$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/3-0aZ_YWG5vlMsB5l1BguCs30X0.roa File: 3-0aZ_YWG5vlMsB5l1BguCs30X0.roa (raw, json) Hash identifier: NAE4Ce8uDKyyNMkCzfJyJeWlMIPQp8YTeyexFIpu9hU= Subject key identifier: DF:ED:1A:67:F6:16:1B:9B:E5:32:C0:79:97:50:60:B8:2B:37:D1:7D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14A2 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3-0aZ_YWG5vlMsB5l1BguCs30X0.roa Signing time: Wed 11 Sep 2024 02:23:35 +0000 ROA not before: Wed 11 Sep 2024 02:23:35 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 138527 IP address blocks: 45.252.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5282 (0x14a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:35 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=DFED1A67F6161B9BE532C079975060B82B37D17D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9f:4e:85:7d:bb:70:0c:31:48:d1:03:a2:da: bc:8e:89:ad:ce:2c:f0:21:a1:3d:0b:43:20:5d:bb: 30:36:17:f5:26:40:bc:00:82:16:fc:19:a7:99:f7: 1b:ff:3f:33:17:41:7a:81:1f:3f:12:b2:73:9f:1d: f9:a7:56:0c:56:2c:61:a7:3a:0b:b8:16:36:d5:35: 64:38:3a:9e:69:16:4e:fa:e0:b4:0c:4f:07:1b:7b: 89:a4:c7:9d:5a:7f:2f:63:50:3e:c4:78:8c:f5:0d: 0f:b4:57:44:16:9c:d3:55:26:7c:ea:18:3b:12:eb: f1:8b:55:b7:27:46:00:31:b5:78:85:20:5b:61:cf: 1f:57:2b:37:2a:c0:97:72:ac:31:62:3c:84:86:7e: 14:ca:2b:dd:fa:8b:72:2a:61:37:27:96:79:77:9b: 4a:79:a5:a5:27:f0:ba:a5:c9:0b:9d:1e:20:d0:b9: dd:65:f9:3a:18:b4:92:2c:44:7f:ba:7d:38:56:28: 56:a4:7a:22:aa:76:f4:cb:8d:54:28:09:98:43:0e: cf:76:95:26:eb:15:b1:90:87:21:33:00:13:07:e9: 33:4a:3d:85:84:8f:83:4a:32:f8:64:5c:ff:9f:ed: 22:3b:17:00:71:59:80:05:0c:bd:d4:8c:e0:e7:1e: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:ED:1A:67:F6:16:1B:9B:E5:32:C0:79:97:50:60:B8:2B:37:D1:7D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3-0aZ_YWG5vlMsB5l1BguCs30X0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.144.0/22 Signature Algorithm: sha256WithRSAEncryption 78:48:94:d3:46:b1:30:30:93:1b:87:d3:b3:d5:b2:f0:72:bd: 2c:94:dd:ff:0d:92:4b:8c:f8:d8:d6:01:e9:61:3b:45:a1:23: 8d:90:de:de:09:f4:ed:6e:a8:c4:af:0c:bb:95:82:62:75:8a: 2f:e2:bb:7c:eb:77:55:1a:0e:04:f2:49:ac:3a:88:2e:a1:bd: 71:cf:8f:07:32:d1:f5:8f:0d:a5:e8:70:fa:a3:8b:25:75:f9: dd:d6:fe:f5:04:a7:32:33:4d:1d:3b:56:70:f0:ff:22:cf:72: 20:b5:9a:b7:7f:12:e8:0c:42:7b:b7:0c:9d:95:f3:01:21:43: 97:8f:aa:9b:25:ae:68:27:3e:62:60:88:97:90:fc:e3:6b:1e: e3:ac:c3:ef:4c:7d:43:44:94:ce:0f:2b:54:e6:69:71:0d:aa: a6:15:4b:e4:79:ef:cc:46:59:0d:04:a5:43:3f:ad:fe:ca:9a: 08:f5:4e:10:bd:cd:8e:35:74:2b:7b:39:7e:8a:e8:16:a8:65: 32:41:43:7b:d5:ac:a9:ad:60:87:bc:8f:60:63:69:d5:46:f4: a3:71:43:34:7b:bc:ce:a4:43:66:2f:67:c1:00:ec:42:60:c1: 70:15:70:18:e5:99:18:73:0d:7e:f5:22:f7:7d:ef:8f:62:61: 26:09:2e:77 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzMzVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKERGRUQxQTY3RjYxNjFC OUJFNTMyQzA3OTk3NTA2MEI4MkIzN0QxN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnn06FfbtwDDFI0QOi2ryOia3OLPAhoT0LQyBduzA2F/UmQLwA ghb8GaeZ9xv/PzMXQXqBHz8SsnOfHfmnVgxWLGGnOgu4FjbVNWQ4Op5pFk764LQM Twcbe4mkx51afy9jUD7EeIz1DQ+0V0QWnNNVJnzqGDsS6/GLVbcnRgAxtXiFIFth zx9XKzcqwJdyrDFiPISGfhTKK936i3IqYTcnlnl3m0p5paUn8LqlyQudHiDQud1l +ToYtJIsRH+6fThWKFakeiKqdvTLjVQoCZhDDs92lSbrFbGQhyEzABMH6TNKPYWE j4NKMvhkXP+f7SI7FwBxWYAFDL3UjODnHojhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU3+0aZ/YWG5vlMsB5l1BguCs30X0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzMtMGFaX1lXRzV2bE1z QjVsMUJndUNzMzBYMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/JAwDQYJKoZIhvcNAQELBQADggEBAHhIlNNGsTAwkxuH07PVsvByvSyU3f8N kkuM+NjWAelhO0WhI42Q3t4J9O1uqMSvDLuVgmJ1ii/iu3zrd1UaDgTySaw6iC6h vXHPjwcy0fWPDaXocPqjiyV1+d3W/vUEpzIzTR07VnDw/yLPciC1mrd/EugMQnu3 DJ2V8wEhQ5ePqpslrmgnPmJgiJeQ/ONrHuOsw+9MfUNElM4PK1TmaXENqqYVS+R5 78xGWQ0EpUM/rf7Kmgj1ThC9zY41dCt7OX6K6BaoZTJBQ3vVrKmtYIe8j2BjadVG 9KNxQzR7vM6kQ2YvZ8EA7EJgwXAVcBjlmRhzDX71Ivd9749iYSYJLnc= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:12 2024 by rpki-client on console-fra.rpki-client.org