$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/L6HRD5E2mZEFshwg9fCQuH8mzag.roa File: L6HRD5E2mZEFshwg9fCQuH8mzag.roa (raw, json) Hash identifier: NVPQmnbtrGnJf1b9C/BzgkvTMi5xjC30JkS+2gFyhFw= Subject key identifier: 2F:A1:D1:0F:91:36:99:91:05:B2:1C:20:F5:F0:90:B8:7F:26:CD:A8 Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 19EF Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/L6HRD5E2mZEFshwg9fCQuH8mzag.roa Signing time: Wed 13 Mar 2024 01:21:12 +0000 ROA not before: Wed 13 Mar 2024 01:21:12 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 212237 IP address blocks: 2403:6380::/40 maxlen: 48 2403:6380::/44 maxlen: 48 2403:6380:10::/44 maxlen: 48 2403:6380:11::/48 maxlen: 48 2403:6380:12::/48 maxlen: 48 2403:6380:20::/44 maxlen: 48 2403:6380:30::/44 maxlen: 48 2403:6380:31::/48 maxlen: 48 2403:6380:32::/48 maxlen: 48 2403:6380:40::/44 maxlen: 48 2403:6380:50::/44 maxlen: 48 2403:6380:60::/44 maxlen: 48 2403:6380:70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 00:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6639 (0x19ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Mar 13 01:21:12 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=2FA1D10F9136999105B21C20F5F090B87F26CDA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0f:fe:e6:e2:07:8c:bc:38:aa:fe:5f:00:38: b8:5a:7c:78:07:e3:ae:0e:d4:a9:6e:36:b7:ab:fe: 60:97:0b:e4:c2:54:38:1f:64:86:d6:fe:d7:8d:f8: 01:3a:e5:55:d3:a8:ab:9d:7f:ea:a0:d0:52:fb:66: 39:bc:27:71:a1:38:cf:8a:5a:67:20:a7:09:57:18: e6:47:b2:08:6b:e6:7b:4d:c1:15:51:c0:bc:36:cd: de:89:5b:c3:42:22:6b:e3:0c:e3:19:98:7f:35:7d: af:e6:0a:4d:81:c1:b5:7a:3e:63:71:5c:28:92:87: c8:d7:5e:c9:ba:7b:cf:49:66:3c:08:2e:78:7a:58: 69:4f:94:a9:91:e2:25:bf:29:6b:66:3a:13:e0:45: 55:60:c0:fe:3e:26:c1:d1:76:c4:3c:6c:d5:bc:1e: ce:d6:fc:d5:2b:06:be:24:18:2d:f3:3c:60:0c:f2: 70:d1:11:10:c4:16:4b:16:93:3e:77:70:5b:57:f3: f8:ed:8c:98:3e:20:be:a1:cb:0e:eb:b2:d8:5e:d8: 35:e4:b8:9b:0f:22:e6:7d:6c:d4:f9:fd:5f:f8:85: 28:89:6f:60:d7:71:25:ca:e0:06:cd:6b:21:dc:6f: 37:c2:eb:1f:16:b3:7b:88:70:be:95:15:90:a8:88: 8f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A1:D1:0F:91:36:99:91:05:B2:1C:20:F5:F0:90:B8:7F:26:CD:A8 X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/L6HRD5E2mZEFshwg9fCQuH8mzag.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380::/40 Signature Algorithm: sha256WithRSAEncryption 16:7d:94:c3:55:cf:b3:c6:cc:a5:88:a1:fa:1c:d3:45:46:b4: 54:d6:47:5d:28:79:9a:4d:db:2b:38:44:18:84:58:b5:ba:03: 4d:0f:89:a2:e8:b4:75:27:d9:68:6b:bc:64:8f:09:99:b2:5e: 16:02:48:1d:a4:dc:16:d5:62:c9:ab:3b:93:4e:e5:7a:74:ae: 4b:b6:54:74:49:c6:d2:5c:db:18:8a:85:73:a0:50:38:34:26: ea:f1:2b:19:39:8d:fe:d3:5c:8e:05:d4:43:d2:bd:1f:86:52: ba:09:33:c2:08:e2:66:36:d7:83:ca:34:c6:6d:bd:84:5e:e6: 5a:29:e9:42:e1:ce:b5:a6:ec:a0:e5:67:c7:43:1a:ac:f9:be: 7b:22:5b:62:df:1e:8e:da:2d:47:54:d9:ca:c0:39:58:8c:06: f3:1c:f9:7a:7e:62:d1:12:10:e3:6c:9d:97:f5:5e:4b:45:5b: 6b:9e:22:53:c3:70:fb:ee:71:a9:6d:ad:0a:78:21:f8:0d:c2: e0:48:07:dd:69:8b:df:3c:f2:d6:06:f7:e8:0f:ad:3c:52:ea: 22:fd:1f:e5:25:ef:63:71:4d:8a:cb:de:ef:f6:39:fd:c7:fc: db:8f:a5:4e:32:03:8e:21:f6:ae:b7:ba:c4:7f:fd:6a:0f:94: 12:33:6f:78 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICGe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDAzMTMw MTIxMTJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDJGQTFEMTBGOTEzNjk5 OTEwNUIyMUMyMEY1RjA5MEI4N0YyNkNEQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkD/7m4geMvDiq/l8AOLhafHgH464O1KluNrer/mCXC+TCVDgf ZIbW/teN+AE65VXTqKudf+qg0FL7Zjm8J3GhOM+KWmcgpwlXGOZHsghr5ntNwRVR wLw2zd6JW8NCImvjDOMZmH81fa/mCk2BwbV6PmNxXCiSh8jXXsm6e89JZjwILnh6 WGlPlKmR4iW/KWtmOhPgRVVgwP4+JsHRdsQ8bNW8Hs7W/NUrBr4kGC3zPGAM8nDR ERDEFksWkz53cFtX8/jtjJg+IL6hyw7rsthe2DXkuJsPIuZ9bNT5/V/4hSiJb2DX cSXK4AbNayHcbzfC6x8Ws3uIcL6VFZCoiI+FAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUL6HRD5E2mZEFshwg9fCQuH8mzagwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvTDZIUkQ1RTJtWkVG c2h3ZzlmQ1F1SDhtemFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACQDY4AAMA0GCSqGSIb3DQEBCwUAA4IBAQAWfZTDVc+zxsyliKH6HNNFRrRU 1kddKHmaTdsrOEQYhFi1ugNND4mi6LR1J9loa7xkjwmZsl4WAkgdpNwW1WLJqzuT TuV6dK5LtlR0ScbSXNsYioVzoFA4NCbq8SsZOY3+01yOBdRD0r0fhlK6CTPCCOJm NteDyjTGbb2EXuZaKelC4c61puyg5WfHQxqs+b57Ilti3x6O2i1HVNnKwDlYjAbz HPl6fmLREhDjbJ2X9V5LRVtrniJTw3D77nGpba0KeCH4DcLgSAfdaYvfPPLWBvfo D608Uuoi/R/lJe9jcU2Ky97v9jn9x/zbj6VOMgOOIfaut7rEf/1qD5QSM294 -----END CERTIFICATE-----Generated at Thu May 2 22:32:12 2024 by rpki-client on console-ams.rpki-client.org