$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/9t6uL1DSg7svkp-XH4FVpjFMlAw.roa File: 9t6uL1DSg7svkp-XH4FVpjFMlAw.roa (raw, json) Hash identifier: S2FkcKC5VMbfhYO+fPOrvuv+AyW2r1UzIhNoMapMlGQ= Subject key identifier: F6:DE:AE:2F:50:D2:83:BB:2F:92:9F:97:1F:81:55:A6:31:4C:94:0C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1516 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9t6uL1DSg7svkp-XH4FVpjFMlAw.roa Signing time: Wed 11 Sep 2024 02:30:07 +0000 ROA not before: Wed 11 Sep 2024 02:30:07 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 13444 IP address blocks: 103.6.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5398 (0x1516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:30:07 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F6DEAE2F50D283BB2F929F971F8155A6314C940C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:43:b1:52:94:fa:4a:3f:ba:a1:85:ee:b7:7c: 63:ec:0c:2f:67:fb:38:48:72:97:ce:33:69:1f:3a: d5:55:92:66:2f:12:62:62:76:54:00:f5:f9:08:13: 7e:d4:3a:62:cf:6c:2e:d8:9a:f1:07:b4:79:e3:6b: c1:90:1c:2c:f0:0b:e9:69:d6:69:5a:34:da:3a:c9: 74:1f:00:2e:d9:35:52:ee:ae:24:1f:0f:4b:2e:34: 92:af:50:b3:2d:48:40:15:76:61:d1:d7:59:20:0e: 3a:46:35:23:68:63:7c:84:ca:a7:3f:02:72:85:56: 35:e9:ec:35:47:ab:6a:e4:82:2f:97:a6:18:b2:b5: 96:5c:34:1d:01:88:b9:de:91:1a:83:9d:e5:df:60: 67:4a:68:df:ec:c2:71:5f:b1:b1:b1:ff:10:ae:82: 52:b9:f5:6a:89:c3:ac:3f:c4:2f:24:7f:63:04:06: 0f:b4:71:59:db:a7:bd:26:d5:50:bf:bd:e8:18:67: 66:88:f0:b5:e3:94:f7:fd:32:a5:69:4e:ae:8e:5f: 86:33:24:7c:24:d4:dc:b0:ce:f2:94:3b:a0:d5:f2: f9:52:d2:e9:94:c3:bf:cc:22:e3:f8:f6:84:6f:df: 78:f3:ef:f2:91:17:cf:ce:73:2d:96:5b:d5:09:9e: 84:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DE:AE:2F:50:D2:83:BB:2F:92:9F:97:1F:81:55:A6:31:4C:94:0C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9t6uL1DSg7svkp-XH4FVpjFMlAw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.111.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:1f:3b:f7:01:3b:d6:0f:74:d7:f8:a0:f4:f0:76:b9:84:a1: 18:a6:30:33:a9:61:4a:04:ec:a7:af:9a:0c:6e:74:68:d0:0c: 2f:69:ed:8c:c7:93:d0:86:d8:9a:e9:1a:96:28:7e:af:09:8b: 65:40:dc:a7:40:15:1b:88:1b:17:8b:84:5a:40:f2:73:65:76: f7:0d:c8:97:b6:e0:a7:66:5d:fa:a6:62:14:3b:6e:a7:7b:5b: d4:1b:08:3d:46:de:eb:64:68:61:e9:34:f9:1b:d2:88:ec:6a: 9b:97:9b:4c:10:44:29:7c:c9:f1:f6:30:70:cc:e0:2f:74:7f: 33:02:79:80:cf:38:5a:e0:2c:28:79:de:8f:ff:09:64:93:af: 42:ae:ea:f0:97:4f:41:35:e3:6f:80:35:d6:27:46:9a:e0:6f: 04:b6:14:89:a5:d2:1b:ff:22:c7:22:31:91:13:12:0f:93:13: 3d:c4:bc:f7:8e:80:11:18:7e:36:f0:35:43:59:c3:b0:4f:44: 63:59:ff:0e:7b:97:d4:b5:ce:ab:45:19:53:1a:99:e5:9b:2e: 4e:7c:27:53:50:b4:c9:b3:3c:c3:8c:d4:46:55:51:4d:89:63: c7:ba:a0:99:6e:ae:8f:28:02:d4:be:4d:d1:fb:77:fd:bf:57: 08:40:3b:ff -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjMwMDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY2REVBRTJGNTBEMjgz QkIyRjkyOUY5NzFGODE1NUE2MzE0Qzk0MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIQ7FSlPpKP7qhhe63fGPsDC9n+zhIcpfOM2kfOtVVkmYvEmJi dlQA9fkIE37UOmLPbC7YmvEHtHnja8GQHCzwC+lp1mlaNNo6yXQfAC7ZNVLuriQf D0suNJKvULMtSEAVdmHR11kgDjpGNSNoY3yEyqc/AnKFVjXp7DVHq2rkgi+Xphiy tZZcNB0BiLnekRqDneXfYGdKaN/swnFfsbGx/xCuglK59WqJw6w/xC8kf2MEBg+0 cVnbp70m1VC/vegYZ2aI8LXjlPf9MqVpTq6OX4YzJHwk1NywzvKUO6DV8vlS0umU w7/MIuP49oRv33jz7/KRF8/Ocy2WW9UJnoTlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU9t6uL1DSg7svkp+XH4FVpjFMlAwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3Lzl0NnVMMURTZzdzdmtw LVhINEZWcGpGTWxBdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnBm8wDQYJKoZIhvcNAQELBQADggEBAAofO/cBO9YPdNf4oPTwdrmEoRimMDOp YUoE7KevmgxudGjQDC9p7YzHk9CG2JrpGpYofq8Ji2VA3KdAFRuIGxeLhFpA8nNl dvcNyJe24KdmXfqmYhQ7bqd7W9QbCD1G3utkaGHpNPkb0ojsapuXm0wQRCl8yfH2 MHDM4C90fzMCeYDPOFrgLCh53o//CWSTr0Ku6vCXT0E142+ANdYnRprgbwS2FIml 0hv/IsciMZETEg+TEz3EvPeOgBEYfjbwNUNZw7BPRGNZ/w57l9S1zqtFGVMameWb Lk58J1NQtMmzPMOM1EZVUU2JY8e6oJluro8oAtS+TdH7d/2/VwhAO/8= -----END CERTIFICATE-----Generated at Fri Nov 22 17:36:47 2024 by rpki-client on console-ams.rpki-client.org