$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/FCtRjJjsQGIsoNO2UFr_8M1AHBk.roa File: FCtRjJjsQGIsoNO2UFr_8M1AHBk.roa (raw, json) Hash identifier: BZNx/ZT2DCXGum/LQnLwUMvoYEJFjCYVIoVWWfszF7o= Subject key identifier: 14:2B:51:8C:98:EC:40:62:2C:A0:D3:B6:50:5A:FF:F0:CD:40:1C:19 Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 1D88 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/FCtRjJjsQGIsoNO2UFr_8M1AHBk.roa Signing time: Thu 12 Sep 2024 11:20:02 +0000 ROA not before: Thu 12 Sep 2024 11:20:02 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 212237 IP address blocks: 2403:6380:30::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7560 (0x1d88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 12 11:20:02 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=142B518C98EC40622CA0D3B6505AFFF0CD401C19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:e0:b5:1a:fa:35:db:28:44:87:dc:6a:b1: fb:69:68:ff:14:01:d8:5a:4d:cf:46:50:dc:5a:c8: 8a:f5:ee:52:80:90:a2:f3:7a:22:ba:e0:25:3f:ad: 60:17:e2:f1:a9:be:64:21:fc:00:b1:c4:3a:7b:b6: a7:99:28:4c:b9:8e:14:b8:14:ac:ae:75:a0:a9:bf: fe:00:2f:e9:4f:12:c0:4e:ae:97:57:0a:ba:25:bc: 47:7c:96:e1:90:27:fb:cd:a7:ba:19:c5:c6:94:3b: 1e:db:74:83:1f:50:f9:16:b1:fc:cf:7d:a3:72:35: 92:ff:20:d8:73:d2:4d:d7:b5:f0:5c:03:1c:d5:ae: 0a:2a:21:04:97:db:76:4e:5d:f8:75:f7:1c:13:dc: a7:2a:a0:9c:85:e2:d6:2f:25:85:80:95:d0:03:40: db:a6:ba:95:84:e0:72:15:fc:34:36:39:60:15:d5: 5f:4d:89:7d:e7:a1:99:a0:f3:94:0b:15:35:fc:69: 7c:cf:ab:65:a1:f4:25:8f:20:4b:02:9c:d5:72:25: 37:55:aa:f7:1b:8e:a6:51:20:c7:e7:da:af:c6:2d: a0:5f:18:e8:b8:f9:fc:bb:ad:12:5a:f1:d9:a5:41: 97:98:f3:ba:0d:99:16:7c:04:37:30:3e:ce:ae:af: 4a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2B:51:8C:98:EC:40:62:2C:A0:D3:B6:50:5A:FF:F0:CD:40:1C:19 X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/FCtRjJjsQGIsoNO2UFr_8M1AHBk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:30::/44 Signature Algorithm: sha256WithRSAEncryption 0d:94:e0:03:20:49:ed:e9:74:b4:cb:35:2f:f2:ca:6b:0a:96: 72:94:73:7e:49:a0:55:96:98:00:3f:97:03:d3:e8:f5:a1:90: 41:b0:dc:2d:c6:12:45:85:12:6a:e8:fa:c6:3d:66:b9:84:15: 40:9a:8f:dd:39:39:09:50:7d:3f:80:be:f0:19:e3:11:6c:38: c6:da:b4:d3:b2:46:12:d0:97:86:63:79:06:d2:ac:5a:59:0c: bf:cc:99:5c:50:26:da:50:80:ae:25:2b:f8:1b:1e:45:77:c7: cf:13:83:7b:fb:33:23:c1:b5:3d:03:3b:5a:55:80:31:ad:ef: cf:f8:70:ff:5f:c9:c6:fc:30:d5:81:3b:9f:60:73:1b:c7:ba: a6:33:53:96:7e:0d:ef:59:c3:26:02:d1:28:19:a2:a0:16:01: 6e:a6:dc:cd:64:8d:01:82:94:92:7f:a6:50:f1:3f:0e:ae:4e: 94:7c:13:9a:a6:ff:b4:01:81:fc:db:f3:a0:fb:7a:cc:6d:41: 3e:a6:b9:f9:28:1a:5a:2f:55:20:f2:bb:93:e4:c3:3d:7a:00: cc:24:70:ac:5a:47:8e:45:5e:cb:3d:3c:8a:2f:16:22:94:2e: 93:b8:3d:63:ae:87:76:77:6f:9a:2a:fa:b0:34:55:65:73:f9: d1:8e:0c:bf -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICHYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDA5MTIx MTIwMDJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDE0MkI1MThDOThFQzQw NjIyQ0EwRDNCNjUwNUFGRkYwQ0Q0MDFDMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLeeC1Gvo12yhEh9xqsftpaP8UAdhaTc9GUNxayIr17lKAkKLz eiK64CU/rWAX4vGpvmQh/ACxxDp7tqeZKEy5jhS4FKyudaCpv/4AL+lPEsBOrpdX CrolvEd8luGQJ/vNp7oZxcaUOx7bdIMfUPkWsfzPfaNyNZL/INhz0k3XtfBcAxzV rgoqIQSX23ZOXfh19xwT3KcqoJyF4tYvJYWAldADQNumupWE4HIV/DQ2OWAV1V9N iX3noZmg85QLFTX8aXzPq2Wh9CWPIEsCnNVyJTdVqvcbjqZRIMfn2q/GLaBfGOi4 +fy7rRJa8dmlQZeY87oNmRZ8BDcwPs6ur0rRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUFCtRjJjsQGIsoNO2UFr/8M1AHBkwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvRkN0UmpKanNRR0lz b05PMlVGcl84TTFBSEJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQDY4AAMDANBgkqhkiG9w0BAQsFAAOCAQEADZTgAyBJ7el0tMs1L/LKawqW cpRzfkmgVZaYAD+XA9Po9aGQQbDcLcYSRYUSauj6xj1muYQVQJqP3Tk5CVB9P4C+ 8BnjEWw4xtq007JGEtCXhmN5BtKsWlkMv8yZXFAm2lCAriUr+BseRXfHzxODe/sz I8G1PQM7WlWAMa3vz/hw/1/Jxvww1YE7n2BzG8e6pjNTln4N71nDJgLRKBmioBYB bqbczWSNAYKUkn+mUPE/Dq5OlHwTmqb/tAGB/NvzoPt6zG1BPqa5+SgaWi9VIPK7 k+TDPXoAzCRwrFpHjkVeyz08ii8WIpQuk7g9Y66Hdndvmir6sDRVZXP50Y4Mvw== -----END CERTIFICATE-----Generated at Fri Nov 22 13:38:12 2024 by rpki-client on console-fra.rpki-client.org