$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/uj6tbBCeGr1cfRKAQYcQnoJ615o.roa File: uj6tbBCeGr1cfRKAQYcQnoJ615o.roa (raw, json) Hash identifier: Gh/WGBZLkfZwfhcfRtAJLyLmExVC5rCdptVWgEWaTnY= Subject key identifier: BA:3E:AD:6C:10:9E:1A:BD:5C:7D:12:80:41:87:10:9E:82:7A:D7:9A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14C4 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/uj6tbBCeGr1cfRKAQYcQnoJ615o.roa Signing time: Wed 11 Sep 2024 02:23:47 +0000 ROA not before: Wed 11 Sep 2024 02:23:47 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24373 IP address blocks: 45.252.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5316 (0x14c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:47 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=BA3EAD6C109E1ABD5C7D12804187109E827AD79A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:38:ed:c2:57:ec:0f:97:63:c5:dd:24:0f:d5: 35:25:47:e2:71:5e:69:4f:3b:80:dd:b5:38:20:8f: 07:88:db:59:c3:61:79:94:9e:77:1b:a0:0e:a6:18: fa:02:da:14:34:8f:18:ec:35:26:33:c8:66:6a:f2: 8f:96:a4:88:80:15:92:08:bc:1b:b1:db:45:00:72: 00:e4:04:54:2c:09:09:8d:a4:ef:2f:b5:aa:7d:66: 11:c9:65:90:7e:03:f5:ce:59:e3:3e:ce:0c:19:8e: 93:79:7c:53:83:ea:dd:a7:94:1b:c6:11:b6:b8:35: 79:c7:98:3c:4e:c9:30:08:63:65:48:b3:a9:4b:51: 3e:5b:32:5b:f4:29:3d:7f:85:26:ba:81:a6:91:88: 85:0c:7d:79:67:2e:45:1e:af:06:8b:f0:88:40:21: 41:16:27:bc:44:3b:6d:cd:d4:fa:da:63:20:ca:b4: 75:5c:f4:22:fa:97:81:6c:9e:5f:61:ea:64:24:db: f0:ed:a1:fb:bf:29:14:61:f6:4e:4a:db:ef:9c:52: 21:85:51:41:23:68:25:a3:de:23:5f:af:f0:79:7e: e9:c7:e3:d0:9a:c8:64:ea:a0:46:e6:1e:39:40:f1: a8:24:27:bc:e6:5e:1c:93:11:19:35:44:81:eb:d9: 6a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:3E:AD:6C:10:9E:1A:BD:5C:7D:12:80:41:87:10:9E:82:7A:D7:9A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/uj6tbBCeGr1cfRKAQYcQnoJ615o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.20.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:13:4d:a1:ae:db:50:ca:51:2a:32:72:46:71:01:3e:0c:d7: 2b:02:c9:0d:60:6c:e8:25:3d:c6:49:5c:b4:0c:89:7b:81:84: ca:59:2c:4d:5f:22:1e:ec:b2:64:7d:fa:86:22:56:75:5e:d2: f9:c9:c9:5a:52:f6:bd:e8:48:a0:b0:54:2e:6e:c3:57:28:ff: 49:ec:7b:f0:27:f5:09:2b:15:79:f3:96:aa:e2:2a:da:69:06: da:6f:1e:da:bb:82:f3:41:03:30:d0:75:be:61:09:42:90:9b: 07:67:10:84:b4:01:4e:48:e1:df:f3:ac:2f:20:d3:b9:97:8a: 64:7a:75:c5:92:18:a4:a2:dc:09:8e:3b:c5:6a:19:b9:9d:5e: 02:3f:1f:96:84:09:dc:8a:13:cd:3b:41:1c:cc:fe:df:72:80: 7f:cc:1b:02:1e:ae:26:8a:8f:36:5a:6a:a0:b1:79:85:11:df: 4f:a0:d5:ae:99:7b:48:d8:44:f8:4b:dd:97:b0:0b:b2:9f:36: d7:bc:eb:65:7f:20:0e:29:22:ed:98:37:5c:de:51:b6:35:26: 20:1e:88:47:eb:2c:40:78:95:9b:9b:69:9d:19:8d:aa:c2:82: 06:00:b4:0e:ed:49:eb:26:17:53:20:f6:41:6b:48:15:c2:61: ad:21:40:d0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFMQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEJBM0VBRDZDMTA5RTFB QkQ1QzdEMTI4MDQxODcxMDlFODI3QUQ3OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSOO3CV+wPl2PF3SQP1TUlR+JxXmlPO4DdtTggjweI21nDYXmU nncboA6mGPoC2hQ0jxjsNSYzyGZq8o+WpIiAFZIIvBux20UAcgDkBFQsCQmNpO8v tap9ZhHJZZB+A/XOWeM+zgwZjpN5fFOD6t2nlBvGEba4NXnHmDxOyTAIY2VIs6lL UT5bMlv0KT1/hSa6gaaRiIUMfXlnLkUerwaL8IhAIUEWJ7xEO23N1PraYyDKtHVc 9CL6l4Fsnl9h6mQk2/Dtofu/KRRh9k5K2++cUiGFUUEjaCWj3iNfr/B5funH49Ca yGTqoEbmHjlA8agkJ7zmXhyTERk1RIHr2WohAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUuj6tbBCeGr1cfRKAQYcQnoJ615owHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3VqNnRiQkNlR3IxY2ZS S0FRWWNRbm9KNjE1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/BQwDQYJKoZIhvcNAQELBQADggEBAHwTTaGu21DKUSoyckZxAT4M1ysCyQ1g bOglPcZJXLQMiXuBhMpZLE1fIh7ssmR9+oYiVnVe0vnJyVpS9r3oSKCwVC5uw1co /0nse/An9QkrFXnzlqriKtppBtpvHtq7gvNBAzDQdb5hCUKQmwdnEIS0AU5I4d/z rC8g07mXimR6dcWSGKSi3AmOO8VqGbmdXgI/H5aECdyKE807QRzM/t9ygH/MGwIe riaKjzZaaqCxeYUR30+g1a6Ze0jYRPhL3ZewC7KfNte862V/IA4pIu2YN1zeUbY1 JiAeiEfrLEB4lZubaZ0ZjarCggYAtA7tSesmF1Mg9kFrSBXCYa0hQNA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:41 2024 by rpki-client on console-fra.rpki-client.org