$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/gqkXI3dKqi50Bi-LbLN9WzsZomc.roa File: gqkXI3dKqi50Bi-LbLN9WzsZomc.roa (raw, json) Hash identifier: IkzYnAylzoJXrcN4JUd/PjmUUx5tBOtxJ0fiTrAZwXs= Subject key identifier: 82:A9:17:23:77:4A:AA:2E:74:06:2F:8B:6C:B3:7D:5B:3B:19:A2:67 Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Certificate serial: 015A Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/gqkXI3dKqi50Bi-LbLN9WzsZomc.roa Signing time: Wed 24 Jul 2024 14:32:31 +0000 ROA not before: Wed 24 Jul 2024 14:32:31 +0000 ROA not after: Wed 21 May 2025 03:30:10 +0000 asID: 136744 IP address blocks: 113.31.16.0/21 maxlen: 24 113.31.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 10:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF Validity Not Before: Jul 24 14:32:31 2024 GMT Not After : May 21 03:30:10 2025 GMT Subject: CN=82A91723774AAA2E74062F8B6CB37D5B3B19A267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f5:4c:29:92:a9:06:fe:ea:da:1d:26:cd:73: c6:12:5e:95:c5:1b:58:6e:4b:f6:d5:3c:40:10:86: 57:23:a2:65:93:3f:d7:a3:af:49:1e:1d:6b:dd:e8: 8d:e1:4d:20:2b:aa:03:1b:69:ca:ef:e0:12:ef:74: 75:ae:4d:c0:78:a4:bf:6b:9c:b1:3f:8c:a7:33:ca: 5b:09:0d:47:81:4e:54:dd:36:26:3c:23:a4:64:c9: 07:20:90:43:ca:91:f1:20:e7:3c:81:0f:f1:84:61: 11:96:60:48:8e:4e:c1:00:a1:48:40:86:af:54:0e: 8e:2b:b3:be:62:22:cd:f6:ee:2a:c2:6e:d9:be:58: 2b:4f:7f:29:12:59:8f:9d:a9:f7:3a:1d:6f:1f:78: 1a:96:12:a3:aa:57:c2:11:74:07:a1:61:1c:dc:a0: 54:03:71:f0:e8:2a:41:99:99:1a:95:af:5a:33:72: 12:b2:dd:83:28:a4:d2:95:9f:27:89:d4:ec:41:f0: fb:a2:1a:d3:f8:5a:04:ef:26:22:49:09:8a:d8:56: c9:22:4f:ff:3a:2a:f3:dc:c3:fe:5a:24:98:08:a4: e5:c6:ee:b8:04:62:f8:02:97:41:20:d9:98:14:5d: 1f:49:57:f0:1b:56:c2:fc:ab:03:1c:1b:36:9d:d5: 2f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A9:17:23:77:4A:AA:2E:74:06:2F:8B:6C:B3:7D:5B:3B:19:A2:67 X509v3 Authority Key Identifier: keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/gqkXI3dKqi50Bi-LbLN9WzsZomc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.16.0/20 Signature Algorithm: sha256WithRSAEncryption 87:49:a9:94:42:df:ec:3f:ea:b0:03:0d:80:a3:e5:4e:a0:28: 1f:55:83:9b:e4:1e:30:87:c3:84:97:77:1a:3c:39:f7:27:a2: f8:75:aa:3d:e8:a3:43:88:dd:ab:9a:a2:0b:5b:23:be:56:f2: 5f:8f:1d:c9:28:74:0f:20:d4:70:34:83:8e:f4:49:5e:a3:1f: f8:66:f2:e3:af:68:12:07:c8:c0:d8:07:f5:fb:11:a3:b9:b2: 5b:22:9a:57:a2:17:8e:84:52:7b:f0:5e:4d:b9:64:e5:79:33: e2:f0:ff:f2:79:bb:3f:4b:d0:d3:fc:0d:55:56:1a:0d:35:7a: 68:46:52:ae:b4:d7:83:7b:10:90:de:77:63:9e:89:35:76:0c: 08:d6:96:67:0d:14:da:72:11:05:01:89:6d:b6:4d:60:9f:3e: fa:d2:d1:12:df:9e:f3:8c:e6:5b:50:2f:2a:06:41:44:8f:5f: 72:64:3b:19:34:a0:75:eb:f7:43:94:46:19:85:f2:62:22:d6: a8:a2:15:4c:b9:e2:9c:fd:30:ca:43:4a:4a:1c:a4:3c:fd:68: 29:83:f3:d3:01:8b:3c:b8:b9:17:58:84:85:43:64:34:f8:f2: 48:b6:e4:71:79:c6:da:29:a2:99:b6:9e:12:ce:54:14:a7:d4: 4c:5d:6a:04 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3 MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNDA3MjQx NDMyMzFaFw0yNTA1MjEwMzMwMTBaMDMxMTAvBgNVBAMTKDgyQTkxNzIzNzc0QUFB MkU3NDA2MkY4QjZDQjM3RDVCM0IxOUEyNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD9UwpkqkG/uraHSbNc8YSXpXFG1huS/bVPEAQhlcjomWTP9ej r0keHWvd6I3hTSArqgMbacrv4BLvdHWuTcB4pL9rnLE/jKczylsJDUeBTlTdNiY8 I6RkyQcgkEPKkfEg5zyBD/GEYRGWYEiOTsEAoUhAhq9UDo4rs75iIs327irCbtm+ WCtPfykSWY+dqfc6HW8feBqWEqOqV8IRdAehYRzcoFQDcfDoKkGZmRqVr1ozchKy 3YMopNKVnyeJ1OxB8PuiGtP4WgTvJiJJCYrYVskiT/86KvPcw/5aJJgIpOXG7rgE YvgCl0Eg2ZgUXR9JV/AbVsL8qwMcGzad1S9NAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUgqkXI3dKqi50Bi+LbLN9WzsZomcwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL2dxa1hJM2RLcWk1MEJp LUxiTE45V3pzWm9tYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BARxHxAwDQYJKoZIhvcNAQELBQADggEBAIdJqZRC3+w/6rADDYCj5U6gKB9Vg5vk HjCHw4SXdxo8Ofcnovh1qj3oo0OI3auaogtbI75W8l+PHckodA8g1HA0g470SV6j H/hm8uOvaBIHyMDYB/X7EaO5slsimleiF46EUnvwXk25ZOV5M+Lw//J5uz9L0NP8 DVVWGg01emhGUq6014N7EJDed2OeiTV2DAjWlmcNFNpyEQUBiW22TWCfPvrS0RLf nvOM5ltQLyoGQUSPX3JkOxk0oHXr90OURhmF8mIi1qiiFUy54pz9MMpDSkocpDz9 aCmD89MBizy4uRdYhIVDZDT48ki25HF5xtopopm2nhLOVBSn1ExdagQ= -----END CERTIFICATE-----Generated at Fri Nov 22 07:02:36 2024 by rpki-client on console-fra.rpki-client.org