$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/6Emp2W8u59WS5JboZYAavTJkNBU.roa File: 6Emp2W8u59WS5JboZYAavTJkNBU.roa (raw, json) Hash identifier: lcC0WHij2YeKvOGeR45MPCTYcjr6i8wHCTLhMFVHfsw= Subject key identifier: E8:49:A9:D9:6F:2E:E7:D5:92:E4:96:E8:65:80:1A:BD:32:64:34:15 Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 1D86 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/6Emp2W8u59WS5JboZYAavTJkNBU.roa Signing time: Thu 12 Sep 2024 11:20:01 +0000 ROA not before: Thu 12 Sep 2024 11:20:01 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 212237 IP address blocks: 2403:6380:60::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7558 (0x1d86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 12 11:20:01 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=E849A9D96F2EE7D592E496E865801ABD32643415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:4d:fe:7c:e0:4a:8d:1f:d5:85:42:99:50: 70:79:df:d5:14:38:e3:82:aa:0e:bb:82:02:31:d9: 36:85:b4:ca:3e:e8:48:da:ed:43:1a:53:ff:90:a2: 9a:d6:73:d4:2c:cd:b2:46:de:77:91:20:68:37:79: de:c6:47:d8:77:09:b4:e1:3d:80:36:de:50:9e:4d: d4:12:2d:08:64:29:47:2b:ea:81:21:a8:15:a9:9e: ad:75:00:dc:34:2c:09:c5:0a:8b:ca:b4:5c:63:54: 01:bf:16:32:a9:da:c0:41:2b:d1:e9:a7:44:fc:59: 6e:20:bd:e6:ff:28:68:9e:87:fd:34:19:15:3d:9a: d7:27:ca:9c:85:05:c9:da:35:0c:23:5c:1e:cb:d7: 67:f6:93:e8:15:4a:b4:3d:81:ff:49:3a:87:06:07: 45:e7:9c:61:45:08:d3:69:57:fa:42:cb:00:26:3b: 1b:e7:35:1b:69:7a:5c:51:0d:2a:8f:7b:e4:4d:26: 5a:a2:33:24:46:9a:00:0c:46:0c:78:83:4d:30:f7: 38:2c:f5:02:d5:1d:31:c3:d6:07:84:14:29:84:ab: 62:67:c7:bc:ad:b5:56:ad:1c:03:68:7e:d6:fd:1a: 67:fb:59:9e:2e:d3:3b:33:2e:85:01:30:a7:84:d8: 16:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:49:A9:D9:6F:2E:E7:D5:92:E4:96:E8:65:80:1A:BD:32:64:34:15 X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/6Emp2W8u59WS5JboZYAavTJkNBU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:60::/44 Signature Algorithm: sha256WithRSAEncryption b0:18:5e:83:0a:22:8e:e8:c1:56:d7:cc:c9:ab:9b:42:b2:3e: cc:55:87:44:bf:cd:b8:6a:79:e5:8b:7e:03:8b:30:49:ff:bb: 4a:cb:57:d3:39:24:e5:5f:e3:47:e7:85:dd:a2:a9:48:36:cc: 17:9a:42:65:d0:9b:bf:b8:9a:07:4e:c8:00:78:82:ad:84:2d: 7a:26:cd:ac:5d:34:bc:e7:bc:33:d4:70:4b:b4:d7:07:f0:e0: 3f:72:94:b7:0c:ac:8b:97:eb:70:d8:1f:c7:69:42:74:af:2a: f3:e6:2b:de:ef:9c:1e:b9:10:b3:18:6b:52:eb:ee:c9:7b:8b: e0:35:f5:db:98:1a:ef:ab:73:ec:17:48:12:f7:35:a9:d8:41: 25:d2:d9:92:a0:9d:e0:8c:8d:36:11:9d:f8:e8:8f:e7:f9:fa: f7:3f:95:35:48:3f:82:76:0f:7b:03:b6:96:27:4e:64:ac:be: 4d:bf:4a:97:18:1b:fb:14:99:f2:ca:31:38:f9:ae:d0:b6:b0: ec:a2:8b:aa:41:7b:83:da:b6:32:82:c0:3b:7e:48:e4:fd:b5: 1a:21:57:7a:98:cd:66:a0:74:4e:1d:c5:d5:98:7f:38:e4:51: b8:0b:70:bb:4d:82:c3:f1:61:3e:23:7f:a5:b2:79:2f:c2:05: 4d:c5:8a:4e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICHYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDA5MTIx MTIwMDFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEU4NDlBOUQ5NkYyRUU3 RDU5MkU0OTZFODY1ODAxQUJEMzI2NDM0MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7xE3+fOBKjR/VhUKZUHB539UUOOOCqg67ggIx2TaFtMo+6Eja 7UMaU/+QoprWc9QszbJG3neRIGg3ed7GR9h3CbThPYA23lCeTdQSLQhkKUcr6oEh qBWpnq11ANw0LAnFCovKtFxjVAG/FjKp2sBBK9Hpp0T8WW4gveb/KGieh/00GRU9 mtcnypyFBcnaNQwjXB7L12f2k+gVSrQ9gf9JOocGB0XnnGFFCNNpV/pCywAmOxvn NRtpelxRDSqPe+RNJlqiMyRGmgAMRgx4g00w9zgs9QLVHTHD1geEFCmEq2Jnx7yt tVatHANoftb9Gmf7WZ4u0zszLoUBMKeE2BbxAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU6Emp2W8u59WS5JboZYAavTJkNBUwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvNkVtcDJXOHU1OVdT NUpib1pZQWF2VEprTkJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQDY4AAYDANBgkqhkiG9w0BAQsFAAOCAQEAsBhegwoijujBVtfMyaubQrI+ zFWHRL/NuGp55Yt+A4swSf+7SstX0zkk5V/jR+eF3aKpSDbMF5pCZdCbv7iaB07I AHiCrYQteibNrF00vOe8M9RwS7TXB/DgP3KUtwysi5frcNgfx2lCdK8q8+Yr3u+c HrkQsxhrUuvuyXuL4DX125ga76tz7BdIEvc1qdhBJdLZkqCd4IyNNhGd+OiP5/n6 9z+VNUg/gnYPewO2lidOZKy+Tb9Klxgb+xSZ8soxOPmu0Law7KKLqkF7g9q2MoLA O35I5P21GiFXepjNZqB0Th3F1Zh/OORRuAtwu02Cw/FhPiN/pbJ5L8IFTcWKTg== -----END CERTIFICATE-----Generated at Fri Nov 22 13:38:12 2024 by rpki-client on console-fra.rpki-client.org