$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/890/8bt_w9N3b0u3QE9xayaSAtQVeyE.roa File: 8bt_w9N3b0u3QE9xayaSAtQVeyE.roa (raw, json) Hash identifier: QKLF9PiGEZy6YjR1G8lFbvyEah6QFW78vzFqjnr3TAk= Subject key identifier: F1:BB:7F:C3:D3:77:6F:4B:B7:40:4F:71:6B:26:92:02:D4:15:7B:21 Certificate issuer: /CN=0EE863AC570AEEA1F930BEA5E76AAE7DD553804E Certificate serial: 039A Authority key identifier: 0E:E8:63:AC:57:0A:EE:A1:F9:30:BE:A5:E7:6A:AE:7D:D5:53:80:4E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DuhjrFcK7qH5ML6l52qufdVTgE4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/8bt_w9N3b0u3QE9xayaSAtQVeyE.roa Signing time: Sat 30 Mar 2024 05:08:26 +0000 ROA not before: Sat 30 Mar 2024 05:08:26 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 63567 IP address blocks: 43.226.96.0/20 maxlen: 20 43.248.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/DuhjrFcK7qH5ML6l52qufdVTgE4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/DuhjrFcK7qH5ML6l52qufdVTgE4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DuhjrFcK7qH5ML6l52qufdVTgE4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EE863AC570AEEA1F930BEA5E76AAE7DD553804E Validity Not Before: Mar 30 05:08:26 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F1BB7FC3D3776F4BB7404F716B269202D4157B21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:c8:99:c5:63:e6:c0:50:4e:ad:0c:16:30: 07:55:08:d1:c0:c4:08:8a:74:00:27:34:e8:96:5c: 1f:21:6b:b0:89:a3:0d:44:e7:41:ba:39:7c:df:99: 15:8e:be:5c:a5:83:3a:72:e5:51:82:61:01:98:31: 4a:51:f2:78:51:38:8b:de:c3:a8:cd:38:3b:47:a1: 13:3d:95:02:49:87:c7:da:6c:66:e2:8c:32:b6:d4: 15:96:44:a8:f1:b4:a4:44:9c:c2:42:e1:6b:cd:ad: 29:c2:16:93:20:91:6c:9a:4c:ef:fd:06:9f:25:aa: 0c:a0:91:79:c2:64:12:88:de:67:e7:55:e8:3e:e9: e8:d9:df:55:16:92:06:bd:64:23:cf:ef:5e:7d:79: 0a:19:d5:94:94:98:8a:c9:f0:56:d1:eb:e8:5e:cf: 97:f7:e1:67:d8:3a:1b:75:f1:6c:f9:0d:25:df:93: 00:8b:4f:74:84:1f:78:da:d2:08:f3:52:ee:b0:98: 5d:4b:52:21:3c:77:39:9f:f0:13:e9:39:aa:8e:74: 94:0f:81:92:29:96:a1:b5:bd:93:e0:12:42:43:8e: 55:c8:1a:3e:c0:32:c8:98:63:e7:bc:6e:71:5c:eb: f5:bf:7c:02:3f:ce:c1:c4:ec:8e:39:25:7c:34:58: 9e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BB:7F:C3:D3:77:6F:4B:B7:40:4F:71:6B:26:92:02:D4:15:7B:21 X509v3 Authority Key Identifier: keyid:0E:E8:63:AC:57:0A:EE:A1:F9:30:BE:A5:E7:6A:AE:7D:D5:53:80:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/DuhjrFcK7qH5ML6l52qufdVTgE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DuhjrFcK7qH5ML6l52qufdVTgE4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/8bt_w9N3b0u3QE9xayaSAtQVeyE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.96.0/20 