$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/TXETuYhavqhFcK2Whc2VieF9TgQ.roa File: TXETuYhavqhFcK2Whc2VieF9TgQ.roa (raw, json) Hash identifier: jLU6+6j589vhuZtAQlUXlGoljiOGP3LWUW65vRX3GJM= Subject key identifier: 4D:71:13:B9:88:5A:BE:A8:45:70:AD:96:85:CD:95:89:E1:7D:4E:04 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 149D Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/TXETuYhavqhFcK2Whc2VieF9TgQ.roa Signing time: Wed 11 Sep 2024 02:23:33 +0000 ROA not before: Wed 11 Sep 2024 02:23:33 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5277 (0x149d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:33 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=4D7113B9885ABEA84570AD9685CD9589E17D4E04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ad:ce:61:07:2c:fe:07:cd:35:3a:a1:2b:d4: 5e:6b:65:8c:6f:99:8a:96:3c:87:7e:cd:a5:b2:cb: 07:e6:fe:0b:0c:56:95:f4:64:d4:30:9b:ea:f9:29: d0:58:96:05:7c:47:cf:2e:8a:5a:01:5c:0f:ec:db: 4a:db:c8:fc:ca:e8:b8:ab:ac:62:ac:51:c6:95:d6: 77:4e:ce:16:09:de:31:65:ea:26:2f:d1:2e:71:b2: 4e:43:f1:c1:6d:62:5b:af:0b:58:cc:a3:a4:19:49: f1:05:4e:68:65:ed:39:79:76:01:de:42:b1:02:7d: 5a:7a:21:d4:24:84:06:e2:4b:df:7b:44:33:e4:29: 56:54:f3:d4:e7:fa:04:41:4c:11:ec:eb:cd:63:18: 36:41:a8:b5:b3:eb:62:8b:ed:66:fd:4c:79:e2:6b: f2:59:45:be:de:78:47:3f:75:48:f5:ab:8b:fc:da: 1d:b9:fe:ea:69:3e:71:b5:99:b4:67:3f:db:21:cd: 1b:d0:4d:e5:fa:7d:cf:91:ce:e7:39:d6:91:c7:b6: 50:0c:13:0f:07:8a:e1:22:f4:55:a0:bd:0b:14:a1: 6d:a2:45:15:f5:bf:9b:46:6a:f8:32:69:60:ee:23: 7d:1b:ec:c1:f5:7a:8d:47:cb:35:12:eb:a0:30:c9: f2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:71:13:B9:88:5A:BE:A8:45:70:AD:96:85:CD:95:89:E1:7D:4E:04 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/TXETuYhavqhFcK2Whc2VieF9TgQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.28.0/22 Signature Algorithm: sha256WithRSAEncryption 67:95:d8:87:48:f7:5b:e0:da:34:98:00:3b:c7:a8:80:a2:ec: 02:0c:39:86:de:89:69:37:2c:fd:b6:73:3c:52:97:70:79:ef: ba:3a:18:84:78:c5:41:d2:73:4b:6d:4a:2e:be:da:ef:8b:0d: 8f:6a:cb:44:ad:d5:a8:24:f3:3e:49:b3:68:5f:d6:72:46:ff: a4:50:13:fd:46:e0:d6:9d:cf:1f:ae:ea:c9:d4:3e:9b:65:24: 51:d2:b6:e5:28:ad:10:eb:7a:dd:47:6f:01:f0:03:ae:f9:08: ff:ed:98:ce:7b:ec:53:ec:a8:d4:24:f6:4e:c7:ac:4a:76:76: ca:c2:e3:9e:71:0f:03:26:98:e0:a8:bf:f3:4c:47:ab:ba:3c: e2:83:15:fb:5d:df:20:05:d0:68:69:48:ca:c2:4d:9e:1d:83: 8e:94:c1:3a:67:b0:a2:16:6e:dd:17:62:e8:02:2b:3f:fd:93: 8b:43:d4:9a:33:91:f7:b3:29:e3:4d:ea:62:bc:99:fa:4e:a8: 2f:cc:bc:76:58:2f:6a:3e:20:45:95:31:07:36:18:fb:33:a2: 21:6c:98:5f:c0:60:da:a1:35:90:8f:4f:ca:e5:c9:a7:e3:9b: 21:93:a3:3b:6d:d8:c0:4f:26:81:c1:08:eb:07:dd:80:5b:3e: 37:a2:a2:d2 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzMzNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDRENzExM0I5ODg1QUJF QTg0NTcwQUQ5Njg1Q0Q5NTg5RTE3RDRFMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMrc5hByz+B801OqEr1F5rZYxvmYqWPId+zaWyywfm/gsMVpX0 ZNQwm+r5KdBYlgV8R88uiloBXA/s20rbyPzK6LirrGKsUcaV1ndOzhYJ3jFl6iYv 0S5xsk5D8cFtYluvC1jMo6QZSfEFTmhl7Tl5dgHeQrECfVp6IdQkhAbiS997RDPk KVZU89Tn+gRBTBHs681jGDZBqLWz62KL7Wb9THnia/JZRb7eeEc/dUj1q4v82h25 /uppPnG1mbRnP9shzRvQTeX6fc+Rzuc51pHHtlAMEw8HiuEi9FWgvQsUoW2iRRX1 v5tGavgyaWDuI30b7MH1eo1HyzUS66AwyfIvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUTXETuYhavqhFcK2Whc2VieF9TgQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1RYRVR1WWhhdnFoRmNL MldoYzJWaWVGOVRnUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RwwDQYJKoZIhvcNAQELBQADggEBAGeV2IdI91vg2jSYADvHqICi7AIMOYbe iWk3LP22czxSl3B577o6GIR4xUHSc0ttSi6+2u+LDY9qy0St1agk8z5Js2hf1nJG /6RQE/1G4Nadzx+u6snUPptlJFHStuUorRDret1HbwHwA675CP/tmM577FPsqNQk 9k7HrEp2dsrC455xDwMmmOCov/NMR6u6POKDFftd3yAF0GhpSMrCTZ4dg46UwTpn sKIWbt0XYugCKz/9k4tD1JozkfezKeNN6mK8mfpOqC/MvHZYL2o+IEWVMQc2GPsz oiFsmF/AYNqhNZCPT8rlyafjmyGToztt2MBPJoHBCOsH3YBbPjeiotI= -----END CERTIFICATE-----Generated at Fri Nov 22 23:40:49 2024 by rpki-client on console-fra.rpki-client.org