$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa File: 9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa (raw, json) Hash identifier: HI7bNEM2v6YnEaabTFCNifxaIefAPVp+TCEal4K6UEw= Subject key identifier: F6:0B:77:B0:EE:05:F1:50:20:09:A0:64:01:82:C0:47:AA:95:11:A6 Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 1D8C Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa Signing time: Thu 12 Sep 2024 11:20:03 +0000 ROA not before: Thu 12 Sep 2024 11:20:03 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 212237 IP address blocks: 2403:6380:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7564 (0x1d8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 12 11:20:03 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F60B77B0EE05F1502009A0640182C047AA9511A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:65:63:97:2e:20:d6:be:d0:02:37:d4:a7:00: 8a:db:a5:fb:f7:3d:c3:5a:bb:88:7c:c4:8d:f2:cb: 26:6e:c5:e5:37:2c:f0:a3:44:d0:34:76:df:9d:92: 96:dd:1b:f8:83:61:fe:d8:b2:33:33:86:0f:af:c2: a0:7b:9c:28:57:c5:45:8f:26:5c:9e:be:13:09:8e: 03:13:b2:4f:f7:1a:e0:8b:09:96:24:00:cc:da:c0: 37:ce:8f:97:81:41:47:81:ba:d3:56:70:d1:ab:8c: 96:90:33:40:15:af:f9:5e:0e:f9:2a:3e:cd:aa:ea: a0:3e:43:ac:71:eb:3e:9b:93:d4:ee:b5:db:4e:9f: 55:0c:8a:a8:57:e7:0f:87:35:97:91:ea:07:8f:83: 9b:7c:d7:d5:a9:9a:86:6d:0f:54:b8:f4:06:fe:2f: 5f:8c:46:58:09:86:7f:83:5e:63:d0:1e:2d:3c:e0: 88:42:bf:e0:da:cd:07:bb:5e:ed:45:63:e1:35:61: e6:4c:d0:9d:77:e6:48:1e:ec:42:89:db:d4:c3:f9: e8:f9:10:f9:9d:fc:29:11:21:56:3b:d5:e5:77:eb: ce:d4:d2:e4:1d:68:83:90:f1:37:d9:8f:b8:40:b3: eb:59:1b:21:37:c9:fc:d8:d2:4b:41:1c:64:74:ec: 30:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:0B:77:B0:EE:05:F1:50:20:09:A0:64:01:82:C0:47:AA:95:11:A6 X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:50::/44 Signature Algorithm: sha256WithRSAEncryption 20:a0:0b:2e:34:a1:87:2b:50:22:28:8c:de:43:15:12:24:65: ef:a8:90:49:0c:a0:c4:20:68:36:30:8f:d5:0f:3b:38:a2:52: e1:e6:50:aa:7e:da:c9:8a:36:40:b3:2c:4f:29:4a:e0:26:7d: f5:63:a8:ce:5d:81:42:3d:b4:4b:73:fb:07:81:5e:bf:ef:e1: 58:80:cc:47:fa:57:ba:01:19:27:58:a4:cf:09:af:32:d2:89: 51:5e:e6:24:bf:a3:b1:0f:e3:64:3c:e3:69:d8:d9:a5:6e:95: 6d:09:33:65:9c:df:8a:4f:82:b4:d4:85:b0:49:d4:d6:6a:51: 75:d0:a8:a5:cf:fe:3f:c9:3c:ce:2c:ce:1e:47:1e:1f:64:97: db:1b:7c:22:dd:04:34:c1:83:6c:8d:6e:ab:41:a6:56:89:74: ab:c6:07:96:c7:4c:18:60:08:bc:13:56:20:92:af:85:44:25: 01:9d:30:97:8d:4d:46:48:5f:0e:3c:49:18:b2:57:49:db:92: 1a:9b:fa:07:04:20:a0:9c:69:f5:76:f1:08:d3:72:82:46:3d: 64:5e:b1:7a:2c:52:45:25:06:e0:ac:b2:b0:cc:cf:a9:3e:a4: 83:29:7c:9c:15:93:64:54:a6:19:cc:cb:e2:c6:09:7f:16:92: de:6a:c8:bf -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICHYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDA5MTIx MTIwMDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY2MEI3N0IwRUUwNUYx NTAyMDA5QTA2NDAxODJDMDQ3QUE5NTExQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTZWOXLiDWvtACN9SnAIrbpfv3PcNau4h8xI3yyyZuxeU3LPCj RNA0dt+dkpbdG/iDYf7YsjMzhg+vwqB7nChXxUWPJlyevhMJjgMTsk/3GuCLCZYk AMzawDfOj5eBQUeButNWcNGrjJaQM0AVr/leDvkqPs2q6qA+Q6xx6z6bk9TutdtO n1UMiqhX5w+HNZeR6gePg5t819WpmoZtD1S49Ab+L1+MRlgJhn+DXmPQHi084IhC v+DazQe7Xu1FY+E1YeZM0J135kge7EKJ29TD+ej5EPmd/CkRIVY71eV3687U0uQd aIOQ8TfZj7hAs+tZGyE3yfzY0ktBHGR07DB7AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU9gt3sO4F8VAgCaBkAYLAR6qVEaYwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvOWd0M3NPNEY4VkFn Q2FCa0FZTEFSNnFWRWFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQDY4AAUDANBgkqhkiG9w0BAQsFAAOCAQEAIKALLjShhytQIiiM3kMVEiRl 76iQSQygxCBoNjCP1Q87OKJS4eZQqn7ayYo2QLMsTylK4CZ99WOozl2BQj20S3P7 B4Fev+/hWIDMR/pXugEZJ1ikzwmvMtKJUV7mJL+jsQ/jZDzjadjZpW6VbQkzZZzf ik+CtNSFsEnU1mpRddCopc/+P8k8zizOHkceH2SX2xt8It0ENMGDbI1uq0GmVol0 q8YHlsdMGGAIvBNWIJKvhUQlAZ0wl41NRkhfDjxJGLJXSduSGpv6BwQgoJxp9Xbx CNNygkY9ZF6xeixSRSUG4KyysMzPqT6kgyl8nBWTZFSmGczL4sYJfxaS3mrIvw== -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:51 2024 by rpki-client on console-ams.rpki-client.org