$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gyhefr517RfAOABu_cie3qCUzI.roa File: 9gyhefr517RfAOABu_cie3qCUzI.roa (raw, json) Hash identifier: 6sobxHCNKmaGVVt7YwHG1OcydeZhTaYgDzswsVljJzk= Subject key identifier: F6:0C:A1:79:FA:F9:D7:B4:5F:00:E0:01:BB:F7:22:7B:7A:82:53:32 Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 1D95 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gyhefr517RfAOABu_cie3qCUzI.roa Signing time: Thu 12 Sep 2024 11:20:07 +0000 ROA not before: Thu 12 Sep 2024 11:20:07 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 212237 IP address blocks: 2403:6380:70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7573 (0x1d95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 12 11:20:07 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F60CA179FAF9D7B45F00E001BBF7227B7A825332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:09:bd:80:34:ec:cd:c0:6b:02:93:6c:75:d6: ac:85:3c:f0:60:26:69:58:56:1e:44:3f:13:f4:12: 3d:3e:94:f2:7f:bf:e0:9a:2e:4e:af:9c:e4:ce:c7: e3:bc:7b:dd:85:99:fe:e6:75:c9:e7:be:6f:68:d0: f1:b8:a4:0b:33:e9:a6:9b:f6:ba:5d:d8:a9:a6:8e: 55:bf:cb:2d:29:6d:85:14:81:62:d1:e3:aa:6d:4e: 95:ae:a2:ac:c5:09:fd:f0:03:09:97:ab:65:af:06: 26:ef:41:bf:9a:72:d2:34:aa:5b:33:4c:7b:ab:44: 5d:b3:d2:1b:d4:35:b9:9f:95:d9:5c:5f:a5:ee:aa: 30:52:3f:a9:c1:43:3f:59:9b:21:b9:8f:88:d5:88: 07:44:9f:4e:18:c1:67:3f:54:14:86:ff:4c:1f:de: 79:f4:09:c4:cc:c9:f9:e2:93:fe:c9:40:46:9e:5b: 38:94:fe:46:71:ad:fe:88:ac:21:02:4a:61:18:fd: 77:f5:43:ed:a7:c7:5d:8c:8e:03:56:71:8f:1e:71: ad:3e:e1:94:e6:49:2d:6f:8e:6f:e5:13:99:ae:a1: a8:52:cc:a3:d0:a4:1e:2e:b5:b1:d1:d3:2d:88:5b: df:74:fe:89:32:98:e1:79:ee:34:03:a8:30:2a:a3: 63:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:0C:A1:79:FA:F9:D7:B4:5F:00:E0:01:BB:F7:22:7B:7A:82:53:32 X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gyhefr517RfAOABu_cie3qCUzI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:70::/44 Signature Algorithm: sha256WithRSAEncryption c0:a5:b8:41:91:d3:3e:af:8c:20:59:95:ae:83:92:e9:fc:c4: 9c:75:f8:70:9d:7a:07:cb:a4:34:91:97:bf:31:9b:87:d5:2d: f6:8f:5d:f4:23:47:a0:e2:4c:88:c6:1b:1d:cb:23:5c:e8:8a: 86:b6:92:9c:ef:51:e2:63:46:72:fa:c4:2c:83:82:2d:f6:1b: e3:cf:7e:42:a0:1f:4c:95:e3:6f:0a:fa:0e:0c:e1:4f:df:74: 99:14:99:41:28:ce:5f:0b:9e:98:1f:52:41:76:81:03:5d:f9: 91:49:ac:bf:77:d8:5b:f6:9c:3c:87:e2:04:56:8e:be:34:76: ee:92:90:92:ce:56:31:1d:13:13:c2:20:8e:1c:68:68:8a:7f: 0a:73:69:c2:85:d3:47:5a:15:a7:e9:c8:9a:d8:c6:cc:01:49: 61:d2:6e:0a:03:d2:06:01:59:de:51:1e:27:f7:ae:44:5a:48: 75:af:58:29:d0:88:5e:b5:9d:93:bb:27:3d:00:e2:bd:49:f2: eb:4e:50:7e:a1:ef:72:31:2b:8e:98:1d:c6:38:2b:10:c8:f8: c9:e2:30:f4:97:3b:42:90:51:6e:14:cb:50:ba:c4:80:42:ca: c6:4b:e5:ec:57:f8:fb:7e:f2:16:c6:f9:4b:e8:ed:9f:6f:be: 1e:e1:af:57 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICHZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDA5MTIx MTIwMDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY2MENBMTc5RkFGOUQ3 QjQ1RjAwRTAwMUJCRjcyMjdCN0E4MjUzMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDCb2ANOzNwGsCk2x11qyFPPBgJmlYVh5EPxP0Ej0+lPJ/v+Ca Lk6vnOTOx+O8e92Fmf7mdcnnvm9o0PG4pAsz6aab9rpd2KmmjlW/yy0pbYUUgWLR 46ptTpWuoqzFCf3wAwmXq2WvBibvQb+actI0qlszTHurRF2z0hvUNbmfldlcX6Xu qjBSP6nBQz9ZmyG5j4jViAdEn04YwWc/VBSG/0wf3nn0CcTMyfnik/7JQEaeWziU /kZxrf6IrCECSmEY/Xf1Q+2nx12MjgNWcY8eca0+4ZTmSS1vjm/lE5muoahSzKPQ pB4utbHR0y2IW990/okymOF57jQDqDAqo2NjAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU9gyhefr517RfAOABu/cie3qCUzIwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvOWd5aGVmcjUxN1Jm QU9BQnVfY2llM3FDVXpJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQDY4AAcDANBgkqhkiG9w0BAQsFAAOCAQEAwKW4QZHTPq+MIFmVroOS6fzE nHX4cJ16B8ukNJGXvzGbh9Ut9o9d9CNHoOJMiMYbHcsjXOiKhraSnO9R4mNGcvrE LIOCLfYb489+QqAfTJXjbwr6DgzhT990mRSZQSjOXwuemB9SQXaBA135kUmsv3fY W/acPIfiBFaOvjR27pKQks5WMR0TE8IgjhxoaIp/CnNpwoXTR1oVp+nImtjGzAFJ YdJuCgPSBgFZ3lEeJ/euRFpIda9YKdCIXrWdk7snPQDivUny605QfqHvcjErjpgd xjgrEMj4yeIw9Jc7QpBRbhTLULrEgELKxkvl7Ff4+37yFsb5S+jtn2++HuGvVw== -----END CERTIFICATE-----Generated at Fri Nov 22 13:38:12 2024 by rpki-client on console-fra.rpki-client.org