$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/7xBsRNPb116fVHv9upCYI7P7GIE.roa File: 7xBsRNPb116fVHv9upCYI7P7GIE.roa (raw, json) Hash identifier: 86HhfpBrB0xPC+ofOIzKaCHZ/dRZNWI4inFRfql8+nM= Subject key identifier: EF:10:6C:44:D3:DB:D7:5E:9F:54:7B:FD:BA:90:98:23:B3:FB:18:81 Certificate issuer: /CN=9077E7B0AF580F78FE010699FA0DB8107E186F07 Certificate serial: 6B Authority key identifier: 90:77:E7:B0:AF:58:0F:78:FE:01:06:99:FA:0D:B8:10:7E:18:6F:07 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/7xBsRNPb116fVHv9upCYI7P7GIE.roa Signing time: Wed 21 Feb 2024 06:48:54 +0000 ROA not before: Wed 21 Feb 2024 06:48:54 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 398704 IP address blocks: 157.15.94.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 01:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9077E7B0AF580F78FE010699FA0DB8107E186F07 Validity Not Before: Feb 21 06:48:54 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=EF106C44D3DBD75E9F547BFDBA909823B3FB1881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:92:9b:e8:3c:de:fc:dd:5a:a1:91:77:aa:d7: 11:a7:97:5f:15:c7:a1:1f:ea:6d:2c:a4:c3:66:aa: 72:62:0b:30:72:5b:00:e2:03:c0:ca:93:50:5f:12: 80:04:18:c7:e8:84:4d:62:ca:78:97:10:ad:05:fd: 5c:48:f5:76:37:89:91:e5:78:5f:08:7b:fb:79:4c: 43:8d:15:05:1d:74:d4:83:d3:94:0a:3c:ea:c7:5d: d2:e4:f1:c8:24:20:87:c2:a2:5d:61:c8:32:09:98: a1:1b:49:9f:95:c6:fe:90:a5:d4:8c:43:29:15:79: 96:01:3a:87:96:00:9a:af:d7:d4:30:e7:78:aa:ab: d4:f0:bb:ed:f0:91:9a:ac:03:c6:17:c6:37:b1:26: de:c9:48:88:9e:7e:7d:74:73:7e:db:b9:34:e5:ac: d0:20:c7:ce:19:3e:cb:d1:4a:d7:04:ad:cd:67:59: 67:91:f1:15:8d:c3:23:f9:8c:fc:24:f9:05:17:d5: 22:43:98:ab:da:24:cb:ee:fc:a6:2c:98:88:f7:33: 37:10:cf:0d:2c:16:6a:a9:8e:5b:3e:93:17:10:9f: c9:4f:99:41:c1:31:ad:91:ae:04:13:10:1b:d5:88: 90:34:85:ed:9f:8f:86:61:80:04:06:7c:33:f4:07: 63:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:10:6C:44:D3:DB:D7:5E:9F:54:7B:FD:BA:90:98:23:B3:FB:18:81 X509v3 Authority Key Identifier: keyid:90:77:E7:B0:AF:58:0F:78:FE:01:06:99:FA:0D:B8:10:7E:18:6F:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/7xBsRNPb116fVHv9upCYI7P7GIE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.15.94.0/23 Signature Algorithm: sha256WithRSAEncryption 62:29:c3:3a:64:6b:85:8b:b5:f6:9f:af:dc:ef:69:8f:a2:a5: