1d:f6:af:a3:bf:9f:a9:67: 04:5e:ad:7e:b8:28:1b:70:95:77:0b:55:71:52:28: f9:7d:fe:18:b9:20:23:39:83:2b:8a:19:1b:bf:a0: b9:72:bb:bd:69:85:13:d6:73:de:03:3e:f0:d3:38: 23:d3:56:19:fe:fe:51:7e:bb:5c:06:b0:88:8b:62: 63:eb:ab:7c:09:64:bb:15:14:62:36:b1:cc:26:ee: 72:db:af:2b:cf:73:b0:35:27:49:8c:02:2e:0d:e2: af:be:c5:a0:4c:b3:2e:90:9c:21:a7:9c:42:45:92: 59:05:56:91:f0:0d:86:ea:2c:60:c4:28:2b:20:22: a0:98:ef:18:1d:29:91:f4:16:a6:4a:46:29:76:50: 62:b7:0a:2e:c1:87:6e:5c:56:07:02:b1:dd:f3:ac: 5e:b0:f5:b4:97:70:34:30:96:7e:09:f2:f0:af:6b: 90:5a:59:20:46:67:1d:74:d0:f9:3d:93:a0:38:38: 5a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:60:DD:BC:30:96:74:01:B2:12:26:DF:06:7E:6C:C0:D1:AF:8E:D1 X509v3 Authority Key Identifier: keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/bGDdvDCWdAGyEibfBn5swNGvjtE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.197.182.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:d8:d8:94:e2:d9:a8:85:b0:a5:98:48:c1:11:fd:48:57:18: 5f:99:b5:38:68:1c:8e:04:e7:98:7b:02:2a:65:9a:f4:f3:5a: 80:da:f3:82:b1:37:82:56:b2:4b:fb:a4:8d:00:80:6e:a3:f4: 5c:bb:ad:96:c8:e6:97:95:8c:a6:32:ef:0e:71:08:ba:bb:f2: e5:6e:d5:a3:79:fa:c9:07:02:c8:1c:f9:06:68:fb:2f:22:7c: 0e:5c:07:10:14:19:1b:05:e4:0b:8a:5e:cd:ee:a0:b8:87:98: 30:8f:89:41:df:fb:ae:9d:a6:26:96:55:aa:d0:76:8a:c2:bf: c2:bb:49:e2:b0:6a:cd:ff:70:60:85:02:6f:8f:05:a6:8f:09: 1e:41:0c:0f:15:0a:94:cd:bd:d7:e3:9e:bd:20:88:53:2d:cf: 1b:bf:cc:5d:8d:6f:e4:56:9f:a4:01:52:4d:1c:6f:13:e0:7b: 96:69:1b:bb:39:85:f8:65:d9:e8:14:6f:7c:23:32:b8:ae:27: ae:be:fc:62:c6:d3:35:18:e3:62:e8:03:60:11:e1:50:6e:f4: 7f:95:98:1e:26:90:20:dc:60:c3:36:d4:18:d5:73:ee:b2:72: 3a:06:e5:62:2e:dd:96:24:6a:1d:94:64:c7:47:87:c2:20:20: e3:4a:dd:ee -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICD1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDJG QjA1REUzQzU0NEE5RjFDMzQ0QTYzRUI1RjZDRkREMzQ4MTE1NjAeFw0yNDEwMTUw OTQxMDhaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDZDNjBEREJDMzA5Njc0 MDFCMjEyMjZERjA2N0U2Q0MwRDFBRjhFRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDawYgX78tvFSzRpzHy64hp10SjLWSrEJpiwOEZLlX1VOCnFN0O 1ixYKPQWCpH1fWS6288/pnso4Dg12sxO0EpDqAkd9q+jv5+pZwRerX64KBtwlXcL VXFSKPl9/hi5ICM5gyuKGRu/oLlyu71phRPWc94DPvDTOCPTVhn+/lF+u1wGsIiL YmPrq3wJZLsVFGI2scwm7nLbryvPc7A1J0mMAi4N4q++xaBMsy6QnCGnnEJFklkF VpHwDYbqLGDEKCsgIqCY7xgdKZH0FqZKRil2UGK3Ci7Bh25cVgcCsd3zrF6w9bSX cDQwln4J8vCva5BaWSBGZx100Pk9k6A4OFoxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUbGDdvDCWdAGyEibfBn5swNGvjtEwHwYDVR0jBBgwFoAUAvsF3jxUSp8cNEpj 619s/dNIEVYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0F2c0YzanhVU3A4Y05FcGo2MTlzX2ROSUVWWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzEvYkdEZHZEQ1dkQUd5 RWliZkJuNXN3Tkd2anRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfFtjANBgkqhkiG9w0BAQsFAAOCAQEAH9jYlOLZqIWwpZhIwRH9SFcYX5m1 OGgcjgTnmHsCKmWa9PNagNrzgrE3glayS/ukjQCAbqP0XLutlsjml5WMpjLvDnEI urvy5W7Vo3n6yQcCyBz5Bmj7LyJ8DlwHEBQZGwXkC4peze6guIeYMI+JQd/7rp2m JpZVqtB2isK/wrtJ4rBqzf9wYIUCb48Fpo8JHkEMDxUKlM291+OevSCIUy3PG7/M XY1v5FafpAFSTRxvE+B7lmkbuzmF+GXZ6BRvfCMyuK4nrr78YsbTNRjjYugDYBHh UG70f5WYHiaQINxgwzbUGNVz7rJyOgblYi7dliRqHZRkx0eHwiAg40rd7g== -----END CERTIFICATE-----Generated at Fri Nov 22 06:38:11 2024 by rpki-client on console-ams.rpki-client.org