$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3181/mkZoSud_BPjcfugCbo_tKUEp0Lw.roa File: mkZoSud_BPjcfugCbo_tKUEp0Lw.roa (raw, json) Hash identifier: yovEmheF3JrY06N8yXuLRT50i5W2qzSu3lgNvmfLK9Q= Subject key identifier: 9A:46:68:4A:E7:7F:04:F8:DC:7E:E8:02:6E:8F:ED:29:41:29:D0:BC Certificate issuer: /CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75 Certificate serial: 06CF Authority key identifier: 13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/mkZoSud_BPjcfugCbo_tKUEp0Lw.roa Signing time: Thu 29 Aug 2024 03:46:34 +0000 ROA not before: Thu 29 Aug 2024 03:46:34 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 38378 IP address blocks: 103.29.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75 Validity Not Before: Aug 29 03:46:34 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=9A46684AE77F04F8DC7EE8026E8FED294129D0BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:77:37:d6:80:f5:4f:c9:eb:3d:30:9a:10:f1: 01:40:0a:8e:5b:b5:99:93:97:aa:6c:1a:15:d5:1f: de:d1:65:09:77:44:ac:71:ce:ed:e1:af:36:c0:e3: c0:69:10:3d:67:9e:a6:ba:8e:54:f6:44:0c:8e:49: 12:d6:b1:64:d2:c9:d6:ff:5d:71:d5:a7:ac:21:50: b4:46:4e:44:3d:1f:7d:48:d7:2e:a7:17:cf:18:c2: 60:87:e5:fd:91:fb:e7:61:b2:fa:d2:b5:b6:ca:3c: 8e:23:2c:07:80:f2:84:3a:97:33:ff:81:f7:21:4e: 91:0f:d9:b4:f7:7b:61:d0:8b:5e:0e:7b:8d:56:e2: e7:56:5a:17:4a:55:b1:c7:99:24:9c:9e:bf:9a:a3: ff:db:a3:93:84:dd:b9:9d:f4:6b:11:f4:b2:95:35: 59:ea:d9:a0:70:80:7f:b2:14:6b:27:0b:f0:02:ff: 48:0d:27:0c:ca:17:a8:07:c5:15:db:14:12:db:1b: 79:d7:ce:0e:c5:d7:17:16:95:6e:22:55:48:a9:f6: 51:9e:48:c0:19:ee:89:be:b1:91:3b:b8:ea:41:91: a1:a1:4f:c8:18:f1:35:a8:5b:6c:05:8b:5d:af:44: 1e:e8:47:c2:d9:2b:51:76:69:40:1b:9f:5b:6f:ac: 05:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:46:68:4A:E7:7F:04:F8:DC:7E:E8:02:6E:8F:ED:29:41:29:D0:BC X509v3 Authority Key Identifier: keyid:13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/mkZoSud_BPjcfugCbo_tKUEp0Lw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.29.24.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:30:17:0b:26:48:cf:92:60:61:38:df:96:16:e4:5c:2a:33: f5:05:12:5f:f5:9e:81:b6:26:f1:98:64:82:22:f4:0b:3f:18: 54:e7:7c:2c:ab:02:28:6e:3b:a5:c6:3b:e3:35:ef:d7:d3:97: 62:91:3f:7b:a7:7a:10:20:27:d0:c1:ad:60:dd:5d:9f:c9:22: 4e:1c:3e:4e:61:f2:8f:15:59:13:b0:a6:3a:99:7e:70:01:c3: 50:06:8c:d2:8b:8e:fe:ec:dc:f2:3d:e5:eb:5a:20:75:7d:17: 08:44:5e:06:a7:a3:fb:f5:f9:e9:a9:8c:fb:89:b5:d1:bb:ba: d9:0c:c8:bb:5f:ab:f2:c1:ef:e2:f5:88:1c:c0:23:ce:5a:47: 77:03:59:fc:eb:56:fb:de:47:78:87:d7:d9:a8:a6:26:5d:53: 53:18:85:fb:8a:ca:dd:3e:7e:eb:5e:7d:ea:ce:86:20:2c:f4: 9d:03:fa:a5:0a:ea:e7:bf:5b:90:d2:b5:69:c4:2a:ef:6b:02: 92:ce:4d:45:0b:14:d6:62:69:46:3a:e8:36:de:1e:23:a5:2e: e2:21:a5:3d:3b:4f:8f:8f:10:c2:28:c5:6f:27:dd:9b:4b:10: 1f:c3:c7:96:44:d2:05:d6:b2:03:77:23:dc:63:ad:98:14:98: b2:06:11:2d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTM2 QTM5Qzc2MzBBM0M3NDkxMDUwRDNFOURCRDVCNkY3OTA2RkQ3NTAeFw0yNDA4Mjkw MzQ2MzRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDlBNDY2ODRBRTc3RjA0 RjhEQzdFRTgwMjZFOEZFRDI5NDEyOUQwQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwdzfWgPVPyes9MJoQ8QFACo5btZmTl6psGhXVH97RZQl3RKxx zu3hrzbA48BpED1nnqa6jlT2RAyOSRLWsWTSydb/XXHVp6whULRGTkQ9H31I1y6n F88YwmCH5f2R++dhsvrStbbKPI4jLAeA8oQ6lzP/gfchTpEP2bT3e2HQi14Oe41W 4udWWhdKVbHHmSScnr+ao//bo5OE3bmd9GsR9LKVNVnq2aBwgH+yFGsnC/AC/0gN JwzKF6gHxRXbFBLbG3nXzg7F1xcWlW4iVUip9lGeSMAZ7om+sZE7uOpBkaGhT8gY 8TWoW2wFi12vRB7oR8LZK1F2aUAbn1tvrAXzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUmkZoSud/BPjcfugCbo/tKUEp0LwwHwYDVR0jBBgwFoAUE2o5x2MKPHSRBQ0+ nb1bb3kG/XUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE4 MS9FMm81eDJNS1BIU1JCUTAtbmIxYmIza0dfWFUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0UybzV4Mk1LUEhTUkJRMC1uYjFiYjNrR19YVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxODEvbWtab1N1ZF9CUGpj ZnVnQ2JvX3RLVUVwMEx3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWcdGDANBgkqhkiG9w0BAQsFAAOCAQEAfTAXCyZIz5JgYTjflhbkXCoz9QUS X/WegbYm8ZhkgiL0Cz8YVOd8LKsCKG47pcY74zXv19OXYpE/e6d6ECAn0MGtYN1d n8kiThw+TmHyjxVZE7CmOpl+cAHDUAaM0ouO/uzc8j3l61ogdX0XCEReBqej+/X5 6amM+4m10bu62QzIu1+r8sHv4vWIHMAjzlpHdwNZ/OtW+95HeIfX2aimJl1TUxiF +4rK3T5+61596s6GICz0nQP6pQrq579bkNK1acQq72sCks5NRQsU1mJpRjroNt4e I6Uu4iGlPTtPj48QwijFbyfdm0sQH8PHlkTSBdayA3cj3GOtmBSYsgYRLQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:45 2024 by rpki-client on console-ams.rpki-client.org