$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/OsBRUS-GA09qZhlyyIFBP7aIUdo.roa File: OsBRUS-GA09qZhlyyIFBP7aIUdo.roa (raw, json) Hash identifier: 8EsjoYLFo3SkE5D8noWqmm4X4qRp7TAuvUb8vSB1xPY= Subject key identifier: 3A:C0:51:51:2F:86:03:4F:6A:66:19:72:C8:81:41:3F:B6:88:51:DA Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14D5 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/OsBRUS-GA09qZhlyyIFBP7aIUdo.roa Signing time: Wed 11 Sep 2024 02:23:53 +0000 ROA not before: Wed 11 Sep 2024 02:23:53 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5333 (0x14d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:53 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3AC051512F86034F6A661972C881413FB68851DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:41:2f:3e:fe:18:ee:6e:ae:7c:c0:de:11:c0: 60:7f:d9:f7:23:d6:58:68:c7:a5:5d:0b:20:ff:d5: 16:38:da:19:10:e3:4b:12:1a:80:db:b4:e2:69:6d: 83:c4:e9:54:59:b9:c9:8b:f3:e6:eb:52:6f:51:55: 70:ae:bf:9b:b3:c2:3c:b3:fe:e1:da:88:c4:d4:5f: c7:16:c4:7b:43:19:7c:a8:a5:f2:1b:90:46:31:ae: 95:1e:7f:1b:88:3f:b9:74:1f:b5:e9:35:8e:a9:de: 2d:2f:64:cc:53:ca:11:ef:9f:2a:89:ad:84:62:54: 66:48:f7:db:34:34:5e:c1:6b:90:4b:75:fa:8d:5f: e4:b4:23:d9:68:36:e5:65:8e:fa:6e:62:3b:4c:f5: cc:a8:38:15:b9:da:a4:8c:d1:e1:ea:1f:66:6c:3d: 5e:ed:7b:c0:ac:a9:fd:20:0c:df:15:00:99:2c:8e: c1:ee:a5:a2:d3:1e:be:9f:d5:f5:bb:70:8d:ec:73: 1f:87:9d:94:e1:9c:13:74:22:7a:a4:20:b1:c7:d9: 86:7e:27:2d:44:9d:06:2d:13:64:a2:d1:2d:0f:f8: e4:2e:4c:29:1c:80:fa:81:f7:0e:4d:ae:02:2a:31: 41:1b:ab:fe:47:58:24:5e:a2:83:b9:78:af:32:1c: 1b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C0:51:51:2F:86:03:4F:6A:66:19:72:C8:81:41:3F:B6:88:51:DA X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/OsBRUS-GA09qZhlyyIFBP7aIUdo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.92.0/22 Signature Algorithm: sha256WithRSAEncryption 61:2b:b5:3c:68:db:c1:df:76:fd:38:0b:7f:0a:96:63:5e:91: 25:17:3f:e6:27:fc:a8:6c:08:48:ad:eb:84:26:05:a1:b1:a2: 9a:06:7d:c7:90:78:c5:54:64:60:3d:52:5a:a2:08:66:d1:f7: 23:bd:d4:4b:35:0c:73:d6:f7:6d:ea:be:5e:9a:a3:7a:52:a5: b8:a3:0f:bb:88:df:73:0f:0a:0c:25:77:f8:5e:70:e4:29:0c: fd:c5:cd:34:0c:d4:ee:43:d0:fd:5a:00:d1:6c:5b:f2:5f:de: 36:1b:34:d1:06:ec:1f:5e:08:33:eb:01:ff:e1:c9:96:11:84: ef:90:0d:70:a6:45:00:01:90:c9:0d:b8:fb:14:78:f5:1d:f8: 0b:aa:e5:ff:6e:bf:2d:ff:fc:5f:e8:01:aa:34:1b:81:a9:84: 6f:bf:ee:c1:63:f3:f7:92:89:0a:72:bf:c8:e1:de:a7:df:f2: a7:57:a5:31:7b:9d:7f:ae:66:a2:b4:58:c2:05:bf:8b:cc:36: c1:17:50:60:cf:55:fe:01:d0:c5:aa:63:96:c0:f2:cb:35:77: ba:26:e1:64:70:76:f4:04:6d:c8:9b:92:65:07:5a:7e:36:6f: 20:b4:c0:c1:e8:24:f4:ee:bf:78:56:23:f4:6d:4e:fd:fc:45: 4a:3e:5d:af -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNTNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNBQzA1MTUxMkY4NjAz NEY2QTY2MTk3MkM4ODE0MTNGQjY4ODUxREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzQS8+/hjubq58wN4RwGB/2fcj1lhox6VdCyD/1RY42hkQ40sS GoDbtOJpbYPE6VRZucmL8+brUm9RVXCuv5uzwjyz/uHaiMTUX8cWxHtDGXyopfIb kEYxrpUefxuIP7l0H7XpNY6p3i0vZMxTyhHvnyqJrYRiVGZI99s0NF7Ba5BLdfqN X+S0I9loNuVljvpuYjtM9cyoOBW52qSM0eHqH2ZsPV7te8Csqf0gDN8VAJksjsHu paLTHr6f1fW7cI3scx+HnZThnBN0InqkILHH2YZ+Jy1EnQYtE2Si0S0P+OQuTCkc gPqB9w5NrgIqMUEbq/5HWCReooO5eK8yHBuPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUOsBRUS+GA09qZhlyyIFBP7aIUdowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L09zQlJVUy1HQTA5cVpo bHl5SUZCUDdhSVVkby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3VwwDQYJKoZIhvcNAQELBQADggEBAGErtTxo28Hfdv04C38KlmNekSUXP+Yn /KhsCEit64QmBaGxopoGfceQeMVUZGA9UlqiCGbR9yO91Es1DHPW923qvl6ao3pS pbijD7uI33MPCgwld/hecOQpDP3FzTQM1O5D0P1aANFsW/Jf3jYbNNEG7B9eCDPr Af/hyZYRhO+QDXCmRQABkMkNuPsUePUd+Auq5f9uvy3//F/oAao0G4GphG+/7sFj 8/eSiQpyv8jh3qff8qdXpTF7nX+uZqK0WMIFv4vMNsEXUGDPVf4B0MWqY5bA8ss1 d7om4WRwdvQEbcibkmUHWn42byC0wMHoJPTuv3hWI/RtTv38RUo+Xa8= -----END CERTIFICATE-----Generated at Fri Nov 22 23:40:49 2024 by rpki-client on console-fra.rpki-client.org