$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/voO_EMSOKTjKrKX_dHzkHlycOqw.roa File: voO_EMSOKTjKrKX_dHzkHlycOqw.roa (raw, json) Hash identifier: p676Dq+fpdzzVbggeJSAZYb8Rr34INQAe+rVsIXPHYA= Subject key identifier: BE:83:BF:10:C4:8E:29:38:CA:AC:A5:FF:74:7C:E4:1E:5C:9C:3A:AC Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 156B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/voO_EMSOKTjKrKX_dHzkHlycOqw.roa Signing time: Wed 11 Sep 2024 04:04:11 +0000 ROA not before: Wed 11 Sep 2024 04:04:11 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139259 IP address blocks: 103.221.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5483 (0x156b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 04:04:11 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=BE83BF10C48E2938CAACA5FF747CE41E5C9C3AAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:47:b8:73:7f:f2:88:f4:74:1f:db:2b:16:7b: 73:2c:94:1e:6d:86:ab:bd:18:97:fb:5e:ce:3a:2f: da:c7:04:15:f1:ac:eb:51:22:c4:73:9f:23:66:16: 1b:bf:2c:fc:ee:03:44:08:93:7a:ff:54:ec:c1:97: df:5a:0a:e5:ce:7e:7f:3b:82:c9:53:c0:c6:16:ec: 9a:b3:d5:fc:ac:ed:af:eb:6e:87:97:32:71:f4:44: 1a:6e:b9:74:5a:09:04:76:0b:93:c3:d9:aa:a5:8c: 50:54:97:af:36:ed:b5:86:e9:5f:8d:0d:26:de:fb: 66:83:11:61:a1:a1:bd:b2:b1:49:73:dc:f2:7a:d4: 6b:a7:92:3b:43:e6:1a:ae:62:7d:fc:93:00:da:e8: ca:33:0e:35:6c:df:49:8f:8c:9c:db:53:2b:8d:74: d3:dd:87:b9:af:24:b7:fe:18:e6:80:af:9d:8c:70: b1:70:61:f2:38:33:95:a3:c3:45:c2:71:54:21:64: 86:1d:76:9b:80:67:d3:f1:45:19:aa:80:0a:d9:e2: cc:44:64:09:a5:5b:e0:d0:59:e8:cc:1a:ff:b5:ae: a5:f3:6f:89:ef:4e:14:01:d1:38:f4:7e:6c:ef:f6: 02:43:43:01:b6:56:2d:fe:90:2a:0f:ee:92:77:f0: 09:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:83:BF:10:C4:8E:29:38:CA:AC:A5:FF:74:7C:E4:1E:5C:9C:3A:AC X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/voO_EMSOKTjKrKX_dHzkHlycOqw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.93.0/24 Signature Algorithm: sha256WithRSAEncryption cf:f7:94:02:f4:b2:2c:1d:bf:17:5b:d2:1d:43:15:4c:c9:89: 5c:e3:a9:65:e2:c1:b7:03:fc:24:fa:bd:fa:4b:10:59:11:60: b6:51:30:fb:50:4e:db:09:bc:04:c6:30:41:0f:e8:57:06:96: 9e:71:e5:77:08:2a:8a:42:80:aa:29:e6:9e:22:52:1e:7c:7b: 6a:fe:a9:13:d2:d7:27:39:54:2c:3d:64:38:9c:d0:9a:9c:c7: 36:da:66:49:12:b0:84:59:fc:f4:79:f1:6b:26:a0:34:69:e8: d8:87:27:e6:cf:4e:fb:11:62:d2:a0:c4:75:f5:79:fc:22:11: 00:d9:03:d5:05:53:c6:56:e4:17:9c:fc:b3:56:23:d1:9d:55: 23:f2:0b:25:42:e2:1d:f9:85:ce:46:b1:81:b9:f6:6c:32:bb: d6:f5:b2:2c:4c:0f:b0:6e:55:66:3e:2d:49:08:18:a4:92:58: 1f:9e:1d:04:38:70:62:68:be:03:4c:60:94:6d:0b:32:90:f7: 62:54:64:8f:8b:b9:47:67:67:c8:d5:4b:a2:88:8d:b3:d0:4f: a0:9e:3e:de:39:8d:4c:7d:69:b2:48:95:8b:bf:49:c6:df:25: 86:97:91:31:ad:3a:63:b6:7a:c4:c6:f7:be:dc:22:46:b2:67: 4f:b5:ba:b4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw NDA0MTFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEJFODNCRjEwQzQ4RTI5 MzhDQUFDQTVGRjc0N0NFNDFFNUM5QzNBQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmR7hzf/KI9HQf2ysWe3MslB5thqu9GJf7Xs46L9rHBBXxrOtR IsRznyNmFhu/LPzuA0QIk3r/VOzBl99aCuXOfn87gslTwMYW7Jqz1fys7a/rboeX MnH0RBpuuXRaCQR2C5PD2aqljFBUl6827bWG6V+NDSbe+2aDEWGhob2ysUlz3PJ6 1GunkjtD5hquYn38kwDa6MozDjVs30mPjJzbUyuNdNPdh7mvJLf+GOaAr52McLFw YfI4M5Wjw0XCcVQhZIYddpuAZ9PxRRmqgArZ4sxEZAmlW+DQWejMGv+1rqXzb4nv ThQB0Tj0fmzv9gJDQwG2Vi3+kCoP7pJ38AkDAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUvoO/EMSOKTjKrKX/dHzkHlycOqwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3ZvT19FTVNPS1RqS3JL WF9kSHprSGx5Y09xdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3V0wDQYJKoZIhvcNAQELBQADggEBAM/3lAL0siwdvxdb0h1DFUzJiVzjqWXi wbcD/CT6vfpLEFkRYLZRMPtQTtsJvATGMEEP6FcGlp5x5XcIKopCgKop5p4iUh58 e2r+qRPS1yc5VCw9ZDic0JqcxzbaZkkSsIRZ/PR58WsmoDRp6NiHJ+bPTvsRYtKg xHX1efwiEQDZA9UFU8ZW5Bec/LNWI9GdVSPyCyVC4h35hc5GsYG59mwyu9b1sixM D7BuVWY+LUkIGKSSWB+eHQQ4cGJovgNMYJRtCzKQ92JUZI+LuUdnZ8jVS6KIjbPQ T6CePt45jUx9abJIlYu/ScbfJYaXkTGtOmO2esTG977cIkayZ0+1urQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:47 2024 by rpki-client on console-ams.rpki-client.org