$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/b1Zzlix3uSqW2nMYV5dWBbl8T1Y.roa File: b1Zzlix3uSqW2nMYV5dWBbl8T1Y.roa (raw, json) Hash identifier: yvDcuxbLwPuh3yCbApoVmrv1Intfn6NfxJHEvtDRTMA= Subject key identifier: 6F:56:73:96:2C:77:B9:2A:96:DA:73:18:57:97:56:05:B9:7C:4F:56 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14BE Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/b1Zzlix3uSqW2nMYV5dWBbl8T1Y.roa Signing time: Wed 11 Sep 2024 02:23:45 +0000 ROA not before: Wed 11 Sep 2024 02:23:45 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 138527 IP address blocks: 45.252.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5310 (0x14be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:45 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=6F5673962C77B92A96DA731857975605B97C4F56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:87:1d:e8:65:98:7b:94:f0:32:05:78:7d:47: 7b:75:7f:f3:27:e6:85:58:08:7f:31:30:dc:c0:b8: 92:0a:ab:fa:a7:ae:4e:f7:f6:26:aa:bb:fc:ad:58: ca:bc:86:26:64:6f:ce:7a:6b:14:b5:b8:89:47:01: 18:d6:03:69:27:e6:1c:af:bb:01:a3:37:62:9b:13: 3d:9e:ad:be:d8:43:22:41:ee:a8:46:cb:bd:de:34: c3:62:d7:37:e8:c1:de:eb:0c:62:00:7a:e4:98:b0: 3b:22:13:e8:bc:f6:c0:30:7e:e0:fa:75:df:1b:61: a6:96:05:09:ea:6a:ef:f4:29:0f:94:8e:9e:6b:16: d1:fc:8d:ee:e9:ae:98:1a:83:ca:34:7c:f5:74:e7: 86:27:ad:3a:da:b2:80:de:a5:08:a0:ec:7e:75:65: 42:e0:0e:9a:ec:03:44:7f:47:10:1a:6f:07:c8:39: 7a:66:7a:13:47:64:dc:5a:cc:e1:77:c0:02:a5:b6: 06:46:84:8b:b7:15:69:0f:97:33:f0:8a:59:da:df: 76:2d:89:7c:a1:4f:b1:15:59:f2:e5:1e:63:30:10: fe:48:3e:99:fd:df:63:36:c4:5f:c3:ce:a8:84:9c: e1:7f:a7:4e:31:57:4f:a9:0c:e1:15:30:59:db:8b: d1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:56:73:96:2C:77:B9:2A:96:DA:73:18:57:97:56:05:B9:7C:4F:56 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/b1Zzlix3uSqW2nMYV5dWBbl8T1Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.8.0/22 Signature Algorithm: sha256WithRSAEncryption 08:b1:74:54:28:c0:8b:37:54:72:66:0d:e1:2e:63:7d:76:68: 08:af:d5:7b:c7:af:45:6a:61:19:10:a9:a3:37:bf:98:f1:54: eb:34:38:90:16:2d:f9:11:07:5c:91:3c:20:d0:f7:55:0d:d6: ae:a7:c0:45:b8:75:19:22:b8:55:da:7a:2a:3f:16:1c:d5:5a: a9:2a:94:95:e0:5b:39:e4:16:26:6a:81:21:e2:8f:d3:56:0f: 65:71:fa:ea:5a:60:a6:2a:4f:93:a0:3a:77:83:7c:79:d7:77: 81:e8:89:28:6f:3e:8f:23:d5:6e:a0:97:2a:ce:c3:aa:3a:30: c9:68:13:cd:0d:3b:ef:92:c1:e5:e4:25:ed:37:11:a5:05:7d: 6a:f9:31:85:a1:66:73:68:4b:a3:14:53:fd:51:2f:c5:0f:e2: d1:b1:e0:03:f1:59:90:c4:42:d0:b4:02:31:88:73:7b:b5:be: 31:c3:93:05:49:af:7b:ab:50:a3:15:35:a4:e7:ad:21:87:a5: a3:76:16:e5:83:c3:3b:85:a7:74:92:42:4e:c8:0f:c8:3e:dd: d0:13:bc:a3:e2:41:ab:9e:ec:98:1e:ac:06:38:5c:5c:a7:ab: 44:5b:db:91:fc:a6:f8:54:11:e7:51:40:dd:c3:6d:2c:81:7b: a2:3b:b2:c0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNDVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDZGNTY3Mzk2MkM3N0I5 MkE5NkRBNzMxODU3OTc1NjA1Qjk3QzRGNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHhx3oZZh7lPAyBXh9R3t1f/Mn5oVYCH8xMNzAuJIKq/qnrk73 9iaqu/ytWMq8hiZkb856axS1uIlHARjWA2kn5hyvuwGjN2KbEz2erb7YQyJB7qhG y73eNMNi1zfowd7rDGIAeuSYsDsiE+i89sAwfuD6dd8bYaaWBQnqau/0KQ+Ujp5r FtH8je7prpgag8o0fPV054YnrTrasoDepQig7H51ZULgDprsA0R/RxAabwfIOXpm ehNHZNxazOF3wAKltgZGhIu3FWkPlzPwilna33YtiXyhT7EVWfLlHmMwEP5IPpn9 32M2xF/DzqiEnOF/p04xV0+pDOEVMFnbi9HhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUb1Zzlix3uSqW2nMYV5dWBbl8T1YwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2IxWnpsaXgzdVNxVzJu TVlWNWRXQmJsOFQxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/AgwDQYJKoZIhvcNAQELBQADggEBAAixdFQowIs3VHJmDeEuY312aAiv1XvH r0VqYRkQqaM3v5jxVOs0OJAWLfkRB1yRPCDQ91UN1q6nwEW4dRkiuFXaeio/FhzV WqkqlJXgWznkFiZqgSHij9NWD2Vx+upaYKYqT5OgOneDfHnXd4HoiShvPo8j1W6g lyrOw6o6MMloE80NO++SweXkJe03EaUFfWr5MYWhZnNoS6MUU/1RL8UP4tGx4APx WZDEQtC0AjGIc3u1vjHDkwVJr3urUKMVNaTnrSGHpaN2FuWDwzuFp3SSQk7ID8g+ 3dATvKPiQaue7JgerAY4XFynq0Rb25H8pvhUEedRQN3DbSyBe6I7ssA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:47 2024 by rpki-client on console-ams.rpki-client.org