$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/_BkDnTmH8J-K6sYMrC4ISStL6Sc.roa File: _BkDnTmH8J-K6sYMrC4ISStL6Sc.roa (raw, json) Hash identifier: GdnEVJSW9PZUtSygHHH6U0y7yAMVtf283+IE9/Q7t50= Subject key identifier: FC:19:03:9D:39:87:F0:9F:8A:EA:C6:0C:AC:2E:08:49:2B:4B:E9:27 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1521 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/_BkDnTmH8J-K6sYMrC4ISStL6Sc.roa Signing time: Wed 11 Sep 2024 02:30:11 +0000 ROA not before: Wed 11 Sep 2024 02:30:11 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 13444 IP address blocks: 103.221.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5409 (0x1521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:30:11 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=FC19039D3987F09F8AEAC60CAC2E08492B4BE927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:26:6d:b8:95:d9:08:48:5f:59:ef:e2:f2:1f: ab:23:86:f4:7f:96:cb:90:2b:10:6d:c2:f1:ec:73: e4:4a:e7:ed:71:f3:e8:80:52:62:26:14:6e:b4:25: 60:af:89:9f:ee:57:1c:46:e3:75:8b:66:08:7c:80: e6:de:5e:59:fb:7b:45:a4:27:ca:98:d4:ff:6f:88: c4:52:47:3b:36:86:8f:e3:b6:99:72:aa:d7:cc:91: 44:22:ca:38:32:09:6f:71:24:74:2c:e8:6e:34:84: b1:49:fa:69:70:87:88:8b:aa:60:d4:25:5a:71:a0: e9:17:61:cb:a9:78:9c:32:05:5c:69:09:32:66:64: 94:78:a3:2e:ab:32:aa:a6:19:16:12:37:12:cf:68: ce:77:1e:1d:d3:16:38:6c:39:1f:0b:a9:67:45:25: ac:bf:8c:dc:67:9d:3f:75:29:27:e1:93:60:95:b5: 4c:1c:b8:36:1f:be:b8:23:cd:88:d1:af:86:54:c9: 51:a2:2a:82:b0:fe:82:60:7e:d1:93:f2:ae:82:19: da:a5:bb:25:e5:68:b9:1c:7e:6b:ef:f9:e9:d9:ca: c9:98:01:35:52:08:25:c8:22:1a:72:00:6e:b8:3a: 5a:26:7a:68:2e:79:a4:76:e5:e1:c3:44:30:c9:31: 53:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:19:03:9D:39:87:F0:9F:8A:EA:C6:0C:AC:2E:08:49:2B:4B:E9:27 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/_BkDnTmH8J-K6sYMrC4ISStL6Sc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.47.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:ae:e0:30:13:72:11:e3:9f:7b:79:bd:e5:c0:53:13:89:33: 82:ba:d8:24:74:3d:a7:60:8c:d5:46:0c:e7:e7:9b:78:e5:ec: e6:3a:96:43:52:b4:ab:b7:ff:71:3f:09:66:af:77:d7:a4:29: 68:1a:d2:22:d9:16:0d:22:ac:a3:16:cb:cd:7a:2b:49:f6:84: 02:79:25:b9:76:06:0f:d7:a1:26:da:73:f5:b4:01:18:c4:a6: ec:53:66:cd:3e:15:78:ff:42:e7:3b:29:69:99:51:6e:9a:73: 59:92:41:3f:79:20:82:d2:6c:ca:12:44:8a:0c:0c:c4:38:64: dd:17:15:3e:fc:bc:c8:39:7b:07:9b:ab:c2:e1:83:c7:d1:ff: 16:ff:62:48:a9:de:f5:91:46:3e:36:62:37:11:ae:68:ba:6f: 17:83:ed:3c:22:e2:ce:ba:96:96:84:a7:c5:10:e8:cc:8f:3d: 21:05:54:f6:8e:01:23:88:77:97:68:41:82:8c:02:30:c1:53: 0d:54:32:3a:da:7c:0a:f7:a9:fa:5d:7d:7f:c0:43:b2:49:1c: 1f:4a:dc:a3:1f:a6:4e:8a:91:3c:47:1c:38:33:9f:87:9b:86: cd:a6:6c:d9:17:fc:91:14:77:b1:c9:87:16:12:b4:de:7e:2e: b7:45:63:d0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFSEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjMwMTFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEZDMTkwMzlEMzk4N0Yw OUY4QUVBQzYwQ0FDMkUwODQ5MkI0QkU5MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrJm24ldkISF9Z7+LyH6sjhvR/lsuQKxBtwvHsc+RK5+1x8+iA UmImFG60JWCviZ/uVxxG43WLZgh8gObeXln7e0WkJ8qY1P9viMRSRzs2ho/jtply qtfMkUQiyjgyCW9xJHQs6G40hLFJ+mlwh4iLqmDUJVpxoOkXYcupeJwyBVxpCTJm ZJR4oy6rMqqmGRYSNxLPaM53Hh3TFjhsOR8LqWdFJay/jNxnnT91KSfhk2CVtUwc uDYfvrgjzYjRr4ZUyVGiKoKw/oJgftGT8q6CGdqluyXlaLkcfmvv+enZysmYATVS CCXIIhpyAG64OlomemgueaR25eHDRDDJMVP5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU/BkDnTmH8J+K6sYMrC4ISStL6ScwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L19Ca0RuVG1IOEotSzZz WU1yQzRJU1N0TDZTYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3S8wDQYJKoZIhvcNAQELBQADggEBAEyu4DATchHjn3t5veXAUxOJM4K62CR0 PadgjNVGDOfnm3jl7OY6lkNStKu3/3E/CWavd9ekKWga0iLZFg0irKMWy816K0n2 hAJ5Jbl2Bg/XoSbac/W0ARjEpuxTZs0+FXj/Quc7KWmZUW6ac1mSQT95IILSbMoS RIoMDMQ4ZN0XFT78vMg5ewebq8Lhg8fR/xb/Ykip3vWRRj42YjcRrmi6bxeD7Twi 4s66lpaEp8UQ6MyPPSEFVPaOASOId5doQYKMAjDBUw1UMjrafAr3qfpdfX/AQ7JJ HB9K3KMfpk6KkTxHHDgzn4ebhs2mbNkX/JEUd7HJhxYStN5+LrdFY9A= -----END CERTIFICATE-----Generated at Fri Nov 22 17:36:47 2024 by rpki-client on console-ams.rpki-client.org