$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/3EYvU4qEu6rlUm-yKIVI762pTLc.roa File: 3EYvU4qEu6rlUm-yKIVI762pTLc.roa (raw, json) Hash identifier: qIqao28T1FykpW3sdKjq0hofaaeJktPW5QGGqWYs+g8= Subject key identifier: DC:46:2F:53:8A:84:BB:AA:E5:52:6F:B2:28:85:48:EF:AD:A9:4C:B7 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 1732 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/3EYvU4qEu6rlUm-yKIVI762pTLc.roa Signing time: Fri 24 May 2024 02:26:44 +0000 ROA not before: Fri 24 May 2024 02:26:44 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 56282 IP address blocks: 211.155.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 23:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5938 (0x1732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: May 24 02:26:44 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=DC462F538A84BBAAE5526FB2288548EFADA94CB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:34:a0:64:9c:ca:bc:63:32:a6:08:40:b1:bf: b7:dc:6a:7a:45:9e:a9:63:52:ff:31:d5:92:bd:08: bc:6e:5f:d9:13:f4:99:cb:93:d6:55:4b:7b:6b:eb: cf:7b:a1:c3:af:ac:15:aa:29:26:07:79:d3:f7:e8: 21:0e:74:bb:19:ce:a7:72:bc:35:83:81:74:ab:cc: 71:f5:5e:ca:0c:7a:89:6b:bc:93:f3:8a:04:73:1d: e7:75:b8:d0:63:88:5d:98:32:96:00:c8:02:ca:2c: f2:29:c9:f8:93:7b:e1:d3:b3:0f:54:83:5d:99:2b: 1f:0d:0f:00:59:6b:dc:f8:d8:51:38:a2:55:a9:b7: f1:5b:2d:b8:f4:1f:f7:c2:0e:95:a5:99:64:0f:e2: a9:a7:52:ea:49:4f:f6:76:1a:a9:b0:3a:28:2d:83: 53:b8:06:87:37:e5:b6:ac:0c:6c:62:0e:5c:86:96: 43:40:eb:39:33:0f:75:e4:11:ea:03:eb:3e:ba:08: c0:ab:59:24:1c:3c:5c:81:2e:ae:d1:c0:d5:ed:a2: 16:1a:cb:8b:ce:9b:8a:8d:7c:86:d6:6a:c8:76:28: e4:89:fd:80:f0:cc:f1:dc:9a:5f:d4:e4:18:85:fa: 67:48:1b:be:32:e7:35:8d:54:ef:b3:e6:d2:a0:fa: 98:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:46:2F:53:8A:84:BB:AA:E5:52:6F:B2:28:85:48:EF:AD:A9:4C:B7 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/3EYvU4qEu6rlUm-yKIVI762pTLc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.155.92.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:5d:3a:14:65:74:b8:9a:32:05:d0:85:88:50:1f:24:06:6f: 49:01:81:21:da:0a:e4:19:47:6d:79:58:78:4f:1e:65:dc:30: 46:9b:40:34:8b:33:6d:2b:ae:51:5e:d8:70:09:a1:62:7c:f5: 83:88:fd:60:b0:fb:2f:a9:97:00:d7:91:e5:08:5e:c8:8b:5b: a1:44:68:d8:f2:0a:ff:f3:3c:a5:fb:00:ac:1f:7e:a5:99:01: 2a:64:66:75:f2:87:db:a3:cb:01:08:67:88:d4:19:a5:6a:0c: 61:1c:43:5d:62:8d:10:55:55:e6:30:a9:6b:8a:e5:a5:dc:4b: 3b:98:a3:b8:6c:82:2d:1d:bd:43:30:e9:44:34:7c:93:12:78: ed:a3:1e:99:10:ef:ae:c3:94:e5:58:ff:03:70:c1:06:16:16: e8:d5:5a:c9:b6:a3:a0:f6:c5:56:0e:95:09:b9:69:fb:02:88: 72:be:d5:eb:b5:41:7a:db:c1:f4:e0:90:88:58:89:0b:6e:6c: 0a:b5:ab:04:ed:f4:41:0f:77:a2:62:de:c6:f1:74:b2:76:a5: b6:8a:cf:f3:6c:95:64:d8:b5:5c:fd:60:ac:07:6f:a1:24:9a: 7d:6e:e7:ca:3a:01:65:b7:bb:f4:a9:ad:41:ac:7f:0c:e5:c8: ea:e0:ad:cb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFzIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNDA1MjQw MjI2NDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKERDNDYyRjUzOEE4NEJC QUFFNTUyNkZCMjI4ODU0OEVGQURBOTRDQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqNKBknMq8YzKmCECxv7fcanpFnqljUv8x1ZK9CLxuX9kT9JnL k9ZVS3tr6897ocOvrBWqKSYHedP36CEOdLsZzqdyvDWDgXSrzHH1XsoMeolrvJPz igRzHed1uNBjiF2YMpYAyALKLPIpyfiTe+HTsw9Ug12ZKx8NDwBZa9z42FE4olWp t/FbLbj0H/fCDpWlmWQP4qmnUupJT/Z2GqmwOigtg1O4Boc35basDGxiDlyGlkNA 6zkzD3XkEeoD6z66CMCrWSQcPFyBLq7RwNXtohYay4vOm4qNfIbWash2KOSJ/YDw zPHcml/U5BiF+mdIG74y5zWNVO+z5tKg+pjpAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU3EYvU4qEu6rlUm+yKIVI762pTLcwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxLzNFWXZVNHFFdTZybFVt LXlLSVZJNzYycFRMYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BALTm1wwDQYJKoZIhvcNAQELBQADggEBAE9dOhRldLiaMgXQhYhQHyQGb0kBgSHa CuQZR215WHhPHmXcMEabQDSLM20rrlFe2HAJoWJ89YOI/WCw+y+plwDXkeUIXsiL W6FEaNjyCv/zPKX7AKwffqWZASpkZnXyh9ujywEIZ4jUGaVqDGEcQ11ijRBVVeYw qWuK5aXcSzuYo7hsgi0dvUMw6UQ0fJMSeO2jHpkQ767DlOVY/wNwwQYWFujVWsm2 o6D2xVYOlQm5afsCiHK+1eu1QXrbwfTgkIhYiQtubAq1qwTt9EEPd6Ji3sbxdLJ2 pbaKz/NslWTYtVz9YKwHb6Ekmn1u58o6AWW3u/SprUGsfwzlyOrgrcs= -----END CERTIFICATE-----Generated at Fri Sep 20 21:06:26 2024 by rpki-client on console-ams.rpki-client.org