$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/3/323430313a32303a3a2f33322d3430203d3e2034383432.roa File: 323430313a32303a3a2f33322d3430203d3e2034383432.roa (raw, json) Hash identifier: QTu7KfbLuB4x+VFtJwi2+jhdQs1MPkzc9vvDhTeYny4= Subject key identifier: 56:04:81:83:8E:30:40:C2:18:C9:75:86:B8:7F:E5:E5:20:C4:EF:54 Certificate issuer: /CN=A91F56750000/serialNumber=459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F Certificate serial: 4ECE0927BD5913B96CB35D54E32E1E9AE1CDB1BA Authority key identifier: 45:9D:2B:83:4A:3B:A0:8C:0A:A6:7C:6E:57:81:46:A8:B1:FE:2C:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/323430313a32303a3a2f33322d3430203d3e2034383432.roa Signing time: Fri 07 Jul 2023 03:31:42 +0000 ROA not before: Fri 07 Jul 2023 03:26:42 +0000 ROA not after: Fri 05 Jul 2024 03:31:42 +0000 asID: 4842 IP address blocks: 2401:20::/32 maxlen: 40 Validation: OK Signature path: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F.crl rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ce:09:27:bd:59:13:b9:6c:b3:5d:54:e3:2e:1e:9a:e1:cd:b1:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F56750000/serialNumber=459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F Validity Not Before: Jul 7 03:26:42 2023 GMT Not After : Jul 5 03:31:42 2024 GMT Subject: CN=560481838E3040C218C97586B87FE5E520C4EF54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:da:86:e8:6a:22:38:82:d0:ba:e6:9f:ea: 66:82:5a:ec:4b:6e:f7:94:58:89:c7:fd:5b:3a:aa: b9:ff:12:a3:87:7b:41:42:ed:45:ec:46:20:e4:9c: a0:a9:09:54:87:b1:58:4c:8d:90:4b:f0:61:c9:8c: 81:e8:e8:8a:92:d4:b8:f9:e5:28:8b:48:b4:01:57: 75:26:55:5b:72:de:35:96:eb:3e:b7:e1:e0:04:28: 71:f4:13:03:7c:94:71:d5:b8:0b:84:30:62:8f:33: 1e:11:b1:52:3b:19:fb:50:a7:58:9b:05:11:b3:e4: f7:c7:3d:b3:1f:5f:60:63:66:31:02:4c:24:41:30: f8:fc:83:ae:bc:a8:0e:76:35:74:9c:62:00:ac:7b: 21:ad:95:99:8e:b7:7e:da:1e:4e:30:62:8b:06:58: 58:69:82:5a:0b:30:79:6f:b7:75:e0:61:88:b7:bf: 83:05:d4:29:5f:7d:76:06:00:68:be:c6:71:89:a4: 45:0a:20:80:3b:67:a1:ca:1a:67:18:fa:5a:df:3a: 23:f3:85:ad:a3:58:b2:1d:b7:b8:4b:ee:5c:f9:01: 5d:d9:dd:3d:44:49:67:93:84:c3:d4:3e:e3:ed:fe: 13:52:3c:a4:70:59:13:83:ad:a8:01:cd:27:d8:f6: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:04:81:83:8E:30:40:C2:18:C9:75:86:B8:7F:E5:E5:20:C4:EF:54 X509v3 Authority Key Identifier: keyid:45:9D:2B:83:4A:3B:A0:8C:0A:A6:7C:6E:57:81:46:A8:B1:FE:2C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer Subject Information Access: Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/323430313a32303a3a2f33322d3430203d3e2034383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:20::/32 Signature Algorithm: sha256WithRSAEncryption 