43.248.80.0/20 Signature Algorithm: sha256WithRSAEncryption 02:78:12:8a:1e:33:5a:99:42:1f:db:fd:03:cb:a1:58:dd:25: a7:ef:77:bd:9d:54:2c:ca:4d:5f:1c:03:42:29:08:81:89:b6: fa:77:7c:51:9f:9c:e9:51:73:04:d2:e1:90:4a:06:32:2d:47: e5:8c:30:cf:c2:7e:67:35:65:9c:07:f3:65:f3:b1:6e:18:86: 9d:73:b2:20:82:c1:ff:b0:48:53:47:82:98:9d:02:10:76:b6: e3:03:43:2d:51:64:29:81:06:83:0a:9c:b3:c7:9c:23:9b:03: 1a:38:63:d8:2e:3f:ea:02:64:fa:c7:94:fb:17:c9:17:38:99: 47:03:24:fa:20:12:42:6e:61:bf:fa:51:27:f8:b6:f9:7e:85: c7:af:3c:60:7c:db:c7:f7:8f:12:5a:cf:e6:00:a2:86:79:7a: e7:4d:d3:b6:14:e6:32:75:7d:19:1f:34:6b:95:17:17:15:3c: 36:3d:e9:42:31:a9:f6:bc:f5:2c:62:65:69:2d:6d:dd:79:dc: 98:f6:d6:d5:ed:cd:70:06:dd:e7:a0:08:94:d3:f0:3c:ba:ed: 0c:f3:e1:72:18:10:50:b6:1a:5e:ee:b0:00:d1:48:64:c6:9a: 2c:6d:37:79:7e:21:96:60:01:28:36:42:df:fb:2d:b1:79:a6: bd:c7:a9:fd -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICA5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEVF ODYzQUM1NzBBRUVBMUY5MzBCRUE1RTc2QUFFN0RENTUzODA0RTAeFw0yNDAzMzAw NTA4MjZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEYxQkI3RkMzRDM3NzZG NEJCNzQwNEY3MTZCMjY5MjAyRDQxNTdCMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJk8iZxWPmwFBOrQwWMAdVCNHAxAiKdAAnNOiWXB8ha7CJow1E 50G6OXzfmRWOvlylgzpy5VGCYQGYMUpR8nhROIvew6jNODtHoRM9lQJJh8fabGbi jDK21BWWRKjxtKREnMJC4WvNrSnCFpMgkWyaTO/9Bp8lqgygkXnCZBKI3mfnVeg+ 6ejZ31UWkga9ZCPP7159eQoZ1ZSUmIrJ8FbR6+hez5f34WfYOht18Wz5DSXfkwCL T3SEH3ja0gjzUu6wmF1LUiE8dzmf8BPpOaqOdJQPgZIplqG1vZPgEkJDjlXIGj7A MsiYY+e8bnFc6/W/fAI/zsHE7I45JXw0WJ6VAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQU8bt/w9N3b0u3QE9xayaSAtQVeyEwHwYDVR0jBBgwFoAUDuhjrFcK7qH5ML6l 52qufdVTgE4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODkw L0R1aGpyRmNLN3FINU1MNmw1MnF1ZmRWVGdFNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvRHVoanJGY0s3cUg1TUw2bDUycXVmZFZUZ0U0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODkwLzhidF93OU4zYjB1M1FF OXhheWFTQXRRVmV5RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAQr4mADBAQr+FAwDQYJKoZIhvcNAQELBQADggEBAAJ4EooeM1qZQh/b/QPLoVjd Jafvd72dVCzKTV8cA0IpCIGJtvp3fFGfnOlRcwTS4ZBKBjItR+WMMM/Cfmc1ZZwH 82XzsW4Yhp1zsiCCwf+wSFNHgpidAhB2tuMDQy1RZCmBBoMKnLPHnCObAxo4Y9gu P+oCZPrHlPsXyRc4mUcDJPogEkJuYb/6USf4tvl+hcevPGB828f3jxJaz+YAooZ5 eudN07YU5jJ1fRkfNGuVFxcVPDY96UIxqfa89SxiZWktbd153Jj21tXtzXAG3eeg CJTT8Dy67Qzz4XIYEFC2Gl7usADRSGTGmixtN3l+IZZgASg2Qt/7LbF5pr3Hqf0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:51 2024 by rpki-client on console-ams.rpki-client.org