$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/LijlIJmA9VdRrRaLUQZje0cWnko.roa File: LijlIJmA9VdRrRaLUQZje0cWnko.roa (raw, json) Hash identifier: CNYUjhFN1pziXa1PNcOFYXyuwCuMycvAp6PKlmuNeiQ= Subject key identifier: 2E:28:E5:20:99:80:F5:57:51:AD:16:8B:51:06:63:7B:47:16:9E:4A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1543 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/LijlIJmA9VdRrRaLUQZje0cWnko.roa Signing time: Wed 11 Sep 2024 03:59:18 +0000 ROA not before: Wed 11 Sep 2024 03:59:18 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5443 (0x1543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 03:59:18 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=2E28E5209980F55751AD168B5106637B47169E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:71:f4:49:dc:e5:c1:07:b3:b9:69:de:fe:dd: bd:68:ab:17:32:62:b2:c6:b5:e6:5f:24:b7:0a:8b: 76:68:6e:ee:a2:0c:c0:34:88:2c:60:a4:a0:5c:6f: ca:57:06:07:94:07:1c:69:bb:17:1f:d5:79:0b:b5: 98:ea:69:c6:ad:ee:3d:49:56:c7:f7:0c:8f:bd:2b: 76:79:4e:10:c1:87:7f:43:44:20:b0:25:91:77:e1: bb:2c:63:78:26:ac:55:40:3c:51:74:01:53:52:e2: e4:5f:e3:87:3e:44:12:e8:bf:24:cf:0b:80:7a:15: dc:2d:3d:18:5b:b2:9d:c8:49:0f:84:c7:22:4d:7f: a5:98:50:c6:25:9c:e8:f6:7b:38:f2:cd:9c:a7:96: e5:27:87:1d:cc:2c:fc:c8:86:26:be:d4:4b:01:5a: 18:ed:62:ea:ff:4c:4c:c9:14:40:43:58:62:0d:e1: 6f:5f:b8:41:e5:f1:f3:ad:56:6c:00:91:eb:ff:ae: e6:1d:ef:ce:5c:60:a5:52:a4:c3:a6:b1:6f:41:2a: 98:32:25:92:19:52:e5:7e:75:5e:8b:01:50:c0:f6: ac:07:6f:d9:e9:00:35:b0:31:fe:91:00:8e:e3:14: f5:2e:7b:02:98:96:03:e4:a9:0f:d3:38:de:ac:14: 52:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:28:E5:20:99:80:F5:57:51:AD:16:8B:51:06:63:7B:47:16:9E:4A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/LijlIJmA9VdRrRaLUQZje0cWnko.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.30.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:60:e2:f1:66:37:92:4b:63:c5:60:e0:f9:b7:e9:75:19:30: 1f:27:c3:e6:71:67:35:b9:6c:4d:bb:51:ba:66:9e:70:b2:1a: b4:7c:1f:ee:ef:96:e1:73:8b:4a:85:4f:7b:9a:a1:19:1f:38: a2:a2:72:b7:be:23:a5:46:9e:fe:10:a1:cb:e8:81:32:4c:8f: ab:fe:b5:32:20:8d:24:66:ad:89:7a:b4:0c:af:4c:6b:cc:44: 1e:58:a9:b8:8b:f5:5a:18:c7:a5:3c:ed:a5:ab:52:8a:25:31: 35:c3:b6:2f:bf:09:25:2c:aa:39:66:16:ab:66:19:77:8c:fc: 35:b3:dd:0b:50:49:ea:fb:85:1c:f2:31:b5:76:f5:0b:65:5e: c0:f9:4e:de:82:75:48:52:b6:7c:87:17:ad:80:76:6b:43:26: 26:04:16:92:81:95:f8:43:f3:c9:9b:99:0a:b3:0c:2f:cb:64: 3e:0e:7d:2f:9b:0b:ff:59:89:2e:ee:78:4d:33:3a:b8:54:8f: 04:65:7a:8f:10:51:03:7d:d8:5c:d8:a5:9e:55:be:b0:91:fd: e4:cd:d0:d6:26:75:f0:df:00:d5:77:dc:6a:8f:39:ed:b4:a5: 48:b8:15:27:a0:d2:0b:b6:d6:73:9e:9e:4f:b2:e8:ef:12:b0: e2:ce:e9:ae -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MzU5MThaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDJFMjhFNTIwOTk4MEY1 NTc1MUFEMTY4QjUxMDY2MzdCNDcxNjlFNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfcfRJ3OXBB7O5ad7+3b1oqxcyYrLGteZfJLcKi3Zobu6iDMA0 iCxgpKBcb8pXBgeUBxxpuxcf1XkLtZjqacat7j1JVsf3DI+9K3Z5ThDBh39DRCCw JZF34bssY3gmrFVAPFF0AVNS4uRf44c+RBLovyTPC4B6FdwtPRhbsp3ISQ+ExyJN f6WYUMYlnOj2ezjyzZynluUnhx3MLPzIhia+1EsBWhjtYur/TEzJFEBDWGIN4W9f uEHl8fOtVmwAkev/ruYd785cYKVSpMOmsW9BKpgyJZIZUuV+dV6LAVDA9qwHb9np ADWwMf6RAI7jFPUuewKYlgPkqQ/TON6sFFKRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQULijlIJmA9VdRrRaLUQZje0cWnkowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0xpamxJSm1BOVZkUnJS YUxVUVpqZTBjV25rby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3R4wDQYJKoZIhvcNAQELBQADggEBAGtg4vFmN5JLY8Vg4Pm36XUZMB8nw+Zx ZzW5bE27UbpmnnCyGrR8H+7vluFzi0qFT3uaoRkfOKKicre+I6VGnv4QocvogTJM j6v+tTIgjSRmrYl6tAyvTGvMRB5YqbiL9VoYx6U87aWrUoolMTXDti+/CSUsqjlm FqtmGXeM/DWz3QtQSer7hRzyMbV29QtlXsD5Tt6CdUhStnyHF62AdmtDJiYEFpKB lfhD88mbmQqzDC/LZD4OfS+bC/9ZiS7ueE0zOrhUjwRleo8QUQN92FzYpZ5VvrCR /eTN0NYmdfDfANV33GqPOe20pUi4FSeg0gu21nOenk+y6O8SsOLO6a4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:46 2024 by rpki-client on console-ams.rpki-client.org