91:f9:49:22:5f:3e:61:2a:a0:96:04:48:f8:90:12:d5:37:24: 1a:c5:e3:53:b4:28:4f:8b:23:e7:51:5e:c4:76:b7:9d:54:dc: 90:7d:bc:2e:59:85:4f:89:9c:99:e7:f5:e2:75:47:23:07:b2: b2:34:5c:83:0a:5c:ce:b0:9e:f3:a3:7b:de:0b:4b:66:c9:11: 6e:cd:2a:0d:17:a8:e7:3b:12:b3:d1:39:3f:e9:6c:1b:9d:6a: dd:4f:dc:d2:ff:c7:d2:39:b6:94:73:e9:75:ff:b0:b1:0e:94: 82:0c:e0:3a:86:55:d4:ca:66:11:25:72:6a:ae:08:87:be:cc: 39:4c:80:3f:9d:c6:8f:c4:60:15:ad:f4:50:f3:b7:0e:92:a7: dd:85:4b:f9:f8:90:a5:6a:61:7f:ea:b4:fc:16:2e:18:d6:3f: 07:69:22:dc:aa:87:1b:a2:b4:01:16:c3:c9:ed:aa:c8:49:93: d6:b1:ba:3d:af:23:8e:36:8e:5c:af:2b:6b:b5:ba:57:51:9c: c5:64:ec:ce:ed:2f:4a:d3:32:70:50:98:14:59:cc:2d:92:e0: c8:a8:e0:d0:4e:7b:49:2d:50:e3:4c:d1:02:8d:40:e8:0a:9b: 68:51:f1:26:a7:3c:39:1d:61:0e:d5:d4:da:d0:df:d6:89:da: b2:40:2f:21 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUTs4JJ71ZE7lss11U4y4emuHNsbowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjU2NzUwMDAwMTEwLwYDVQQFEyg0NTlEMkI4MzRB M0JBMDhDMEFBNjdDNkU1NzgxNDZBOEIxRkUyQzJGMB4XDTIzMDcwNzAzMjY0MloX DTI0MDcwNTAzMzE0MlowMzExMC8GA1UEAxMoNTYwNDgxODM4RTMwNDBDMjE4Qzk3 NTg2Qjg3RkU1RTUyMEM0RUY1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/12oboaiI4gtC65p/qZoJa7Etu95RYicf9Wzqquf8So4d7QULtRexGIOSc oKkJVIexWEyNkEvwYcmMgejoipLUuPnlKItItAFXdSZVW3LeNZbrPrfh4AQocfQT A3yUcdW4C4QwYo8zHhGxUjsZ+1CnWJsFEbPk98c9sx9fYGNmMQJMJEEw+PyDrryo DnY1dJxiAKx7Ia2VmY63ftoeTjBiiwZYWGmCWgsweW+3deBhiLe/gwXUKV99dgYA aL7GcYmkRQoggDtnocoaZxj6Wt86I/OFraNYsh23uEvuXPkBXdndPURJZ5OEw9Q+ 4+3+E1I8pHBZE4OtqAHNJ9j2SCMCAwEAAaOCAgYwggICMB0GA1UdDgQWBBRWBIGD jjBAwhjJdYa4f+XlIMTvVDAfBgNVHSMEGDAWgBRFnSuDSjugjAqmfG5XgUaosf4s LzAOBgNVHQ8BAf8EBAMCB4AwcAYDVR0fBGkwZzBloGOgYYZfcnN5bmM6Ly9yc3lu Yy5ycGtpLnRpYW5oYWkubGluay9yZXBvL1RpYW5oYWlScGtpLzMvNDU5RDJCODM0 QTNCQTA4QzBBQTY3QzZFNTc4MTQ2QThCMUZFMkMyRi5jcmwwfgYIKwYBBQUHAQEE cjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRv cnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUlowcmcwbzdvSXdL cG54dVY0RkdxTEgtTEM4LmNlcjCBgQYIKwYBBQUHAQsEdTBzMHEGCCsGAQUFBzAL hmVyc3luYzovL3JzeW5jLnJwa2kudGlhbmhhaS5saW5rL3JlcG8vVGlhbmhhaVJw a2kvMy8zMjM0MzAzMTNhMzIzMDNhM2EyZjMzMzIyZDM0MzAyMDNkM2UyMDM0Mzgz NDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAEAIDANBgkqhkiG9w0BAQsFAAOCAQEAkflJIl8+YSqg lgRI+JAS1TckGsXjU7QoT4sj51FexHa3nVTckH28LlmFT4mcmef14nVHIweysjRc gwpczrCe86N73gtLZskRbs0qDReo5zsSs9E5P+lsG51q3U/c0v/H0jm2lHPpdf+w sQ6UggzgOoZV1MpmESVyaq4Ih77MOUyAP53Gj8RgFa30UPO3DpKn3YVL+fiQpWph f+q0/BYuGNY/B2ki3KqHG6K0ARbDye2qyEmT1rG6Pa8jjjaOXK8ra7W6V1GcxWTs zu0vStMycFCYFFnMLZLgyKjg0E57SS1Q40zRAo1A6AqbaFHxJqc8OR1hDtXU2tDf 1onaskAvIQ== -----END CERTIFICATE-----Generated at Thu May 2 18:54:26 2024 by rpki-client on console-ams.rpki-client.org