$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/721/-ADB0ul8beQrLrQh61kNdQ6Xl0I.roa File: -ADB0ul8beQrLrQh61kNdQ6Xl0I.roa (raw, json) Hash identifier: 4dx4i0BTuk/HpHw9BS/JDWyxYxY/rjkaxOaRkWmyHWM= Subject key identifier: F8:00:C1:D2:E9:7C:6D:E4:2B:2E:B4:21:EB:59:0D:75:0E:97:97:42 Certificate issuer: /CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A Certificate serial: 17C1 Authority key identifier: EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/-ADB0ul8beQrLrQh61kNdQ6Xl0I.roa Signing time: Tue 24 Sep 2024 00:18:54 +0000 ROA not before: Tue 24 Sep 2024 00:18:54 +0000 ROA not after: Sat 20 Sep 2025 07:41:26 +0000 asID: 134764 IP address blocks: 43.255.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6081 (0x17c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A Validity Not Before: Sep 24 00:18:54 2024 GMT Not After : Sep 20 07:41:26 2025 GMT Subject: CN=F800C1D2E97C6DE42B2EB421EB590D750E979742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:fa:e0:77:d0:a5:9d:ab:f3:9b:59:c9:cc: a9:af:6e:0d:b2:e1:e8:8b:8e:da:31:64:bb:24:03: 70:38:3b:ef:ce:c9:d7:c2:83:43:58:68:86:1c:31: 1c:b6:34:fe:bb:d1:69:23:aa:4b:2f:50:f9:a1:a9: 2d:04:2c:a5:ab:5e:50:8d:5f:32:52:ee:ff:24:48: 9e:a7:6d:54:cb:32:d9:ba:89:17:5c:6d:d5:92:00: d0:76:0a:e6:99:29:96:e6:a9:d1:a3:22:75:a5:e8: 3e:8c:fd:ae:a6:0e:13:84:b8:0a:33:ea:34:e6:39: 3f:cf:9c:4c:22:d8:a7:3f:cc:7e:e8:98:b7:88:22: e2:29:30:89:77:78:83:24:f1:0d:ed:ff:f5:4c:e8: ab:9d:e1:2e:ce:aa:0d:31:e8:17:ce:a8:61:da:f5: d7:e1:3b:a2:8f:cd:ba:c0:ac:5f:e6:67:e0:de:f5: 6c:cf:d8:33:e0:35:0b:08:2e:92:1c:26:0f:f4:4b: 57:88:94:4b:31:db:b1:42:54:68:9d:1b:df:bd:42: cd:4d:75:87:cc:b5:23:b9:0e:a9:fa:bd:80:24:97: 75:58:3a:c0:fc:4f:06:20:11:67:1c:5c:f8:54:69: d5:85:fd:d2:01:18:12:5e:4e:16:1e:34:ed:a3:e7: 5d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:00:C1:D2:E9:7C:6D:E4:2B:2E:B4:21:EB:59:0D:75:0E:97:97:42 X509v3 Authority Key Identifier: keyid:EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/-ADB0ul8beQrLrQh61kNdQ6Xl0I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.255.212.0/22 Signature Algorithm: sha256WithRSAEncryption 79:3f:4c:5d:94:8f:2b:18:42:ba:98:95:6a:96:76:32:70:45: 7d:5e:08:8a:5d:1f:dd:c1:ba:27:cb:0e:e9:8f:10:e2:86:5f: 57:e3:04:67:1d:90:a7:6a:92:64:3d:bf:57:d0:d4:51:5f:d4: 45:62:60:27:b2:8c:8c:63:50:df:c4:30:88:1c:68:04:f7:f3: 2e:05:58:4c:74:50:1e:12:16:2d:bc:4a:d3:fe:f5:f3:ea:93: 08:45:39:fb:bc:97:bc:bd:d8:c8:d6:e1:90:73:85:ab:f6:96: 95:2d:35:d0:6a:12:1a:41:49:f2:5b:11:fe:19:72:24:13:b5: 7b:e1:26:8e:f0:51:64:32:96:af:06:1b:8a:be:45:ad:55:d2: 82:ee:00:d9:7f:93:93:35:a2:b9:a8:f8:6f:e8:c2:aa:c7:09: 31:c3:9b:45:74:bc:9f:03:99:e2:1c:e0:fb:84:a0:d6:e3:a4: 85:10:38:b6:47:16:a4:06:a6:9b:fd:49:f6:52:1d:14:dd:f5: 9d:c9:36:de:bf:e3:95:7f:c9:09:45:75:c6:54:b4:53:90:d0: cc:6a:35:7a:81:cf:ca:7d:91:e1:44:ab:31:48:e9:d4:89:67: 96:ef:4b:f0:28:49:5a:58:a2:37:39:26:8b:fc:83:71:08:6e: 92:de:07:59 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICF8EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUU4 ODdBQ0M3Q0U0QjVGNjZDQ0Y0OTQ2RjAyQkZBQ0JERTI4Qjc2QTAeFw0yNDA5MjQw MDE4NTRaFw0yNTA5MjAwNzQxMjZaMDMxMTAvBgNVBAMTKEY4MDBDMUQyRTk3QzZE RTQyQjJFQjQyMUVCNTkwRDc1MEU5Nzk3NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC95Prgd9Clnavzm1nJzKmvbg2y4eiLjtoxZLskA3A4O+/OydfC g0NYaIYcMRy2NP670WkjqksvUPmhqS0ELKWrXlCNXzJS7v8kSJ6nbVTLMtm6iRdc bdWSANB2CuaZKZbmqdGjInWl6D6M/a6mDhOEuAoz6jTmOT/PnEwi2Kc/zH7omLeI IuIpMIl3eIMk8Q3t//VM6Kud4S7Oqg0x6BfOqGHa9dfhO6KPzbrArF/mZ+De9WzP 2DPgNQsILpIcJg/0S1eIlEsx27FCVGidG9+9Qs1NdYfMtSO5Dqn6vYAkl3VYOsD8 TwYgEWccXPhUadWF/dIBGBJeThYeNO2j510nAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU+ADB0ul8beQrLrQh61kNdQ6Xl0IwHwYDVR0jBBgwFoAU7oh6zHzktfZsz0lG 8Cv6y94ot2owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzIx LzdvaDZ6SHprdGZac3owbEc4Q3Y2eTk0b3Qyby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvN29oNnpIemt0ZlpzejBsRzhDdjZ5OTRvdDJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzIxLy1BREIwdWw4YmVRckxy UWg2MWtOZFE2WGwwSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr/9QwDQYJKoZIhvcNAQELBQADggEBAHk/TF2UjysYQrqYlWqWdjJwRX1eCIpd H93BuifLDumPEOKGX1fjBGcdkKdqkmQ9v1fQ1FFf1EViYCeyjIxjUN/EMIgcaAT3 8y4FWEx0UB4SFi28StP+9fPqkwhFOfu8l7y92MjW4ZBzhav2lpUtNdBqEhpBSfJb Ef4ZciQTtXvhJo7wUWQylq8GG4q+Ra1V0oLuANl/k5M1ormo+G/owqrHCTHDm0V0 vJ8DmeIc4PuEoNbjpIUQOLZHFqQGppv9SfZSHRTd9Z3JNt6/45V/yQlFdcZUtFOQ 0MxqNXqBz8p9keFEqzFI6dSJZ5bvS/AoSVpYojc5Jov8g3EIbpLeB1k= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:14 2024 by rpki-client on console-fra.rpki-client.org