$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/SlaceyQEjZDPFdAi_7WeFrGSxCc.roa File: SlaceyQEjZDPFdAi_7WeFrGSxCc.roa (raw, json) Hash identifier: 9dsnb/KZTu7KWn9soE9++mibcqZqdwLALJupbHXO+l8= Subject key identifier: 4A:56:9C:7B:24:04:8D:90:CF:15:D0:22:FF:B5:9E:16:B1:92:C4:27 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14D2 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SlaceyQEjZDPFdAi_7WeFrGSxCc.roa Signing time: Wed 11 Sep 2024 02:23:52 +0000 ROA not before: Wed 11 Sep 2024 02:23:52 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 138527 IP address blocks: 103.221.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5330 (0x14d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:52 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=4A569C7B24048D90CF15D022FFB59E16B192C427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:04:34:d9:7a:08:d9:ff:d9:0d:74:13:9d:22: 45:93:74:d5:ee:40:dd:b2:8d:ab:f5:df:31:29:61: d2:bf:91:6b:48:ab:38:45:cb:9b:3f:7a:6a:38:12: fa:6d:fe:0b:8f:d0:3a:53:b4:3a:e9:94:16:83:08: dd:bd:99:af:28:9a:15:95:6a:ff:c9:e3:0a:5d:c3: 6c:7d:9d:86:2e:f3:1c:c2:e8:5b:92:47:c6:15:25: c3:cf:83:e8:84:f8:39:4e:49:f6:7e:6f:45:c2:c9: d1:dc:78:23:3a:4b:b1:00:32:ba:28:23:76:10:c6: d9:86:ba:f7:b6:7f:92:d6:1d:33:dd:af:38:ef:59: ee:b1:cd:a9:12:e1:ca:62:ff:03:67:58:97:ac:60: bd:59:47:8c:f1:3a:a8:6c:8e:41:d1:a7:6f:b5:bd: 73:9e:2c:5c:05:e7:35:8c:4f:dc:87:cc:21:0f:97: a1:60:dc:50:29:50:07:7f:71:da:09:5f:1f:39:d3: 09:59:8e:a9:c4:18:f7:52:1c:de:44:a8:19:e4:69: 7f:68:ed:7c:e5:46:d8:2f:ed:cb:d3:dd:e8:4b:9b: c0:3b:13:48:6f:77:5e:56:08:43:4e:1e:ec:d7:5e: 9b:5c:bc:5b:0e:bc:ee:a2:4e:cf:fa:0b:41:2c:eb: 2b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:56:9C:7B:24:04:8D:90:CF:15:D0:22:FF:B5:9E:16:B1:92:C4:27 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SlaceyQEjZDPFdAi_7WeFrGSxCc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.44.0/22 Signature Algorithm: sha256WithRSAEncryption b5:64:f8:d1:48:f6:d7:1c:cd:3e:cd:43:b6:ca:d0:9f:40:02: ca:a7:fd:3f:cc:3f:bd:fe:b1:4d:58:cb:d0:e7:7b:f6:89:5e: 39:d8:bf:77:df:f2:2f:aa:30:e8:fe:d0:0b:3f:59:a0:76:33: 22:e0:76:29:77:f8:97:68:80:16:a6:15:8c:9b:85:21:d0:a0: f2:3a:15:39:dd:f6:c3:d0:71:69:48:0a:84:56:04:d2:ec:fd: b6:82:01:4b:19:9e:44:b7:c4:d8:be:8c:23:1a:7c:5b:c3:c1: fd:59:7c:15:dc:72:aa:4a:5f:c2:d6:95:84:18:82:b2:df:cd: d4:37:e2:a4:53:b7:bb:a0:68:c0:ab:48:c0:cd:23:c1:8a:aa: 5d:c9:45:dd:7e:37:c3:9d:ab:8e:51:fa:11:44:f0:dc:ba:1e: 37:c9:64:57:43:0f:49:fc:ac:d9:78:15:0f:9a:b0:6e:f8:fb: 35:4f:76:97:2b:8d:e6:44:c8:a9:54:ca:87:17:52:ec:f9:ee: 1e:1d:93:73:12:7d:82:2a:d9:c0:c2:16:5c:3c:66:c9:a1:f5: 19:46:92:a5:f8:10:f6:4b:9e:f2:e6:24:41:c5:9d:9a:a2:40: d9:f3:01:3f:b3:9e:c6:8f:84:08:34:6c:f4:4d:6d:b4:66:9f: 6f:0f:4b:a8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNTJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDRBNTY5QzdCMjQwNDhE OTBDRjE1RDAyMkZGQjU5RTE2QjE5MkM0MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeBDTZegjZ/9kNdBOdIkWTdNXuQN2yjav13zEpYdK/kWtIqzhF y5s/emo4Evpt/guP0DpTtDrplBaDCN29ma8omhWVav/J4wpdw2x9nYYu8xzC6FuS R8YVJcPPg+iE+DlOSfZ+b0XCydHceCM6S7EAMrooI3YQxtmGuve2f5LWHTPdrzjv We6xzakS4cpi/wNnWJesYL1ZR4zxOqhsjkHRp2+1vXOeLFwF5zWMT9yHzCEPl6Fg 3FApUAd/cdoJXx850wlZjqnEGPdSHN5EqBnkaX9o7XzlRtgv7cvT3ehLm8A7E0hv d15WCENOHuzXXptcvFsOvO6iTs/6C0Es6yt9AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSlaceyQEjZDPFdAi/7WeFrGSxCcwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1NsYWNleVFFalpEUEZk QWlfN1dlRnJHU3hDYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SwwDQYJKoZIhvcNAQELBQADggEBALVk+NFI9tcczT7NQ7bK0J9AAsqn/T/M P73+sU1Yy9Dne/aJXjnYv3ff8i+qMOj+0As/WaB2MyLgdil3+JdogBamFYybhSHQ oPI6FTnd9sPQcWlICoRWBNLs/baCAUsZnkS3xNi+jCMafFvDwf1ZfBXccqpKX8LW lYQYgrLfzdQ34qRTt7ugaMCrSMDNI8GKql3JRd1+N8Odq45R+hFE8Ny6HjfJZFdD D0n8rNl4FQ+asG74+zVPdpcrjeZEyKlUyocXUuz57h4dk3MSfYIq2cDCFlw8Zsmh 9RlGkqX4EPZLnvLmJEHFnZqiQNnzAT+znsaPhAg0bPRNbbRmn28PS6g= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org