$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/9jKzGzP-JI-87t7rdA3yjxyes6U.roa File: 9jKzGzP-JI-87t7rdA3yjxyes6U.roa (raw, json) Hash identifier: t57qnTR7mYZEgBMrkgIsZb42jPSIMcpKiCL+AbnXphs= Subject key identifier: F6:32:B3:1B:33:FE:24:8F:BC:EE:DE:EB:74:0D:F2:8F:1C:9E:B3:A5 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1462 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9jKzGzP-JI-87t7rdA3yjxyes6U.roa Signing time: Wed 11 Sep 2024 02:23:14 +0000 ROA not before: Wed 11 Sep 2024 02:23:14 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24373 IP address blocks: 103.221.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5218 (0x1462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:14 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F632B31B33FE248FBCEEDEEB740DF28F1C9EB3A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:84:66:d9:de:9d:34:3d:a1:78:f1:f6:d6:5f: 26:2b:e4:bc:4c:6d:34:8c:70:26:84:d0:22:63:7c: c7:16:34:dc:84:3f:35:1d:6b:3b:cd:b1:13:6e:9d: c4:8b:d5:5f:5a:21:32:83:96:b0:1d:39:f9:ce:08: 02:9b:37:d5:ba:cd:5c:86:4e:da:e8:02:0d:11:c1: f0:f2:84:ee:62:ea:73:c7:88:24:1f:1a:e9:40:91: 3e:ec:13:2c:7a:7a:c8:7a:98:21:12:43:49:e8:95: bf:5a:fa:2a:bc:f6:1f:09:9f:41:b9:8d:a2:22:e8: 7d:8e:a1:67:9e:ff:9e:f5:d6:80:ec:4a:ec:24:a7: 6f:b6:d0:93:35:e5:7f:0c:39:62:f3:00:6b:5c:71: ba:5f:8e:54:81:51:4a:91:c4:33:30:39:68:7c:eb: 09:b8:a8:96:18:cd:ec:8d:ef:07:ee:3e:0a:5f:34: 5b:ea:05:e9:f1:1f:b9:01:ca:6a:3e:48:44:c1:4a: fe:ec:7d:a2:6f:a2:f4:81:55:04:22:32:66:17:e4: ea:9a:2f:8f:b7:da:61:b5:0e:11:f7:c8:50:f3:81: 3e:2c:de:bf:a0:be:3a:ba:ae:39:cd:3d:3c:d1:bf: 78:e6:5c:ee:0d:7b:bd:2b:0b:68:d7:cd:6d:8f:0f: fb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:32:B3:1B:33:FE:24:8F:BC:EE:DE:EB:74:0D:F2:8F:1C:9E:B3:A5 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9jKzGzP-JI-87t7rdA3yjxyes6U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.36.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:42:b1:32:52:49:bd:dc:6c:03:7e:77:e2:6f:53:fd:c4:4c: c5:67:15:02:3a:60:db:ff:22:67:0e:26:ee:96:14:5d:4e:b3: 05:5d:af:04:93:35:08:9c:38:c6:46:6b:0a:58:7c:a1:66:e1: d0:9b:8c:62:1d:61:5e:33:c0:4d:41:bb:80:23:3a:9b:bb:8a: 79:8b:8b:5c:a1:ec:20:d5:02:7d:12:7a:2e:30:8b:e5:83:4e: ad:8b:2c:2f:1f:ce:85:ed:3c:1b:16:48:69:a7:66:4d:01:1a: 56:e6:80:85:b5:bc:66:98:0b:e4:dd:77:68:00:cc:a5:56:ca: 27:46:f3:f6:0a:47:c4:21:f9:ce:17:9e:59:a2:cf:fc:3a:b5: ed:ab:f4:b9:0d:b9:73:37:da:a5:97:f1:51:c5:85:c4:63:9e: a4:6c:56:b3:34:9b:6d:27:62:c0:9f:6b:25:b8:7a:02:1b:34: 8d:de:63:1a:49:37:83:63:4e:b5:01:b9:68:9f:5f:8a:71:2a: 07:ad:a5:fb:52:1b:19:98:1f:8c:8a:31:47:b4:82:cf:cf:58: 52:56:6f:64:76:5d:e2:a4:f1:e9:ab:eb:61:05:4e:0c:87:60: a4:42:95:37:f9:9b:49:f1:57:1a:ea:f6:52:b8:75:53:39:1b: 31:94:b2:ea -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFGIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzMTRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY2MzJCMzFCMzNGRTI0 OEZCQ0VFREVFQjc0MERGMjhGMUM5RUIzQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDThGbZ3p00PaF48fbWXyYr5LxMbTSMcCaE0CJjfMcWNNyEPzUd azvNsRNuncSL1V9aITKDlrAdOfnOCAKbN9W6zVyGTtroAg0RwfDyhO5i6nPHiCQf GulAkT7sEyx6esh6mCESQ0nolb9a+iq89h8Jn0G5jaIi6H2OoWee/5711oDsSuwk p2+20JM15X8MOWLzAGtccbpfjlSBUUqRxDMwOWh86wm4qJYYzeyN7wfuPgpfNFvq BenxH7kBymo+SETBSv7sfaJvovSBVQQiMmYX5OqaL4+32mG1DhH3yFDzgT4s3r+g vjq6rjnNPTzRv3jmXO4Ne70rC2jXzW2PD/uvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU9jKzGzP+JI+87t7rdA3yjxyes6UwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzlqS3pHelAtSkktODd0 N3JkQTN5anh5ZXM2VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SQwDQYJKoZIhvcNAQELBQADggEBACpCsTJSSb3cbAN+d+JvU/3ETMVnFQI6 YNv/ImcOJu6WFF1OswVdrwSTNQicOMZGawpYfKFm4dCbjGIdYV4zwE1Bu4AjOpu7 inmLi1yh7CDVAn0Sei4wi+WDTq2LLC8fzoXtPBsWSGmnZk0BGlbmgIW1vGaYC+Td d2gAzKVWyidG8/YKR8Qh+c4Xnlmiz/w6te2r9LkNuXM32qWX8VHFhcRjnqRsVrM0 m20nYsCfayW4egIbNI3eYxpJN4NjTrUBuWifX4pxKgetpftSGxmYH4yKMUe0gs/P WFJWb2R2XeKk8emr62EFTgyHYKRClTf5m0nxVxrq9lK4dVM5GzGUsuo= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:40 2024 by rpki-client on console-fra.rpki-client.org