$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3040/93R8bTP6CO18v5ByDpZO0zylRiA.roa File: 93R8bTP6CO18v5ByDpZO0zylRiA.roa (raw, json) Hash identifier: 8nkWRArgfOS5z4iViWgQcp3Pq8/rmpiGRQBpUMs8SWY= Subject key identifier: F7:74:7C:6D:33:FA:08:ED:7C:BF:90:72:0E:96:4E:D3:3C:A5:46:20 Certificate issuer: /CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5 Certificate serial: 1978 Authority key identifier: 03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/93R8bTP6CO18v5ByDpZO0zylRiA.roa Signing time: Wed 13 Mar 2024 01:23:42 +0000 ROA not before: Wed 13 Mar 2024 01:23:42 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 131484 IP address blocks: 2406:d140::/32 maxlen: 48 2406:d140:8000::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6520 (0x1978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5 Validity Not Before: Mar 13 01:23:42 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F7747C6D33FA08ED7CBF90720E964ED33CA54620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c2:e1:ae:f1:65:fd:76:4d:42:96:46:ae:e4: 61:10:de:52:6f:57:4b:d6:b1:a3:00:20:9a:7d:cc: 60:06:f0:aa:fa:ca:e0:d3:2d:6b:e0:11:be:34:18: 83:43:a9:c7:46:b1:37:fa:64:98:2b:53:f4:e7:a1: 52:75:93:c3:14:ac:ca:44:41:d2:41:82:88:8d:c0: 23:b0:2e:46:41:a8:99:c0:9a:2e:53:bc:2a:9e:e1: d1:fe:4b:bd:77:f4:e4:ac:ba:61:70:3b:23:d8:23: d5:e5:7c:13:b4:d3:48:4b:c2:40:a4:01:00:b8:78: 48:11:ff:95:83:92:99:83:d2:ab:1b:f5:c0:7b:bd: 37:54:a9:40:17:80:18:21:c4:f8:70:7d:58:e7:b5: d6:cd:54:63:53:8c:a2:3a:8a:a7:b0:b7:24:9d:9e: 60:6b:11:e9:12:78:5d:f4:33:69:b5:1e:2f:13:be: a9:38:ec:08:31:75:5a:1f:38:32:0f:1f:cc:99:b6: 45:48:47:7f:0e:34:cf:1c:2a:9b:68:a8:94:c6:cf: 80:e9:5e:5f:1b:25:0c:21:a2:81:f8:23:e4:eb:6a: ec:d7:b9:e4:2f:54:1a:63:fe:a3:dd:42:47:79:77: 1d:cb:0b:22:c6:07:47:70:03:57:38:6e:60:bc:9c: 52:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:74:7C:6D:33:FA:08:ED:7C:BF:90:72:0E:96:4E:D3:3C:A5:46:20 X509v3 Authority Key Identifier: keyid:03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/93R8bTP6CO18v5ByDpZO0zylRiA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d140::/32 Signature Algorithm: sha256WithRSAEncryption 5b:3f:0b:f9:3a:13:d0:cb:27:c7:11:93:d8:91:98:5e:cc:5e: bd:cf:29:71:b7:09:11:1c:6f:a0:31:6b:06:cc:07:cb:7c:68: 88:b1:9c:eb:31:de:09:d3:29:45:2b:6e:3f:f0:15:b1:cd:00: 79:c5:10:96:bf:3c:ac:41:ae:03:59:ff:c3:e3:8a:f7:25:4e: b2:0b:d4:a1:a0:5a:c1:10:60:69:ea:25:fa:98:9a:66:0c:d0: e7:d2:61:bc:7d:68:2d:0d:eb:e4:08:31:55:e2:56:a9:09:bd: 16:e3:33:2a:96:14:97:32:a8:7f:c9:85:ea:38:55:0b:45:64: 53:0f:7f:6f:0b:e4:8d:94:42:9f:f0:8f:ae:b7:d6:8a:b9:f7: 9f:30:15:1c:91:6b:eb:49:60:e1:9b:c6:78:f4:f7:d3:aa:65: af:72:30:f1:f8:4b:30:64:c1:a7:ff:70:89:86:14:24:75:04: 92:f5:f2:77:55:15:62:d2:ed:e0:33:ec:6c:d0:50:66:31:cd: b3:c9:a5:31:ee:07:47:90:c8:56:11:4c:ef:94:95:fd:2e:16: 11:26:14:90:b9:08:a5:3d:46:32:dc:c6:69:45:79:f2:98:4f: f7:b1:95:8f:cd:8f:1d:aa:ba:cc:fa:ac:ed:fb:02:5a:3a:85: 98:d5:64:b0 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICGXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDNG MDc1RDlDNkYxOERDMDlCREE2MkI3MDg3RUE4MERDNUI3MTFDNTAeFw0yNDAzMTMw MTIzNDJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY3NzQ3QzZEMzNGQTA4 RUQ3Q0JGOTA3MjBFOTY0RUQzM0NBNTQ2MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5wuGu8WX9dk1Clkau5GEQ3lJvV0vWsaMAIJp9zGAG8Kr6yuDT LWvgEb40GINDqcdGsTf6ZJgrU/TnoVJ1k8MUrMpEQdJBgoiNwCOwLkZBqJnAmi5T vCqe4dH+S7139OSsumFwOyPYI9XlfBO000hLwkCkAQC4eEgR/5WDkpmD0qsb9cB7 vTdUqUAXgBghxPhwfVjntdbNVGNTjKI6iqewtySdnmBrEekSeF30M2m1Hi8Tvqk4 7AgxdVofODIPH8yZtkVIR38ONM8cKptoqJTGz4DpXl8bJQwhooH4I+TrauzXueQv VBpj/qPdQkd5dx3LCyLGB0dwA1c4bmC8nFLTAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU93R8bTP6CO18v5ByDpZO0zylRiAwHwYDVR0jBBgwFoAUA/B12cbxjcCb2mK3 CH6oDcW3EcUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 MC9BX0IxMmNieGpjQ2IybUszQ0g2b0RjVzNFY1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FfQjEyY2J4amNDYjJtSzNDSDZvRGNXM0VjVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDAvOTNSOGJUUDZDTzE4 djVCeURwWk8wenlsUmlBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQG0UAwDQYJKoZIhvcNAQELBQADggEBAFs/C/k6E9DLJ8cRk9iRmF7MXr3P KXG3CREcb6AxawbMB8t8aIixnOsx3gnTKUUrbj/wFbHNAHnFEJa/PKxBrgNZ/8Pj ivclTrIL1KGgWsEQYGnqJfqYmmYM0OfSYbx9aC0N6+QIMVXiVqkJvRbjMyqWFJcy qH/Jheo4VQtFZFMPf28L5I2UQp/wj6631oq5958wFRyRa+tJYOGbxnj099OqZa9y MPH4SzBkwaf/cImGFCR1BJL18ndVFWLS7eAz7GzQUGYxzbPJpTHuB0eQyFYRTO+U lf0uFhEmFJC5CKU9RjLcxmlFefKYT/exlY/Njx2qusz6rO37Alo6hZjVZLA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:44 2024 by rpki-client on console-ams.rpki-client.org