$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/Pj_G3vvorG287oGe7ckbgWSe1D0.roa File: Pj_G3vvorG287oGe7ckbgWSe1D0.roa (raw, json) Hash identifier: hxf2I92IprwONCh+5xi+hGnGQHmXlxOkje7lTr4toPY= Subject key identifier: 3E:3F:C6:DE:FB:E8:AC:6D:BC:EE:81:9E:ED:C9:1B:81:64:9E:D4:3D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 150F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Pj_G3vvorG287oGe7ckbgWSe1D0.roa Signing time: Wed 11 Sep 2024 02:27:35 +0000 ROA not before: Wed 11 Sep 2024 02:27:35 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 13444 IP address blocks: 103.221.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5391 (0x150f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:27:35 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3E3FC6DEFBE8AC6DBCEE819EEDC91B81649ED43D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:31:de:b8:28:92:19:ae:7e:58:eb:79:6f:a5: 0c:17:e3:e2:9b:ee:b3:5c:ca:d2:e2:8e:2a:25:c8: 8d:60:07:10:b3:af:3b:65:cb:43:2f:22:dc:b8:5c: 51:40:4c:4e:ca:10:8e:16:3c:27:83:1e:57:0d:bd: 0d:66:f3:65:90:f0:89:f8:a9:c0:81:d6:bf:d8:e7: e3:fc:5c:be:c4:77:1a:e1:76:a1:7f:88:9c:e6:94: d4:4d:b5:81:ff:5e:88:82:a4:5d:60:54:bb:9c:de: 4b:c6:b4:b4:ae:58:69:5c:6c:b2:2e:3f:ae:c5:c0: da:b1:ef:5c:f3:58:6f:3c:7c:8c:b3:d0:4a:ff:71: 3f:58:7e:d0:10:49:94:36:8e:f5:89:ce:42:fb:0b: fb:99:61:c1:50:38:5a:d2:f8:c4:77:15:2e:de:c5: a3:ef:ec:94:5e:56:81:52:6b:c1:ae:83:ba:ab:ba: 67:e2:84:83:b3:68:55:13:b2:9b:6c:04:c1:61:99: c7:43:3f:d2:1e:7d:8e:56:9b:62:e1:5e:06:0c:05: 92:90:4b:28:bc:32:36:18:2d:82:db:52:99:73:26: be:9e:b3:ea:0d:75:26:a1:a4:c9:a7:3c:1d:b0:70: ae:70:f8:25:85:bf:3d:98:34:91:8b:5e:54:74:d4: d6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3F:C6:DE:FB:E8:AC:6D:BC:EE:81:9E:ED:C9:1B:81:64:9E:D4:3D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Pj_G3vvorG287oGe7ckbgWSe1D0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.36.0/24 Signature Algorithm: sha256WithRSAEncryption 25:61:49:e8:6a:93:53:56:83:36:48:35:f8:10:b2:a9:80:9c: d2:94:44:e4:93:e3:ec:da:80:9c:30:7d:aa:88:f9:f3:a0:8c: 06:30:82:6e:f1:9a:a1:b7:61:a8:64:09:05:14:5b:cf:29:dc: da:9c:60:d2:c9:ba:97:94:8e:11:71:c7:86:36:b8:41:3b:4b: 20:f4:53:9e:db:c1:39:df:fc:b4:06:66:ae:da:43:2b:5b:77: 83:04:8a:98:31:f6:fe:7f:d8:0d:d2:10:33:d6:02:da:be:84: fc:ed:73:a9:00:7d:61:f0:27:a7:f3:9a:8f:db:09:93:f0:8c: 85:cb:ba:d3:5c:d3:3d:02:0d:44:5a:55:23:30:9e:83:bd:92: a5:2c:e1:9b:e3:9a:6d:dc:27:f2:65:0e:5c:dd:39:d9:7e:ac: cf:c0:7e:4b:50:73:32:f4:4c:26:6f:6b:67:9b:15:f4:47:4c: ea:bc:3f:55:cb:22:4b:ff:38:45:b3:0d:df:d9:66:40:04:5b: 33:f4:27:78:32:a1:70:2b:77:7b:fe:7e:ce:6a:d9:af:9f:af: 7f:5d:a0:1f:c4:2b:c6:68:ad:f2:64:25:65:67:1d:02:8c:c8: ff:dc:27:2d:98:f5:ec:6f:4f:bf:fd:42:35:bb:5b:7c:61:6b: 61:3e:8b:c0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjI3MzVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNFM0ZDNkRFRkJFOEFD NkRCQ0VFODE5RUVEQzkxQjgxNjQ5RUQ0M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXMd64KJIZrn5Y63lvpQwX4+Kb7rNcytLijiolyI1gBxCzrztl y0MvIty4XFFATE7KEI4WPCeDHlcNvQ1m82WQ8In4qcCB1r/Y5+P8XL7EdxrhdqF/ iJzmlNRNtYH/XoiCpF1gVLuc3kvGtLSuWGlcbLIuP67FwNqx71zzWG88fIyz0Er/ cT9YftAQSZQ2jvWJzkL7C/uZYcFQOFrS+MR3FS7exaPv7JReVoFSa8Gug7qrumfi hIOzaFUTsptsBMFhmcdDP9IefY5Wm2LhXgYMBZKQSyi8MjYYLYLbUplzJr6es+oN dSahpMmnPB2wcK5w+CWFvz2YNJGLXlR01NatAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUPj/G3vvorG287oGe7ckbgWSe1D0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1BqX0czdnZvckcyODdv R2U3Y2tiZ1dTZTFEMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3SQwDQYJKoZIhvcNAQELBQADggEBACVhSehqk1NWgzZINfgQsqmAnNKUROST 4+zagJwwfaqI+fOgjAYwgm7xmqG3YahkCQUUW88p3NqcYNLJupeUjhFxx4Y2uEE7 SyD0U57bwTnf/LQGZq7aQytbd4MEipgx9v5/2A3SEDPWAtq+hPztc6kAfWHwJ6fz mo/bCZPwjIXLutNc0z0CDURaVSMwnoO9kqUs4Zvjmm3cJ/JlDlzdOdl+rM/AfktQ czL0TCZva2ebFfRHTOq8P1XLIkv/OEWzDd/ZZkAEWzP0J3gyoXArd3v+fs5q2a+f r39doB/EK8ZorfJkJWVnHQKMyP/cJy2Y9exvT7/9QjW7W3xha2E+i8A= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:40 2024 by rpki-client on console-fra.rpki-client.org