$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/SY_Pqw32P--n51eQEWNCpHhkcuQ.roa File: SY_Pqw32P--n51eQEWNCpHhkcuQ.roa (raw, json) Hash identifier: oywk5yWkwvQwP1sT1XQCOpQWDMnCCvbiaJe+i2wPeDc= Subject key identifier: 49:8F:CF:AB:0D:F6:3F:EF:A7:E7:57:90:11:63:42:A4:78:64:72:E4 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 12E7 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SY_Pqw32P--n51eQEWNCpHhkcuQ.roa Signing time: Sat 29 Jun 2024 19:44:15 +0000 ROA not before: Sat 29 Jun 2024 19:44:15 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 59083 IP address blocks: 103.10.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4839 (0x12e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jun 29 19:44:15 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=498FCFAB0DF63FEFA7E75790116342A4786472E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ca:89:f3:fe:0d:fa:a6:f9:e0:12:e2:a5:b3: 3a:44:70:1a:9a:26:10:15:35:c3:fd:a5:67:0f:61: df:8e:85:ab:84:f0:76:13:4b:0a:a7:d1:05:5a:21: db:37:db:9d:2b:4d:ab:c5:8d:bb:0e:20:06:51:38: d4:48:41:57:5f:3d:bf:a4:da:40:5f:53:f1:b7:32: 8f:51:6c:18:7a:16:69:3a:9e:f9:cd:bf:e1:11:fc: 95:e5:0f:54:60:66:1a:0c:ce:69:a2:de:2b:67:5f: 02:62:ca:c6:a1:91:5b:79:d8:1a:65:a9:c5:f2:b0: 4f:5a:62:80:64:85:de:c2:cd:85:f3:f7:58:93:c6: 7d:5f:6a:96:95:0c:ec:96:ee:77:6a:02:f6:f9:1a: dc:fe:2a:0e:2a:93:6f:87:cb:6c:2d:fb:0f:76:9d: d1:bf:7c:13:79:e1:ea:59:94:ff:61:e4:09:b0:d2: 65:c2:20:9b:8f:b5:3a:4c:a8:2a:ae:fd:e9:29:ea: 64:6b:b9:e8:78:52:99:b6:b9:24:3d:63:10:92:40: f5:45:71:b5:dc:e8:86:44:b8:9c:3a:0d:a5:c1:02: 49:95:81:dd:5e:ed:31:1d:3b:eb:dc:8f:41:f4:dc: f5:9b:c3:ee:3c:92:0a:60:16:77:04:de:78:2b:d3: 5a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8F:CF:AB:0D:F6:3F:EF:A7:E7:57:90:11:63:42:A4:78:64:72:E4 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SY_Pqw32P--n51eQEWNCpHhkcuQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.10.0.0/22 Signature Algorithm: sha256WithRSAEncryption 60:09:f8:c0:ba:92:db:5f:87:22:6d:1a:bf:b6:06:61:85:7c: 1e:85:f6:65:e8:b3:26:3c:92:43:f1:af:b1:94:db:64:d6:2c: f2:70:5d:3c:9d:61:b3:6a:73:b0:29:aa:a8:77:47:f6:ab:7d: ee:f2:46:8e:ef:0f:3f:4a:e9:f2:fc:57:b4:bd:19:4c:0b:4a: 59:d7:4e:d0:53:ce:79:63:19:8f:0f:80:98:f2:9c:40:99:7c: b7:5f:0a:6f:4c:4b:b0:bc:3c:3f:77:a4:22:e8:94:4f:d7:2c: 85:c3:57:7c:09:f2:8a:95:ef:c2:67:9c:61:6d:40:1d:f9:48: ac:84:a7:1a:42:c4:84:5f:c3:b8:59:aa:10:f8:48:c0:9b:f3: e1:97:0b:11:67:9e:38:ec:82:10:3b:b6:50:87:d6:63:d1:db: f7:6b:ec:ba:88:35:68:91:0b:4f:ce:57:ff:51:60:e8:d9:99: 91:ed:19:ba:6c:40:ab:86:b3:bd:6f:83:3e:22:1f:02:97:e6: 03:5f:92:db:a7:42:f9:0e:cd:ec:83:1d:65:34:64:17:51:27: b7:36:d2:ba:51:3c:f6:8b:37:f4:2f:d2:70:53:ae:7e:76:77: 80:2f:1b:08:84:b3:40:6c:21:86:19:cd:78:cd:f4:a1:e5:32: 4a:bf:df:c6 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA2Mjkx OTQ0MTVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDQ5OEZDRkFCMERGNjNG RUZBN0U3NTc5MDExNjM0MkE0Nzg2NDcyRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9yonz/g36pvngEuKlszpEcBqaJhAVNcP9pWcPYd+OhauE8HYT Swqn0QVaIds3250rTavFjbsOIAZRONRIQVdfPb+k2kBfU/G3Mo9RbBh6Fmk6nvnN v+ER/JXlD1RgZhoMzmmi3itnXwJiysahkVt52BplqcXysE9aYoBkhd7CzYXz91iT xn1fapaVDOyW7ndqAvb5Gtz+Kg4qk2+Hy2wt+w92ndG/fBN54epZlP9h5Amw0mXC IJuPtTpMqCqu/ekp6mRrueh4Upm2uSQ9YxCSQPVFcbXc6IZEuJw6DaXBAkmVgd1e 7TEdO+vcj0H03PWbw+48kgpgFncE3ngr01rZAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSY/Pqw32P++n51eQEWNCpHhkcuQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1NZX1BxdzMyUC0tbjUx ZVFFV05DcEhoa2N1US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnCgAwDQYJKoZIhvcNAQELBQADggEBAGAJ+MC6kttfhyJtGr+2BmGFfB6F9mXo syY8kkPxr7GU22TWLPJwXTydYbNqc7Apqqh3R/arfe7yRo7vDz9K6fL8V7S9GUwL SlnXTtBTznljGY8PgJjynECZfLdfCm9MS7C8PD93pCLolE/XLIXDV3wJ8oqV78Jn nGFtQB35SKyEpxpCxIRfw7hZqhD4SMCb8+GXCxFnnjjsghA7tlCH1mPR2/dr7LqI NWiRC0/OV/9RYOjZmZHtGbpsQKuGs71vgz4iHwKX5gNfktunQvkOzeyDHWU0ZBdR J7c20rpRPPaLN/Qv0nBTrn52d4AvGwiEs0BsIYYZzXjN9KHlMkq/38Y= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org