$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/G5iEYI6Dwscu1XilnJmkTfSnjd4.roa File: G5iEYI6Dwscu1XilnJmkTfSnjd4.roa (raw, json) Hash identifier: x3CpaBWMVRnKyrGFZka1Ai0pi8wftnuSGn+H/aoW1IA= Subject key identifier: 1B:98:84:60:8E:83:C2:C7:2E:D5:78:A5:9C:99:A4:4D:F4:A7:8D:DE Certificate issuer: /CN=39E47899249325DB499BFC6910919D2F36003E9A Certificate serial: 18BD Authority key identifier: 39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/G5iEYI6Dwscu1XilnJmkTfSnjd4.roa Signing time: Fri 27 Sep 2024 03:02:22 +0000 ROA not before: Fri 27 Sep 2024 03:02:22 +0000 ROA not after: Sat 27 Sep 2025 02:42:48 +0000 asID: 17964 IP address blocks: 2403:8880::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6333 (0x18bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39E47899249325DB499BFC6910919D2F36003E9A Validity Not Before: Sep 27 03:02:22 2024 GMT Not After : Sep 27 02:42:48 2025 GMT Subject: CN=1B9884608E83C2C72ED578A59C99A44DF4A78DDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:1b:6d:1e:07:10:b1:c2:34:59:a9:5f:80: 5e:ab:23:ef:86:60:62:5f:81:2a:25:3f:fb:ff:2b: 15:96:6c:39:1b:3d:59:43:50:f7:ae:c2:ce:e7:da: 3d:fe:2a:20:6e:54:51:32:c4:0e:16:5e:03:85:09: 22:4b:1e:eb:7d:82:55:ad:c0:5e:aa:71:4a:10:8c: f1:d6:7a:d9:05:3b:98:cc:96:ce:1c:e7:51:07:da: 1b:85:ac:55:69:db:c1:95:e5:18:65:bc:4d:9b:48: 02:92:6a:17:a1:4d:02:75:2e:47:a0:0b:ef:3f:b2: 11:1e:d8:e4:67:ce:f4:bf:e3:7f:df:a1:34:3a:fb: 95:d6:81:4d:ca:72:2a:7f:91:e3:ff:e1:a4:6b:bc: 58:12:21:d5:a5:3c:bd:d1:86:14:ba:cb:e4:27:db: 26:2a:ff:7a:fd:c7:fb:be:e9:33:0d:12:7c:52:f4: 58:b1:c9:fd:d4:23:5c:f1:c0:9a:1c:b4:6a:4b:61: 4a:55:72:68:f8:06:d8:87:d2:c8:3c:dc:f6:d3:ac: aa:83:fd:1d:59:8d:a3:68:fc:5c:2e:c2:66:18:10: 83:40:3d:42:60:13:4c:ab:3c:4b:06:b8:12:1b:37: b8:80:bf:a0:55:d2:59:5c:7f:58:8d:7c:20:5b:f7: 66:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:98:84:60:8E:83:C2:C7:2E:D5:78:A5:9C:99:A4:4D:F4:A7:8D:DE X509v3 Authority Key Identifier: keyid:39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/G5iEYI6Dwscu1XilnJmkTfSnjd4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8880::/32 Signature Algorithm: sha256WithRSAEncryption 2b:02:e3:74:01:83:82:e2:47:a6:d5:da:8c:eb:97:45:28:2c: 37:3b:4b:dc:aa:83:1f:ac:38:51:5c:6a:00:d1:40:7c:8c:c8: 16:0b:26:3a:9d:7e:0e:59:61:4f:c9:1a:ea:6d:68:10:6f:97: df:70:3b:94:53:82:d4:ee:e2:6c:2b:05:90:38:13:e7:b7:d7: ed:08:93:e1:cd:eb:b7:f8:60:75:c0:d8:a0:05:6f:ba:c9:a6: c3:55:5e:d1:93:e9:e5:c3:73:fb:63:58:da:91:a8:4b:8c:83: ac:65:6e:ac:a9:1b:68:bd:1d:04:fd:bd:02:29:24:46:3e:8c: 1b:48:24:df:fe:b5:b9:aa:94:2f:83:85:91:eb:3c:8b:8b:1f: 72:05:db:9b:e7:8a:6e:9a:b5:c9:9b:a3:ce:42:dc:9c:3f:3a: e0:7a:ec:9d:eb:c7:70:2b:54:58:5f:30:3d:f9:ff:0f:a8:42: aa:85:73:df:66:bf:81:a2:fc:25:7d:88:22:2b:20:36:db:6f: 1a:61:83:7a:5e:cb:06:65:21:62:72:92:e7:a7:56:c7:ed:68: 2d:ad:31:8f:95:1d:42:73:a8:aa:fa:96:ec:81:50:c2:cb:54: c4:77:5b:b7:e6:b9:cd:cf:a0:d2:a5:4a:f0:a2:94:d0:76:f2: d0:19:32:82 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICGL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF NDc4OTkyNDkzMjVEQjQ5OUJGQzY5MTA5MTlEMkYzNjAwM0U5QTAeFw0yNDA5Mjcw MzAyMjJaFw0yNTA5MjcwMjQyNDhaMDMxMTAvBgNVBAMTKDFCOTg4NDYwOEU4M0My QzcyRUQ1NzhBNTlDOTlBNDRERjRBNzhEREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3phttHgcQscI0WalfgF6rI++GYGJfgSolP/v/KxWWbDkbPVlD UPeuws7n2j3+KiBuVFEyxA4WXgOFCSJLHut9glWtwF6qcUoQjPHWetkFO5jMls4c 51EH2huFrFVp28GV5RhlvE2bSAKSahehTQJ1LkegC+8/shEe2ORnzvS/43/foTQ6 +5XWgU3Kcip/keP/4aRrvFgSIdWlPL3RhhS6y+Qn2yYq/3r9x/u+6TMNEnxS9Fix yf3UI1zxwJoctGpLYUpVcmj4BtiH0sg83PbTrKqD/R1ZjaNo/FwuwmYYEINAPUJg E0yrPEsGuBIbN7iAv6BV0llcf1iNfCBb92YbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUG5iEYI6Dwscu1XilnJmkTfSnjd4wHwYDVR0jBBgwFoAUOeR4mSSTJdtJm/xp EJGdLzYAPpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv T2VSNG1TU1RKZHRKbV94cEVKR2RMellBUHBvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9PZVI0bVNTVEpkdEptX3hwRUpHZEx6WUFQcG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy9HNWlFWUk2RHdzY3UxWGls bkpta1RmU25qZDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAOIgDANBgkqhkiG9w0BAQsFAAOCAQEAKwLjdAGDguJHptXajOuXRSgsNztL3KqD H6w4UVxqANFAfIzIFgsmOp1+DllhT8ka6m1oEG+X33A7lFOC1O7ibCsFkDgT57fX 7QiT4c3rt/hgdcDYoAVvusmmw1Ve0ZPp5cNz+2NY2pGoS4yDrGVurKkbaL0dBP29 AikkRj6MG0gk3/61uaqUL4OFkes8i4sfcgXbm+eKbpq1yZujzkLcnD864HrsnevH cCtUWF8wPfn/D6hCqoVz32a/gaL8JX2IIisgNttvGmGDel7LBmUhYnKS56dWx+1o La0xj5UdQnOoqvqW7IFQwstUxHdbt+a5zc+g0qVK8KKU0Hby0Bkygg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org