$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/94CwWri0yPzvZiKuy08Gh0fKQEE.roa File: 94CwWri0yPzvZiKuy08Gh0fKQEE.roa (raw, json) Hash identifier: OtmuQNnazs32BPcOCcYf1DeURDXyCXfHuDP9PzznSkk= Subject key identifier: F7:80:B0:5A:B8:B4:C8:FC:EF:66:22:AE:CB:4F:06:87:47:CA:40:41 Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 0638 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/94CwWri0yPzvZiKuy08Gh0fKQEE.roa Signing time: Fri 23 Aug 2024 14:39:17 +0000 ROA not before: Fri 23 Aug 2024 14:39:17 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 2914 IP address blocks: 58.66.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 Nov 2024 23:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Aug 23 14:39:17 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F780B05AB8B4C8FCEF6622AECB4F068747CA4041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:47:e7:6d:16:bc:2e:7d:db:09:f6:a8:a8:af: 50:9b:c8:55:a6:4b:36:a4:60:c6:f7:e8:50:57:53: f0:d9:23:c9:51:23:ac:aa:e7:2d:d9:a6:49:86:49: ed:ae:0b:49:ca:0e:37:2e:96:e7:a3:31:96:56:33: 7d:44:1d:ee:4e:4c:30:0c:be:f8:a8:76:8f:37:7c: 1f:73:03:13:1a:91:57:94:2d:4c:84:37:27:5d:bd: 2b:73:df:6d:44:62:ec:73:fc:f3:c3:58:d8:ec:32: 19:80:84:62:bc:b4:c9:8a:6d:4e:e8:69:b6:8c:81: 7d:e8:ad:ef:0f:98:5e:6f:a6:b3:10:6a:72:03:4e: ac:c4:cf:15:0d:73:7b:ac:7b:f1:92:47:3a:f5:85: 56:f9:24:d5:99:4c:24:f6:4c:c2:e4:ce:68:d1:69: 95:6a:1b:f6:7c:17:0f:cb:3a:d7:23:9b:5d:0b:b9: 02:54:11:d9:4a:d0:ad:de:d2:f4:6d:88:96:4b:0d: 4d:4a:a8:08:4c:36:b6:15:2a:5e:c0:d2:1b:f9:7f: 8c:0a:5d:49:e5:52:4a:05:e3:31:12:31:93:d8:96: 74:22:d0:e0:d8:9e:47:9d:ba:34:a8:75:33:b8:45: f8:88:fd:83:5f:ab:df:f1:0d:c0:3e:6d:36:b7:bf: 19:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:80:B0:5A:B8:B4:C8:FC:EF:66:22:AE:CB:4F:06:87:47:CA:40:41 X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/94CwWri0yPzvZiKuy08Gh0fKQEE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.66.80.0/21 Signature Algorithm: sha256WithRSAEncryption 71:e9:c4:c7:57:1b:8c:7d:28:77:20:87:fc:13:00:52:c4:a2: 0a:24:df:c0:22:19:29:80:ab:85:d6:bc:79:28:3c:ae:5a:5a: 4d:05:99:fb:6b:b2:0e:8a:ec:ea:b3:8c:2c:5d:d0:dd:25:88: 9e:c6:30:dd:6b:18:37:17:b2:4d:0f:86:f8:3d:8f:fa:78:9c: a1:84:2d:8b:3a:01:d4:3c:9e:43:94:aa:74:50:37:43:84:d6: a3:5c:07:e6:91:01:78:27:77:13:ae:98:f1:93:8b:0b:9d:8c: 9e:0f:1f:e1:37:ae:3d:94:3c:0f:46:e2:4d:69:62:2d:85:79: 5b:d3:a7:b7:88:72:5e:e3:11:e0:bd:14:4e:d0:b0:81:43:bc: d3:8b:f3:ea:39:65:bd:61:68:be:16:f3:6c:d8:e4:36:62:61: 9d:49:0e:4c:6f:aa:57:62:3c:07:09:93:d8:1e:91:8d:68:69: bb:ac:bd:a0:af:ba:21:85:81:ef:53:f1:24:de:48:48:83:38: 52:cd:4e:88:a2:f8:e7:cb:d2:3f:0c:05:5e:be:78:50:e6:b3: 81:1b:89:32:6b:b5:88:50:d8:09:4b:f0:21:b7:8f:b5:a3:31: 9f:93:87:91:c3:ad:8d:ed:b8:5a:94:87:48:56:35:fc:6e:ba: 23:00:11:83 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDA4MjMx NDM5MTdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY3ODBCMDVBQjhCNEM4 RkNFRjY2MjJBRUNCNEYwNjg3NDdDQTQwNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdR+dtFrwufdsJ9qior1CbyFWmSzakYMb36FBXU/DZI8lRI6yq 5y3ZpkmGSe2uC0nKDjculuejMZZWM31EHe5OTDAMvviodo83fB9zAxMakVeULUyE NyddvStz321EYuxz/PPDWNjsMhmAhGK8tMmKbU7oabaMgX3ore8PmF5vprMQanID TqzEzxUNc3use/GSRzr1hVb5JNWZTCT2TMLkzmjRaZVqG/Z8Fw/LOtcjm10LuQJU EdlK0K3e0vRtiJZLDU1KqAhMNrYVKl7A0hv5f4wKXUnlUkoF4zESMZPYlnQi0ODY nkedujSodTO4RfiI/YNfq9/xDcA+bTa3vxn9AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU94CwWri0yPzvZiKuy08Gh0fKQEEwHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvOTRDd1dyaTB5UHp2WmlLdXkw OEdoMGZLUUVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzpC UDANBgkqhkiG9w0BAQsFAAOCAQEAcenEx1cbjH0odyCH/BMAUsSiCiTfwCIZKYCr hda8eSg8rlpaTQWZ+2uyDors6rOMLF3Q3SWInsYw3WsYNxeyTQ+G+D2P+nicoYQt izoB1DyeQ5SqdFA3Q4TWo1wH5pEBeCd3E66Y8ZOLC52Mng8f4TeuPZQ8D0biTWli LYV5W9Ont4hyXuMR4L0UTtCwgUO804vz6jllvWFovhbzbNjkNmJhnUkOTG+qV2I8 BwmT2B6RjWhpu6y9oK+6IYWB71PxJN5ISIM4Us1OiKL458vSPwwFXr54UOazgRuJ Mmu1iFDYCUvwIbePtaMxn5OHkcOtje24WpSHSFY1/G66IwARgw== -----END CERTIFICATE-----Generated at Thu Nov 21 23:43:05 2024 by rpki-client on console-ams.rpki-client.org