$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/49Y06P6mO_0cONNfsOUaWXQWNHQ.roa File: 49Y06P6mO_0cONNfsOUaWXQWNHQ.roa (raw, json) Hash identifier: v7Ahc7BpfLkfI0PHrXW+ecXVmeWtQwsQ8fg23R7iEO8= Subject key identifier: E3:D6:34:E8:FE:A6:3B:FD:1C:38:D3:5F:B0:E5:1A:59:74:16:34:74 Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 1D93 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/49Y06P6mO_0cONNfsOUaWXQWNHQ.roa Signing time: Thu 12 Sep 2024 11:20:06 +0000 ROA not before: Thu 12 Sep 2024 11:20:06 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 139648 IP address blocks: 103.244.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7571 (0x1d93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 12 11:20:06 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=E3D634E8FEA63BFD1C38D35FB0E51A5974163474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:17:c0:0e:2a:a7:79:25:73:39:93:83:22:c6: 83:dc:c2:a6:87:db:38:26:c4:bc:a3:42:e8:9a:82: de:93:35:81:7e:56:e6:34:8b:6a:ff:9c:4c:bc:79: bb:42:91:c9:1f:8d:94:6b:9d:2b:ea:fa:98:4b:fa: f5:33:3e:5a:02:be:a1:b7:61:90:be:0b:95:53:d0: 6d:b3:08:b9:9a:3c:fc:22:e3:0f:b7:83:52:39:da: ca:9d:a5:40:34:be:42:73:99:01:99:fa:97:cb:ed: cc:8f:1e:b9:16:6e:4c:c2:db:25:ba:e5:96:54:c2: 07:fa:da:a1:fb:1b:88:98:b6:12:bc:2e:35:96:66: f3:7d:20:90:ce:1a:a8:b2:c7:26:0e:9e:66:9b:15: bb:ca:68:b6:73:4b:f8:fb:19:95:0c:6f:68:55:6c: 1a:ce:89:02:a6:36:6b:e5:e2:e2:20:9d:90:b8:62: ac:6f:7d:82:e1:40:ec:84:30:52:71:f2:58:96:d3: fe:10:f4:36:6b:a6:21:c7:b7:8d:84:4d:f4:82:ce: a7:54:d5:7c:64:3f:01:0a:26:ec:8f:89:c7:77:94: 52:9b:ee:e9:c2:97:7b:8a:c7:a8:31:bb:32:a1:5e: 89:48:01:fb:bb:20:57:60:fa:94:25:21:b6:a3:8b: 97:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D6:34:E8:FE:A6:3B:FD:1C:38:D3:5F:B0:E5:1A:59:74:16:34:74 X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/49Y06P6mO_0cONNfsOUaWXQWNHQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.244.119.0/24 Signature Algorithm: sha256WithRSAEncryption 48:32:c8:e9:6b:3d:b8:13:36:2b:99:31:5a:c7:a0:09:34:1a: 3b:90:04:26:2f:f5:27:25:b5:26:97:4e:58:8b:ce:ee:98:d2: ba:d7:78:f8:7a:18:71:f8:73:69:90:9d:5c:95:29:cd:0a:df: 27:fb:13:84:a7:d6:5d:63:3e:d7:a9:e2:a2:d1:f9:71:55:37: fd:6a:3e:8c:e3:65:d2:1b:36:b0:b5:99:77:6e:27:d0:8d:76: 01:56:80:9f:a9:27:3b:e7:8b:58:b1:9e:e9:a0:60:fd:a7:48: 1b:9b:6c:dc:e0:e5:ed:95:db:4a:05:d1:dc:1f:d1:89:cb:86: 10:c2:6c:52:59:d8:81:ba:e0:c3:74:0e:f9:e3:ba:05:68:59: 53:2f:db:a6:b5:88:c8:41:79:14:54:87:85:94:cc:c9:27:bd: c0:57:f6:9f:fe:c4:b6:43:7d:1e:68:8a:69:8f:3c:53:b5:2d: 0f:32:a0:4d:3c:dc:cc:be:31:13:b4:d8:5f:83:b0:4e:ab:2b: 84:29:49:86:c7:37:a9:39:2a:98:12:99:a9:1d:c1:ed:59:c4: eb:d6:15:ab:cf:9a:30:41:97:aa:28:29:04:ab:28:7c:a4:cf: 2b:32:01:0e:85:db:cf:91:fa:b8:e5:07:2a:f8:cc:8a:98:b1: 59:30:b7:b1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDA5MTIx MTIwMDZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEUzRDYzNEU4RkVBNjNC RkQxQzM4RDM1RkIwRTUxQTU5NzQxNjM0NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZF8AOKqd5JXM5k4MixoPcwqaH2zgmxLyjQuiagt6TNYF+VuY0 i2r/nEy8ebtCkckfjZRrnSvq+phL+vUzPloCvqG3YZC+C5VT0G2zCLmaPPwi4w+3 g1I52sqdpUA0vkJzmQGZ+pfL7cyPHrkWbkzC2yW65ZZUwgf62qH7G4iYthK8LjWW ZvN9IJDOGqiyxyYOnmabFbvKaLZzS/j7GZUMb2hVbBrOiQKmNmvl4uIgnZC4Yqxv fYLhQOyEMFJx8liW0/4Q9DZrpiHHt42ETfSCzqdU1XxkPwEKJuyPicd3lFKb7unC l3uKx6gxuzKhXolIAfu7IFdg+pQlIbaji5fpAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU49Y06P6mO/0cONNfsOUaWXQWNHQwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvNDlZMDZQNm1PXzBj T05OZnNPVWFXWFFXTkhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGf0dzANBgkqhkiG9w0BAQsFAAOCAQEASDLI6Ws9uBM2K5kxWsegCTQaO5AE Ji/1JyW1JpdOWIvO7pjSutd4+HoYcfhzaZCdXJUpzQrfJ/sThKfWXWM+16niotH5 cVU3/Wo+jONl0hs2sLWZd24n0I12AVaAn6knO+eLWLGe6aBg/adIG5ts3ODl7ZXb SgXR3B/RicuGEMJsUlnYgbrgw3QO+eO6BWhZUy/bprWIyEF5FFSHhZTMySe9wFf2 n/7EtkN9HmiKaY88U7UtDzKgTTzczL4xE7TYX4OwTqsrhClJhsc3qTkqmBKZqR3B 7VnE69YVq8+aMEGXqigpBKsofKTPKzIBDoXbz5H6uOUHKvjMipixWTC3sQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:51 2024 by rpki-client on console-ams.rpki-client.org