$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/YOI2_GKn-Bqg758MVzMqw0IngJ0.roa File: YOI2_GKn-Bqg758MVzMqw0IngJ0.roa (raw, json) Hash identifier: kV8rM6FbR46xGaUPHRXB98WCsNCuRhUFj9+aPIJ93eg= Subject key identifier: 60:E2:36:FC:62:A7:F8:1A:A0:EF:9F:0C:57:33:2A:C3:42:27:80:9D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1505 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/YOI2_GKn-Bqg758MVzMqw0IngJ0.roa Signing time: Wed 11 Sep 2024 02:27:32 +0000 ROA not before: Wed 11 Sep 2024 02:27:32 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 13444 IP address blocks: 103.221.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5381 (0x1505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:27:32 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=60E236FC62A7F81AA0EF9F0C57332AC34227809D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4b:8d:97:83:37:7d:7b:67:49:8e:3b:13:74: a7:39:f5:0e:08:9c:57:1c:3d:6e:56:89:ba:c8:d5: 74:b3:e1:4e:dc:b1:5e:7f:22:40:25:8c:1a:52:a9: 3e:f6:ba:39:7d:f3:7e:c0:62:a9:85:64:84:13:4c: 05:a0:a9:a8:ab:fb:7d:2c:80:4f:9e:b3:bc:2a:b6: 91:75:97:33:ed:aa:ca:ea:7d:c3:53:c1:a1:aa:78: f0:99:8e:ba:ba:0d:c6:d8:96:e5:cb:d6:30:6b:35: db:a9:a5:8f:9a:50:90:80:86:81:08:d7:45:af:32: cb:71:08:9f:0f:0b:78:03:ff:f9:bd:e3:a7:b0:80: e7:68:37:00:e1:db:80:50:42:39:b8:31:f4:c3:38: c5:c6:7f:72:3e:da:a7:4e:6c:79:8a:dc:99:aa:b4: 84:34:12:12:5a:5c:3d:fc:02:20:8f:7f:63:5c:4f: 67:cb:45:5f:b1:2e:95:0f:45:0a:9a:ed:0f:b5:a4: ee:63:7d:a9:23:41:9f:72:9c:19:1b:bb:07:08:c7: 78:ca:72:b9:08:6a:bd:f5:96:21:e8:4a:71:08:1f: 08:aa:4b:19:92:31:24:e1:c2:3a:e1:0a:d0:92:4e: f9:b6:3c:27:45:7f:c1:00:0c:3f:9b:2a:03:bf:61: 42:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E2:36:FC:62:A7:F8:1A:A0:EF:9F:0C:57:33:2A:C3:42:27:80:9D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/YOI2_GKn-Bqg758MVzMqw0IngJ0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.39.0/24 Signature Algorithm: sha256WithRSAEncryption 56:be:4e:de:dd:cb:e7:5f:e1:be:c8:2d:ca:ba:7f:d8:b0:8b: 78:52:c1:70:09:35:75:28:b3:33:0e:44:a5:65:f9:e6:06:40: b5:41:85:8b:31:94:ba:15:d6:66:f9:16:be:54:32:8b:6c:31: 67:3b:75:36:3f:d9:6f:8c:79:9d:16:e0:bd:9d:de:5b:8d:0e: 5e:8d:fb:41:26:25:df:d6:7a:d6:63:59:47:7e:ec:e6:30:6d: 18:f5:56:e6:c5:1e:4e:9d:df:39:f5:14:94:f4:5f:91:6d:53: 23:07:d1:f4:c7:6b:38:ba:85:ed:23:0f:e6:97:4b:69:cc:fc: fc:58:34:c4:e0:e3:54:c5:cc:a5:29:9d:b8:8f:1f:b2:e8:99: d9:b2:7b:1b:75:ce:54:d5:6a:5f:93:3b:08:09:23:6c:4d:e1: 93:4e:d3:f7:ab:c5:c2:a0:0b:8b:12:c2:4b:63:e2:22:86:1a: 6f:c3:67:01:cc:1a:85:fe:cb:29:99:a7:49:34:b1:58:3f:d1: 9d:1d:fc:0f:db:a3:31:6a:05:93:65:24:4b:88:fc:a8:16:d4: d5:19:30:61:f4:93:b0:ca:41:af:26:5f:c0:ff:3f:0e:36:a9: d6:cc:63:58:8a:f2:29:0c:8d:d5:42:dd:aa:82:42:ba:9f:71: 03:f0:af:31 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjI3MzJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDYwRTIzNkZDNjJBN0Y4 MUFBMEVGOUYwQzU3MzMyQUMzNDIyNzgwOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqS42Xgzd9e2dJjjsTdKc59Q4InFccPW5WibrI1XSz4U7csV5/ IkAljBpSqT72ujl9837AYqmFZIQTTAWgqair+30sgE+es7wqtpF1lzPtqsrqfcNT waGqePCZjrq6DcbYluXL1jBrNduppY+aUJCAhoEI10WvMstxCJ8PC3gD//m946ew gOdoNwDh24BQQjm4MfTDOMXGf3I+2qdObHmK3JmqtIQ0EhJaXD38AiCPf2NcT2fL RV+xLpUPRQqa7Q+1pO5jfakjQZ9ynBkbuwcIx3jKcrkIar31liHoSnEIHwiqSxmS MSThwjrhCtCSTvm2PCdFf8EADD+bKgO/YULvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUYOI2/GKn+Bqg758MVzMqw0IngJ0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1lPSTJfR0tuLUJxZzc1 OE1Wek1xdzBJbmdKMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3ScwDQYJKoZIhvcNAQELBQADggEBAFa+Tt7dy+df4b7ILcq6f9iwi3hSwXAJ NXUoszMORKVl+eYGQLVBhYsxlLoV1mb5Fr5UMotsMWc7dTY/2W+MeZ0W4L2d3luN Dl6N+0EmJd/WetZjWUd+7OYwbRj1VubFHk6d3zn1FJT0X5FtUyMH0fTHazi6he0j D+aXS2nM/PxYNMTg41TFzKUpnbiPH7Lomdmyext1zlTVal+TOwgJI2xN4ZNO0/er xcKgC4sSwktj4iKGGm/DZwHMGoX+yymZp0k0sVg/0Z0d/A/bozFqBZNlJEuI/KgW 1NUZMGH0k7DKQa8mX8D/Pw42qdbMY1iK8ikMjdVC3aqCQrqfcQPwrzE= -----END CERTIFICATE-----Generated at Fri Nov 22 18:01:42 2024 by rpki-client on console-fra.rpki-client.org