$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2943/VcylARub8mZSef4yflS9wcetRkg.roa File: VcylARub8mZSef4yflS9wcetRkg.roa (raw, json) Hash identifier: ppcUX4GT6DPoQpfAw+ymbHChfU33r/5rAdK0ayKsrf0= Subject key identifier: 55:CC:A5:01:1B:9B:F2:66:52:79:FE:32:7E:54:BD:C1:C7:AD:46:48 Certificate issuer: /CN=D5C2CE1261E59FD76D3E3FB00E5EBA8E44DA30C9 Certificate serial: 10 Authority key identifier: D5:C2:CE:12:61:E5:9F:D7:6D:3E:3F:B0:0E:5E:BA:8E:44:DA:30:C9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/VcylARub8mZSef4yflS9wcetRkg.roa Signing time: Wed 16 Oct 2024 05:51:31 +0000 ROA not before: Wed 16 Oct 2024 05:51:31 +0000 ROA not after: Tue 14 Oct 2025 04:34:08 +0000 asID: 139148 IP address blocks: 2405:78c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C2CE1261E59FD76D3E3FB00E5EBA8E44DA30C9 Validity Not Before: Oct 16 05:51:31 2024 GMT Not After : Oct 14 04:34:08 2025 GMT Subject: CN=55CCA5011B9BF2665279FE327E54BDC1C7AD4648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e2:2a:12:db:ca:ae:82:bf:6c:c1:00:62:00: 55:cc:df:e2:da:fe:a5:f5:2c:af:bc:da:12:09:70: ac:f3:95:ad:66:3e:d9:37:11:6a:c7:d3:df:c1:9b: 55:bf:33:12:1e:47:a9:33:09:90:f6:5c:12:16:09: 0f:55:8f:69:6f:f7:dd:f3:aa:c7:d1:9f:d6:a3:79: f4:7a:7b:70:71:49:d7:5d:a8:b7:dc:2d:92:3a:6e: be:dc:f3:0e:2b:8c:16:6c:7b:1e:a9:1d:b3:33:eb: 7b:4c:9f:16:1b:bf:8d:79:8c:91:cd:aa:89:3c:ab: 18:df:73:19:ec:f2:c2:d8:7f:32:e9:73:48:97:4e: 0b:70:67:26:35:73:50:68:04:4c:d2:ac:15:e6:ca: d1:87:22:29:73:3e:e2:29:57:84:4d:6b:21:f7:0d: fa:5d:7f:c7:fc:10:ec:7b:30:46:97:d8:c8:e6:2a: ce:ca:33:7a:a2:c4:d1:30:29:6c:de:80:67:08:f8: 1c:3d:33:3d:02:d8:98:18:2e:b6:00:9e:5f:a2:19: fb:41:56:4b:b1:c1:99:76:57:15:01:1c:22:96:1c: 57:fb:fa:70:13:b8:07:b3:ca:f1:f2:8e:7c:b5:b4: 75:b9:17:ba:78:5d:dc:15:3b:df:05:25:2b:70:f8: 04:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CC:A5:01:1B:9B:F2:66:52:79:FE:32:7E:54:BD:C1:C7:AD:46:48 X509v3 Authority Key Identifier: keyid:D5:C2:CE:12:61:E5:9F:D7:6D:3E:3F:B0:0E:5E:BA:8E:44:DA:30:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/VcylARub8mZSef4yflS9wcetRkg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:78c0::/32 Signature Algorithm: sha256WithRSAEncryption 58:43:0b:9e:22:b5:54:75:26:2d:95:49:5a:05:99:8b:af:f8: 1c:0b:66:5e:cc:d3:d7:0c:c5:ff:c4:79:8b:56:6f:ee:b0:0a: 