$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/x0RLeXUbB6b1UBM4sAGQC-G8yBI.roa File: x0RLeXUbB6b1UBM4sAGQC-G8yBI.roa (raw, json) Hash identifier: 86QICNiKtp4TtC2oOfrSxk4UTqcW9DLilgzN9tdAnyE= Subject key identifier: C7:44:4B:79:75:1B:07:A6:F5:50:13:38:B0:01:90:0B:E1:BC:C8:12 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 147F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/x0RLeXUbB6b1UBM4sAGQC-G8yBI.roa Signing time: Wed 11 Sep 2024 02:23:23 +0000 ROA not before: Wed 11 Sep 2024 02:23:23 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24373 IP address blocks: 103.221.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5247 (0x147f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:23 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=C7444B79751B07A6F5501338B001900BE1BCC812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8e:f5:9b:33:da:57:9b:10:21:a0:cc:e0:f9: c2:4b:f1:8a:2f:c3:2e:7b:24:95:3f:6e:f4:f4:a9: 58:e7:65:4b:b1:1f:85:a7:6e:3d:c9:4d:7d:bb:b1: 6e:ff:75:aa:2a:d3:c2:41:a8:ac:42:04:cf:89:5c: 32:87:42:a6:32:ce:69:d5:d7:ea:9a:17:3c:43:5d: 46:1f:cd:18:d1:91:c8:b5:6e:19:3c:ca:b1:fb:00: 04:14:17:c5:62:16:71:6a:f5:2b:4f:b8:62:4f:e8: 07:e7:f5:b5:e3:fa:81:b7:42:d7:a1:90:34:c9:28: fb:54:4e:70:c0:ff:1f:36:6e:23:20:b4:34:13:cf: 2a:6b:96:2a:12:30:c0:0d:90:df:ff:e7:bb:dd:a6: e6:8b:36:bf:16:f3:49:0f:d3:e6:73:8d:bf:35:01: b5:9c:9b:dc:87:11:c9:f2:e6:7e:9b:ee:a9:5b:41: 0d:70:a7:83:bc:0d:cd:97:16:a8:f0:4b:0a:9f:df: 50:01:ee:85:a9:37:67:9d:5e:54:61:c7:d0:6c:c8: 7b:82:3d:67:17:f8:df:48:e4:40:6c:20:42:13:62: 13:ce:e7:09:70:cf:25:52:32:a9:09:83:1a:ae:97: af:8d:88:fc:5e:85:eb:80:9a:d0:f9:c7:c4:03:34: e0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:44:4B:79:75:1B:07:A6:F5:50:13:38:B0:01:90:0B:E1:BC:C8:12 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/x0RLeXUbB6b1UBM4sAGQC-G8yBI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.24.0/22 Signature Algorithm: sha256WithRSAEncryption a1:23:59:a4:80:f7:fc:e8:4b:33:c4:51:56:72:ef:40:ce:40: 23:43:f5:4b:e5:8e:ad:86:8b:c3:79:6f:90:9f:80:42:2c:64: 75:82:32:dd:91:62:57:db:52:50:e5:c9:ea:b3:e7:2a:ea:ec: fa:2f:d3:a6:22:f4:b6:77:a0:b3:48:14:53:c2:a2:89:e1:2f: 4c:26:7d:c7:79:34:fd:87:8c:03:ea:7a:05:50:2c:3e:0b:91: ab:0c:52:80:2a:1e:42:df:65:f6:03:7c:72:d7:6b:d2:b5:05: 27:80:4b:58:c4:b6:e5:52:4e:ca:c1:dd:81:2a:ec:67:b4:b7: e3:8f:d3:f8:a9:dd:a2:af:06:03:ed:a8:24:d9:35:d4:d8:8e: 9c:b5:c6:c7:00:ef:96:ef:f9:8d:92:01:2f:ba:85:f0:92:ef: 8c:d1:07:4f:c1:a0:1c:72:b1:79:2c:9a:46:05:e1:6f:ad:86: a6:1d:a4:1a:4d:9b:af:aa:db:81:75:e1:f3:6e:29:3c:ef:cc: c4:8e:3d:32:ef:35:e8:fd:f1:cc:90:b9:ff:94:05:20:6d:42: d3:c8:0d:29:47:45:b0:9d:5e:71:bc:f4:9d:1b:20:e1:37:40: 19:44:3a:b0:f1:de:43:d7:fe:f6:21:ba:50:0f:a4:29:e6:f4: 61:03:8e:d6 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFH8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzMjNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEM3NDQ0Qjc5NzUxQjA3 QTZGNTUwMTMzOEIwMDE5MDBCRTFCQ0M4MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsjvWbM9pXmxAhoMzg+cJL8Yovwy57JJU/bvT0qVjnZUuxH4Wn bj3JTX27sW7/daoq08JBqKxCBM+JXDKHQqYyzmnV1+qaFzxDXUYfzRjRkci1bhk8 yrH7AAQUF8ViFnFq9StPuGJP6Afn9bXj+oG3QtehkDTJKPtUTnDA/x82biMgtDQT zyprlioSMMANkN//57vdpuaLNr8W80kP0+Zzjb81AbWcm9yHEcny5n6b7qlbQQ1w p4O8Dc2XFqjwSwqf31AB7oWpN2edXlRhx9BsyHuCPWcX+N9I5EBsIEITYhPO5wlw zyVSMqkJgxqul6+NiPxeheuAmtD5x8QDNOAtAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUx0RLeXUbB6b1UBM4sAGQC+G8yBIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3gwUkxlWFViQjZiMVVC TTRzQUdRQy1HOHlCSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RgwDQYJKoZIhvcNAQELBQADggEBAKEjWaSA9/zoSzPEUVZy70DOQCND9Uvl jq2Gi8N5b5CfgEIsZHWCMt2RYlfbUlDlyeqz5yrq7Pov06Yi9LZ3oLNIFFPCoonh L0wmfcd5NP2HjAPqegVQLD4LkasMUoAqHkLfZfYDfHLXa9K1BSeAS1jEtuVSTsrB 3YEq7Ge0t+OP0/ip3aKvBgPtqCTZNdTYjpy1xscA75bv+Y2SAS+6hfCS74zRB0/B oBxysXksmkYF4W+thqYdpBpNm6+q24F14fNuKTzvzMSOPTLvNej98cyQuf+UBSBt QtPIDSlHRbCdXnG89J0bIOE3QBlEOrDx3kPX/vYhulAPpCnm9GEDjtY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:36:48 2024 by rpki-client on console-ams.rpki-client.org