$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/FCNfbpW6k0yVfopWOWP5bsA80g0.roa File: FCNfbpW6k0yVfopWOWP5bsA80g0.roa (raw, json) Hash identifier: MwguMRM/EpBkqPOd8kP+RqZFJN5/iVcZmvIkssfrVHU= Subject key identifier: 14:23:5F:6E:95:BA:93:4C:95:7E:8A:56:39:63:F9:6E:C0:3C:D2:0D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1551 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/FCNfbpW6k0yVfopWOWP5bsA80g0.roa Signing time: Wed 11 Sep 2024 03:59:23 +0000 ROA not before: Wed 11 Sep 2024 03:59:23 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5457 (0x1551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 03:59:23 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=14235F6E95BA934C957E8A563963F96EC03CD20D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5e:74:ee:19:4d:bc:05:40:46:f3:36:32:57: 86:ca:01:eb:22:f0:d2:97:61:e1:5a:62:67:e6:3d: e6:87:32:37:a9:a0:83:91:24:9e:14:99:28:19:a8: cb:e9:15:49:3d:99:5c:4d:36:fd:cf:aa:f3:ac:e5: 8f:14:07:33:a9:5b:7b:9b:b3:b6:9f:6a:cb:31:b4: 94:56:dc:4f:e4:eb:9f:6e:67:33:ba:f3:d6:63:65: d2:4f:40:52:a6:c9:c7:c9:5f:eb:9b:76:b1:44:91: 31:c9:84:d6:3f:ec:40:7d:f5:5f:57:72:04:95:a6: 0d:51:4a:df:81:ff:9c:53:1b:68:c5:16:fd:d9:b3: c0:75:ad:d5:e9:1e:45:0a:c1:d1:8f:17:cf:f8:17: 2e:a7:47:95:42:3d:01:df:e0:f8:ba:33:5b:09:cc: 22:cf:a9:9f:5d:8b:ac:7c:e3:34:34:60:49:b5:38: 4d:a4:2e:0e:3c:c8:44:d7:fa:ad:8a:ae:8a:49:72: 20:00:8c:0b:33:e4:6b:21:77:79:e6:85:a2:cd:08: 23:29:6d:75:e8:08:d2:ae:4a:49:00:40:73:54:0c: da:6d:2f:b8:48:6f:74:1a:f1:93:a3:6e:95:28:b7: 48:48:04:b1:4c:52:08:88:47:d9:08:7f:b8:c5:20: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:23:5F:6E:95:BA:93:4C:95:7E:8A:56:39:63:F9:6E:C0:3C:D2:0D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/FCNfbpW6k0yVfopWOWP5bsA80g0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.29.0/24 Signature Algorithm: sha256WithRSAEncryption 76:2b:fa:b5:43:0d:8b:f6:da:7a:3f:9c:2f:68:9d:f1:be:c5: d7:f3:5b:59:47:da:a4:07:63:0f:ad:69:3a:78:98:4e:d7:f5: 1e:9d:9c:cc:b6:df:19:98:fa:5c:eb:26:12:55:50:66:c7:78: 84:9e:b0:78:aa:24:25:86:97:ca:4c:8d:06:ec:94:95:36:4a: c5:3c:65:e3:cc:ae:a3:5a:1f:c8:a1:c7:05:a9:8b:f9:08:ff: 6a:b5:02:83:01:1d:d2:07:0e:c8:81:b3:85:1a:46:98:6b:f7: 50:b3:79:73:0e:54:8a:27:6f:3f:92:41:3d:05:54:a6:b9:d7: c2:3c:2a:aa:db:c6:61:a1:d8:54:5a:ef:67:27:a0:ef:3b:d9: 17:fe:d9:94:08:c7:c8:ce:8c:9d:e4:2f:ff:66:b9:0f:da:77: 7a:1a:cf:4c:bd:65:98:6b:62:f5:e8:5b:65:50:04:90:5c:84: 95:77:d2:31:e0:2f:00:4e:7a:19:c1:39:40:8b:15:85:a5:e1: db:af:63:ed:99:bc:8c:80:e6:de:07:d0:c6:35:1e:02:8f:29: fe:84:b7:df:4c:e7:bc:90:79:a0:76:c3:ff:18:5d:31:33:2a: 3b:3c:1e:19:b4:7b:39:31:70:06:7e:df:65:3d:c9:32:87:9c: ac:85:30:42 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MzU5MjNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDE0MjM1RjZFOTVCQTkz NEM5NTdFOEE1NjM5NjNGOTZFQzAzQ0QyMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPXnTuGU28BUBG8zYyV4bKAesi8NKXYeFaYmfmPeaHMjepoIOR JJ4UmSgZqMvpFUk9mVxNNv3PqvOs5Y8UBzOpW3ubs7afassxtJRW3E/k659uZzO6 89ZjZdJPQFKmycfJX+ubdrFEkTHJhNY/7EB99V9XcgSVpg1RSt+B/5xTG2jFFv3Z s8B1rdXpHkUKwdGPF8/4Fy6nR5VCPQHf4Pi6M1sJzCLPqZ9di6x84zQ0YEm1OE2k Lg48yETX+q2KropJciAAjAsz5Gshd3nmhaLNCCMpbXXoCNKuSkkAQHNUDNptL7hI b3Qa8ZOjbpUot0hIBLFMUgiIR9kIf7jFIGmdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUFCNfbpW6k0yVfopWOWP5bsA80g0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0ZDTmZicFc2azB5VmZv cFdPV1A1YnNBODBnMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3R0wDQYJKoZIhvcNAQELBQADggEBAHYr+rVDDYv22no/nC9onfG+xdfzW1lH 2qQHYw+taTp4mE7X9R6dnMy23xmY+lzrJhJVUGbHeISesHiqJCWGl8pMjQbslJU2 SsU8ZePMrqNaH8ihxwWpi/kI/2q1AoMBHdIHDsiBs4UaRphr91CzeXMOVIonbz+S QT0FVKa518I8KqrbxmGh2FRa72cnoO872Rf+2ZQIx8jOjJ3kL/9muQ/ad3oaz0y9 ZZhrYvXoW2VQBJBchJV30jHgLwBOehnBOUCLFYWl4duvY+2ZvIyA5t4H0MY1HgKP Kf6Et99M57yQeaB2w/8YXTEzKjs8Hhm0ezkxcAZ+32U9yTKHnKyFMEI= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org