$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/7x2nclPCMO8BeUq4S_PlgUS4DBg.roa File: 7x2nclPCMO8BeUq4S_PlgUS4DBg.roa (raw, json) Hash identifier: g0T92moQN5eb21VLNeF6X7atiXQvLL6ieycRhWgQCrs= Subject key identifier: EF:1D:A7:72:53:C2:30:EF:01:79:4A:B8:4B:F3:E5:81:44:B8:0C:18 Certificate issuer: /CN=9F2B6854BE70947F0785FF966203BB650BDD1682 Certificate serial: 0E2A Authority key identifier: 9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/7x2nclPCMO8BeUq4S_PlgUS4DBg.roa Signing time: Fri 24 May 2024 02:25:19 +0000 ROA not before: Fri 24 May 2024 02:25:19 +0000 ROA not after: Sat 10 Aug 2024 07:41:13 +0000 asID: 4847 IP address blocks: 2403:8080:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Jun 2024 14:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3626 (0xe2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2B6854BE70947F0785FF966203BB650BDD1682 Validity Not Before: May 24 02:25:19 2024 GMT Not After : Aug 10 07:41:13 2024 GMT Subject: CN=EF1DA77253C230EF01794AB84BF3E58144B80C18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:65:d1:d4:c2:fc:31:a3:76:cc:3c:cc:1a:42: 78:d8:a5:80:68:f2:1e:84:dc:f4:5f:5c:d0:3f:52: 2e:3d:e2:c5:e3:da:07:0f:6c:c2:b6:73:30:ec:22: 15:21:3a:be:03:97:e6:c1:53:7a:11:c9:26:df:9a: 27:41:72:84:c7:82:22:79:cd:dc:1d:8d:33:88:d8: 4c:67:ed:32:ac:20:65:6b:59:e1:49:5e:21:95:1b: 88:4c:78:97:d3:e3:25:c4:64:6a:6b:df:d8:22:fb: 3f:3d:21:b1:2e:a1:89:e2:c3:6e:54:c2:34:02:59: 03:90:5a:57:1f:94:46:b6:16:95:01:33:fa:23:d4: 0d:6b:b3:d8:7c:b8:f3:ae:62:64:9b:df:c9:de:07: b1:68:3f:fb:18:a7:05:aa:f7:b7:2a:1f:6f:0b:09: 5b:c3:e7:e4:a6:60:18:17:9d:87:00:5d:93:0e:38: 0a:eb:99:44:b8:01:88:51:ea:b9:f9:7e:50:ee:70: bd:12:33:97:41:cb:c2:57:e0:5c:43:ca:cd:7b:3f: 3c:aa:0b:26:05:62:b0:06:49:67:d3:a4:59:b3:e3: a4:ef:fe:93:c4:75:f6:45:c2:79:58:3e:42:f2:35: 6b:3b:8e:ff:af:ff:95:27:8b:37:30:1e:f1:ac:20: 39:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:1D:A7:72:53:C2:30:EF:01:79:4A:B8:4B:F3:E5:81:44:B8:0C:18 X509v3 Authority Key Identifier: keyid:9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/7x2nclPCMO8BeUq4S_PlgUS4DBg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8080:101::/48 Signature Algorithm: sha256WithRSAEncryption 76:80:ef:83:35:96:09:b0:ae:c3:8e:2d:a2:30:13:c4:9c:56: 1f:50:56:ae:47:30:7d:55:b4:b7:af:5f:ab:60:1e:a7:d0:62: 0e:cb:c8:f6:fd:00:71:7d:98:c1:ab:39:da:5d:4b:ed:af:73: cb:14:56:96:b6:53:c2:ed:c3:be:11:2b:3b:5d:52:01:fc:e8: 01:41:8b:3f:a6:00:cb:fc:ec:c0:ef:f0:e4:b5:38:2e:2e:66: 12:9c:04:f2:a1:a5:35:69:76:c0:8e:e1:df:61:09:e1:fd:b9: 97:80:cf:ba:d4:36:8d:ef:93:cb:ba:44:ea:b7:aa:b9:db:70: a5:9e:83:3f:cd:d8:b3:af:64:67:e7:20:a2:39:3e:ad:4f:eb: 64:bb:5f:1b:96:a9:ff:af:6e:5c:17:4d:21:69:dd:99:54:6c: 0f:28:d8:8f:90:28:4f:72:ee:78:b8:1a:1f:87:b6:6d:66:c9: e8:5d:76:8f:2d:25:2e:e8:8d:68:da:58:9d:0a:a3:82:ef:2b: 94:d7:d6:0b:b8:2a:0c:7a:c5:86:1d:31:b0:95:23:3a:9a:3d: e3:e8:71:76:b8:a5:ab:b5:1a:fa:ea:1b:51:45:17:f7:92:b1: 09:c5:38:c8:34:7a:f0:b0:8d:9e:6f:ae:53:71:8e:cb:36:2c: 5e:d3:68:78 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDiowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUYy QjY4NTRCRTcwOTQ3RjA3ODVGRjk2NjIwM0JCNjUwQkREMTY4MjAeFw0yNDA1MjQw MjI1MTlaFw0yNDA4MTAwNzQxMTNaMDMxMTAvBgNVBAMTKEVGMURBNzcyNTNDMjMw RUYwMTc5NEFCODRCRjNFNTgxNDRCODBDMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDZdHUwvwxo3bMPMwaQnjYpYBo8h6E3PRfXNA/Ui494sXj2gcP bMK2czDsIhUhOr4Dl+bBU3oRySbfmidBcoTHgiJ5zdwdjTOI2Exn7TKsIGVrWeFJ XiGVG4hMeJfT4yXEZGpr39gi+z89IbEuoYniw25UwjQCWQOQWlcflEa2FpUBM/oj 1A1rs9h8uPOuYmSb38neB7FoP/sYpwWq97cqH28LCVvD5+SmYBgXnYcAXZMOOArr mUS4AYhR6rn5flDucL0SM5dBy8JX4FxDys17PzyqCyYFYrAGSWfTpFmz46Tv/pPE dfZFwnlYPkLyNWs7jv+v/5UnizcwHvGsIDmfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU7x2nclPCMO8BeUq4S/PlgUS4DBgwHwYDVR0jBBgwFoAUnytoVL5wlH8Hhf+W YgO7ZQvdFoIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv bnl0b1ZMNXdsSDhIaGYtV1lnTzdaUXZkRm9JLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9ueXRvVkw1d2xIOEhoZi1XWWdPN1pRdmRGb0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy83eDJuY2xQQ01POEJlVXE0 U19QbGdVUzREQmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA JAOAgAEBMA0GCSqGSIb3DQEBCwUAA4IBAQB2gO+DNZYJsK7Dji2iMBPEnFYfUFau RzB9VbS3r1+rYB6n0GIOy8j2/QBxfZjBqznaXUvtr3PLFFaWtlPC7cO+ESs7XVIB /OgBQYs/pgDL/OzA7/DktTguLmYSnATyoaU1aXbAjuHfYQnh/bmXgM+61DaN75PL ukTqt6q523ClnoM/zdizr2Rn5yCiOT6tT+tku18blqn/r25cF00had2ZVGwPKNiP kChPcu54uBofh7ZtZsnoXXaPLSUu6I1o2lidCqOC7yuU19YLuCoMesWGHTGwlSM6 mj3j6HF2uKWrtRr66htRRRf3krEJxTjINHrwsI2eb65TcY7LNixe02h4 -----END CERTIFICATE-----Generated at Thu Jun 27 14:06:44 2024 by rpki-client on console-ams.rpki-client.org