e5:b6:80:7e:39:02:ea:a8:37:8a:9e:05:28:12:69:09:08:0a: 86:bb:22:1b:50:96:59:af:1b:b5:e7:bf:11:53:e3:76:2c:d1: aa:df:00:13:e0:db:47:77:52:7b:be:f4:13:3c:06:ad:bb:5b: 7b:97:b3:e8:d0:87:08:fc:b5:9d:1e:93:fc:6b:59:ea:ec:d5: 94:15:e8:30:b8:fd:63:d2:a2:de:7f:60:d4:dd:84:3e:88:bd: 59:90:4d:39:68:94:89:34:87:0f:28:ed:9c:5c:ab:bb:4e:fa: 4c:ce:a1:99:5d:28:98:fb:7d:9d:9c:e1:82:af:01:1b:d2:26: fd:f6:b9:9b:d6:5f:9a:45:82:07:b0:2d:22:7e:76:d2:95:39: 73:fa:4e:53:7d:1e:92:cb:7b:a9:7f:f0:a9:c3:55:7e:1a:56: 9a:08:9a:12:57:4b:d6:47:78:c4:6c:f4:fe:85:29:4f:85:79: 4d:9e:fe:2b:8f:ab:5b:63:8a:81:55:d8:95:12:86:10:cc:64: a4:58:f8:ed:8d:fa:63:63:70:b9:0e:1d:21:f6:57:ce:32:26: 43:97:ff:01:de:c7:13:37:e2:b2:e2:d4:87:e9:51:da:b9:7e: f6:5b:c9:66 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MDc3 RTdCMEFGNTgwRjc4RkUwMTA2OTlGQTBEQjgxMDdFMTg2RjA3MB4XDTI0MDIyMTA2 NDg1NFoXDTI1MDEzMTAxMTM0NlowMzExMC8GA1UEAxMoRUYxMDZDNDREM0RCRDc1 RTlGNTQ3QkZEQkE5MDk4MjNCM0ZCMTg4MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL2Sm+g83vzdWqGRd6rXEaeXXxXHoR/qbSykw2aqcmILMHJbAOID wMqTUF8SgAQYx+iETWLKeJcQrQX9XEj1djeJkeV4Xwh7+3lMQ40VBR101IPTlAo8 6sdd0uTxyCQgh8KiXWHIMgmYoRtJn5XG/pCl1IxDKRV5lgE6h5YAmq/X1DDneKqr 1PC77fCRmqwDxhfGN7Em3slIiJ5+fXRzftu5NOWs0CDHzhk+y9FK1wStzWdZZ5Hx FY3DI/mM/CT5BRfVIkOYq9oky+78piyYiPczNxDPDSwWaqmOWz6TFxCfyU+ZQcEx rZGuBBMQG9WIkDSF7Z+PhmGABAZ8M/QHY38CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTvEGxE09vXXp9Ue/26kJgjs/sYgTAfBgNVHSMEGDAWgBSQd+ewr1gPeP4BBpn6 DbgQfhhvBzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMjYy L2tIZm5zSzlZRDNqLUFRYVotZzI0RUg0WWJ3Yy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAva0hmbnNLOVlEM2otQVFhWi1nMjRFSDRZYndjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2Mi83eEJzUk5QYjExNmZW SHY5dXBDWUk3UDdHSUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBnQ9eMA0GCSqGSIb3DQEBCwUAA4IBAQBiKcM6ZGuFi7X2n6/c72mPoqXltoB+ OQLqqDeKngUoEmkJCAqGuyIbUJZZrxu1578RU+N2LNGq3wAT4NtHd1J7vvQTPAat u1t7l7Po0IcI/LWdHpP8a1nq7NWUFegwuP1j0qLef2DU3YQ+iL1ZkE05aJSJNIcP KO2cXKu7TvpMzqGZXSiY+32dnOGCrwEb0ib99rmb1l+aRYIHsC0ifnbSlTlz+k5T fR6Sy3upf/Cpw1V+GlaaCJoSV0vWR3jEbPT+hSlPhXlNnv4rj6tbY4qBVdiVEoYQ zGSkWPjtjfpjY3C5Dh0h9lfOMiZDl/8B3scTN+Ky4tSH6VHauX72W8lm -----END CERTIFICATE-----Generated at Sat May 4 21:35:34 2024 by rpki-client on console-fra.rpki-client.org