$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/KjFRsxx96jlghCD1bIGv64_Xhxg.roa File: KjFRsxx96jlghCD1bIGv64_Xhxg.roa (raw, json) Hash identifier: BYGiSuWfRTeblkP7Z007wb/MI03F5Xb9NBilTM18WaI= Subject key identifier: 2A:31:51:B3:1C:7D:EA:39:60:84:20:F5:6C:81:AF:EB:8F:D7:87:18 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14C2 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/KjFRsxx96jlghCD1bIGv64_Xhxg.roa Signing time: Wed 11 Sep 2024 02:23:47 +0000 ROA not before: Wed 11 Sep 2024 02:23:47 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24373 IP address blocks: 45.252.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5314 (0x14c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:47 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=2A3151B31C7DEA39608420F56C81AFEB8FD78718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:4b:df:f5:51:ae:7d:71:f5:49:31:4e:ff: a2:87:1b:a6:ee:24:6b:14:84:f3:64:ed:65:b7:bc: 44:05:f4:3b:cc:a5:be:27:8d:1c:5f:8e:09:88:4f: 40:2f:84:0b:56:e0:72:b4:1c:b4:08:bc:4a:ab:d2: 0c:27:f5:a6:6d:9c:5b:88:0f:ae:6a:40:5d:a2:09: f6:80:ca:5d:14:81:c4:c0:a0:a7:2b:ec:f1:75:78: 41:d2:ad:e9:80:dc:59:0d:7e:e9:51:e6:9c:79:13: 49:55:5a:a3:d0:2b:51:a1:54:c8:5d:6c:03:be:10: 93:45:6b:88:2c:06:c0:8a:4d:f2:46:c7:80:ab:be: 80:0e:02:61:db:58:71:1c:2f:d5:40:f6:ad:47:14: ca:ef:90:73:53:6f:e5:88:a7:9c:76:59:d4:99:55: e1:5a:41:16:d0:7a:2a:a8:a1:2a:d7:7d:0a:8c:f3: 2a:8a:19:f1:34:aa:d8:72:52:76:fb:e2:bf:e4:dd: e2:7b:86:61:32:94:c0:20:48:b9:3b:7c:13:9b:1e: b2:3d:f7:d3:79:d7:4f:98:97:d8:41:d0:d7:e3:29: 87:08:24:07:11:e9:44:97:4b:00:b3:5c:47:ed:7a: f0:5a:5f:d4:e5:8e:d7:ed:57:73:33:39:5d:07:6d: f6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:31:51:B3:1C:7D:EA:39:60:84:20:F5:6C:81:AF:EB:8F:D7:87:18 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/KjFRsxx96jlghCD1bIGv64_Xhxg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.44.0/22 Signature Algorithm: sha256WithRSAEncryption 58:77:12:ba:04:1c:22:78:e8:89:15:12:01:e6:51:75:9a:75: 56:0c:1c:e0:b6:49:9c:84:3a:ff:a8:37:7d:89:a2:ae:ea:f1: 79:39:2e:70:1e:ee:07:56:53:e6:1a:3c:88:dd:28:fa:25:39: bd:91:73:30:af:ce:ab:c4:8e:48:ff:ad:4c:27:4d:48:b0:53: 57:ac:33:7e:a5:40:dc:92:69:82:a9:af:c8:31:1e:a4:2e:80: 27:11:db:16:63:95:9a:bc:73:92:ba:5b:54:5e:ee:22:75:00: d5:31:ec:c9:a0:81:66:44:43:40:ab:3a:c0:30:f9:c5:35:05: 9a:99:1d:55:c1:30:50:23:cc:7d:0c:f4:65:0f:1f:88:a1:d8: 09:34:04:cb:62:77:3e:2d:0c:4a:6d:90:c0:c0:b9:5f:c0:f7: ba:e5:0f:01:88:7c:f0:ff:a6:bd:ad:bb:33:07:52:38:c2:c6: 44:c0:6a:a9:61:f9:d0:a2:aa:43:5b:39:5e:85:b6:bb:f2:f8: e6:bb:60:61:28:cc:76:c8:7f:7d:2a:05:3d:a2:6e:79:9d:b0: 7b:05:3f:7b:78:8d:01:2c:de:f2:52:8f:2b:5a:91:46:a3:83: d5:d9:a2:05:07:f2:b8:d7:27:e7:d8:d4:13:2f:ab:88:7a:86: f7:f2:53:dd -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDJBMzE1MUIzMUM3REVB Mzk2MDg0MjBGNTZDODFBRkVCOEZENzg3MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIKEvf9VGufXH1STFO/6KHG6buJGsUhPNk7WW3vEQF9DvMpb4n jRxfjgmIT0AvhAtW4HK0HLQIvEqr0gwn9aZtnFuID65qQF2iCfaAyl0UgcTAoKcr 7PF1eEHSremA3FkNfulR5px5E0lVWqPQK1GhVMhdbAO+EJNFa4gsBsCKTfJGx4Cr voAOAmHbWHEcL9VA9q1HFMrvkHNTb+WIp5x2WdSZVeFaQRbQeiqooSrXfQqM8yqK GfE0qthyUnb74r/k3eJ7hmEylMAgSLk7fBObHrI999N510+Yl9hB0NfjKYcIJAcR 6USXSwCzXEftevBaX9TljtftV3MzOV0HbfbPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUKjFRsxx96jlghCD1bIGv64/XhxgwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0tqRlJzeHg5NmpsZ2hD RDFiSUd2NjRfWGh4Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/CwwDQYJKoZIhvcNAQELBQADggEBAFh3EroEHCJ46IkVEgHmUXWadVYMHOC2 SZyEOv+oN32Joq7q8Xk5LnAe7gdWU+YaPIjdKPolOb2RczCvzqvEjkj/rUwnTUiw U1esM36lQNySaYKpr8gxHqQugCcR2xZjlZq8c5K6W1Re7iJ1ANUx7MmggWZEQ0Cr OsAw+cU1BZqZHVXBMFAjzH0M9GUPH4ih2Ak0BMtidz4tDEptkMDAuV/A97rlDwGI fPD/pr2tuzMHUjjCxkTAaqlh+dCiqkNbOV6Ftrvy+Oa7YGEozHbIf30qBT2ibnmd sHsFP3t4jQEs3vJSjytakUajg9XZogUH8rjXJ+fY1BMvq4h6hvfyU90= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:40 2024 by rpki-client on console-fra.rpki-client.org