$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/okZp09WBHv23dO4Q5NVmSE8HQd4.roa File: okZp09WBHv23dO4Q5NVmSE8HQd4.roa (raw, json) Hash identifier: CaPmT5c1TWMVa5htPX/4S/9qr9PVSQB4UWibfArlO4c= Subject key identifier: A2:46:69:D3:D5:81:1E:FD:B7:74:EE:10:E4:D5:66:48:4F:07:41:DE Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1466 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/okZp09WBHv23dO4Q5NVmSE8HQd4.roa Signing time: Wed 11 Sep 2024 02:23:15 +0000 ROA not before: Wed 11 Sep 2024 02:23:15 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 59083 IP address blocks: 103.10.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5222 (0x1466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:15 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=A24669D3D5811EFDB774EE10E4D566484F0741DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:78:0e:0f:1e:65:11:af:7a:de:bf:bc:dd:5a: ec:1f:ee:17:ae:8f:d9:4f:30:44:61:bd:98:7e:73: ea:f9:84:b6:91:ca:d2:6d:1d:51:c6:3c:f4:bd:cc: c8:a8:5c:ad:42:fa:cf:f7:3d:6f:e5:c4:b6:6a:f5: 7c:af:e4:ba:a3:3d:4c:2c:da:a9:83:23:7c:bd:e9: 54:15:21:1e:d9:4a:f7:2d:6d:48:e0:31:50:bb:3b: 80:0d:b9:76:41:95:66:62:d8:5e:66:e5:c4:a8:91: a3:09:fd:f5:b2:2a:c7:5d:38:72:24:7c:07:09:54: 1e:69:09:3a:c1:0e:c6:8d:0d:24:33:e8:2f:61:2b: 3b:a4:02:e2:7f:0c:65:11:98:cf:ac:78:60:eb:c6: 94:d5:98:57:42:0d:01:48:07:a8:38:80:de:d1:7a: 18:e5:5a:c3:32:e8:f1:b8:18:31:16:b5:8a:4c:2f: 3d:13:6c:03:77:cf:55:09:f9:d5:c1:14:9f:c4:34: 05:bf:85:08:ee:a9:5f:df:5c:e5:07:12:b2:ed:da: 44:03:6f:a5:e6:8b:b8:5f:51:e2:ee:db:fe:f7:da: 0f:89:97:a9:93:39:5a:d5:c3:17:c6:62:f1:0b:7b: d6:b0:3b:ce:cb:65:fb:59:17:53:c5:ef:6b:de:8f: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:46:69:D3:D5:81:1E:FD:B7:74:EE:10:E4:D5:66:48:4F:07:41:DE X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/okZp09WBHv23dO4Q5NVmSE8HQd4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.10.2.0/24 Signature Algorithm: sha256WithRSAEncryption ad:53:fe:28:51:4d:14:60:ac:56:b5:ac:53:8e:92:0c:7d:f1: ee:6e:16:a9:f9:6e:75:43:7b:32:85:3c:1b:e8:62:a0:48:e7: cb:0a:1e:d5:8c:75:17:ba:20:db:31:65:52:aa:de:3a:87:fb: a6:54:2f:10:42:db:d1:1a:8a:3e:ff:2f:88:41:a1:fc:94:43: 25:26:5f:75:2b:60:51:46:a4:a2:94:8b:d8:df:22:22:36:c7: d2:f4:83:12:53:73:21:59:db:c6:42:dc:cd:86:1c:60:06:f5: 65:e4:da:6c:0a:7a:0b:dd:2b:7c:0d:e3:6b:55:35:06:ea:fa: 41:3d:3d:0b:31:f4:25:65:09:3f:c3:db:c8:d6:36:99:7d:4b: 72:e6:e2:12:4d:da:1e:4b:1b:84:85:b4:28:71:20:5a:c6:db: 43:77:e0:ea:16:04:bd:88:5d:e4:91:1f:b6:ca:af:ae:e2:06: 16:d7:2a:f0:a1:1f:ac:b8:8f:d3:b1:bb:1e:b4:2c:20:c4:f5: 2d:d8:c7:98:67:d4:da:32:9d:6d:6c:13:25:0a:ae:e2:86:d9: 1c:87:57:86:f4:56:79:84:7e:d8:6a:89:ff:cd:ee:b0:60:aa: 37:1e:4f:d0:29:de:de:f0:84:5a:b9:7d:c4:56:d3:26:55:b7: 58:a6:97:9e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzMTVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEEyNDY2OUQzRDU4MTFF RkRCNzc0RUUxMEU0RDU2NjQ4NEYwNzQxREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZeA4PHmURr3rev7zdWuwf7heuj9lPMERhvZh+c+r5hLaRytJt HVHGPPS9zMioXK1C+s/3PW/lxLZq9Xyv5LqjPUws2qmDI3y96VQVIR7ZSvctbUjg MVC7O4ANuXZBlWZi2F5m5cSokaMJ/fWyKsddOHIkfAcJVB5pCTrBDsaNDSQz6C9h KzukAuJ/DGURmM+seGDrxpTVmFdCDQFIB6g4gN7RehjlWsMy6PG4GDEWtYpMLz0T bAN3z1UJ+dXBFJ/ENAW/hQjuqV/fXOUHErLt2kQDb6Xmi7hfUeLu2/732g+Jl6mT OVrVwxfGYvELe9awO87LZftZF1PF72vej4LhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUokZp09WBHv23dO4Q5NVmSE8HQd4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L29rWnAwOVdCSHYyM2RP NFE1TlZtU0U4SFFkNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnCgIwDQYJKoZIhvcNAQELBQADggEBAK1T/ihRTRRgrFa1rFOOkgx98e5uFqn5 bnVDezKFPBvoYqBI58sKHtWMdRe6INsxZVKq3jqH+6ZULxBC29Eaij7/L4hBofyU QyUmX3UrYFFGpKKUi9jfIiI2x9L0gxJTcyFZ28ZC3M2GHGAG9WXk2mwKegvdK3wN 42tVNQbq+kE9PQsx9CVlCT/D28jWNpl9S3Lm4hJN2h5LG4SFtChxIFrG20N34OoW BL2IXeSRH7bKr67iBhbXKvChH6y4j9Oxux60LCDE9S3Yx5hn1NoynW1sEyUKruKG 2RyHV4b0VnmEfthqif/N7rBgqjceT9Ap3t7whFq5fcRW0yZVt1iml54= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:13 2024 by rpki-client on console-fra.rpki-client.org