$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/PRTkQrL_sE1Fz--f9ON-gp_6_lY.roa File: PRTkQrL_sE1Fz--f9ON-gp_6_lY.roa (raw, json) Hash identifier: UOlSF4fUTo94ye/uW9hL+BKtOuaEiVevMQZrkW0MwGM= Subject key identifier: 3D:14:E4:42:B2:FF:B0:4D:45:CF:EF:9F:F4:E3:7E:82:9F:FA:FE:56 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 154B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/PRTkQrL_sE1Fz--f9ON-gp_6_lY.roa Signing time: Wed 11 Sep 2024 03:59:21 +0000 ROA not before: Wed 11 Sep 2024 03:59:21 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5451 (0x154b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 03:59:21 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3D14E442B2FFB04D45CFEF9FF4E37E829FFAFE56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:29:18:ad:9e:37:63:49:0f:68:bb:6a:fd:54: fe:0b:46:f3:ea:70:41:1e:88:76:f4:3b:05:52:9e: 84:d8:84:17:ac:f3:be:fa:fe:ab:c7:36:04:94:d6: 30:fc:9f:9f:c3:67:77:20:ee:b5:8a:3f:64:c2:1c: 58:ab:88:00:99:29:65:6a:0b:f0:f9:13:31:c1:0d: d4:19:9d:c1:6a:5a:70:de:c8:87:d5:68:d3:10:39: 1f:01:2c:54:7d:94:6f:0a:90:82:4a:5d:19:4d:da: bc:2f:cc:4e:08:67:9d:3e:6a:b9:d2:44:97:61:25: c4:81:ff:a5:26:4a:24:90:ee:c4:13:cf:b4:3d:6e: de:47:e6:61:55:4c:9f:a8:87:39:0b:70:f6:23:e3: 02:fe:98:a6:c2:2a:53:4a:55:c4:93:f6:df:62:f8: cb:c3:d4:90:40:ea:f8:b8:80:e0:0c:d7:0f:8f:b7: 54:7e:54:75:a0:44:81:74:6f:bb:7c:a0:94:91:9c: 53:cb:67:5c:94:88:39:82:9d:29:ec:8d:85:db:83: 4e:d1:f0:4c:02:35:f0:73:de:a0:36:b4:f0:9a:47: 00:8d:d3:d8:71:a4:46:81:13:d8:ca:5a:51:40:e5: 6c:5f:04:7d:5d:7e:a2:74:2b:86:33:c3:17:42:e3: 3b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:14:E4:42:B2:FF:B0:4D:45:CF:EF:9F:F4:E3:7E:82:9F:FA:FE:56 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/PRTkQrL_sE1Fz--f9ON-gp_6_lY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.27.0/24 Signature Algorithm: sha256WithRSAEncryption 32:9e:4b:bd:16:b7:9c:31:e0:49:8d:5d:4d:b7:16:00:25:25: 63:76:d4:f1:0a:be:0b:1f:03:2f:5e:d2:ab:e7:64:28:69:d8: 56:68:9b:db:aa:5a:7b:70:cd:94:68:78:27:c0:64:34:67:f0: f3:08:9d:38:0d:31:c0:5e:60:ac:0c:5e:48:53:f5:e7:d3:f8: c2:49:ab:0a:cb:03:a8:0a:f7:22:50:7e:60:51:ec:57:9b:27: d1:35:4a:44:6a:84:c4:3e:45:fc:92:ed:83:03:9e:c7:2b:2d: 2a:e9:ba:52:b5:9c:f8:4d:ca:54:da:79:7e:72:32:b7:e4:d2: a9:bf:34:ca:30:e1:e4:2d:59:76:aa:75:03:78:5a:b1:93:fa: f2:47:7b:c7:40:13:5a:4b:db:62:03:28:97:81:96:16:90:0b: 22:ba:f2:14:14:02:d9:a7:1a:68:e3:bd:a0:b0:42:7b:84:e9: c3:79:45:a8:45:4e:c0:d8:a2:f7:21:2a:52:f6:a2:55:2a:42: 34:35:d7:61:12:d6:cd:2b:86:7e:5f:41:16:d6:bf:57:2f:b4: fa:a6:94:10:b4:4e:54:58:f5:fe:bb:8c:e4:45:31:b7:01:17: 8c:07:6e:61:09:52:db:32:97:28:ee:dc:dc:af:75:10:43:69: e4:05:a5:4c -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MzU5MjFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNEMTRFNDQyQjJGRkIw NEQ0NUNGRUY5RkY0RTM3RTgyOUZGQUZFNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdKRitnjdjSQ9ou2r9VP4LRvPqcEEeiHb0OwVSnoTYhBes8776 /qvHNgSU1jD8n5/DZ3cg7rWKP2TCHFiriACZKWVqC/D5EzHBDdQZncFqWnDeyIfV aNMQOR8BLFR9lG8KkIJKXRlN2rwvzE4IZ50+arnSRJdhJcSB/6UmSiSQ7sQTz7Q9 bt5H5mFVTJ+ohzkLcPYj4wL+mKbCKlNKVcST9t9i+MvD1JBA6vi4gOAM1w+Pt1R+ VHWgRIF0b7t8oJSRnFPLZ1yUiDmCnSnsjYXbg07R8EwCNfBz3qA2tPCaRwCN09hx pEaBE9jKWlFA5WxfBH1dfqJ0K4YzwxdC4zufAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUPRTkQrL/sE1Fz++f9ON+gp/6/lYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1BSVGtRckxfc0UxRnot LWY5T04tZ3BfNl9sWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RswDQYJKoZIhvcNAQELBQADggEBADKeS70Wt5wx4EmNXU23FgAlJWN21PEK vgsfAy9e0qvnZChp2FZom9uqWntwzZRoeCfAZDRn8PMInTgNMcBeYKwMXkhT9efT +MJJqwrLA6gK9yJQfmBR7FebJ9E1SkRqhMQ+RfyS7YMDnscrLSrpulK1nPhNylTa eX5yMrfk0qm/NMow4eQtWXaqdQN4WrGT+vJHe8dAE1pL22IDKJeBlhaQCyK68hQU AtmnGmjjvaCwQnuE6cN5RahFTsDYovchKlL2olUqQjQ112ES1s0rhn5fQRbWv1cv tPqmlBC0TlRY9f67jORFMbcBF4wHbmEJUtsylyju3NyvdRBDaeQFpUw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:46 2024 by rpki-client on console-ams.rpki-client.org