$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa File: wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa (raw, json) Hash identifier: SIJtznd8DKb81XawAQ9VVkcmX3G5HLBofJzs92kFZYE= Subject key identifier: C1:BD:E3:2E:B3:BD:9F:3D:98:C4:16:AA:1D:C5:A1:F1:7D:E7:BE:0B Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 12EC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa Signing time: Sat 29 Jun 2024 19:44:16 +0000 ROA not before: Sat 29 Jun 2024 19:44:16 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24373 IP address blocks: 2406:1e80::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4844 (0x12ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jun 29 19:44:16 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=C1BDE32EB3BD9F3D98C416AA1DC5A1F17DE7BE0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7e:d6:55:40:41:21:d2:99:99:a7:27:0d:cd: 2f:87:a2:49:04:56:cf:75:18:c5:6b:8e:e9:d3:7c: 28:57:02:a3:9a:b5:7d:ed:4a:ef:ff:7a:9d:d9:6e: 9a:cc:5d:d0:7e:91:ad:91:72:57:8f:ea:6e:80:9c: 9c:09:f3:5a:b4:ef:02:66:82:36:af:a5:30:56:71: 4d:01:2d:9d:fd:d4:f9:2f:90:43:10:ee:22:d3:5a: ab:47:34:aa:4b:0b:70:2a:e2:8c:0a:d3:8e:5b:4c: 04:59:63:02:e9:fb:6b:bf:1f:59:48:f9:46:1f:ce: 54:b9:a7:6d:c0:a9:b9:f1:e1:87:27:54:71:ef:84: 87:a2:78:2b:ef:bb:ac:bb:0c:de:2b:fd:6a:4a:1b: 62:4e:91:6b:b8:5c:9c:ba:65:e7:b1:32:71:e0:c5: 77:18:f2:21:c2:88:4f:53:61:bb:8c:3b:02:39:38: 39:c4:10:42:44:eb:32:7b:c5:1a:ca:27:f2:17:8c: aa:b2:5d:88:55:e2:fe:45:bc:3d:ed:cc:38:3f:62: aa:c4:95:3b:0a:62:4c:90:ce:77:24:49:7f:1b:50: 9f:7f:a8:9d:6e:45:8b:9f:c7:dc:88:95:83:e0:be: ec:d8:de:1b:ad:70:e5:11:f8:5d:a1:9c:bc:c0:83: 5f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BD:E3:2E:B3:BD:9F:3D:98:C4:16:AA:1D:C5:A1:F1:7D:E7:BE:0B X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:1e80::/48 Signature Algorithm: sha256WithRSAEncryption de:ce:66:17:72:6b:37:47:1d:66:67:17:bb:6d:7c:f8:03:48: c7:c3:ce:a5:89:94:72:b9:b3:b2:cb:92:cd:d8:97:ae:a8:dd: 8f:9f:c1:87:9a:8a:e0:82:cd:eb:f8:7b:f4:15:f6:d4:44:f7: 45:4f:c8:b4:dc:76:1e:8e:9e:bc:6a:27:d3:92:1f:7a:d1:05: db:27:e2:4c:13:6c:f3:8d:84:68:83:8b:fd:15:36:35:7f:21: 97:9c:59:2d:17:7f:8d:6d:53:c8:03:f0:4a:ea:3d:0f:89:4b: f4:bf:64:13:1c:cd:04:b9:89:0a:23:3d:c4:4c:2d:2f:ac:4c: ff:21:3d:ce:42:7c:06:5b:ad:49:b7:3f:ed:ec:3a:c6:67:0d: ff:d2:74:b0:12:f1:eb:6d:df:6a:51:85:cc:52:9c:8f:d6:6f: 11:bc:e9:31:31:17:6b:68:e5:d3:64:6d:0f:5b:3f:df:35:87: 9f:e8:d1:6f:ad:e9:17:09:76:7e:a4:ea:79:cb:df:3f:dd:cd: 09:6d:a4:62:64:18:3b:66:33:64:f9:6c:3a:87:af:a8:22:e7: 55:fa:52:a6:f7:bd:4f:b1:eb:d2:14:e7:75:15:6b:51:f8:0b: b3:32:b5:76:23:b1:42:1f:59:b1:68:ad:ff:c6:23:d6:dd:e4: 4f:61:61:3a -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICEuwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA2Mjkx OTQ0MTZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEMxQkRFMzJFQjNCRDlG M0Q5OEM0MTZBQTFEQzVBMUYxN0RFN0JFMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVftZVQEEh0pmZpycNzS+HokkEVs91GMVrjunTfChXAqOatX3t Su//ep3ZbprMXdB+ka2RcleP6m6AnJwJ81q07wJmgjavpTBWcU0BLZ391PkvkEMQ 7iLTWqtHNKpLC3Aq4owK045bTARZYwLp+2u/H1lI+UYfzlS5p23Aqbnx4YcnVHHv hIeieCvvu6y7DN4r/WpKG2JOkWu4XJy6ZeexMnHgxXcY8iHCiE9TYbuMOwI5ODnE EEJE6zJ7xRrKJ/IXjKqyXYhV4v5FvD3tzDg/YqrElTsKYkyQznckSX8bUJ9/qJ1u RYufx9yIlYPgvuzY3hutcOUR+F2hnLzAg18xAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUwb3jLrO9nz2YxBaqHcWh8X3nvgswHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3diM2pMck85bnoyWXhC YXFIY1doOFgzbnZncy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAkBh6AAAAwDQYJKoZIhvcNAQELBQADggEBAN7OZhdyazdHHWZnF7ttfPgDSMfD zqWJlHK5s7LLks3Yl66o3Y+fwYeaiuCCzev4e/QV9tRE90VPyLTcdh6OnrxqJ9OS H3rRBdsn4kwTbPONhGiDi/0VNjV/IZecWS0Xf41tU8gD8ErqPQ+JS/S/ZBMczQS5 iQojPcRMLS+sTP8hPc5CfAZbrUm3P+3sOsZnDf/SdLAS8ett32pRhcxSnI/WbxG8 6TExF2to5dNkbQ9bP981h5/o0W+t6RcJdn6k6nnL3z/dzQltpGJkGDtmM2T5bDqH r6gi51X6Uqb3vU+x69IU53UVa1H4C7MytXYjsUIfWbForf/GI9bd5E9hYTo= -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:57 2024 by rpki-client on console-ams.rpki-client.org