$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/6t8QViKTPZFpinKLoDaeUa76h_Q.roa File: 6t8QViKTPZFpinKLoDaeUa76h_Q.roa (raw, json) Hash identifier: XO9dGMcOyOJ7CXsju/7HRHRoQQZXtXPTtTOPys1qke0= Subject key identifier: EA:DF:10:56:22:93:3D:91:69:8A:72:8B:A0:36:9E:51:AE:FA:87:F4 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1510 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6t8QViKTPZFpinKLoDaeUa76h_Q.roa Signing time: Wed 11 Sep 2024 02:27:35 +0000 ROA not before: Wed 11 Sep 2024 02:27:35 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 13444 IP address blocks: 103.221.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5392 (0x1510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:27:35 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=EADF105622933D91698A728BA0369E51AEFA87F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8a:0f:de:4a:d0:46:04:34:a4:b5:9f:f9:8b: d0:51:25:a4:4d:c4:81:c0:9b:59:30:53:14:a2:af: b6:ed:36:d5:3e:bc:21:66:d1:92:d6:4c:36:fe:69: d9:02:0a:b0:bb:d7:aa:a3:36:e1:93:13:c4:9b:8c: 89:a0:cc:47:21:6f:93:40:fd:86:7a:6d:84:e4:a1: 5b:bc:0a:ae:51:37:72:4c:90:27:0a:6b:44:d7:3f: cc:5a:a9:23:e1:e4:63:bc:d9:b3:50:8b:1a:4e:d5: 7c:13:ef:d3:f6:bc:74:1d:70:a7:69:ee:9d:5f:34: 5a:84:18:0c:1c:0d:47:7d:fe:48:cb:34:87:13:3d: 2f:f4:16:f9:22:0a:a2:cc:ec:57:87:91:64:7b:e2: b2:53:05:d6:88:2e:87:56:53:2e:53:37:a2:a3:e7: 7c:e5:8f:b5:6b:68:41:9c:27:86:c4:87:c8:ce:e8: cc:1d:00:3c:5d:14:26:de:52:6d:f3:f7:d7:89:3a: c3:75:7b:25:9c:b7:f4:12:a1:11:c0:ab:d8:cf:1d: ff:7b:27:ee:1c:72:42:42:7c:12:2c:f0:f7:0f:e2: 88:60:63:7e:5a:6e:2d:fc:e9:c4:75:69:8e:a8:3a: 09:7b:23:3c:d6:12:24:5c:6d:ea:09:cc:a2:d4:09: e6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DF:10:56:22:93:3D:91:69:8A:72:8B:A0:36:9E:51:AE:FA:87:F4 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6t8QViKTPZFpinKLoDaeUa76h_Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.27.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:44:dc:f6:99:e7:4c:b4:ab:a1:1c:60:b4:6b:05:df:a0:cb: 87:eb:9c:ec:9c:af:89:fa:97:78:0d:92:d9:ab:03:ef:32:72: 08:80:c4:6a:4f:11:7e:66:ab:6d:60:4f:ef:c2:df:f6:38:f0: 0e:aa:f2:c2:9b:2b:c7:91:08:b2:c2:0b:0a:27:1b:35:8f:1c: 6a:ab:17:3c:4e:8c:26:bb:5b:de:3e:3f:53:da:60:36:86:58: 8f:41:63:6a:b8:01:83:f4:c9:b3:3a:96:de:96:ae:42:ad:03: 93:be:59:4b:2f:51:ab:66:1f:30:14:95:80:42:9f:9b:7f:ab: 62:2a:f1:0b:fa:96:8f:4b:a1:89:52:17:67:50:1c:04:10:db: 28:3b:81:44:54:49:74:94:79:c8:fb:00:a3:4c:94:71:48:53: 32:52:a1:61:b2:cb:54:3f:b6:61:51:16:60:73:e1:16:eb:2a: 18:f3:b2:1f:85:83:90:fa:e3:fe:dc:89:dd:8e:0b:bf:cc:10: 75:a9:3c:1c:17:9a:1e:e5:c6:37:07:87:e8:45:45:61:26:df: e9:f0:d8:4b:4d:e6:a2:fa:f3:0d:e6:ce:05:01:89:69:07:e6: 02:bf:29:41:ad:59:67:71:00:ef:a9:cc:3d:6c:7c:d7:7c:68: 64:38:6a:15 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFRAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjI3MzVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEVBREYxMDU2MjI5MzNE OTE2OThBNzI4QkEwMzY5RTUxQUVGQTg3RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgig/eStBGBDSktZ/5i9BRJaRNxIHAm1kwUxSir7btNtU+vCFm 0ZLWTDb+adkCCrC716qjNuGTE8SbjImgzEchb5NA/YZ6bYTkoVu8Cq5RN3JMkCcK a0TXP8xaqSPh5GO82bNQixpO1XwT79P2vHQdcKdp7p1fNFqEGAwcDUd9/kjLNIcT PS/0FvkiCqLM7FeHkWR74rJTBdaILodWUy5TN6Kj53zlj7VraEGcJ4bEh8jO6Mwd ADxdFCbeUm3z99eJOsN1eyWct/QSoRHAq9jPHf97J+4cckJCfBIs8PcP4ohgY35a bi386cR1aY6oOgl7IzzWEiRcbeoJzKLUCeYhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6t8QViKTPZFpinKLoDaeUa76h/QwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzZ0OFFWaUtUUFpGcGlu S0xvRGFlVWE3NmhfUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RswDQYJKoZIhvcNAQELBQADggEBAHtE3PaZ50y0q6EcYLRrBd+gy4frnOyc r4n6l3gNktmrA+8ycgiAxGpPEX5mq21gT+/C3/Y48A6q8sKbK8eRCLLCCwonGzWP HGqrFzxOjCa7W94+P1PaYDaGWI9BY2q4AYP0ybM6lt6WrkKtA5O+WUsvUatmHzAU lYBCn5t/q2Iq8Qv6lo9LoYlSF2dQHAQQ2yg7gURUSXSUecj7AKNMlHFIUzJSoWGy y1Q/tmFRFmBz4RbrKhjzsh+Fg5D64/7cid2OC7/MEHWpPBwXmh7lxjcHh+hFRWEm 3+nw2EtN5qL68w3mzgUBiWkH5gK/KUGtWWdxAO+pzD1sfNd8aGQ4ahU= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:40 2024 by rpki-client on console-fra.rpki-client.org