$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/868PnKeI2o9h5o7kNxxzvCDu6lo.roa File: 868PnKeI2o9h5o7kNxxzvCDu6lo.roa (raw, json) Hash identifier: onWxCPF4YmLTJrvIOTXh5i8ATiEuFxuDQN49ZMPhLnk= Subject key identifier: F3:AF:0F:9C:A7:88:DA:8F:61:E6:8E:E4:37:1C:73:BC:20:EE:EA:5A Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 015C Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/868PnKeI2o9h5o7kNxxzvCDu6lo.roa Signing time: Wed 24 Jul 2024 14:32:32 +0000 ROA not before: Wed 24 Jul 2024 14:32:32 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 18811 IP address blocks: 113.31.16.0/21 maxlen: 24 113.31.24.0/21 maxlen: 24 113.31.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 01:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jul 24 14:32:32 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=F3AF0F9CA788DA8F61E68EE4371C73BC20EEEA5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:11:59:1a:69:3a:7d:82:45:ad:bb:8f:3f:2d: 39:4a:41:7f:4d:8c:01:49:70:8e:3e:7c:b3:29:26: ee:d5:6c:c0:a8:c8:5f:8e:a6:16:12:28:4b:e4:d7: 6e:75:79:6a:b3:15:78:b7:62:c1:90:62:b2:63:b6: aa:b3:ca:2e:bd:53:e7:82:26:de:88:a7:ef:0d:d3: ed:8a:38:d4:c4:88:df:14:58:1d:99:4f:8a:0a:fd: 0d:68:09:f2:85:ac:be:96:a5:0b:6d:08:1a:e8:b0: 13:12:0a:bc:fc:c3:c2:85:c4:4b:49:e5:58:6e:7b: 46:88:04:db:1d:8d:42:11:2c:9a:7b:aa:8b:e3:a8: 2f:dc:c8:36:ac:88:c2:b1:c5:56:39:6e:7b:39:66: c6:fa:73:59:79:25:f8:5e:12:03:ae:df:2b:0c:b0: 86:b0:09:26:99:af:26:6d:f9:db:68:5c:87:76:32: b2:07:2c:ee:b2:85:76:c3:1a:a5:66:e0:2e:8c:4e: ae:21:5f:2a:86:5e:09:31:1b:81:21:bd:d2:4e:6d: 04:01:95:7c:1f:0a:23:47:ff:0a:27:62:32:85:ec: 23:14:63:76:bc:1b:fb:b5:d4:cd:b0:06:21:ce:37: b2:ff:56:5b:0b:bc:db:d6:32:89:1d:8c:75:20:6c: bb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AF:0F:9C:A7:88:DA:8F:61:E6:8E:E4:37:1C:73:BC:20:EE:EA:5A X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/868PnKeI2o9h5o7kNxxzvCDu6lo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.16.0/20 113.31.76.0/22 Signature Algorithm: sha256WithRSAEncryption ad:9c:12:4b:11:ff:bf:19:00:48:be:ba:32:20:25:c9:b4:b3: ac:c4:cb:ba:0b:22:9d:60:bd:c8:38:a7:58:65:a1:63:de:2f: 99:55:74:e7:13:fc:2e:29:77:28:0e:ee:b6:47:08:8a:cf:36: de:d2:64:70:d9:10:c4:67:a5:85:2b:97:d9:af:0a:d5:87:a2: 54:26:25:e0:b2:df:ef:9b:b2:21:47:8d:fa:8b:7c:39:9d:53: 15:1e:22:fc:f8:b8:d4:1c:31:23:ab:d8:c4:5e:d3:e1:d1:24: 6f:20:49:41:2a:18:1b:c8:8e:6c:68:47:f5:69:4f:10:d6:2f: 05:17:92:48:44:6d:e6:14:23:0b:ec:27:b0:39:f7:98:53:81: fa:b5:0f:9d:d0:16:95:61:ce:88:40:f4:6e:2c:79:7c:75:23: 7f:82:f2:9a:cc:be:2c:b1:10:fe:71:05:ed:db:07:bf:1b:f0: ad:54:d0:66:35:50:3c:47:90:eb:10:bf:52:6c:96:44:1d:7f: 71:d9:3e:50:e0:66:7b:3b:b6:80:bb:63:30:2d:60:4b:75:2f: 58:ea:1c:85:6b:78:f7:f5:58:71:52:75:7a:76:fd:3e:12:47: 7d:04:42:e1:69:84:fa:20:2d:88:26:59:b6:76:c8:88:0b:fb: 2d:ea:38:61 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3 MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNDA3MjQx NDMyMzJaFw0yNTA1MjEwMzMwMTBaMDMxMTAvBgNVBAMTKEYzQUYwRjlDQTc4OERB OEY2MUU2OEVFNDM3MUM3M0JDMjBFRUVBNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOEVkaaTp9gkWtu48/LTlKQX9NjAFJcI4+fLMpJu7VbMCoyF+O phYSKEvk1251eWqzFXi3YsGQYrJjtqqzyi69U+eCJt6Ip+8N0+2KONTEiN8UWB2Z T4oK/Q1oCfKFrL6WpQttCBrosBMSCrz8w8KFxEtJ5Vhue0aIBNsdjUIRLJp7qovj qC/cyDasiMKxxVY5bns5Zsb6c1l5JfheEgOu3ysMsIawCSaZryZt+dtoXId2MrIH LO6yhXbDGqVm4C6MTq4hXyqGXgkxG4EhvdJObQQBlXwfCiNH/wonYjKF7CMUY3a8 G/u11M2wBiHON7L/VlsLvNvWMokdjHUgbLvxAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQU868PnKeI2o9h5o7kNxxzvCDu6lowHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwLzg2OFBuS2VJMm85aDVv N2tOeHh6dkNEdTZsby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BARxHxADBAJxH0wwDQYJKoZIhvcNAQELBQADggEBAK2cEksR/78ZAEi+ujIgJcm0 s6zEy7oLIp1gvcg4p1hloWPeL5lVdOcT/C4pdygO7rZHCIrPNt7SZHDZEMRnpYUr l9mvCtWHolQmJeCy3++bsiFHjfqLfDmdUxUeIvz4uNQcMSOr2MRe0+HRJG8gSUEq GBvIjmxoR/VpTxDWLwUXkkhEbeYUIwvsJ7A595hTgfq1D53QFpVhzohA9G4seXx1 I3+C8prMviyxEP5xBe3bB78b8K1U0GY1UDxHkOsQv1JslkQdf3HZPlDgZns7toC7 YzAtYEt1L1jqHIVrePf1WHFSdXp2/T4SR30EQuFphPogLYgmWbZ2yIgL+y3qOGE= -----END CERTIFICATE-----Generated at Wed Sep 18 21:14:25 2024 by rpki-client on console-ams.rpki-client.org