$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/fNe_BsODTjtu_X4fDnHMD4wWwQU.roa File: fNe_BsODTjtu_X4fDnHMD4wWwQU.roa (raw, json) Hash identifier: EZgyDLhFQUml2gR652E2g7HvUVMqYbTJiL0+RgZZYQ4= Subject key identifier: 7C:D7:BF:06:C3:83:4E:3B:6E:FD:7E:1F:0E:71:CC:0F:8C:16:C1:05 Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 014C Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/fNe_BsODTjtu_X4fDnHMD4wWwQU.roa Signing time: Mon 22 Jul 2024 05:39:56 +0000 ROA not before: Mon 22 Jul 2024 05:39:56 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 984 IP address blocks: 113.31.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 01:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jul 22 05:39:56 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=7CD7BF06C3834E3B6EFD7E1F0E71CC0F8C16C105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fe:34:d1:ab:f8:7f:8a:4a:16:60:6c:eb:37: 19:c1:0b:eb:aa:a5:15:c0:51:8a:05:56:fb:64:b5: 5d:a0:14:12:79:d1:cc:4e:87:4b:d5:cd:15:d9:4b: 30:4c:47:a8:2e:2f:a2:3f:28:b7:07:a2:e1:49:6c: 87:97:8b:4d:d6:a2:d7:6b:5b:74:9d:f3:ea:85:a4: 7b:ff:a6:87:1e:fa:1a:c3:9d:f8:be:d3:5b:5e:c2: 0e:c3:59:1e:c8:87:58:9f:7f:d0:5c:c2:24:3b:fb: dd:46:c2:62:da:00:08:8b:58:47:85:51:95:b6:ab: 2d:ad:60:c1:71:ff:31:c0:37:73:e8:69:da:11:de: b1:89:d2:65:4b:e1:4c:4b:02:cc:08:0d:98:48:f1: 9b:45:53:1b:62:a3:80:46:15:c7:81:02:b4:4e:74: d8:df:86:4a:d3:6d:68:e2:f6:65:52:1a:34:f7:e1: bf:a2:e9:da:62:ec:b1:8f:39:f8:7f:7b:de:a1:74: bf:30:58:35:d7:ab:d4:f8:7b:32:bb:79:0e:bf:5d: 2d:30:15:54:35:0b:69:34:4f:10:4c:bd:26:18:dd: 50:b8:42:3e:24:6e:91:f3:89:11:7d:95:24:f0:51: e8:4c:3d:36:34:77:7e:f7:02:73:46:95:93:f8:67: 03:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D7:BF:06:C3:83:4E:3B:6E:FD:7E:1F:0E:71:CC:0F:8C:16:C1:05 X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/fNe_BsODTjtu_X4fDnHMD4wWwQU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.72.0/22 Signature Algorithm: sha256WithRSAEncryption 08:b8:04:c8:56:c0:3a:94:a5:15:74:a8:4a:d9:da:f9:f3:80: c1:90:d1:02:d7:f4:61:3c:23:23:01:80:96:ec:1a:b7:fa:f2: 79:e6:be:b0:19:3b:c8:ba:8f:35:25:78:a5:d7:b6:24:aa:c1: 3a:54:37:4b:b5:eb:2e:7a:0c:8e:94:c0:f5:15:56:01:fd:1c: 3d:74:54:98:4b:13:08:ba:2c:70:51:c9:3e:00:63:3a:49:6d: 90:db:fb:6b:9d:ff:77:8e:1a:4c:33:08:6a:35:28:35:2e:88: 1d:0e:09:d3:45:13:75:bc:a2:b9:3d:30:b3:88:8a:e4:a4:5c: ee:54:ab:b9:7e:ca:44:14:95:8b:92:21:8a:b6:43:6d:84:4d: f0:7d:f4:4a:a0:71:13:cc:5a:7a:6b:99:59:f1:47:96:f3:5b: b7:f9:b5:98:03:5e:c3:37:48:ed:b4:8e:fd:60:2a:f1:ad:91: 67:56:b9:05:f6:8c:c2:d0:a5:aa:89:09:02:ef:67:83:be:08: f1:0b:2d:19:0b:60:bb:26:f1:f8:1f:d6:ea:8c:61:ab:9a:53: 89:30:8d:55:91:76:dc:d7:31:5a:9e:44:a8:ef:97:ae:9f:48: e4:59:2a:fa:39:d9:e1:77:04:e6:cb:2b:87:f9:e1:32:e3:30: 5f:38:94:62 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3 MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNDA3MjIw NTM5NTZaFw0yNTA1MjEwMzMwMTBaMDMxMTAvBgNVBAMTKDdDRDdCRjA2QzM4MzRF M0I2RUZEN0UxRjBFNzFDQzBGOEMxNkMxMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe/jTRq/h/ikoWYGzrNxnBC+uqpRXAUYoFVvtktV2gFBJ50cxO h0vVzRXZSzBMR6guL6I/KLcHouFJbIeXi03WotdrW3Sd8+qFpHv/poce+hrDnfi+ 01tewg7DWR7Ih1iff9BcwiQ7+91GwmLaAAiLWEeFUZW2qy2tYMFx/zHAN3PoadoR 3rGJ0mVL4UxLAswIDZhI8ZtFUxtio4BGFceBArROdNjfhkrTbWji9mVSGjT34b+i 6dpi7LGPOfh/e96hdL8wWDXXq9T4ezK7eQ6/XS0wFVQ1C2k0TxBMvSYY3VC4Qj4k bpHziRF9lSTwUehMPTY0d373AnNGlZP4ZwOzAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUfNe/BsODTjtu/X4fDnHMD4wWwQUwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL2ZOZV9Cc09EVGp0dV9Y NGZEbkhNRDR3V3dRVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJxH0gwDQYJKoZIhvcNAQELBQADggEBAAi4BMhWwDqUpRV0qErZ2vnzgMGQ0QLX 9GE8IyMBgJbsGrf68nnmvrAZO8i6jzUleKXXtiSqwTpUN0u16y56DI6UwPUVVgH9 HD10VJhLEwi6LHBRyT4AYzpJbZDb+2ud/3eOGkwzCGo1KDUuiB0OCdNFE3W8ork9 MLOIiuSkXO5Uq7l+ykQUlYuSIYq2Q22ETfB99EqgcRPMWnprmVnxR5bzW7f5tZgD XsM3SO20jv1gKvGtkWdWuQX2jMLQpaqJCQLvZ4O+CPELLRkLYLsm8fgf1uqMYaua U4kwjVWRdtzXMVqeRKjvl66fSORZKvo52eF3BObLK4f54TLjMF84lGI= -----END CERTIFICATE-----Generated at Wed Sep 18 21:14:25 2024 by rpki-client on console-ams.rpki-client.org