$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/CCT4Sxiydu6LMcZfqUU-iWOcAxA.roa File: CCT4Sxiydu6LMcZfqUU-iWOcAxA.roa (raw, json) Hash identifier: aYFQ/F9vEHvKHJDTK8M24zf/ETYg6Zc2kErm5XFVPUs= Subject key identifier: 08:24:F8:4B:18:B2:76:EE:8B:31:C6:5F:A9:45:3E:89:63:9C:03:10 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14B9 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/CCT4Sxiydu6LMcZfqUU-iWOcAxA.roa Signing time: Wed 11 Sep 2024 02:23:43 +0000 ROA not before: Wed 11 Sep 2024 02:23:43 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 138527 IP address blocks: 103.221.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5305 (0x14b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:43 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=0824F84B18B276EE8B31C65FA9453E89639C0310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b6:5a:d1:8f:45:be:74:83:c9:ac:07:7b:43: 7d:16:7e:0c:c6:e9:61:e5:02:8f:12:dc:d1:b6:17: ed:24:c1:60:39:1e:38:f8:aa:9e:ef:5a:a8:e7:b8: d2:44:b6:34:73:3d:4f:12:26:3f:e9:9d:17:98:9c: 57:c3:fd:37:62:1b:e0:de:9c:b5:7a:35:a2:9d:4e: f9:96:b1:86:62:bc:6f:56:94:af:68:64:4b:8c:f8: 9f:c7:c0:e2:53:59:b7:ff:b9:08:e3:4e:90:dc:21: f7:25:19:96:1c:2d:e4:ae:40:08:39:b6:da:b1:0c: bd:f6:77:3a:c6:e6:e7:b6:32:ae:69:5d:cb:04:28: 6a:88:09:f3:ac:a6:e0:9d:92:44:b3:88:be:8e:ac: 07:53:d5:4c:d8:3e:15:f6:de:7a:27:76:5e:6f:63: 96:95:b6:0e:a9:cf:64:ed:79:0e:32:d0:96:c7:c4: 31:04:10:cb:a1:e7:0c:f5:ac:af:d5:b9:2b:0d:cd: 51:07:d7:95:be:16:ad:09:ab:0d:dc:6d:53:f1:03: a7:f9:49:cb:d4:0c:10:49:7e:af:3b:e6:b7:4a:86: 0d:28:4d:e3:a3:74:f4:ec:d3:66:66:e3:de:c8:e4: 0e:04:63:a8:b0:67:ad:5a:53:53:5f:2b:70:34:db: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:24:F8:4B:18:B2:76:EE:8B:31:C6:5F:A9:45:3E:89:63:9C:03:10 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/CCT4Sxiydu6LMcZfqUU-iWOcAxA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.32.0/22 Signature Algorithm: sha256WithRSAEncryption da:4d:22:f5:31:ca:63:82:11:a6:48:08:55:d6:05:57:ff:e6: ac:1e:0e:ba:58:38:43:df:64:7f:44:6c:66:47:fd:e5:c3:18: 5b:88:9b:31:2d:86:d5:9f:2e:01:13:ab:7d:08:db:2f:28:c8: 2c:c8:36:da:2b:53:4a:06:c1:7d:1e:42:05:dc:6b:3a:5f:10: 71:60:3f:25:ed:77:54:57:66:1e:fd:13:f9:3e:3b:db:82:b1: 9f:12:1e:13:b1:3e:82:09:c9:0b:f8:bb:1a:16:dc:c1:04:a9: fb:b0:51:52:ae:75:20:3f:6c:36:30:39:eb:cc:b0:a9:50:3c: 05:27:f0:0b:54:3f:a0:4b:db:61:45:a2:ad:f5:d1:c2:ef:57: 54:88:f2:1a:e4:e9:cf:b8:4b:02:13:5e:c2:5f:39:3b:fe:88: 08:21:cc:43:5d:87:9b:3b:82:42:10:ba:7f:b5:d6:3b:76:d4: 15:7b:71:98:d6:00:2b:8f:43:9e:0b:94:09:42:be:1e:51:ed: a5:c5:fd:cf:a2:fa:e0:d3:21:79:b8:01:11:75:29:88:98:80: 9f:fb:69:b4:43:48:fa:24:70:dc:cd:e2:9b:01:7f:f0:00:85: 77:66:92:cd:83:da:ff:8e:39:81:12:5a:06:33:d7:d3:11:94: 38:55:9f:17 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFLkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDA4MjRGODRCMThCMjc2 RUU4QjMxQzY1RkE5NDUzRTg5NjM5QzAzMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCotlrRj0W+dIPJrAd7Q30WfgzG6WHlAo8S3NG2F+0kwWA5Hjj4 qp7vWqjnuNJEtjRzPU8SJj/pnReYnFfD/TdiG+DenLV6NaKdTvmWsYZivG9WlK9o ZEuM+J/HwOJTWbf/uQjjTpDcIfclGZYcLeSuQAg5ttqxDL32dzrG5ue2Mq5pXcsE KGqICfOspuCdkkSziL6OrAdT1UzYPhX23nondl5vY5aVtg6pz2TteQ4y0JbHxDEE EMuh5wz1rK/VuSsNzVEH15W+Fq0Jqw3cbVPxA6f5ScvUDBBJfq875rdKhg0oTeOj dPTs02Zm497I5A4EY6iwZ61aU1NfK3A0225bAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUCCT4Sxiydu6LMcZfqUU+iWOcAxAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0NDVDRTeGl5ZHU2TE1j WmZxVVUtaVdPY0F4QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SAwDQYJKoZIhvcNAQELBQADggEBANpNIvUxymOCEaZICFXWBVf/5qweDrpY OEPfZH9EbGZH/eXDGFuImzEthtWfLgETq30I2y8oyCzINtorU0oGwX0eQgXcazpf EHFgPyXtd1RXZh79E/k+O9uCsZ8SHhOxPoIJyQv4uxoW3MEEqfuwUVKudSA/bDYw OevMsKlQPAUn8AtUP6BL22FFoq310cLvV1SI8hrk6c+4SwITXsJfOTv+iAghzENd h5s7gkIQun+11jt21BV7cZjWACuPQ54LlAlCvh5R7aXF/c+i+uDTIXm4ARF1KYiY gJ/7abRDSPokcNzN4psBf/AAhXdmks2D2v+OOYESWgYz19MRlDhVnxc= -----END CERTIFICATE-----Generated at Fri Nov 22 23:40:49 2024 by rpki-client on console-fra.rpki-client.org