$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/-Iv332yT_1Ti1TQXXY81fOrFlps.roa File: -Iv332yT_1Ti1TQXXY81fOrFlps.roa (raw, json) Hash identifier: QJCCYtb53J2eZfP9nMw4YT21OUVvIg4TlYFeOezcAek= Subject key identifier: F8:8B:F7:DF:6C:93:FF:54:E2:D5:34:17:5D:8F:35:7C:EA:C5:96:9B Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 0110 Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/-Iv332yT_1Ti1TQXXY81fOrFlps.roa Signing time: Thu 11 Jul 2024 11:45:30 +0000 ROA not before: Thu 11 Jul 2024 11:45:30 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 136897 IP address blocks: 113.31.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 01:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jul 11 11:45:30 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=F88BF7DF6C93FF54E2D534175D8F357CEAC5969B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:fb:04:92:a2:20:54:4f:a8:5b:b1:41:a7: 9d:fc:ae:8f:5c:08:f3:22:20:57:68:fc:50:a0:93: 52:6b:21:15:b5:46:dc:ea:21:78:69:b2:f1:1f:f3: bd:43:ac:13:a9:38:2f:c8:d8:c8:7f:66:0d:82:9d: 51:0d:82:b5:d4:5d:cb:57:63:3c:91:bc:8d:76:72: 41:c0:6d:6e:da:8c:d7:d2:26:17:a6:93:9d:4d:23: cd:cb:c9:fd:f7:51:c0:33:9d:e0:67:31:de:20:a3: 77:2a:7f:1f:f0:d7:aa:fa:1c:a9:30:39:7f:44:3d: cf:dc:d5:60:c9:07:45:4c:9e:1f:b7:b6:d7:a8:ff: 15:28:04:b9:28:ba:85:c8:dd:e8:9a:80:f2:f9:95: 55:00:40:3f:57:2c:e1:87:30:2b:d3:c2:8b:b8:07: 9b:bb:61:b9:28:e3:77:72:91:87:8c:f4:6e:1c:79: de:7a:97:bd:7f:0f:f3:b3:ef:54:1b:65:99:72:84: 0e:90:ad:57:41:82:58:09:5a:17:6c:c3:c5:06:0c: 18:06:37:ea:bb:11:ac:95:cf:ed:66:77:46:41:e1: 5f:a7:07:c9:ab:18:ef:eb:28:81:45:1d:b8:13:53: fb:fa:20:fd:59:5b:61:32:71:41:57:bc:cd:e4:8f: 96:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8B:F7:DF:6C:93:FF:54:E2:D5:34:17:5D:8F:35:7C:EA:C5:96:9B X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/-Iv332yT_1Ti1TQXXY81fOrFlps.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.32.0/21 Signature Algorithm: sha256WithRSAEncryption 47:22:9a:18:a3:5a:2d:a1:f8:f4:f0:9b:e6:d4:25:93:c8:ce: b5:39:2a:68:36:35:ea:44:c3:c4:29:e8:51:15:22:bf:f9:12: 8c:6f:d7:90:84:82:83:5d:79:e0:c2:0d:73:e2:8a:19:64:65: 4d:22:8e:e0:10:d4:bd:70:24:97:b0:91:ed:6b:93:12:34:0e: d5:cd:2c:a4:9e:77:3d:a0:f0:20:d1:4a:a1:1a:1e:f9:27:7e: ba:67:1a:b6:53:fd:48:e4:2f:b3:34:57:22:f5:97:c6:c2:c2: 32:74:94:0f:27:03:45:78:36:d4:ca:f9:6d:f8:e5:06:f3:62: 06:4f:df:bb:f5:5a:91:32:44:f3:0f:e1:7f:7e:6e:ef:b5:32: 7c:b8:f7:bc:00:76:e3:63:a8:a9:15:c1:92:4c:e8:d8:26:5c: c4:44:9b:fc:cd:40:79:8f:e0:05:93:35:0e:16:b0:41:58:16: 47:a3:cd:b6:86:32:bb:db:d0:ad:42:09:87:fe:40:13:95:d1: e4:a4:74:64:43:d3:90:ec:20:51:d1:39:4c:15:ce:ae:2f:35: 80:2a:85:d7:63:e8:a6:04:38:8f:68:d0:fb:5f:5f:03:e6:35: 11:7f:62:cc:bc:6b:2c:e3:2d:0c:b7:65:29:68:c8:ce:f3:64: 49:0b:23:98 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICARAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3 MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNDA3MTEx MTQ1MzBaFw0yNTA1MjEwMzMwMTBaMDMxMTAvBgNVBAMTKEY4OEJGN0RGNkM5M0ZG NTRFMkQ1MzQxNzVEOEYzNTdDRUFDNTk2OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+8fsEkqIgVE+oW7FBp538ro9cCPMiIFdo/FCgk1JrIRW1Rtzq IXhpsvEf871DrBOpOC/I2Mh/Zg2CnVENgrXUXctXYzyRvI12ckHAbW7ajNfSJhem k51NI83Lyf33UcAzneBnMd4go3cqfx/w16r6HKkwOX9EPc/c1WDJB0VMnh+3tteo /xUoBLkouoXI3eiagPL5lVUAQD9XLOGHMCvTwou4B5u7Ybko43dykYeM9G4ced56 l71/D/Oz71QbZZlyhA6QrVdBglgJWhdsw8UGDBgGN+q7EayVz+1md0ZB4V+nB8mr GO/rKIFFHbgTU/v6IP1ZW2EycUFXvM3kj5Z5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU+Iv332yT/1Ti1TQXXY81fOrFlpswHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwLy1JdjMzMnlUXzFUaTFU UVhYWTgxZk9yRmxwcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BANxHyAwDQYJKoZIhvcNAQELBQADggEBAEcimhijWi2h+PTwm+bUJZPIzrU5Kmg2 NepEw8Qp6FEVIr/5Eoxv15CEgoNdeeDCDXPiihlkZU0ijuAQ1L1wJJewke1rkxI0 DtXNLKSedz2g8CDRSqEaHvknfrpnGrZT/UjkL7M0VyL1l8bCwjJ0lA8nA0V4NtTK +W345QbzYgZP37v1WpEyRPMP4X9+bu+1Mny497wAduNjqKkVwZJM6NgmXMREm/zN QHmP4AWTNQ4WsEFYFkejzbaGMrvb0K1CCYf+QBOV0eSkdGRD05DsIFHROUwVzq4v NYAqhddj6KYEOI9o0PtfXwPmNRF/Ysy8ayzjLQy3ZSloyM7zZEkLI5g= -----END CERTIFICATE-----Generated at Wed Sep 18 21:14:25 2024 by rpki-client on console-ams.rpki-client.org