$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/312/SabeT-jIaS5h-nLrYnND3nZh0Y4.roa File: SabeT-jIaS5h-nLrYnND3nZh0Y4.roa (raw, json) Hash identifier: 9zFmTa0T4lHCmWjDcQU2KsstxdWCj7Ac7guRlSDMlsk= Subject key identifier: 49:A6:DE:4F:E8:C8:69:2E:61:FA:72:EB:62:73:43:DE:76:61:D1:8E Certificate issuer: /CN=85F3BFD1A14090C4829A5A313A4D31F9CC8F312F Certificate serial: 1958 Authority key identifier: 85:F3:BF:D1:A1:40:90:C4:82:9A:5A:31:3A:4D:31:F9:CC:8F:31:2F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hfO_0aFAkMSCmloxOk0x-cyPMS8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/SabeT-jIaS5h-nLrYnND3nZh0Y4.roa Signing time: Fri 06 Sep 2024 01:55:46 +0000 ROA not before: Fri 06 Sep 2024 01:55:46 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 135373 IP address blocks: 112.73.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/hfO_0aFAkMSCmloxOk0x-cyPMS8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/hfO_0aFAkMSCmloxOk0x-cyPMS8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hfO_0aFAkMSCmloxOk0x-cyPMS8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6488 (0x1958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85F3BFD1A14090C4829A5A313A4D31F9CC8F312F Validity Not Before: Sep 6 01:55:46 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=49A6DE4FE8C8692E61FA72EB627343DE7661D18E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:8e:1a:cb:25:3f:f5:b6:4b:d3:5b:f3:5f: 8a:2c:97:44:f9:13:39:5e:39:64:30:bb:a3:cc:f4: af:62:77:c7:7c:35:de:9d:37:8e:c7:8b:e6:81:2e: 7a:24:51:ed:ae:b8:5c:f0:c1:32:80:5e:0a:6c:fc: d2:7e:f5:76:59:dd:81:27:ee:01:73:61:63:7a:1e: 90:b9:f9:63:40:b5:53:de:ad:40:95:18:67:cf:02: 1d:14:6d:be:71:ed:21:84:20:e6:06:5d:fa:88:e3: 73:ee:81:83:e6:b5:2f:91:33:f3:78:16:07:b4:52: 63:d3:1c:40:a3:af:b7:b8:4b:e5:ac:2e:60:14:b1: 78:5b:aa:eb:62:a2:8f:e2:9c:79:12:68:1f:d7:22: f6:06:7d:55:40:89:85:56:9a:b5:1a:2e:f8:41:72: 6b:1f:c7:8d:32:43:4d:8a:b3:aa:f4:85:f1:55:5a: 3a:30:c1:e4:20:ab:65:06:30:a7:8c:75:ee:be:07: f2:7e:64:1f:cd:49:50:31:b5:7a:83:a7:13:af:75: 3f:fa:e3:f6:2a:90:69:bb:d8:ed:b4:75:1e:df:ce: 3d:3e:ef:45:08:70:94:53:58:b3:1d:b6:a2:b7:a1: 11:0d:bd:4e:d2:d1:6f:8c:da:c8:8c:8e:15:05:47: 30:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A6:DE:4F:E8:C8:69:2E:61:FA:72:EB:62:73:43:DE:76:61:D1:8E X509v3 Authority Key Identifier: keyid:85:F3:BF:D1:A1:40:90:C4:82:9A:5A:31:3A:4D:31:F9:CC:8F:31:2F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/hfO_0aFAkMSCmloxOk0x-cyPMS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hfO_0aFAkMSCmloxOk0x-cyPMS8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/SabeT-jIaS5h-nLrYnND3nZh0Y4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.73.12.0/23 