$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/UB58DBCHZOXI21eUv0wO5eKeu9M.roa File: UB58DBCHZOXI21eUv0wO5eKeu9M.roa (raw, json) Hash identifier: UXrbGzqGg7RL9Tc4xM4+si3vx9laH51B9ksf9myIDjU= Subject key identifier: 50:1E:7C:0C:10:87:64:E5:C8:DB:57:94:BF:4C:0E:E5:E2:9E:BB:D3 Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 014D Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/UB58DBCHZOXI21eUv0wO5eKeu9M.roa Signing time: Mon 22 Jul 2024 05:39:57 +0000 ROA not before: Mon 22 Jul 2024 05:39:57 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 3356 IP address blocks: 113.31.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 01:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jul 22 05:39:57 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=501E7C0C108764E5C8DB5794BF4C0EE5E29EBBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:94:c0:1b:e7:e5:1f:04:8e:40:e7:18:8f:c1: 8d:1d:13:9b:45:d9:8a:41:ac:8f:46:a6:de:86:c0: c6:5e:e0:36:fb:a2:fe:37:2c:8d:9d:a1:d7:17:c2: d5:af:de:96:3d:6e:65:d4:26:17:ff:2c:0a:fc:4c: 6b:64:7a:1d:c1:ba:53:9e:ef:b5:c1:38:f4:e2:4d: 19:92:97:d3:e3:5e:2d:72:16:31:a2:f3:bb:80:62: 1e:a0:09:71:97:ef:02:b1:59:73:4f:ec:bc:f7:b8: 84:5a:0c:d5:39:e2:82:e2:ba:41:ea:e9:9d:c0:ff: b4:bb:5a:97:ae:5c:b4:75:01:1f:24:49:85:c8:bf: fb:18:27:30:df:98:b8:9f:95:e7:45:9a:67:16:d8: d3:d5:21:ad:b5:b0:3f:a0:ef:51:48:e3:81:4f:5e: 54:cb:bf:e9:ac:cf:01:fb:1f:50:11:5f:46:af:11: d4:c3:4a:b9:52:d7:72:0c:90:02:ef:81:be:0e:37: 2f:a0:0d:14:77:cf:6f:9e:ef:ca:a1:e8:af:f9:7c: 6d:73:36:d4:e3:9e:f1:f2:89:26:0c:23:e0:7e:dd: 0c:c7:44:de:92:c8:0f:20:83:6b:16:63:01:8b:96: 53:71:62:c0:c9:ce:a2:6f:c2:49:3a:b5:ea:57:1b: 0b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1E:7C:0C:10:87:64:E5:C8:DB:57:94:BF:4C:0E:E5:E2:9E:BB:D3 X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/UB58DBCHZOXI21eUv0wO5eKeu9M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.76.0/22 Signature Algorithm: sha256WithRSAEncryption 31:42:cb:93:2b:ad:6c:16:7b:7c:7d:0c:fa:a9:e9:8c:05:80: 63:9d:0f:2b:f3:51:f4:ce:d9:31:f9:1d:b5:2e:86:a1:48:47: 4c:ae:6d:6e:4b:12:37:63:92:06:06:2c:e4:5c:42:9a:8f:b8: 2e:ae:08:ac:3d:ec:21:bd:8d:4e:7d:79:12:e8:4a:97:a8:fd: 87:32:bd:4d:45:a8:0d:94:2c:8e:2b:be:49:0f:d7:6e:36:29: 17:e2:45:de:23:18:1a:94:41:c8:73:01:34:57:fb:6f:3c:7f: 6e:f5:64:b1:eb:b0:59:90:b0:b0:09:37:86:d2:49:eb:30:46: 5f:c1:72:1d:ca:f8:19:ff:ba:39:6c:b4:26:79:0f:98:d4:a7: ba:2b:a7:10:b8:57:38:fc:9a:bf:9c:b8:9d:8a:7a:8b:f7:7a: 78:48:ec:a8:42:2c:8d:83:e6:5e:3c:85:9e:68:1b:65:dc:f1: 95:f1:8c:e5:9a:21:d6:45:04:14:73:60:01:0c:70:dd:1c:81: e5:6c:57:7e:45:97:62:78:f4:70:18:19:1f:f5:62:ef:9e:67: 8b:5c:c8:cb:b3:86:9d:9b:63:ba:54:3d:56:e2:82:a9:e0:65: 52:04:56:63:da:e8:b5:80:a9:f2:37:0b:34:6c:fc:e7:ae:17: 3b:35:bd:4b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3 MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNDA3MjIw NTM5NTdaFw0yNTA1MjEwMzMwMTBaMDMxMTAvBgNVBAMTKDUwMUU3QzBDMTA4NzY0 RTVDOERCNTc5NEJGNEMwRUU1RTI5RUJCRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtlMAb5+UfBI5A5xiPwY0dE5tF2YpBrI9Gpt6GwMZe4Db7ov43 LI2dodcXwtWv3pY9bmXUJhf/LAr8TGtkeh3BulOe77XBOPTiTRmSl9PjXi1yFjGi 87uAYh6gCXGX7wKxWXNP7Lz3uIRaDNU54oLiukHq6Z3A/7S7WpeuXLR1AR8kSYXI v/sYJzDfmLifledFmmcW2NPVIa21sD+g71FI44FPXlTLv+mszwH7H1ARX0avEdTD SrlS13IMkALvgb4ONy+gDRR3z2+e78qh6K/5fG1zNtTjnvHyiSYMI+B+3QzHRN6S yA8gg2sWYwGLllNxYsDJzqJvwkk6tepXGwt7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUUB58DBCHZOXI21eUv0wO5eKeu9MwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL1VCNThEQkNIWk9YSTIx ZVV2MHdPNWVLZXU5TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJxH0wwDQYJKoZIhvcNAQELBQADggEBADFCy5MrrWwWe3x9DPqp6YwFgGOdDyvz UfTO2TH5HbUuhqFIR0yubW5LEjdjkgYGLORcQpqPuC6uCKw97CG9jU59eRLoSpeo /YcyvU1FqA2ULI4rvkkP1242KRfiRd4jGBqUQchzATRX+288f271ZLHrsFmQsLAJ N4bSSeswRl/Bch3K+Bn/ujlstCZ5D5jUp7orpxC4Vzj8mr+cuJ2Keov3enhI7KhC LI2D5l48hZ5oG2Xc8ZXxjOWaIdZFBBRzYAEMcN0cgeVsV35Fl2J49HAYGR/1Yu+e Z4tcyMuzhp2bY7pUPVbigqngZVIEVmPa6LWAqfI3CzRs/OeuFzs1vUs= -----END CERTIFICATE-----Generated at Wed Sep 18 21:14:25 2024 by rpki-client on console-ams.rpki-client.org