$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa File: p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa (raw, json) Hash identifier: ME+EBRtckuYtQG4SD53RhFtatuorO97DAlg/zpUiSps= Subject key identifier: A7:B2:6A:9F:6D:C8:B8:4D:05:A5:04:6E:CF:99:20:50:8C:73:6C:EB Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Certificate serial: 0F57 Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa Signing time: Tue 15 Oct 2024 09:41:07 +0000 ROA not before: Tue 15 Oct 2024 09:41:07 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 137443 IP address blocks: 103.218.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 12:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Validity Not Before: Oct 15 09:41:07 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=A7B26A9F6DC8B84D05A5046ECF9920508C736CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7d:6d:13:58:c4:74:fa:b2:8e:d0:2a:88:90: bb:1f:cb:34:f5:55:09:d3:0b:38:05:75:68:97:0a: 56:1e:f4:97:0b:66:aa:2d:fc:34:6d:98:b2:45:15: fd:10:e8:44:10:00:84:0e:75:c0:34:09:f4:37:09: ca:5f:a6:35:ef:70:29:21:5a:cd:76:6b:37:d4:83: 69:96:98:5f:ea:58:c8:7c:e9:8e:32:31:bc:a9:f4: 1e:00:89:8b:56:a4:f1:6a:34:48:5a:5b:b5:0c:54: ae:3e:ce:18:6e:b9:f8:89:74:fd:95:49:f8:f9:46: 87:83:88:75:d5:b1:01:d7:e1:c8:cf:cd:71:0e:8b: 91:21:2b:af:60:24:22:56:d0:f3:e6:c0:f5:42:61: ac:f7:94:a6:20:d3:ce:5a:7f:af:81:38:36:1e:eb: 30:e0:dd:b8:7f:71:13:29:6b:97:0e:c1:31:7d:e2: ac:8a:d3:9f:1c:0f:ff:02:e5:41:22:c1:3f:fe:ff: ea:71:72:12:81:4e:cd:4d:f5:51:72:89:ea:ac:ae: f6:c1:0e:33:f1:1b:50:d2:a5:16:c3:f6:a6:66:0a: 79:68:c8:ee:73:c4:2f:4b:44:71:7c:19:93:66:f8: 21:46:58:b6:58:d2:99:e3:cf:56:27:98:85:83:5c: 9a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B2:6A:9F:6D:C8:B8:4D:05:A5:04:6E:CF:99:20:50:8C:73:6C:EB X509v3 Authority Key Identifier: keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.218.93.0/24 Signature Algorithm: sha256WithRSAEncryption b8:7c:21:d6:a0:f0:28:05:18:14:1e:8e:55:b2:23:99:ab:23: 18:91:1d:6d:95:65:4f:10:05:e8:4d:dc:d0:6a:d1:ce:ab:ad: d9:cb:31:b2:a7:bd:e3:23:99:36:3c:92:c1:f1:4b:eb:3d:45: 30:ac:19:4c:c7:3b:18:74:a1:9b:cd:16:bb:f4:cf:03:9a:9d: 9e:c1:0e:ed:58:7b:27:2d:7d:ca:c1:2c:ec:17:ff:55:45:69: c8:be:35:99:8a:54:ea:65:e8:38:0c:97:2d:0e:62:f4:26:e4: 60:4b:5f:25:83:63:b0:fd:d3:6d:98:bb:ef:09:df:a7:6b:b8: 4a:ab:3f:f6:45:7b:c2:4e:f0:d5:63:d9:7e:82:21:0c:53:3d: ec:62:6a:40:cd:60:15:c3:1b:d8:da:35:1d:79:7e:d2:1c:7a: 13:ef:3d:d0:6c:f3:f2:da:53:47:10:49:b5:9f:35:c8:c3:81: 2b:1b:ba:2a:1a:29:b0:7a:0e:69:c2:cd:d7:51:c9:9b:25:09: 15:4b:6c:8f:2d:7b:81:92:31:6f:54:31:63:b8:ec:69:31:d2: 4d:58:a5:24:48:ac:83:ba:9d:ce:11:83:05:1a:7a:4b:70:b2: fd:2f:b6:53:37:8c:11:5f:3a:a0:be:b5:af:c7:c3:76:67:34: 2d:ea:80:38 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDJG QjA1REUzQzU0NEE5RjFDMzQ0QTYzRUI1RjZDRkREMzQ4MTE1NjAeFw0yNDEwMTUw OTQxMDdaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEE3QjI2QTlGNkRDOEI4 NEQwNUE1MDQ2RUNGOTkyMDUwOEM3MzZDRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUfW0TWMR0+rKO0CqIkLsfyzT1VQnTCzgFdWiXClYe9JcLZqot /DRtmLJFFf0Q6EQQAIQOdcA0CfQ3CcpfpjXvcCkhWs12azfUg2mWmF/qWMh86Y4y Mbyp9B4AiYtWpPFqNEhaW7UMVK4+zhhuufiJdP2VSfj5RoeDiHXVsQHX4cjPzXEO i5EhK69gJCJW0PPmwPVCYaz3lKYg085af6+BODYe6zDg3bh/cRMpa5cOwTF94qyK 058cD/8C5UEiwT/+/+pxchKBTs1N9VFyieqsrvbBDjPxG1DSpRbD9qZmCnloyO5z xC9LRHF8GZNm+CFGWLZY0pnjz1YnmIWDXJrPAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUp7Jqn23IuE0FpQRuz5kgUIxzbOswHwYDVR0jBBgwFoAUAvsF3jxUSp8cNEpj 619s/dNIEVYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0F2c0YzanhVU3A4Y05FcGo2MTlzX2ROSUVWWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzEvcDdKcW4yM0l1RTBG cFFSdXo1a2dVSXh6Yk9zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfaXTANBgkqhkiG9w0BAQsFAAOCAQEAuHwh1qDwKAUYFB6OVbIjmasjGJEd bZVlTxAF6E3c0GrRzqut2csxsqe94yOZNjySwfFL6z1FMKwZTMc7GHShm80Wu/TP A5qdnsEO7Vh7Jy19ysEs7Bf/VUVpyL41mYpU6mXoOAyXLQ5i9CbkYEtfJYNjsP3T bZi77wnfp2u4Sqs/9kV7wk7w1WPZfoIhDFM97GJqQM1gFcMb2No1HXl+0hx6E+89 0Gzz8tpTRxBJtZ81yMOBKxu6KhopsHoOacLN11HJmyUJFUtsjy17gZIxb1QxY7js aTHSTVilJEisg7qdzhGDBRp6S3Cy/S+2UzeMEV86oL61r8fDdmc0LeqAOA== -----END CERTIFICATE-----Generated at Mon Nov 25 09:07:22 2024 by rpki-client on console-fra.rpki-client.org