$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/464FpPDrSpTSW2eHgF33nE-jHpw.roa File: 464FpPDrSpTSW2eHgF33nE-jHpw.roa (raw, json) Hash identifier: 9wsFkR0XVEngwvWj//m0j5gvfe5qhyE2YYigdQ+rKQ8= Subject key identifier: E3:AE:05:A4:F0:EB:4A:94:D2:5B:67:87:80:5D:F7:9C:4F:A3:1E:9C Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 0810 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/464FpPDrSpTSW2eHgF33nE-jHpw.roa Signing time: Tue 19 Nov 2024 12:40:41 +0000 ROA not before: Tue 19 Nov 2024 12:40:41 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 398704 IP address blocks: 58.66.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2064 (0x810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Nov 19 12:40:41 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=E3AE05A4F0EB4A94D25B6787805DF79C4FA31E9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3b:43:32:d2:a2:98:fb:05:65:fc:14:e0:46: d5:1d:7d:30:1e:46:92:de:60:54:14:83:c8:a4:e3: e1:4c:68:37:e6:b9:3f:1a:fa:e8:44:d8:c6:b1:62: 2f:e1:24:1c:90:30:03:5a:16:2c:1f:ac:97:bb:ee: 83:f8:92:53:07:23:ef:d7:49:4f:c4:36:44:bc:83: 60:5b:a2:c5:90:fc:6e:6f:aa:43:a3:4b:25:67:68: a7:9a:d4:17:96:a3:68:d3:9d:6f:03:cb:38:70:b3: 72:28:0b:12:a6:ff:b8:ed:61:37:36:95:5d:d1:0e: 8e:1b:de:de:dd:34:35:d1:de:16:0b:f3:f9:d6:c3: 96:90:41:69:f1:f8:7f:83:d9:e7:c7:99:bb:f5:85: 32:f6:c9:2f:71:cd:81:c2:88:99:34:ae:86:75:e6: 2b:3d:bd:d1:88:51:c8:91:f6:f6:1e:2d:a1:11:c2: 39:07:ac:67:29:eb:fc:83:66:43:5a:d3:55:e7:ea: a3:86:8e:d3:ca:77:29:81:a8:cb:7f:2c:f3:69:9d: 44:19:e7:3a:61:64:8d:25:6f:72:e2:23:86:c8:39: c0:da:d8:bb:42:7a:3e:85:56:b4:41:49:80:51:21: 72:b9:8f:c7:ad:eb:e9:58:ad:c8:4e:94:98:80:fb: 83:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AE:05:A4:F0:EB:4A:94:D2:5B:67:87:80:5D:F7:9C:4F:A3:1E:9C X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/464FpPDrSpTSW2eHgF33nE-jHpw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.66.180.0/24 Signature Algorithm: sha256WithRSAEncryption 62:16:67:f0:88:9a:32:a3:a8:24:03:30:f5:a4:31:53:32:be: c0:3d:50:45:0f:cc:85:89:3d:f4:06:85:02:60:4e:c1:0e:e3: 0d:04:14:df:f0:56:08:ef:8f:5f:13:dd:6a:39:a5:af:1f:bc: 2c:3c:7e:44:90:43:f6:fb:d7:5d:d3:49:9c:a0:89:d3:51:fd: 2b:9a:f8:98:8b:6e:97:1a:63:70:ba:7b:17:fc:46:0b:e3:45: 32:28:49:c5:b2:5c:10:de:42:92:6c:25:e0:4f:3b:2a:29:6a: e4:f2:e7:44:0b:fa:25:09:c3:a0:6a:b2:dd:10:e3:9e:38:22: 46:34:23:3d:b1:64:8a:ee:da:03:b7:e7:2e:a6:fb:47:86:6b: f9:bb:f6:86:03:f1:47:74:ea:1f:13:a1:21:72:af:c4:1b:a7: cf:99:98:1f:72:ff:ec:4e:15:1d:2c:6b:d3:4b:18:1e:34:5c: 0e:4f:55:95:ba:dd:fd:cb:ff:65:04:9c:99:2e:28:4d:83:7c: 4b:48:7e:e9:fd:46:c0:75:29:5d:46:57:84:e9:b8:28:9b:99: c8:91:43:2b:cb:2c:e9:a1:ce:5e:5a:8c:c8:87:5b:1d:0a:24: 0e:13:ae:aa:b8:d8:fa:86:3f:71:d1:3b:ae:69:f6:4b:25:73: 69:a8:fb:08 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDExMTkx MjQwNDFaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEUzQUUwNUE0RjBFQjRB OTREMjVCNjc4NzgwNURGNzlDNEZBMzFFOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpO0My0qKY+wVl/BTgRtUdfTAeRpLeYFQUg8ik4+FMaDfmuT8a +uhE2MaxYi/hJByQMANaFiwfrJe77oP4klMHI+/XSU/ENkS8g2BbosWQ/G5vqkOj SyVnaKea1BeWo2jTnW8Dyzhws3IoCxKm/7jtYTc2lV3RDo4b3t7dNDXR3hYL8/nW w5aQQWnx+H+D2efHmbv1hTL2yS9xzYHCiJk0roZ15is9vdGIUciR9vYeLaERwjkH rGcp6/yDZkNa01Xn6qOGjtPKdymBqMt/LPNpnUQZ5zphZI0lb3LiI4bIOcDa2LtC ej6FVrRBSYBRIXK5j8et6+lYrchOlJiA+4NvAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU464FpPDrSpTSW2eHgF33nE+jHpwwHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvNDY0RnBQRHJTcFRTVzJlSGdG MzNuRS1qSHB3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADpC tDANBgkqhkiG9w0BAQsFAAOCAQEAYhZn8IiaMqOoJAMw9aQxUzK+wD1QRQ/MhYk9 9AaFAmBOwQ7jDQQU3/BWCO+PXxPdajmlrx+8LDx+RJBD9vvXXdNJnKCJ01H9K5r4 mItulxpjcLp7F/xGC+NFMihJxbJcEN5Ckmwl4E87Kilq5PLnRAv6JQnDoGqy3RDj njgiRjQjPbFkiu7aA7fnLqb7R4Zr+bv2hgPxR3TqHxOhIXKvxBunz5mYH3L/7E4V HSxr00sYHjRcDk9Vlbrd/cv/ZQScmS4oTYN8S0h+6f1GwHUpXUZXhOm4KJuZyJFD K8ss6aHOXlqMyIdbHQokDhOuqrjY+oY/cdE7rmn2SyVzaaj7CA== -----END CERTIFICATE-----Generated at Mon Nov 25 11:22:33 2024 by rpki-client on console-ams.rpki-client.org