$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/JAAM_qTg819VfXqE36iP42yom7o.roa File: JAAM_qTg819VfXqE36iP42yom7o.roa (raw, json) Hash identifier: bAhB+1R880xqf+LmFXfentvaXK9HuETKnawHKULvEqg= Subject key identifier: 24:00:0C:FE:A4:E0:F3:5F:55:7D:7A:84:DF:A8:8F:E3:6C:A8:9B:BA Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1498 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/JAAM_qTg819VfXqE36iP42yom7o.roa Signing time: Wed 11 Sep 2024 02:23:32 +0000 ROA not before: Wed 11 Sep 2024 02:23:32 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 17621 IP address blocks: 103.24.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5272 (0x1498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:32 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=24000CFEA4E0F35F557D7A84DFA88FE36CA89BBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:45:c4:73:24:9e:f4:7f:ff:1b:c6:52:3b:35: ff:06:18:92:2e:eb:6f:a2:dd:48:2d:84:b0:2b:0c: 48:88:db:2d:57:25:65:aa:eb:14:a1:d7:4e:13:3c: 00:06:6d:db:89:e4:f8:18:57:a4:8c:54:76:a5:ac: af:57:a8:84:93:95:71:03:ad:99:7f:d3:96:3b:2a: 0c:2e:58:1d:d7:4c:6f:ce:93:2c:24:32:b8:8d:de: ae:c8:64:fa:b9:7d:5b:f2:3a:2a:05:ca:bd:72:00: 56:2e:02:98:47:5c:7d:ea:ff:81:57:e0:3f:50:f3: cc:75:af:a4:e7:b3:e6:af:14:03:ca:3b:d1:8f:78: 8e:24:6f:ce:ed:29:56:59:09:0e:7c:a5:85:3a:de: f4:79:67:00:31:88:45:41:41:b2:bd:26:12:9b:db: d1:92:18:ab:a0:75:2e:93:2b:fb:d6:1f:10:49:1a: 34:43:5e:bd:67:80:65:53:fd:67:f6:a0:6f:44:b7: 80:34:18:cd:58:07:fa:85:98:d3:16:78:79:06:dd: 76:40:5f:34:8e:3a:53:f6:51:9c:2e:6a:e0:8e:77: 40:2d:55:49:1b:86:a6:2f:6d:0f:38:21:68:ac:22: ed:0a:c3:08:e5:3a:1c:98:61:d8:33:ce:f8:d3:78: ee:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:00:0C:FE:A4:E0:F3:5F:55:7D:7A:84:DF:A8:8F:E3:6C:A8:9B:BA X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/JAAM_qTg819VfXqE36iP42yom7o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.24.116.0/24 Signature Algorithm: sha256WithRSAEncryption c2:c2:57:ac:78:de:18:3c:b9:a8:73:ff:42:8c:2a:a9:da:eb: 59:91:9e:7a:10:3e:37:3b:74:fa:73:c1:20:e4:1a:ed:b3:a0: eb:4c:e0:85:c0:68:d1:23:41:8e:cb:6d:4f:ee:07:0a:90:4a: b7:43:6e:c4:83:a2:18:e6:d2:51:64:27:39:9a:4c:35:f6:07: 9f:0f:79:09:d9:81:06:f5:43:0d:f5:9d:ea:07:d7:46:b1:14: 8d:0a:34:8e:e4:35:3f:66:65:87:d1:84:e1:b8:52:2e:b3:db: 4b:d0:1f:ae:22:02:c7:4e:1b:3b:e3:f2:1d:1a:51:cd:5f:dc: 54:a4:29:35:96:a7:fc:d0:09:f3:e9:1f:86:bb:73:05:12:63: 13:dc:d4:2a:82:e4:d0:17:2a:69:83:f8:35:6e:9a:ae:dd:3d: 46:e5:66:9b:65:d5:bb:7d:99:5f:18:fe:48:a3:c1:ea:0c:fd: 88:19:2b:58:7f:89:7f:64:77:93:76:c2:aa:d0:e5:3e:e7:6b: c5:c9:9e:05:32:91:7a:57:fe:85:0f:4e:50:f2:2b:fc:2d:46: a7:47:ac:5e:a8:3b:cf:34:b0:69:d7:7c:3f:59:b4:86:d4:c5: 0c:10:c5:58:e1:2c:e8:36:64:19:cb:6e:23:54:f8:c3:c4:4e: f7:c4:67:98 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzMzJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDI0MDAwQ0ZFQTRFMEYz NUY1NTdEN0E4NERGQTg4RkUzNkNBODlCQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6RcRzJJ70f/8bxlI7Nf8GGJIu62+i3UgthLArDEiI2y1XJWWq 6xSh104TPAAGbduJ5PgYV6SMVHalrK9XqISTlXEDrZl/05Y7KgwuWB3XTG/Okywk MriN3q7IZPq5fVvyOioFyr1yAFYuAphHXH3q/4FX4D9Q88x1r6Tns+avFAPKO9GP eI4kb87tKVZZCQ58pYU63vR5ZwAxiEVBQbK9JhKb29GSGKugdS6TK/vWHxBJGjRD Xr1ngGVT/Wf2oG9Et4A0GM1YB/qFmNMWeHkG3XZAXzSOOlP2UZwuauCOd0AtVUkb hqYvbQ84IWisIu0KwwjlOhyYYdgzzvjTeO45AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUJAAM/qTg819VfXqE36iP42yom7owHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0pBQU1fcVRnODE5VmZY cUUzNmlQNDJ5b203by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnGHQwDQYJKoZIhvcNAQELBQADggEBAMLCV6x43hg8uahz/0KMKqna61mRnnoQ Pjc7dPpzwSDkGu2zoOtM4IXAaNEjQY7LbU/uBwqQSrdDbsSDohjm0lFkJzmaTDX2 B58PeQnZgQb1Qw31neoH10axFI0KNI7kNT9mZYfRhOG4Ui6z20vQH64iAsdOGzvj 8h0aUc1f3FSkKTWWp/zQCfPpH4a7cwUSYxPc1CqC5NAXKmmD+DVumq7dPUblZptl 1bt9mV8Y/kijweoM/YgZK1h/iX9kd5N2wqrQ5T7na8XJngUykXpX/oUPTlDyK/wt RqdHrF6oO880sGnXfD9ZtIbUxQwQxVjhLOg2ZBnLbiNU+MPETvfEZ5g= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org