$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/X1FxAaFshVOul3ydnjvI_QHctpU.roa File: X1FxAaFshVOul3ydnjvI_QHctpU.roa (raw, json) Hash identifier: c0eOPilnrxE495vBm783oiXGeoF9I+Y7Dhl55hm3I+I= Subject key identifier: 5F:51:71:01:A1:6C:85:53:AE:97:7C:9D:9E:3B:C8:FD:01:DC:B6:95 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1559 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/X1FxAaFshVOul3ydnjvI_QHctpU.roa Signing time: Wed 11 Sep 2024 04:01:44 +0000 ROA not before: Wed 11 Sep 2024 04:01:44 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5465 (0x1559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 04:01:44 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=5F517101A16C8553AE977C9D9E3BC8FD01DCB695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f8:6c:06:28:d7:13:08:d5:57:fc:f3:b4:07: 55:79:07:f6:f5:e5:8c:06:be:e1:06:33:d2:1f:05: 9f:4c:b9:6d:01:7e:2a:55:50:4c:87:ae:f8:43:b5: 5d:f9:6c:e3:ca:4b:6f:db:da:f6:87:86:1e:7d:96: a3:6c:09:08:66:cc:25:7a:c2:8d:4b:7b:61:28:dc: 17:4c:54:dd:9b:3d:40:ab:58:1b:46:73:d0:be:37: 34:7f:41:2e:f2:8d:14:8b:bd:02:55:3e:15:33:22: 2c:58:dc:58:47:9d:3a:23:8f:fd:ad:8b:7d:08:df: f3:72:4e:33:44:5b:00:89:3b:a9:a3:8e:2e:bc:e7: 33:0a:46:a5:61:e2:e6:0f:1a:41:3b:ec:c5:f8:cc: 16:24:c3:80:be:aa:40:80:05:98:c4:12:07:0b:06: c4:bf:e2:21:bd:1f:e4:3c:e4:24:17:ab:6a:42:a3: e3:57:6a:a1:1f:e8:51:4c:06:c0:d6:86:53:75:90: 75:27:c8:b0:18:a1:dc:f3:63:76:24:d9:d4:57:6a: dd:5d:a3:f8:20:33:3f:80:17:5e:c1:83:62:b1:6f: 5c:4a:f6:18:57:54:b1:49:91:a8:1a:b4:ae:88:4a: 8b:76:0d:81:f5:b3:b4:33:76:eb:cc:b6:d7:3b:02: 74:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:51:71:01:A1:6C:85:53:AE:97:7C:9D:9E:3B:C8:FD:01:DC:B6:95 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/X1FxAaFshVOul3ydnjvI_QHctpU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.35.0/24 Signature Algorithm: sha256WithRSAEncryption 01:ae:66:ee:66:41:3c:87:9e:38:19:fe:24:59:2c:dc:d5:d1: a6:88:44:3b:14:ec:9c:b8:68:79:a4:84:55:7b:33:21:7d:86: 7b:f6:15:e4:74:c2:7f:5f:46:b9:1b:0f:d1:74:4b:e7:61:61: cc:0a:bd:7d:fe:47:8d:d3:48:7c:f2:4b:0b:96:36:35:4c:c7: 15:2e:d4:9a:0a:4d:45:d4:0e:94:bf:a0:27:73:15:0e:4d:24: f7:21:e3:8b:11:c8:ad:a5:7c:3a:7b:79:f2:ef:b4:c0:a7:05: e1:af:1a:d3:33:42:71:31:79:76:9e:f9:c3:46:63:7e:7f:81: 85:38:e9:00:1e:72:95:c0:66:a0:a9:01:45:e2:37:ee:6b:c9: 81:e6:7d:1b:39:f0:1d:64:d1:e8:2b:10:e4:3d:8f:14:72:97: 22:8b:79:6f:72:6a:5d:65:79:ec:09:f8:85:09:fe:7d:85:ad: 10:69:d2:bf:40:79:98:d6:3c:1d:fa:95:c3:e5:2d:00:4d:dd: 9e:a4:6d:ce:e9:3f:98:59:fc:50:13:76:26:97:2e:5e:3b:8b: 4c:b4:8d:b0:d9:e1:bd:00:eb:ce:2d:b4:b6:a1:f8:62:6a:be: 88:7f:ba:0b:8a:d2:7f:f5:80:e3:29:99:3d:e7:63:e8:7d:e7: 83:53:00:4e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFVkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw NDAxNDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDVGNTE3MTAxQTE2Qzg1 NTNBRTk3N0M5RDlFM0JDOEZEMDFEQ0I2OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY+GwGKNcTCNVX/PO0B1V5B/b15YwGvuEGM9IfBZ9MuW0BfipV UEyHrvhDtV35bOPKS2/b2vaHhh59lqNsCQhmzCV6wo1Le2Eo3BdMVN2bPUCrWBtG c9C+NzR/QS7yjRSLvQJVPhUzIixY3FhHnTojj/2ti30I3/NyTjNEWwCJO6mjji68 5zMKRqVh4uYPGkE77MX4zBYkw4C+qkCABZjEEgcLBsS/4iG9H+Q85CQXq2pCo+NX aqEf6FFMBsDWhlN1kHUnyLAYodzzY3Yk2dRXat1do/ggMz+AF17Bg2Kxb1xK9hhX VLFJkagatK6ISot2DYH1s7QzduvMttc7AnQpAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUX1FxAaFshVOul3ydnjvI/QHctpUwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1gxRnhBYUZzaFZPdWwz eWRuanZJX1FIY3RwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3SMwDQYJKoZIhvcNAQELBQADggEBAAGuZu5mQTyHnjgZ/iRZLNzV0aaIRDsU 7Jy4aHmkhFV7MyF9hnv2FeR0wn9fRrkbD9F0S+dhYcwKvX3+R43TSHzySwuWNjVM xxUu1JoKTUXUDpS/oCdzFQ5NJPch44sRyK2lfDp7efLvtMCnBeGvGtMzQnExeXae +cNGY35/gYU46QAecpXAZqCpAUXiN+5ryYHmfRs58B1k0egrEOQ9jxRylyKLeW9y al1leewJ+IUJ/n2FrRBp0r9AeZjWPB36lcPlLQBN3Z6kbc7pP5hZ/FATdiaXLl47 i0y0jbDZ4b0A684ttLah+GJqvoh/uguK0n/1gOMpmT3nY+h954NTAE4= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org