$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/_wDMJnTXq8pSNUopZaTRf2ycZWQ.roa File: _wDMJnTXq8pSNUopZaTRf2ycZWQ.roa (raw, json) Hash identifier: i3yGq40M57VuZ7Q1RR+vRV0zxBaa6pIWvf/v4bW24do= Subject key identifier: FF:00:CC:26:74:D7:AB:CA:52:35:4A:29:65:A4:D1:7F:6C:9C:65:64 Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 0127 Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/_wDMJnTXq8pSNUopZaTRf2ycZWQ.roa Signing time: Mon 15 Jul 2024 06:29:34 +0000 ROA not before: Mon 15 Jul 2024 06:29:34 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 2914 IP address blocks: 113.31.0.0/21 maxlen: 24 113.31.8.0/21 maxlen: 24 113.31.16.0/21 maxlen: 24 113.31.24.0/21 maxlen: 24 113.31.56.0/21 maxlen: 24 113.31.80.0/22 maxlen: 24 113.31.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Sep 2024 02:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jul 15 06:29:34 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=FF00CC2674D7ABCA52354A2965A4D17F6C9C6564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:21:0d:1b:ca:10:83:08:4c:d4:a7:81:1f: 95:9d:d1:c6:18:66:22:0a:e6:73:22:19:be:3b:d5: 94:94:9e:14:a6:49:a0:5d:7e:23:db:d4:75:7d:57: 8d:b2:a4:f6:ad:ba:5b:a2:cb:05:29:c1:77:30:8b: 50:de:42:ec:c9:d4:68:dd:04:7f:ee:ee:08:38:51: 43:1a:50:6d:d8:a2:fe:f6:87:4c:db:e9:ef:12:c5: ed:5c:c0:1d:bc:77:e1:83:21:1a:54:8d:3a:f3:d0: ed:20:4a:8f:6c:a3:44:46:82:7c:31:62:60:44:ef: 7f:70:43:98:60:24:c4:27:f2:96:6b:2a:54:51:da: ba:0f:4a:88:fa:ec:ef:a8:dd:4a:9e:39:0d:50:18: fc:ee:51:15:f5:bb:a2:2c:d5:da:68:4f:4c:1b:57: d2:c5:ed:16:ba:f0:17:9d:ac:df:b3:b7:e7:60:8d: 44:68:30:43:b6:e5:7e:aa:dd:d3:14:ec:5c:84:c7: 97:0d:4c:a4:9e:59:74:f0:07:3e:ec:83:49:bb:91: 24:99:3f:f0:c2:5a:e0:a8:d4:42:8f:66:10:31:a0: c2:c9:b3:10:7d:65:7a:e9:ff:96:7b:c5:9a:bb:a8: c3:a7:de:38:7d:78:09:9f:d2:ef:93:c1:d5:c3:ce: 59:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:00:CC:26:74:D7:AB:CA:52:35:4A:29:65:A4:D1:7F:6C:9C:65:64 X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/_wDMJnTXq8pSNUopZaTRf2ycZWQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.0.0/19 113.31.56.0/21 113.31.80.0/21 Signature Algorithm: sha256WithRSAEncryption 46:b3:a0:0d:37:ef:ac:69:40:fd:94:99:3f:00:f6:3f:95:cf: 93:f3:0d:b0:76:f2:e2:05:e2:e8:bb:78:1d:8f:2b:f1:da:54: cc:23:4c:e5:ed:f3:20:e7:fd:5a:af:0b:43:48:59:ce:13:a8: dc:fc:2a:ce:3d:c3:d9:0b:76:59:8c:42:f2:c4:aa:27:a3:3e: c0:56:24:a9:b5:0f:1a:7d:88:49:c3:36:1e:f4:b6:fa:16:e8: 4d:51:ae:42:4d:63:31:ab:fa:8a:25:80:21:6c:d3:fc:9e:1f: 99:e9:0e:b0:8e:08:5e:53:31:f3:76:a8:b2:a1:2c:6e:c3:0b: 37:bc:42:78:50:5c:17:c3:3e:a6:d2:56:10:37:45:b9:a5:d3: d6:9f:7a:82:3e:18:f2:c8:60:d5:70:4e:75:4b:fd:92:f1:ab: a7:58:67:c3:9e:19:cf:31:1d:b3:05:ba:b8:5b:a9:38:8b:c7: 33:37:89:79:ac:3e:b3:7f:31:a7:a0:56:65:e3:fa:1b:e7:af: 9c:87:b7:78:c5:3c:2c:2f:c7:1b:54:02:89:36:13:59:28:cd: a1:67:28:ec:48:89:b3:ca:c6:6a:90:33:80:58:d5:03:9c:8c: 64:11:bd:7b:eb:74:bb:5d:d4:35:51:cb:6c:0b:1b:bd:c2:13: 24:f0:b8:2c -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3 MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNDA3MTUw NjI5MzRaFw0yNTA1MjEwMzMwMTBaMDMxMTAvBgNVBAMTKEZGMDBDQzI2NzREN0FC Q0E1MjM1NEEyOTY1QTREMTdGNkM5QzY1NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh1SENG8oQgwhM1KeBH5Wd0cYYZiIK5nMiGb471ZSUnhSmSaBd fiPb1HV9V42ypPatuluiywUpwXcwi1DeQuzJ1GjdBH/u7gg4UUMaUG3Yov72h0zb 6e8Sxe1cwB28d+GDIRpUjTrz0O0gSo9so0RGgnwxYmBE739wQ5hgJMQn8pZrKlRR 2roPSoj67O+o3UqeOQ1QGPzuURX1u6Is1dpoT0wbV9LF7Ra68BedrN+zt+dgjURo MEO25X6q3dMU7FyEx5cNTKSeWXTwBz7sg0m7kSSZP/DCWuCo1EKPZhAxoMLJsxB9 ZXrp/5Z7xZq7qMOn3jh9eAmf0u+TwdXDzlk7AgMBAAGjggH9MIIB+TAdBgNVHQ4E FgQU/wDMJnTXq8pSNUopZaTRf2ycZWQwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL193RE1KblRYcThwU05V b3BaYVRSZjJ5Y1pXUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID BAVxHwADBANxHzgDBANxH1AwDQYJKoZIhvcNAQELBQADggEBAEazoA0376xpQP2U mT8A9j+Vz5PzDbB28uIF4ui7eB2PK/HaVMwjTOXt8yDn/VqvC0NIWc4TqNz8Ks49 w9kLdlmMQvLEqiejPsBWJKm1Dxp9iEnDNh70tvoW6E1RrkJNYzGr+oolgCFs0/ye H5npDrCOCF5TMfN2qLKhLG7DCze8QnhQXBfDPqbSVhA3Rbml09afeoI+GPLIYNVw TnVL/ZLxq6dYZ8OeGc8xHbMFurhbqTiLxzM3iXmsPrN/MaegVmXj+hvnr5yHt3jF PCwvxxtUAok2E1kozaFnKOxIibPKxmqQM4BY1QOcjGQRvXvrdLtd1DVRy2wLG73C EyTwuCw= -----END CERTIFICATE-----Generated at Sat Sep 7 23:19:02 2024 by rpki-client on console-fra.rpki-client.org