$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/lWgIao83kdGoIBNtOyMrI7_LcRQ.roa File: lWgIao83kdGoIBNtOyMrI7_LcRQ.roa (raw, json) Hash identifier: VJMA5InR3B67pbZoQGsHdkPksRf1tzjuxX4SSsOS6mA= Subject key identifier: 95:68:08:6A:8F:37:91:D1:A8:20:13:6D:3B:23:2B:23:BF:CB:71:14 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14E9 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lWgIao83kdGoIBNtOyMrI7_LcRQ.roa Signing time: Wed 11 Sep 2024 02:26:07 +0000 ROA not before: Wed 11 Sep 2024 02:26:07 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 13444 IP address blocks: 103.221.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5353 (0x14e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:26:07 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=9568086A8F3791D1A820136D3B232B23BFCB7114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:02:d3:51:c0:48:55:ba:f1:c8:5f:6d:30: 26:8d:f6:07:ec:33:47:50:16:ad:9c:3d:7e:d3:45: fb:7e:d7:65:0e:05:fa:46:1c:61:d3:5a:e1:42:d9: e8:de:cb:89:ef:a4:29:47:16:8f:23:b5:27:12:83: 4b:ca:aa:3b:99:1a:38:09:c6:68:5a:e8:86:8e:10: 42:c4:f3:88:11:74:17:05:b8:75:ab:c6:5a:d2:ee: 62:ee:2a:88:d8:37:3f:94:58:0f:a6:5c:df:49:94: f0:56:44:0e:ba:cc:70:4b:b3:c3:db:1a:ba:ce:38: 0a:8a:a7:11:5e:c0:af:64:31:17:9d:cc:c0:97:28: 0b:90:b4:8d:e4:cb:fe:81:f8:ab:e0:76:71:a7:59: f0:b9:53:91:f6:c7:88:d9:c5:30:82:04:96:a5:0a: 9d:e3:35:b5:df:98:ed:68:4c:a9:db:0c:27:0a:4d: 7d:eb:6b:00:26:0a:0c:6b:0e:3b:40:c0:5f:e6:ec: 9f:fc:ad:ae:7e:d3:b5:f2:ab:6c:8a:19:eb:42:65: 31:df:46:cc:7c:f1:ac:cd:19:01:ac:fd:3c:a1:7a: f6:1d:39:01:d8:c9:9c:3f:a5:28:f6:eb:e6:1b:9d: 22:bb:f4:10:e0:2e:8a:88:dd:13:3b:75:3a:ac:a6: 8b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:68:08:6A:8F:37:91:D1:A8:20:13:6D:3B:23:2B:23:BF:CB:71:14 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lWgIao83kdGoIBNtOyMrI7_LcRQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.16.0/24 Signature Algorithm: sha256WithRSAEncryption d6:1a:c6:39:67:d5:24:b6:4f:4b:1d:bc:b4:e7:c1:d2:7f:26: 4b:ce:05:74:b2:48:f2:ef:4e:f6:d8:17:ff:a3:17:81:c6:a1: fe:7d:12:4a:19:18:32:46:42:3e:76:db:0e:0e:c6:cb:19:f1: 94:b4:40:16:ad:ee:5f:3e:f0:ea:c2:8d:c4:44:56:f4:40:78: 36:6a:cc:e8:1f:69:88:09:36:a2:0b:24:3b:46:b7:55:da:f0: ad:12:b2:84:eb:3d:7a:7b:94:fc:12:07:f5:cb:d8:71:b0:3e: 22:aa:56:11:fd:b6:94:a6:6e:c6:e0:d2:82:60:e4:27:ae:61: fd:2b:89:6b:00:50:31:8f:d2:2a:8a:33:84:e1:82:8c:b7:8a: ce:02:58:36:74:9c:31:08:77:9c:07:8e:4f:ff:44:4f:eb:53: 8c:96:9d:32:3a:4d:b3:de:3d:bb:51:23:c5:95:ba:0b:2c:ff: 6b:2b:53:b8:59:39:f7:01:70:c5:db:c4:92:76:1a:b0:c7:31: c6:50:2c:f4:51:1f:1a:50:90:f5:cc:57:de:43:c4:56:4e:c6: 9a:18:e9:bc:8f:de:47:51:c6:ac:37:dc:ad:69:c2:a2:6c:2e: 25:50:58:70:bf:d2:12:c4:a9:c1:49:1d:4b:cb:af:cb:f4:ad: 1e:d8:79:44 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjI2MDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDk1NjgwODZBOEYzNzkx RDFBODIwMTM2RDNCMjMyQjIzQkZDQjcxMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3QgLTUcBIVbrxyF9tMCaN9gfsM0dQFq2cPX7TRft+12UOBfpG HGHTWuFC2ejey4nvpClHFo8jtScSg0vKqjuZGjgJxmha6IaOEELE84gRdBcFuHWr xlrS7mLuKojYNz+UWA+mXN9JlPBWRA66zHBLs8PbGrrOOAqKpxFewK9kMRedzMCX KAuQtI3ky/6B+KvgdnGnWfC5U5H2x4jZxTCCBJalCp3jNbXfmO1oTKnbDCcKTX3r awAmCgxrDjtAwF/m7J/8ra5+07Xyq2yKGetCZTHfRsx88azNGQGs/TyhevYdOQHY yZw/pSj26+YbnSK79BDgLoqI3RM7dTqspotTAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUlWgIao83kdGoIBNtOyMrI7/LcRQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2xXZ0lhbzgza2RHb0lC TnRPeU1ySTdfTGNSUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RAwDQYJKoZIhvcNAQELBQADggEBANYaxjln1SS2T0sdvLTnwdJ/JkvOBXSy SPLvTvbYF/+jF4HGof59EkoZGDJGQj522w4OxssZ8ZS0QBat7l8+8OrCjcREVvRA eDZqzOgfaYgJNqILJDtGt1Xa8K0SsoTrPXp7lPwSB/XL2HGwPiKqVhH9tpSmbsbg 0oJg5CeuYf0riWsAUDGP0iqKM4Thgoy3is4CWDZ0nDEId5wHjk//RE/rU4yWnTI6 TbPePbtRI8WVugss/2srU7hZOfcBcMXbxJJ2GrDHMcZQLPRRHxpQkPXMV95DxFZO xpoY6byP3kdRxqw33K1pwqJsLiVQWHC/0hLEqcFJHUvLr8v0rR7YeUQ= -----END CERTIFICATE-----Generated at Fri Nov 22 18:01:43 2024 by rpki-client on console-fra.rpki-client.org