$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/654/gDX7pe734orJIKnue3vorf65bp8.roa File: gDX7pe734orJIKnue3vorf65bp8.roa (raw, json) Hash identifier: p30aokCXzp++XXt/8X5C5Opz0XgWqlW2RN6VBrstQE8= Subject key identifier: 80:35:FB:A5:EE:F7:E2:8A:C9:20:A9:EE:7B:7B:E8:AD:FE:B9:6E:9F Certificate issuer: /CN=DA993FE5C04FF9F22C5262630BEC37F5B3A78285 Certificate serial: 0CA4 Authority key identifier: DA:99:3F:E5:C0:4F:F9:F2:2C:52:62:63:0B:EC:37:F5:B3:A7:82:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/gDX7pe734orJIKnue3vorf65bp8.roa Signing time: Wed 13 Mar 2024 01:23:52 +0000 ROA not before: Wed 13 Mar 2024 01:23:52 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 63199 IP address blocks: 106.3.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 10:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA993FE5C04FF9F22C5262630BEC37F5B3A78285 Validity Not Before: Mar 13 01:23:52 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=8035FBA5EEF7E28AC920A9EE7B7BE8ADFEB96E9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:70:26:c2:66:f9:95:26:90:3b:a5:4b:9e:5e: f9:bc:27:2b:cf:84:55:d9:59:0a:30:bd:70:bf:4c: ae:7a:7a:9b:15:aa:95:54:32:05:34:50:94:2a:63: 9d:98:fe:ad:6e:73:cc:ef:01:16:b5:92:17:3e:c5: eb:c2:6a:d2:8d:03:c5:af:aa:0b:7a:8e:e9:a5:b0: e0:c5:d0:83:6f:2b:63:1c:4f:8c:d4:2c:a8:21:a5: 9a:52:05:16:30:1a:cd:d2:65:35:17:0c:52:f9:58: 2b:ab:02:18:7f:10:5c:99:74:10:8d:97:d5:38:e2: 3c:a7:e7:1e:c5:71:3b:07:5c:ae:11:7c:2d:cf:67: 31:d2:b2:06:f9:d2:16:c4:c9:e2:07:c5:d2:93:96: 90:f6:b7:aa:08:1c:b3:3f:f4:fb:7d:04:59:c6:8a: 0e:60:6f:f5:c8:6b:9c:9b:38:46:6b:6c:ad:ad:8e: 4b:66:64:60:2c:4c:0a:33:45:8f:71:95:e2:7b:31: ca:28:98:31:8b:57:07:84:c5:24:80:1e:a2:51:40: 83:d9:26:f6:d0:cc:c7:85:59:dd:ad:85:95:dd:21: 37:d3:9c:2c:e1:cc:37:e6:5d:0a:e6:3e:e0:af:61: 47:ae:f7:8c:a2:2f:ee:30:b3:c2:9b:45:db:a4:5d: 76:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:35:FB:A5:EE:F7:E2:8A:C9:20:A9:EE:7B:7B:E8:AD:FE:B9:6E:9F X509v3 Authority Key Identifier: keyid:DA:99:3F:E5:C0:4F:F9:F2:2C:52:62:63:0B:EC:37:F5:B3:A7:82:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/gDX7pe734orJIKnue3vorf65bp8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.3.139.0/24 Signature Algorithm: sha256WithRSAEncryption 61:c3:d4:d8:49:80:05:8d:7e:b3:53:80:00:2d:5a:d4:ab:80: fc:ea:f5:ac:8d:bc:d9:10:8b:87:ef:7c:87:ba:65:90:56:0b: 4b:64:8a:d7:ae:9a:6b:cf:ef:c6:28:c9:0f:82:46:09:f8:e1: 7c:5b:6c:4e:6f:e2:f1:aa:df:2b:99:f3:7e:40:a6:a7:a1:92: 21:6f:e2:0e:f0:e6:5e:d6:54:b1:6b:fc:20:fd:6b:e2:e3:d6: a5:c2:6f:09:e1:ee:fc:f2:f9:bb:b5:5d:03:e2:11:b6:ea:bd: 73:fe:74:ef:31:88:e0:fb:af:00:e5:eb:5b:ae:11:56:5b:ab: 45:08:3c:95:0d:04:04:78:e3:d1:1b:26:73:44:ae:93:88:50: 6e:23:f5:01:cb:ca:96:29:78:16:4e:db:83:06:31:e9:f7:e8: c0:40:13:0d:1c:71:48:f1:92:d7:61:59:ae:37:01:40:93:cc: 88:eb:21:dc:1b:c7:31:a1:a2:e0:b3:6e:6b:8c:7c:31:cf:15: ce:60:7b:38:db:2a:4a:48:ca:dc:bd:5d:90:c8:4c:e4:89:d9: 3e:57:7a:30:a0:cd:f2:08:8d:64:9b:ec:b3:d5:7a:1e:09:a8: 27:ee:b5:93:f5:74:59:a1:9c:a5:62:d8:93:c9:77:af:f3:b6: 71:11:59:a1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREE5 OTNGRTVDMDRGRjlGMjJDNTI2MjYzMEJFQzM3RjVCM0E3ODI4NTAeFw0yNDAzMTMw MTIzNTJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDgwMzVGQkE1RUVGN0Uy OEFDOTIwQTlFRTdCN0JFOEFERkVCOTZFOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCocCbCZvmVJpA7pUueXvm8JyvPhFXZWQowvXC/TK56epsVqpVU MgU0UJQqY52Y/q1uc8zvARa1khc+xevCatKNA8Wvqgt6jumlsODF0INvK2McT4zU LKghpZpSBRYwGs3SZTUXDFL5WCurAhh/EFyZdBCNl9U44jyn5x7FcTsHXK4RfC3P ZzHSsgb50hbEyeIHxdKTlpD2t6oIHLM/9Pt9BFnGig5gb/XIa5ybOEZrbK2tjktm ZGAsTAozRY9xleJ7McoomDGLVweExSSAHqJRQIPZJvbQzMeFWd2thZXdITfTnCzh zDfmXQrmPuCvYUeu94yiL+4ws8KbRdukXXbXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUgDX7pe734orJIKnue3vorf65bp8wHwYDVR0jBBgwFoAU2pk/5cBP+fIsUmJj C+w39bOngoUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0 LzJwa181Y0JQLWZJc1VtSmpDLXczOWJPbmdvVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMnBrXzVjQlAtZklzVW1KakMtdzM5Yk9uZ29VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0L2dEWDdwZTczNG9ySklL bnVlM3ZvcmY2NWJwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABqA4swDQYJKoZIhvcNAQELBQADggEBAGHD1NhJgAWNfrNTgAAtWtSrgPzq9ayN vNkQi4fvfIe6ZZBWC0tkiteummvP78YoyQ+CRgn44XxbbE5v4vGq3yuZ835Apqeh kiFv4g7w5l7WVLFr/CD9a+Lj1qXCbwnh7vzy+bu1XQPiEbbqvXP+dO8xiOD7rwDl 61uuEVZbq0UIPJUNBAR449EbJnNErpOIUG4j9QHLypYpeBZO24MGMen36MBAEw0c cUjxktdhWa43AUCTzIjrIdwbxzGhouCzbmuMfDHPFc5gezjbKkpIyty9XZDITOSJ 2T5XejCgzfIIjWSb7LPVeh4JqCfutZP1dFmhnKVi2JPJd6/ztnERWaE= -----END CERTIFICATE-----Generated at Fri Nov 22 07:02:36 2024 by rpki-client on console-fra.rpki-client.org