$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/yC4Dl5t4JMLRq4Jv691_JH5W63w.roa File: yC4Dl5t4JMLRq4Jv691_JH5W63w.roa (raw, json) Hash identifier: 8DvAGeA2+V/WoetjNzINoQrhbzKwBHMC8WyHpbpL09E= Subject key identifier: C8:2E:03:97:9B:78:24:C2:D1:AB:82:6F:EB:DD:7F:24:7E:56:EB:7C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 14D0 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/yC4Dl5t4JMLRq4Jv691_JH5W63w.roa Signing time: Wed 11 Sep 2024 02:23:52 +0000 ROA not before: Wed 11 Sep 2024 02:23:52 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24373 IP address blocks: 45.252.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5328 (0x14d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 11 02:23:52 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=C82E03979B7824C2D1AB826FEBDD7F247E56EB7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:ed:31:79:85:bb:4b:58:05:52:81:d1:f2: 09:ba:ff:2b:51:9d:ed:82:46:e2:a8:09:44:50:f8: 0a:bd:1e:3c:14:6e:47:8d:7a:48:f9:cd:58:c8:5e: 9f:7d:21:e7:63:cc:b5:24:de:76:c9:e2:e8:65:31: b4:4c:2a:d1:63:d2:e1:42:d5:c5:a1:81:8c:24:ab: 57:73:f8:d8:5e:2b:82:48:b6:76:9d:ea:f4:29:d7: cf:c5:0b:f7:33:f6:40:76:a3:be:80:96:56:d2:78: e5:c9:6f:18:b7:db:dc:fb:f5:14:b1:1b:ba:01:14: 5e:c6:8b:91:47:b4:63:ce:a4:8b:b3:8f:97:45:ba: d3:0e:a7:f2:60:82:a0:44:8c:dd:d3:31:61:7d:0b: 17:fa:b2:cc:0d:5a:36:98:c5:c2:9f:0a:29:be:89: 53:e2:03:bb:53:18:ad:03:0c:f6:59:b6:59:6a:34: ed:33:42:9f:2a:fa:b9:8f:e6:ed:6e:69:3f:c6:68: 59:7a:18:3b:29:86:92:5a:a8:6f:e7:bb:2c:9d:be: 84:10:3a:58:89:28:d1:0d:c6:4a:16:c6:8e:3e:db: b7:f1:fc:0f:08:74:64:bf:2c:65:8e:a0:ef:05:7a: 35:5c:24:f3:dd:2f:c6:e3:07:27:53:5b:a0:9d:3d: f4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:2E:03:97:9B:78:24:C2:D1:AB:82:6F:EB:DD:7F:24:7E:56:EB:7C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/yC4Dl5t4JMLRq4Jv691_JH5W63w.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.40.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:8c:7d:65:3b:27:51:e4:3c:ec:ea:46:c6:2f:2e:da:79:2b: 84:0d:dc:24:22:a4:76:2a:50:3b:55:bc:ce:d3:5b:f3:b4:5f: 8a:e4:06:db:3d:ba:5b:9f:d5:1c:02:1f:97:cb:b0:95:47:71: 6c:66:aa:2b:3e:2b:51:92:1d:af:29:9d:fe:8c:3b:d9:da:f7: e0:c1:02:c3:a1:9f:0d:36:c7:57:df:da:1d:6f:ff:ed:31:fa: 8a:51:ec:f0:fc:76:44:9c:7f:52:02:81:7c:96:8c:0a:0b:d6: 00:99:95:ea:e2:e7:b8:9d:a6:14:00:a0:e9:5f:da:5a:58:9c: 1b:7c:b7:d6:c9:89:7e:49:37:aa:01:8e:ae:80:7f:51:1f:c4: b3:c9:ac:34:6e:64:7a:df:4b:ff:7c:63:1c:99:df:8d:d7:bb: b0:3b:69:6c:22:8a:18:a7:12:56:9a:5d:4e:ad:63:6d:88:49: 46:d6:6f:03:7d:d6:23:a3:87:c1:05:6a:bb:a6:31:48:fc:57: 6b:10:bd:dd:6a:16:df:47:dc:a2:6c:da:77:cb:a4:93:16:ec: 85:85:3a:61:14:86:de:01:d2:32:9f:d1:ce:d2:8d:0a:b8:94: 2d:df:11:2d:4c:db:de:e7:c4:d7:85:e7:8e:0b:cf:a5:f3:f2: 30:1c:7b:d3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw MjIzNTJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEM4MkUwMzk3OUI3ODI0 QzJEMUFCODI2RkVCREQ3RjI0N0U1NkVCN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC03+0xeYW7S1gFUoHR8gm6/ytRne2CRuKoCURQ+Aq9HjwUbkeN ekj5zVjIXp99IedjzLUk3nbJ4uhlMbRMKtFj0uFC1cWhgYwkq1dz+NheK4JItnad 6vQp18/FC/cz9kB2o76AllbSeOXJbxi329z79RSxG7oBFF7Gi5FHtGPOpIuzj5dF utMOp/JggqBEjN3TMWF9Cxf6sswNWjaYxcKfCim+iVPiA7tTGK0DDPZZtllqNO0z Qp8q+rmP5u1uaT/GaFl6GDsphpJaqG/nuyydvoQQOliJKNENxkoWxo4+27fx/A8I dGS/LGWOoO8FejVcJPPdL8bjBydTW6CdPfS7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUyC4Dl5t4JMLRq4Jv691/JH5W63wwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3lDNERsNXQ0Sk1MUnE0 SnY2OTFfSkg1VzYzdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/CgwDQYJKoZIhvcNAQELBQADggEBAJ2MfWU7J1HkPOzqRsYvLtp5K4QN3CQi pHYqUDtVvM7TW/O0X4rkBts9uluf1RwCH5fLsJVHcWxmqis+K1GSHa8pnf6MO9na 9+DBAsOhnw02x1ff2h1v/+0x+opR7PD8dkScf1ICgXyWjAoL1gCZleri57idphQA oOlf2lpYnBt8t9bJiX5JN6oBjq6Af1EfxLPJrDRuZHrfS/98YxyZ343Xu7A7aWwi ihinElaaXU6tY22ISUbWbwN91iOjh8EFarumMUj8V2sQvd1qFt9H3KJs2nfLpJMW 7IWFOmEUht4B0jKf0c7SjQq4lC3fES1M297nxNeF544Lz6Xz8jAce9M= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:41 2024 by rpki-client on console-fra.rpki-client.org