$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/YOemi9gc7140p-sqI5J1Y-u6eew.roa File: YOemi9gc7140p-sqI5J1Y-u6eew.roa (raw, json) Hash identifier: sEZYcSYkvxIytzwDH9djs20Bg7imWiTJLATybXeI6ok= Subject key identifier: 60:E7:A6:8B:D8:1C:EF:5E:34:A7:EB:2A:23:92:75:63:EB:BA:79:EC Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 1D84 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/YOemi9gc7140p-sqI5J1Y-u6eew.roa Signing time: Thu 12 Sep 2024 11:20:00 +0000 ROA not before: Thu 12 Sep 2024 11:20:00 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 212237 IP address blocks: 2403:6380:31::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7556 (0x1d84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 12 11:20:00 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=60E7A68BD81CEF5E34A7EB2A23927563EBBA79EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bd:0b:92:c2:95:c4:4c:6b:14:b8:2a:0d:e8: 58:66:e0:00:ab:22:70:e6:ac:58:80:43:89:2d:9b: 61:0c:a0:43:2f:2c:20:68:81:00:07:e5:a8:20:b9: ce:f1:7b:67:b5:21:ee:8f:b9:6f:4a:52:32:c4:76: 99:59:95:89:cc:e4:dd:5f:9f:bc:f1:ce:a8:d7:13: 66:11:a2:a0:67:56:eb:dc:52:0d:21:0b:61:c2:04: a8:ff:4f:37:ba:72:83:ed:81:39:a7:7c:11:a0:93: fe:6d:e3:01:56:d6:63:8a:bf:d8:6b:25:fa:99:9b: 94:65:c9:d5:77:9d:f6:87:ef:8b:c1:cf:5c:24:d1: a1:f9:17:b9:42:83:c5:a5:a7:39:d5:db:7c:1d:0c: 72:13:1e:4e:02:33:55:fc:6d:52:d3:8c:71:97:92: 71:4a:fb:ce:8e:d4:c3:b3:08:a7:03:7f:25:c0:f5: 0a:58:c0:df:af:ac:71:f6:f0:49:bf:96:47:6e:3d: b7:25:7d:dd:ef:6f:50:33:86:65:be:00:7e:c9:dc: e0:fe:b4:2b:02:7d:78:be:c5:b7:03:d0:90:42:69: 5c:59:1f:dc:07:6a:8a:9e:c5:8e:6c:6d:0c:eb:bc: 67:8d:60:72:a6:9b:16:e6:7e:82:27:e2:ac:ad:68: 34:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E7:A6:8B:D8:1C:EF:5E:34:A7:EB:2A:23:92:75:63:EB:BA:79:EC X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/YOemi9gc7140p-sqI5J1Y-u6eew.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:31::/48 Signature Algorithm: sha256WithRSAEncryption 1d:66:b8:b4:ad:2c:91:75:d2:e6:2d:7b:dc:17:ea:ba:8d:5c: b3:dd:3d:be:c1:23:53:65:67:1e:3a:2d:fe:14:ea:0a:e9:ec: a6:14:57:d7:cf:78:4a:57:19:9e:b1:19:56:4a:9f:ef:b4:60: 96:0d:5c:82:f9:e6:70:d8:3d:76:3a:de:22:18:f2:5f:a4:9e: d8:3f:a0:6f:70:a4:5a:4d:97:58:d7:be:9d:6f:86:0b:6c:55: 06:bc:a9:46:40:fb:55:2d:89:9f:e0:c5:ca:ee:58:ce:5e:2f: 4d:ca:fb:38:58:9d:c7:a6:5b:55:e9:1d:5d:7f:cd:04:89:42: d5:71:14:64:34:c1:e8:8b:9b:2a:13:b8:f3:9c:96:f2:bc:7b: 73:e4:cb:0f:5d:d2:15:6f:29:03:1d:5b:95:21:d4:4d:ec:32: 02:0a:f1:a4:c5:09:8d:f1:93:73:27:58:45:b5:bd:eb:c4:2b: 5f:bb:23:f4:d5:83:42:b3:9f:63:a1:29:2d:0d:e2:f9:03:d0: d4:66:58:57:1b:6f:4a:fc:1f:e0:9f:58:3f:c8:8a:e1:87:84: ce:0d:44:2b:cb:c2:cb:0d:78:c3:21:bd:df:2a:5c:0f:d5:ff: 75:3e:e1:88:71:af:48:d7:76:30:de:34:7c:aa:67:d8:6c:0a: a2:de:52:56 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICHYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNDA5MTIx MTIwMDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDYwRTdBNjhCRDgxQ0VG NUUzNEE3RUIyQTIzOTI3NTYzRUJCQTc5RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuvQuSwpXETGsUuCoN6Fhm4ACrInDmrFiAQ4ktm2EMoEMvLCBo gQAH5agguc7xe2e1Ie6PuW9KUjLEdplZlYnM5N1fn7zxzqjXE2YRoqBnVuvcUg0h C2HCBKj/Tze6coPtgTmnfBGgk/5t4wFW1mOKv9hrJfqZm5RlydV3nfaH74vBz1wk 0aH5F7lCg8WlpznV23wdDHITHk4CM1X8bVLTjHGXknFK+86O1MOzCKcDfyXA9QpY wN+vrHH28Em/lkduPbclfd3vb1AzhmW+AH7J3OD+tCsCfXi+xbcD0JBCaVxZH9wH aoqexY5sbQzrvGeNYHKmmxbmfoIn4qytaDQBAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUYOemi9gc7140p+sqI5J1Y+u6eewwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvWU9lbWk5Z2M3MTQw cC1zcUk1SjFZLXU2ZWV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQDY4AAMTANBgkqhkiG9w0BAQsFAAOCAQEAHWa4tK0skXXS5i173Bfquo1c s909vsEjU2VnHjot/hTqCunsphRX1894SlcZnrEZVkqf77Rglg1cgvnmcNg9djre IhjyX6Se2D+gb3CkWk2XWNe+nW+GC2xVBrypRkD7VS2Jn+DFyu5Yzl4vTcr7OFid x6ZbVekdXX/NBIlC1XEUZDTB6IubKhO485yW8rx7c+TLD13SFW8pAx1blSHUTewy AgrxpMUJjfGTcydYRbW968QrX7sj9NWDQrOfY6EpLQ3i+QPQ1GZYVxtvSvwf4J9Y P8iK4YeEzg1EK8vCyw14wyG93ypcD9X/dT7hiHGvSNd2MN40fKpn2GwKot5SVg== -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:51 2024 by rpki-client on console-ams.rpki-client.org