$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/nWxT4RYlEY5Aret9o0t0WZLlzV0.roa File: nWxT4RYlEY5Aret9o0t0WZLlzV0.roa (raw, json) Hash identifier: iOXZTU/yrX1KRmPP2U0zN+Z9WjuSxTrE9F05Jz7zG64= Subject key identifier: 9D:6C:53:E1:16:25:11:8E:40:AD:EB:7D:A3:4B:74:59:92:E5:CD:5D Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 06 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/nWxT4RYlEY5Aret9o0t0WZLlzV0.roa Signing time: Mon 15 Apr 2024 08:45:59 +0000 ROA not before: Mon 15 Apr 2024 08:45:59 +0000 ROA not after: Tue 15 Apr 2025 07:02:50 +0000 asID: 146788 IP address blocks: 117.124.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: Apr 15 08:45:59 2024 GMT Not After : Apr 15 07:02:50 2025 GMT Subject: CN=9D6C53E11625118E40ADEB7DA34B745992E5CD5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:82:79:9a:ec:dc:b1:5a:fc:14:2a:d4:2f:b5: 03:58:a4:65:f4:0d:08:93:d0:ba:83:73:f1:0d:80: 51:f1:0d:c5:25:87:73:c8:e9:08:10:f6:39:b7:c4: 94:be:af:71:7a:4b:23:c6:01:77:88:7a:10:dc:4e: b6:3e:d9:ff:11:40:ca:97:4e:d9:61:ac:1b:f3:a9: a6:35:ec:a5:01:6c:aa:40:06:83:af:39:97:be:95: 2f:73:1e:e0:30:b0:3a:7b:4f:6c:4b:16:a8:27:95: 0e:79:94:5f:25:0d:be:62:ef:53:42:2b:9e:ce:f5: f2:cc:97:d9:f2:df:44:ca:d2:7e:9a:92:09:af:4c: 25:92:e2:d4:96:1c:3f:11:a5:6a:4b:01:5d:24:32: f6:48:aa:ea:3e:f8:6f:de:e0:08:45:ed:f0:78:ad: 10:8c:6c:22:2b:38:e4:62:94:05:3e:73:24:65:ca: 52:45:c7:b5:ad:fe:d5:90:91:2d:e3:5a:ea:1b:87: 0c:a6:10:8e:61:f5:d3:92:d0:69:e1:c1:fd:ce:a9: 62:4c:35:93:02:d1:48:46:28:03:99:cc:95:8c:29: 7c:53:36:75:ab:8a:40:3c:08:36:ba:3f:b9:95:b6: 12:4f:59:07:dd:bb:be:d5:1e:d3:38:7d:db:a2:9c: 46:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6C:53:E1:16:25:11:8E:40:AD:EB:7D:A3:4B:74:59:92:E5:CD:5D X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/nWxT4RYlEY5Aret9o0t0WZLlzV0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 117.124.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:14:b0:cf:4b:01:7b:9e:6b:be:15:b8:23:5d:38:fe:ba:3a: 8e:36:36:69:e4:49:f4:a0:06:d7:63:3d:92:e0:6d:d5:af:41: 55:d2:fd:38:27:d9:70:51:a1:70:89:99:13:c8:22:96:7f:0f: e7:df:be:17:e4:4e:18:78:0c:fd:fc:66:32:84:92:71:f1:bb: fe:0e:33:01:9a:14:62:3f:a1:e0:94:30:de:16:9a:76:fd:55: 1c:a1:fd:e7:58:83:f7:78:a2:fa:80:49:1d:7a:7c:a9:31:15: f3:91:18:e5:9b:8f:0e:20:4e:4e:08:f4:e6:7b:7c:5a:9a:2a: 29:65:6d:d2:ac:a0:17:19:df:12:ea:b6:ab:dd:ae:96:28:f9: ac:b8:81:14:8c:4e:99:f5:00:2c:27:23:d6:6a:4c:cb:bb:e8: 98:76:c9:0c:e7:46:c1:a7:6e:92:c7:e6:ee:76:cd:d3:89:ff: ae:dd:4d:41:64:0b:11:50:5c:83:cd:84:bb:01:cd:c6:fb:c7: 9b:a1:3a:54:5f:63:47:7f:8c:e7:bd:53:d2:80:6b:e7:c7:9d: 40:de:66:49:81:75:a5:a9:a4:5f:7b:69:6b:3c:06:c5:a0:00: e1:e8:fb:2a:e9:f9:d3:49:15:90:63:c3:00:08:76:37:84:ed: c9:2c:32:50 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyQzAz MTRERkRFRDQxQUI2MTFEOTlGNTQyMDYzOTgyRkUzODA4MEJBMB4XDTI0MDQxNTA4 NDU1OVoXDTI1MDQxNTA3MDI1MFowMzExMC8GA1UEAxMoOUQ2QzUzRTExNjI1MTE4 RTQwQURFQjdEQTM0Qjc0NTk5MkU1Q0Q1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPaCeZrs3LFa/BQq1C+1A1ikZfQNCJPQuoNz8Q2AUfENxSWHc8jp CBD2ObfElL6vcXpLI8YBd4h6ENxOtj7Z/xFAypdO2WGsG/OppjXspQFsqkAGg685 l76VL3Me4DCwOntPbEsWqCeVDnmUXyUNvmLvU0Irns718syX2fLfRMrSfpqSCa9M JZLi1JYcPxGlaksBXSQy9kiq6j74b97gCEXt8HitEIxsIis45GKUBT5zJGXKUkXH ta3+1ZCRLeNa6huHDKYQjmH105LQaeHB/c6pYkw1kwLRSEYoA5nMlYwpfFM2dauK QDwINro/uZW2Ek9ZB927vtUe0zh926KcRvUCAwEAAaOCAe4wggHqMB0GA1UdDgQW BBSdbFPhFiURjkCt632jS3RZkuXNXTAfBgNVHSMEGDAWgBQsAxTf3tQathHZn1Qg Y5gv44CAujAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9M QU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL0xBTVUzOTdVR3JZUjJaOVVJR09ZTC1PQWdMby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzL25XeFQ0UllsRVk1QXJldDlv MHQwV1pMbHpWMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5j bi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB1 fDANBgkqhkiG9w0BAQsFAAOCAQEAQxSwz0sBe55rvhW4I104/ro6jjY2aeRJ9KAG 12M9kuBt1a9BVdL9OCfZcFGhcImZE8giln8P59++F+ROGHgM/fxmMoSScfG7/g4z AZoUYj+h4JQw3haadv1VHKH951iD93ii+oBJHXp8qTEV85EY5ZuPDiBOTgj05nt8 WpoqKWVt0qygFxnfEuq2q92ulij5rLiBFIxOmfUALCcj1mpMy7vomHbJDOdGwadu ksfm7nbN04n/rt1NQWQLEVBcg82EuwHNxvvHm6E6VF9jR3+M571T0oBr58edQN5m SYF1pamkX3tpazwGxaAA4ej7Kun500kVkGPDAAh2N4TtySwyUA== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:12 2024 by rpki-client on console-fra.rpki-client.org