92:f9:a3:30:54:56:a4:f0:42:ad:b7:c4:32:07:57:ef:4a:fd: 91:44:65:64:fa:03:1c:65:ae:b2:73:04:85:32:64:a4:5f:f5: 6e:e5:8b:2d:38:da:fd:91:d6:15:cc:52:1a:cd:07:8a:f3:43: f9:a0:8e:d3:e2:62:b4:0d:c9:aa:f3:aa:c7:e3:73:a0:5a:dd: fb:62:75:87:b0:cf:94:59:a4:b8:83:8d:cf:f6:36:ea:3c:0f: 31:ec:23:be:f4:d3:49:1e:a2:78:3e:c9:8e:78:aa:77:3c:ce: e8:c9:ff:9b:0d:05:c8:72:04:dd:47:ce:24:a8:5e:76:54:de: 09:b9:57:0e:df:8a:75:85:8f:61:8d:44:14:34:97:16:43:5a: d1:1d:8b:2b:37:2f:6f:21:2d:21:7e:ed:c1:bd:3f:a1:b8:b4: 10:d2:82:f4:dc:ea:59:bf:75:6f:49:c5:a3:7c:18:bc:01:bb: c2:9d:99:bc:78:99:0f:bb:de:f6:d9:c0:92:6d:4d:a9:d9:c5: b2:c3:1c:cf:57:85:fa:f1:50:78:90:4e:72:82:e5:af:87:67: 9e:03:83:53 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENUMy Q0UxMjYxRTU5RkQ3NkQzRTNGQjAwRTVFQkE4RTQ0REEzMEM5MB4XDTI0MTAxNjA1 NTEzMVoXDTI1MTAxNDA0MzQwOFowMzExMC8GA1UEAxMoNTVDQ0E1MDExQjlCRjI2 NjUyNzlGRTMyN0U1NEJEQzFDN0FENDY0ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANjiKhLbyq6Cv2zBAGIAVczf4tr+pfUsr7zaEglwrPOVrWY+2TcR asfT38GbVb8zEh5HqTMJkPZcEhYJD1WPaW/33fOqx9Gf1qN59Hp7cHFJ112ot9wt kjpuvtzzDiuMFmx7HqkdszPre0yfFhu/jXmMkc2qiTyrGN9zGezywth/MulzSJdO C3BnJjVzUGgETNKsFebK0YciKXM+4ilXhE1rIfcN+l1/x/wQ7HswRpfYyOYqzsoz eqLE0TApbN6AZwj4HD0zPQLYmBgutgCeX6IZ+0FWS7HBmXZXFQEcIpYcV/v6cBO4 B7PK8fKOfLW0dbkXunhd3BU73wUlK3D4BF8CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBRVzKUBG5vyZlJ5/jJ+VL3Bx61GSDAfBgNVHSMEGDAWgBTVws4SYeWf120+P7AO XrqORNowyTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yOTQz LzFjTE9FbUhsbjlkdFBqLXdEbDY2amtUYU1Nay5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMWNMT0VtSGxuOWR0UGotd0RsNjZqa1RhTU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk0My9WY3lsQVJ1YjhtWlNl ZjR5ZmxTOXdjZXRSa2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAV4wDANBgkqhkiG9w0BAQsFAAOCAQEAWEMLniK1VHUmLZVJWgWZi6/4HAtm XszT1wzF/8R5i1Zv7rAKkvmjMFRWpPBCrbfEMgdX70r9kURlZPoDHGWusnMEhTJk pF/1buWLLTja/ZHWFcxSGs0HivND+aCO0+JitA3JqvOqx+NzoFrd+2J1h7DPlFmk uIONz/Y26jwPMewjvvTTSR6ieD7JjniqdzzO6Mn/mw0FyHIE3UfOJKhedlTeCblX Dt+KdYWPYY1EFDSXFkNa0R2LKzcvbyEtIX7twb0/obi0ENKC9NzqWb91b0nFo3wY vAG7wp2ZvHiZD7ve9tnAkm1NqdnFssMcz1eF+vFQeJBOcoLlr4dnngODUw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:10 2024 by rpki-client on console-fra.rpki-client.org