Signature Algorithm: sha256WithRSAEncryption 15:5b:a6:70:c9:41:51:5b:1c:91:5a:26:0f:fd:70:99:35:b2: 2c:86:bf:7f:a6:24:b0:5c:4d:be:7a:ab:c6:a4:b9:d7:68:cf: a7:02:eb:c6:1e:7b:b5:c3:7b:e7:37:88:1a:59:ba:c9:d7:1e: 19:fd:a2:0e:ac:22:37:53:c0:70:b2:7b:82:b2:3d:a4:a9:a2: 33:44:4d:c9:69:5b:b0:18:a4:2d:96:f4:15:11:5e:b0:4b:60: 0f:63:a9:85:61:1e:5d:dd:42:56:bf:52:0e:06:b6:b4:86:ae: a2:1d:00:1f:ad:5a:d2:3d:45:ce:b5:52:f4:0a:db:c4:9b:9d: e0:91:43:94:df:23:ce:4e:43:00:f5:bc:6d:24:9e:73:75:c7: 8d:3d:4e:41:f6:bd:42:28:87:d1:24:95:69:d3:43:00:d2:e6: 4f:1f:ad:27:64:9e:ad:46:b3:3d:17:8e:bd:36:8f:33:84:37: 7a:08:9f:a5:c3:a2:c2:dc:a7:cd:68:69:12:e6:96:c6:bf:17: cb:79:c3:3e:59:5d:70:6b:5a:ff:11:d0:9b:ca:bf:c7:01:fb: 34:af:7e:bb:e1:04:a0:19:f6:71:95:88:9b:3e:ca:83:43:7f: c4:2f:ae:a7:77:1e:21:5b:29:66:74:0c:97:0e:50:ea:45:33: 91:77:fb:47 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODVG M0JGRDFBMTQwOTBDNDgyOUE1QTMxM0E0RDMxRjlDQzhGMzEyRjAeFw0yNDA5MDYw MTU1NDZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDQ5QTZERTRGRThDODY5 MkU2MUZBNzJFQjYyNzM0M0RFNzY2MUQxOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0mI4ayyU/9bZL01vzX4osl0T5EzleOWQwu6PM9K9id8d8Nd6d N47Hi+aBLnokUe2uuFzwwTKAXgps/NJ+9XZZ3YEn7gFzYWN6HpC5+WNAtVPerUCV GGfPAh0Ubb5x7SGEIOYGXfqI43PugYPmtS+RM/N4Fge0UmPTHECjr7e4S+WsLmAU sXhbqutioo/inHkSaB/XIvYGfVVAiYVWmrUaLvhBcmsfx40yQ02Ks6r0hfFVWjow weQgq2UGMKeMde6+B/J+ZB/NSVAxtXqDpxOvdT/64/YqkGm72O20dR7fzj0+70UI cJRTWLMdtqK3oRENvU7S0W+M2siMjhUFRzD/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSabeT+jIaS5h+nLrYnND3nZh0Y4wHwYDVR0jBBgwFoAUhfO/0aFAkMSCmlox Ok0x+cyPMS8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEy L2hmT18wYUZBa01TQ21sb3hPazB4LWN5UE1TOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvaGZPXzBhRkFrTVNDbWxveE9rMHgtY3lQTVM4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEyL1NhYmVULWpJYVM1aC1u THJZbk5EM25aaDBZNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFwSQwwDQYJKoZIhvcNAQELBQADggEBABVbpnDJQVFbHJFaJg/9cJk1siyGv3+m JLBcTb56q8akuddoz6cC68Yee7XDe+c3iBpZusnXHhn9og6sIjdTwHCye4KyPaSp ojNETclpW7AYpC2W9BURXrBLYA9jqYVhHl3dQla/Ug4GtrSGrqIdAB+tWtI9Rc61 UvQK28SbneCRQ5TfI85OQwD1vG0knnN1x409TkH2vUIoh9EklWnTQwDS5k8frSdk nq1Gsz0Xjr02jzOEN3oIn6XDosLcp81oaRLmlsa/F8t5wz5ZXXBrWv8R0JvKv8cB +zSvfrvhBKAZ9nGViJs+yoNDf8Qvrqd3HiFbKWZ0DJcOUOpFM5F3+0c= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:10 2024 by rpki-client on console-fra.rpki-client.org