$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/UBI3193ZFe8HGZb4h1YM1JydMiQ.roa File: UBI3193ZFe8HGZb4h1YM1JydMiQ.roa (raw, json) Hash identifier: S31pvLaULIElcyP7WWPy/CTTqaT9IK/gpsPTkPI/y0Y= Subject key identifier: 50:12:37:D7:DD:D9:15:EF:07:19:96:F8:87:56:0C:D4:9C:9D:32:24 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 0CDC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UBI3193ZFe8HGZb4h1YM1JydMiQ.roa Signing time: Wed 13 Mar 2024 01:21:58 +0000 ROA not before: Wed 13 Mar 2024 01:21:58 +0000 ROA not after: Fri 07 Jun 2024 02:16:11 +0000 asID: 59803 IP address blocks: 2403:1b80::/32 maxlen: 64 2403:1b80::/48 maxlen: 64 2406:1e80::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 16:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3292 (0xcdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Mar 13 01:21:58 2024 GMT Not After : Jun 7 02:16:11 2024 GMT Subject: CN=501237D7DDD915EF071996F887560CD49C9D3224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:67:d1:8b:ac:63:42:14:c6:6e:7b:ec:6e:cf: 56:34:58:c2:a8:19:af:e7:55:81:b3:10:83:1b:58: 9f:a0:d7:e1:20:5f:61:08:1b:03:6c:7d:72:e7:f1: a9:2a:db:e1:c2:e6:d5:ed:7e:b5:17:54:67:39:41: 94:04:5d:45:20:d2:da:4c:4a:7d:5e:e2:83:4f:da: cc:d0:6b:d9:f6:1c:41:8a:f3:e9:ed:2d:d8:11:7b: d3:da:d5:b8:6b:10:34:99:f8:34:27:70:cd:ab:67: 2e:77:70:3e:10:85:02:75:d0:f1:a4:33:48:81:45: fe:8c:60:59:6d:49:9d:c6:c4:ad:df:af:31:d7:2b: 2b:02:6a:63:b8:d1:9e:c2:eb:74:36:08:f0:c9:36: a8:57:4d:e8:73:b5:e4:2f:4b:43:03:b6:ee:37:ba: 66:fb:a5:fb:87:8a:61:42:97:b8:9b:b2:06:3f:19: 39:c7:93:89:3e:04:54:0a:0c:37:f7:92:53:fb:ae: c1:4a:39:79:97:4f:bc:64:9c:0d:b4:31:8f:a2:d5: c4:6c:e1:13:c9:0b:47:b2:18:f4:2a:24:32:ce:a2: 8c:56:10:79:69:3e:14:51:90:80:ca:22:ba:88:4e: e0:7a:7c:44:72:d1:f0:c1:69:24:8b:00:65:51:a0: 87:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:12:37:D7:DD:D9:15:EF:07:19:96:F8:87:56:0C:D4:9C:9D:32:24 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UBI3193ZFe8HGZb4h1YM1JydMiQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:1b80::/32 2406:1e80::/32 Signature Algorithm: sha256WithRSAEncryption 24:ea:8f:23:49:02:6c:c5:1d:ea:4d:81:12:6e:25:b4:e9:83: 73:28:4c:21:f6:b4:b4:24:1c:51:eb:13:1e:76:f9:d0:08:47: a0:1f:6e:a8:86:e2:5b:45:82:c2:a3:af:ca:06:8f:ba:7c:f6: a5:80:0f:d8:9b:93:0a:0a:e4:cd:bd:d3:c0:6d:a2:33:e5:a4: db:c1:0c:7c:57:58:96:2e:38:68:b3:57:19:56:88:0f:58:78: 40:ec:dc:df:d9:31:bc:ce:2f:05:a4:a1:20:15:8c:ce:e4:00: b2:18:28:6a:b3:17:82:ad:01:6a:39:9b:80:fd:e9:85:ed:2a: 84:44:5b:11:b5:12:94:bb:aa:8a:de:2d:7c:c4:35:8f:c0:b4: da:ab:6c:ac:90:fa:4b:6f:ff:32:6e:0f:4f:ea:03:c4:61:a6: 9c:99:b6:a7:f4:b5:a5:bf:d3:32:a3:21:cf:b9:30:98:10:d9: 8f:5c:ed:e0:28:9b:f7:ac:3d:63:80:57:98:25:d5:70:af:7d: 77:80:dc:4e:5d:45:7c:50:f7:66:9f:81:ae:f8:c7:82:7d:b1: 53:41:81:50:96:3a:5e:84:d9:92:4c:c4:25:c9:88:5d:eb:6d: 81:3b:91:d4:f2:54:41:6d:24:40:31:40:0d:a8:b1:7a:9f:f0: c3:f7:d0:0e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICDNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDAzMTMw MTIxNThaFw0yNDA2MDcwMjE2MTFaMDMxMTAvBgNVBAMTKDUwMTIzN0Q3REREOTE1 RUYwNzE5OTZGODg3NTYwQ0Q0OUM5RDMyMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVZ9GLrGNCFMZue+xuz1Y0WMKoGa/nVYGzEIMbWJ+g1+EgX2EI GwNsfXLn8akq2+HC5tXtfrUXVGc5QZQEXUUg0tpMSn1e4oNP2szQa9n2HEGK8+nt LdgRe9Pa1bhrEDSZ+DQncM2rZy53cD4QhQJ10PGkM0iBRf6MYFltSZ3GxK3frzHX KysCamO40Z7C63Q2CPDJNqhXTehzteQvS0MDtu43umb7pfuHimFCl7ibsgY/GTnH k4k+BFQKDDf3klP7rsFKOXmXT7xknA20MY+i1cRs4RPJC0eyGPQqJDLOooxWEHlp PhRRkIDKIrqITuB6fERy0fDBaSSLAGVRoIf9AgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUUBI3193ZFe8HGZb4h1YM1JydMiQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1VCSTMxOTNaRmU4SEda YjRoMVlNMUp5ZE1pUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4D BQAkAxuAAwUAJAYegDANBgkqhkiG9w0BAQsFAAOCAQEAJOqPI0kCbMUd6k2BEm4l tOmDcyhMIfa0tCQcUesTHnb50AhHoB9uqIbiW0WCwqOvygaPunz2pYAP2JuTCgrk zb3TwG2iM+Wk28EMfFdYli44aLNXGVaID1h4QOzc39kxvM4vBaShIBWMzuQAshgo arMXgq0BajmbgP3phe0qhERbEbUSlLuqit4tfMQ1j8C02qtsrJD6S2//Mm4PT+oD xGGmnJm2p/S1pb/TMqMhz7kwmBDZj1zt4Cib96w9Y4BXmCXVcK99d4DcTl1FfFD3 Zp+BrvjHgn2xU0GBUJY6XoTZkkzEJcmIXettgTuR1PJUQW0kQDFADaixep/ww/fQ Dg== -----END CERTIFICATE-----Generated at Sat Jun 1 12:23:50 2024 by rpki-client on console-ams.rpki-client.org