$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/mPJb61oPRDRGv0Vw_YVHs56UF2Q.roa File: mPJb61oPRDRGv0Vw_YVHs56UF2Q.roa (raw, json) Hash identifier: NmzCYXxDVY/ATD5/MpyQR6rrgCQwGMZYKgy/zJdwIuY= Subject key identifier: 98:F2:5B:EB:5A:0F:44:34:46:BF:45:70:FD:85:47:B3:9E:94:17:64 Certificate issuer: /CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Certificate serial: 15EA Authority key identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/mPJb61oPRDRGv0Vw_YVHs56UF2Q.roa Signing time: Wed 13 Mar 2024 01:21:46 +0000 ROA not before: Wed 13 Mar 2024 01:21:46 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 56002 IP address blocks: 103.12.232.0/22 maxlen: 24 103.12.232.0/24 maxlen: 24 103.12.233.0/24 maxlen: 24 103.12.234.0/24 maxlen: 24 103.12.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5610 (0x15ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Validity Not Before: Mar 13 01:21:46 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=98F25BEB5A0F443446BF4570FD8547B39E941764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:15:46:18:f1:dc:75:51:a9:1d:0f:bd:a8:a6: 24:bf:cd:16:19:08:a5:90:31:89:d5:55:48:c4:cc: ba:b7:a9:12:9d:b8:e3:32:4c:ad:3f:fc:8c:d5:ff: c4:08:d1:3a:80:e2:17:40:ad:0f:8e:43:27:b1:2f: 1d:eb:9c:84:dc:3c:43:ab:e2:77:d1:e1:bb:98:2f: 0a:83:ee:6b:8c:d1:6a:a3:af:dc:cb:a8:a1:0d:3b: 19:52:64:79:03:99:79:a2:f4:06:69:d0:3d:49:0e: 6b:96:d8:4d:8f:11:03:91:76:ed:27:c4:c8:60:ba: ea:d9:69:13:4e:f0:83:de:87:a9:7c:9c:a5:6f:07: a0:01:66:80:86:cb:74:a3:a0:d8:97:f4:ab:f3:c8: c9:f0:40:a5:1a:10:c3:08:17:20:1b:8a:1b:6e:d8: 0c:c0:e2:bd:97:c0:a1:41:b9:a0:28:ca:c0:a3:a6: 87:3b:af:aa:d8:20:ee:54:f8:16:e7:80:06:bd:0f: cb:7b:51:b1:84:bd:20:cb:31:f3:66:05:2d:94:73: 64:62:2f:56:90:37:ca:d7:05:aa:f1:ec:f6:4e:e4: f3:39:c6:51:7b:e1:0f:60:59:c7:2f:30:7a:26:2e: 76:c7:85:67:f4:9f:e2:f6:4a:63:8e:17:6d:a3:e2: 31:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F2:5B:EB:5A:0F:44:34:46:BF:45:70:FD:85:47:B3:9E:94:17:64 X509v3 Authority Key Identifier: keyid:46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/mPJb61oPRDRGv0Vw_YVHs56UF2Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.12.232.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:b6:56:c3:65:9c:72:7d:0f:cb:10:b7:35:63:7e:1c:ed:2f: bc:ec:db:07:25:c1:91:80:47:82:0c:83:e9:1e:3f:22:9e:4c: 24:65:c3:53:63:c9:3f:79:f4:af:89:03:11:3d:c0:e7:2c:3a: 1d:79:a5:ad:b5:9f:09:50:57:04:3d:11:4e:e2:b5:fc:5c:9a: 54:c4:35:27:2e:60:ee:77:59:fb:eb:17:17:35:96:be:2a:de: 07:43:4c:ab:3d:75:df:1b:71:97:6f:c2:07:db:36:b3:73:f5: bb:4c:f9:78:d1:6b:d6:52:e1:c0:2d:16:4c:c1:31:07:99:89: 9b:9f:fd:26:12:49:05:81:09:cc:20:c2:28:20:68:f9:21:8a: 8f:33:40:10:58:86:8e:5d:37:91:12:2b:4a:f9:e6:f9:76:d3: cb:80:95:20:1e:cf:d2:18:97:64:3d:f2:20:d1:61:2a:20:51: f0:44:0b:90:ed:b8:c4:a4:d5:4a:e6:0c:24:57:f4:bc:5c:aa: cf:b1:94:5b:62:b9:aa:70:3a:d2:03:bb:42:1f:d6:3c:2c:30: 81:84:5a:5c:d1:58:37:f3:41:63:0e:3c:3a:3c:53:71:45:bc: ff:3b:eb:ac:76:d3:a4:8d:58:38:c7:1e:40:21:d3:44:c6:cd: dc:2b:3a:d1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDZG ODM0M0RDREFEM0FBQzQwODU2MDQ5MkMyMUI1OUQ3NjJCQzQ1NjAeFw0yNDAzMTMw MTIxNDZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDk4RjI1QkVCNUEwRjQ0 MzQ0NkJGNDU3MEZEODU0N0IzOUU5NDE3NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBFUYY8dx1UakdD72opiS/zRYZCKWQMYnVVUjEzLq3qRKduOMy TK0//IzV/8QI0TqA4hdArQ+OQyexLx3rnITcPEOr4nfR4buYLwqD7muM0Wqjr9zL qKENOxlSZHkDmXmi9AZp0D1JDmuW2E2PEQORdu0nxMhguurZaRNO8IPeh6l8nKVv B6ABZoCGy3SjoNiX9KvzyMnwQKUaEMMIFyAbihtu2AzA4r2XwKFBuaAoysCjpoc7 r6rYIO5U+BbngAa9D8t7UbGEvSDLMfNmBS2Uc2RiL1aQN8rXBarx7PZO5PM5xlF7 4Q9gWccvMHomLnbHhWf0n+L2SmOOF22j4jG7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmPJb61oPRDRGv0Vw/YVHs56UF2QwHwYDVR0jBBgwFoAURvg0Pc2tOqxAhWBJ LCG1nXYrxFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3 L1J2ZzBQYzJ0T3F4QWhXQkpMQ0cxblhZcnhGWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvUnZnMFBjMnRPcXhBaFdCSkxDRzFuWFlyeEZZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3L21QSmI2MW9QUkRSR3Yw VndfWVZIczU2VUYyUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnDOgwDQYJKoZIhvcNAQELBQADggEBAB62VsNlnHJ9D8sQtzVjfhztL7zs2wcl wZGAR4IMg+kePyKeTCRlw1NjyT959K+JAxE9wOcsOh15pa21nwlQVwQ9EU7itfxc mlTENScuYO53WfvrFxc1lr4q3gdDTKs9dd8bcZdvwgfbNrNz9btM+XjRa9ZS4cAt FkzBMQeZiZuf/SYSSQWBCcwgwiggaPkhio8zQBBYho5dN5ESK0r55vl208uAlSAe z9IYl2Q98iDRYSogUfBEC5DtuMSk1UrmDCRX9Lxcqs+xlFtiuapwOtIDu0If1jws MIGEWlzRWDfzQWMOPDo8U3FFvP8766x206SNWDjHHkAh00TGzdwrOtE= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:12 2024 by rpki-client on console-fra.rpki-client.org