$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/lZ0ZNO_Irb240ADBE3UeumYiDm4.roa File: lZ0ZNO_Irb240ADBE3UeumYiDm4.roa (raw, json) Hash identifier: 1WdMndpSao4Z0xJYYmLz055wifVQFJOXY3Mdenttujo= Subject key identifier: 95:9D:19:34:EF:C8:AD:BD:B8:D0:00:C1:13:75:1E:BA:66:22:0E:6E Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 155B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lZ0ZNO_Irb240ADBE3UeumYiDm4.roa Signing time: Wed 11 Sep 2024 04:01:44 +0000 ROA not before: Wed 11 Sep 2024 04:01:44 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5467 (0x155b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 04:01:44 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=959D1934EFC8ADBDB8D000C113751EBA66220E6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3d:e4:f6:f5:df:bd:52:1e:37:5b:67:6c:cf: 43:6c:cb:cd:21:6e:64:74:35:ea:5e:a0:7e:65:c0: 41:d7:87:f4:68:e4:d0:a1:d4:ed:da:07:77:6a:5f: 4f:9d:19:5e:53:7e:f4:75:47:61:70:ac:ba:7a:b7: d1:39:39:df:42:89:89:75:62:98:72:c8:da:71:29: d2:95:44:da:67:e6:bb:e4:8f:a1:a1:43:fb:ac:10: 3c:60:a5:96:0c:c4:54:85:f9:ae:67:56:74:38:2d: ad:14:ee:84:ee:c6:fe:00:29:3a:7a:51:08:34:53: f7:0f:88:37:e5:c2:83:5c:b5:2f:0d:a1:bb:05:6c: 1a:5a:5b:7a:21:54:f1:13:46:cf:86:91:f2:24:fb: a1:4a:b5:fa:dd:a7:5d:f9:e3:18:6f:da:bf:eb:16: d7:2c:2e:e3:c0:1f:ac:e8:59:9c:5e:20:90:9b:e8: 50:6e:68:ff:07:68:af:2a:0c:a3:31:34:59:9a:d8: 0d:83:78:0b:09:49:f1:42:b6:a7:fc:ff:94:17:2d: 7e:40:54:87:1d:23:54:ab:b1:56:79:36:27:fe:78: df:9d:c3:5f:17:4f:24:44:3a:cc:2e:44:05:7a:fd: 1e:bd:0a:bf:52:a5:d3:82:86:cd:55:c9:de:ff:a1: 58:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9D:19:34:EF:C8:AD:BD:B8:D0:00:C1:13:75:1E:BA:66:22:0E:6E X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lZ0ZNO_Irb240ADBE3UeumYiDm4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.39.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:eb:0b:1a:d2:e6:a4:9b:45:9e:48:47:7c:ba:99:34:94:58: f4:43:f0:7e:1a:3a:14:e0:c4:55:bb:18:ce:0d:d6:d8:12:da: 64:49:16:f8:0b:4d:26:aa:6c:23:e9:0b:27:2a:f9:7e:bb:bc: 45:35:27:09:d9:a7:42:0c:76:cc:61:15:14:73:ed:9d:f3:1c: f9:86:b2:b3:d3:bb:4f:47:50:0f:20:42:01:33:f3:64:17:60: f7:4c:c0:89:70:b8:6b:cc:6b:45:c0:df:ea:80:a9:39:a0:27: 4a:8e:99:eb:6a:f6:75:8c:28:aa:35:d9:dd:d4:4f:9c:93:ef: d6:69:4a:2e:f3:cf:74:22:64:5b:00:8c:51:ff:f4:ce:bf:5f: 83:4b:a9:95:93:d5:ec:b5:24:01:85:5a:e4:d1:63:50:bd:96: 04:3a:b8:e6:f6:20:70:2a:bd:84:90:99:12:a8:b7:55:b2:3e: 81:50:19:7c:04:69:61:a6:88:34:0f:f4:72:89:17:d5:c1:c3: eb:0f:60:dd:29:cb:8b:f4:cc:84:32:04:7c:00:34:3f:3f:8d: ca:21:63:f3:2e:e7:76:3e:c9:59:fd:29:36:09:ff:3b:56:fd: 71:b2:30:2b:3b:5c:3f:d2:b2:78:ec:98:fe:e7:ba:8c:8a:cb: 1c:68:6f:38 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw NDAxNDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDk1OUQxOTM0RUZDOEFE QkRCOEQwMDBDMTEzNzUxRUJBNjYyMjBFNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNPeT29d+9Uh43W2dsz0Nsy80hbmR0NepeoH5lwEHXh/Ro5NCh 1O3aB3dqX0+dGV5TfvR1R2FwrLp6t9E5Od9CiYl1YphyyNpxKdKVRNpn5rvkj6Gh Q/usEDxgpZYMxFSF+a5nVnQ4La0U7oTuxv4AKTp6UQg0U/cPiDflwoNctS8NobsF bBpaW3ohVPETRs+GkfIk+6FKtfrdp1354xhv2r/rFtcsLuPAH6zoWZxeIJCb6FBu aP8HaK8qDKMxNFma2A2DeAsJSfFCtqf8/5QXLX5AVIcdI1SrsVZ5Nif+eN+dw18X TyREOswuRAV6/R69Cr9SpdOChs1Vyd7/oVi5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUlZ0ZNO/Irb240ADBE3UeumYiDm4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2xaMFpOT19JcmIyNDBB REJFM1VldW1ZaURtNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3ScwDQYJKoZIhvcNAQELBQADggEBAB3rCxrS5qSbRZ5IR3y6mTSUWPRD8H4a OhTgxFW7GM4N1tgS2mRJFvgLTSaqbCPpCycq+X67vEU1JwnZp0IMdsxhFRRz7Z3z HPmGsrPTu09HUA8gQgEz82QXYPdMwIlwuGvMa0XA3+qAqTmgJ0qOmetq9nWMKKo1 2d3UT5yT79ZpSi7zz3QiZFsAjFH/9M6/X4NLqZWT1ey1JAGFWuTRY1C9lgQ6uOb2 IHAqvYSQmRKot1WyPoFQGXwEaWGmiDQP9HKJF9XBw+sPYN0py4v0zIQyBHwAND8/ jcohY/Mu53Y+yVn9KTYJ/ztW/XGyMCs7XD/SsnjsmP7nuoyKyxxobzg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:47 2024 by rpki-client on console-ams.rpki-client.org