$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/SU8Fd1BOTAIJ9UR1b2bbjlgfcFo.roa File: SU8Fd1BOTAIJ9UR1b2bbjlgfcFo.roa (raw, json) Hash identifier: ho/6j459gwPsrjK7Lb/E268Sw/NHhZL156GnuHgVZG8= Subject key identifier: 49:4F:05:77:50:4E:4C:02:09:F5:44:75:6F:66:DB:8E:58:1F:70:5A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 156C Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SU8Fd1BOTAIJ9UR1b2bbjlgfcFo.roa Signing time: Wed 11 Sep 2024 04:04:11 +0000 ROA not before: Wed 11 Sep 2024 04:04:11 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5484 (0x156c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 04:04:11 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=494F0577504E4C0209F544756F66DB8E581F705A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:07:c2:69:86:27:ff:6e:b9:e3:d7:14:74:c8: 8c:77:1d:17:c0:b9:8a:f3:75:8a:b9:5d:58:b1:6c: 27:40:98:59:35:31:6c:71:c4:e6:83:54:11:0d:9d: b5:45:16:75:bf:2f:ef:60:c0:e9:09:2e:bc:ea:20: 0b:eb:e9:2e:be:53:5f:fe:5f:5e:7c:54:d8:5c:83: b2:87:46:db:a5:0f:7c:a5:be:f4:df:28:a9:9f:77: 83:29:3e:55:f9:b4:15:bb:77:70:f2:2c:25:18:6b: e3:08:56:2d:9f:37:d9:dc:d3:3c:37:e4:bc:ea:75: 8e:5a:8a:09:c2:8b:79:05:5f:47:35:85:65:15:0b: 02:fa:8f:c4:d6:02:a1:e6:ee:a2:d7:2c:10:c7:76: 32:d9:a2:c8:02:80:ab:85:8c:e1:1d:a2:40:d2:e9: f5:a0:9a:4e:48:aa:89:0e:47:7a:9e:00:95:1b:1d: 9e:0c:e4:62:f6:59:c9:bc:d7:d5:53:60:61:ba:49: 65:3f:ba:38:a9:06:7a:44:bd:70:d3:6f:a5:47:ba: 27:11:1f:68:f3:96:48:7b:21:a8:d8:94:09:fb:b9: 49:cf:f1:a5:10:a4:37:74:0a:d7:43:3f:a5:ae:3f: 21:f2:e0:e1:82:00:8a:1e:f3:0e:d1:52:fa:ba:92: 93:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4F:05:77:50:4E:4C:02:09:F5:44:75:6F:66:DB:8E:58:1F:70:5A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SU8Fd1BOTAIJ9UR1b2bbjlgfcFo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.95.0/24 Signature Algorithm: sha256WithRSAEncryption 70:85:d3:c7:7e:43:74:63:4a:73:aa:ad:4e:dc:df:a5:2c:91: 56:65:69:6a:b5:b1:14:47:9c:8d:c1:a8:86:19:98:62:ca:87: 64:bf:2c:69:49:44:5c:c0:48:f7:b2:59:45:c7:0a:c5:58:b4: d7:47:6a:7b:33:0a:5b:55:a4:a9:10:80:92:c7:8d:59:0b:0d: bc:87:2d:e0:d3:3d:4e:17:37:d0:80:6f:50:98:32:56:31:d5: 93:93:20:c7:8c:91:b0:e8:01:61:8d:df:b9:97:99:d8:c4:92: 70:8f:66:6c:98:ef:c3:df:1b:23:82:66:3c:1a:0a:32:b6:97: 78:06:9d:0b:3a:99:3d:a8:d0:de:03:d7:cc:88:8d:d2:0b:ad: 7c:06:98:8b:75:89:e0:75:e6:d2:3f:cd:6b:02:f9:f9:50:d9: 33:67:47:98:f4:94:2c:94:fb:be:37:ab:da:40:94:5f:57:14: bd:41:f5:48:c9:88:65:d3:78:69:44:ed:af:97:19:43:05:0f: 46:ea:e5:40:53:57:af:bb:c0:98:58:eb:50:0b:44:2e:7f:75: 0d:2f:cc:7c:8a:d8:c6:1f:c2:08:64:6f:06:81:5a:cb:24:e0: 46:d9:98:dd:56:cd:a8:2e:3d:ab:be:c5:4a:a7:48:e6:d8:d2: 36:4d:8a:f1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw NDA0MTFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDQ5NEYwNTc3NTA0RTRD MDIwOUY1NDQ3NTZGNjZEQjhFNTgxRjcwNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoB8Jphif/brnj1xR0yIx3HRfAuYrzdYq5XVixbCdAmFk1MWxx xOaDVBENnbVFFnW/L+9gwOkJLrzqIAvr6S6+U1/+X158VNhcg7KHRtulD3ylvvTf KKmfd4MpPlX5tBW7d3DyLCUYa+MIVi2fN9nc0zw35LzqdY5aignCi3kFX0c1hWUV CwL6j8TWAqHm7qLXLBDHdjLZosgCgKuFjOEdokDS6fWgmk5IqokOR3qeAJUbHZ4M 5GL2Wcm819VTYGG6SWU/ujipBnpEvXDTb6VHuicRH2jzlkh7IajYlAn7uUnP8aUQ pDd0CtdDP6WuPyHy4OGCAIoe8w7RUvq6kpNBAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSU8Fd1BOTAIJ9UR1b2bbjlgfcFowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1NVOEZkMUJPVEFJSjlV UjFiMmJiamxnZmNGby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3V8wDQYJKoZIhvcNAQELBQADggEBAHCF08d+Q3RjSnOqrU7c36UskVZlaWq1 sRRHnI3BqIYZmGLKh2S/LGlJRFzASPeyWUXHCsVYtNdHanszCltVpKkQgJLHjVkL DbyHLeDTPU4XN9CAb1CYMlYx1ZOTIMeMkbDoAWGN37mXmdjEknCPZmyY78PfGyOC ZjwaCjK2l3gGnQs6mT2o0N4D18yIjdILrXwGmIt1ieB15tI/zWsC+flQ2TNnR5j0 lCyU+743q9pAlF9XFL1B9UjJiGXTeGlE7a+XGUMFD0bq5UBTV6+7wJhY61ALRC5/ dQ0vzHyK2MYfwghkbwaBWssk4EbZmN1WzaguPau+xUqnSObY0jZNivE= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org