$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/B5WDESKhUybUDqx3MvYiqZKoMfM.roa File: B5WDESKhUybUDqx3MvYiqZKoMfM.roa (raw, json) Hash identifier: rMTPwoc2Qao7qxU9cZz110gfIacWOmvzqkrGFvi5++Q= Subject key identifier: 07:95:83:11:22:A1:53:26:D4:0E:AC:77:32:F6:22:A9:92:A8:31:F3 Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 0812 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/B5WDESKhUybUDqx3MvYiqZKoMfM.roa Signing time: Tue 19 Nov 2024 12:40:41 +0000 ROA not before: Tue 19 Nov 2024 12:40:41 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 398704 IP address blocks: 58.66.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 09:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Nov 19 12:40:41 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=0795831122A15326D40EAC7732F622A992A831F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:d1:f4:80:60:dc:49:b2:a5:f8:4f:cb:d9: 19:ea:d6:9a:64:4f:58:1f:a6:d8:e4:b1:1d:1f:e7: d4:c0:9b:08:31:ac:b7:2d:44:2c:4f:09:7b:bc:c7: f2:4c:f0:3a:9c:e0:66:fc:41:18:ce:b0:00:f1:3f: 81:73:41:96:8a:cf:ff:55:f2:70:6c:6f:5f:e9:ff: 9f:b2:7e:bd:03:cd:ac:36:fe:86:d0:42:7c:eb:97: eb:22:18:be:de:9c:f5:25:aa:85:f7:78:9b:9e:4d: 8c:61:c2:b6:2f:f7:6a:ee:9c:c3:ed:28:a7:ca:eb: 93:64:f0:5f:6a:ca:3d:2d:a7:16:f8:d4:5e:d7:ae: cf:3b:03:ab:11:8a:12:22:ea:04:0f:10:f4:f2:49: c9:07:48:d2:0d:9c:a7:f2:25:75:ba:d0:97:93:b7: af:5a:5c:35:29:76:1c:22:53:c0:2b:0e:fa:c8:95: 78:89:52:98:81:9e:4f:ce:bd:ca:d2:dd:37:e9:be: b3:dd:2d:f9:0e:b6:8d:e3:69:19:c7:a5:da:09:77: 15:79:75:70:07:58:b3:0d:03:61:7f:c1:44:07:79: d6:11:99:c5:e8:2e:d9:6b:5e:7c:ab:97:b3:95:77: 5c:a1:1c:b5:66:42:34:3a:1e:8a:5e:bd:c8:d3:86: 4e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:95:83:11:22:A1:53:26:D4:0E:AC:77:32:F6:22:A9:92:A8:31:F3 X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/B5WDESKhUybUDqx3MvYiqZKoMfM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.66.178.0/24 Signature Algorithm: sha256WithRSAEncryption 01:76:ed:5f:0f:7f:5d:f2:a9:9c:05:d8:1a:ee:7e:5f:b6:a6: c3:49:62:96:5f:ba:86:33:23:95:43:15:2d:72:94:14:b6:0c: d8:d0:5c:0a:40:18:bf:90:54:30:8c:90:ad:aa:fc:76:2d:d1: 48:86:89:16:78:08:b8:1d:b4:0b:32:38:df:67:d8:c7:07:d9: fc:13:11:df:f0:fe:54:c3:e0:bd:64:1a:63:41:61:94:e1:60: 61:8b:55:71:80:a4:76:48:04:e3:6f:0f:4e:5a:90:0b:89:8e: 04:0c:86:13:d9:56:ff:f6:77:ad:21:11:e7:fe:64:a3:81:f9: 1e:e9:c2:80:9a:29:d6:73:fc:ab:08:8a:be:08:be:82:a4:37: 38:04:92:6a:f3:e4:e4:39:5c:36:e2:7c:cb:26:77:43:95:e4: f8:cc:4e:ad:41:16:b1:d9:75:8c:6f:db:00:d1:fe:6f:8a:af: 09:8d:18:99:ca:6f:ab:09:4b:08:34:02:37:7a:28:87:d1:55: e3:5e:7b:d7:fc:bb:a3:7b:ca:59:50:0e:36:f9:7b:81:b7:c7: f0:65:37:d8:8b:34:26:ed:11:42:05:27:1e:82:d1:5d:ce:be: 88:cf:f9:9b:51:17:db:ce:ac:d5:e5:d1:49:82:75:88:ad:cc: e5:d0:cf:27 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDExMTkx MjQwNDFaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDA3OTU4MzExMjJBMTUz MjZENDBFQUM3NzMyRjYyMkE5OTJBODMxRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKT9H0gGDcSbKl+E/L2Rnq1ppkT1gfptjksR0f59TAmwgxrLct RCxPCXu8x/JM8Dqc4Gb8QRjOsADxP4FzQZaKz/9V8nBsb1/p/5+yfr0Dzaw2/obQ Qnzrl+siGL7enPUlqoX3eJueTYxhwrYv92runMPtKKfK65Nk8F9qyj0tpxb41F7X rs87A6sRihIi6gQPEPTySckHSNINnKfyJXW60JeTt69aXDUpdhwiU8ArDvrIlXiJ UpiBnk/OvcrS3TfpvrPdLfkOto3jaRnHpdoJdxV5dXAHWLMNA2F/wUQHedYRmcXo LtlrXnyrl7OVd1yhHLVmQjQ6HopevcjThk7nAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUB5WDESKhUybUDqx3MvYiqZKoMfMwHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvQjVXREVTS2hVeWJVRHF4M012 WWlxWktvTWZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADpC sjANBgkqhkiG9w0BAQsFAAOCAQEAAXbtXw9/XfKpnAXYGu5+X7amw0lill+6hjMj lUMVLXKUFLYM2NBcCkAYv5BUMIyQrar8di3RSIaJFngIuB20CzI432fYxwfZ/BMR 3/D+VMPgvWQaY0FhlOFgYYtVcYCkdkgE428PTlqQC4mOBAyGE9lW//Z3rSER5/5k o4H5HunCgJop1nP8qwiKvgi+gqQ3OASSavPk5DlcNuJ8yyZ3Q5Xk+MxOrUEWsdl1 jG/bANH+b4qvCY0YmcpvqwlLCDQCN3ooh9FV41571/y7o3vKWVAONvl7gbfH8GU3 2Is0Ju0RQgUnHoLRXc6+iM/5m1EX286s1eXRSYJ1iK3M5dDPJw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:38:13 2024 by rpki-client on console-ams.rpki-client.org