$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/IXeiX71f_6gAR548Nobga3lVkz8.roa File: IXeiX71f_6gAR548Nobga3lVkz8.roa (raw, json) Hash identifier: smi9Kab98jhCPsMzxiV2ynWxTskxGQepYuwrRHTE0Ts= Subject key identifier: 21:77:A2:5F:BD:5F:FF:A8:00:47:9E:3C:36:86:E0:6B:79:55:93:3F Certificate issuer: /CN=9A5C74AE3F8CD3B679AC56C473F450378591926B Certificate serial: 19D7 Authority key identifier: 9A:5C:74:AE:3F:8C:D3:B6:79:AC:56:C4:73:F4:50:37:85:91:92:6B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/IXeiX71f_6gAR548Nobga3lVkz8.roa Signing time: Tue 03 Sep 2024 19:46:42 +0000 ROA not before: Tue 03 Sep 2024 19:46:42 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 9391 IP address blocks: 27.103.0.0/16 maxlen: 16 119.16.0.0/16 maxlen: 16 125.169.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/mlx0rj-M07Z5rFbEc_RQN4WRkms.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/mlx0rj-M07Z5rFbEc_RQN4WRkms.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 15:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6615 (0x19d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5C74AE3F8CD3B679AC56C473F450378591926B Validity Not Before: Sep 3 19:46:42 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=2177A25FBD5FFFA800479E3C3686E06B7955933F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:ae:14:d0:b7:c4:fe:6a:b9:0b:0c:38:26: 5f:73:49:1d:d9:2b:54:8c:36:18:a1:4b:69:27:9b: 28:85:8c:93:98:41:d5:59:41:8f:1d:f0:6a:fb:32: 70:71:80:f6:60:8c:1a:06:d6:8f:9e:d0:41:72:c0: 0b:f4:b4:b2:39:f1:8c:da:34:16:82:01:90:be:1f: de:31:a8:2b:05:24:2e:15:4e:d4:fd:6c:ba:60:00: 97:b7:bf:db:d5:53:89:e8:d2:a0:8b:8e:08:08:5a: e8:9d:cd:63:df:2d:79:60:25:be:b8:5f:fc:fc:9c: 61:6f:8a:b1:e5:3e:41:30:e8:3d:c6:d5:d1:ee:f0: 4c:1f:be:31:16:36:24:7d:f7:1a:a5:61:16:09:a0: 7c:28:26:be:fd:8a:9c:c0:5f:55:84:69:cf:39:e6: 11:8d:42:6f:97:84:2b:fa:8e:47:8a:a8:3f:26:ae: c1:d6:4b:3c:0f:ca:66:4f:e7:ee:15:59:e3:25:78: 13:74:b6:95:45:2e:2f:bd:8f:6f:06:c6:95:6f:a8: 65:b2:11:2b:38:a4:97:69:58:20:08:56:03:6b:d7: 96:70:1d:17:1d:44:20:16:e4:b5:a8:9f:9b:c5:93: d8:3b:25:51:ec:17:9f:bc:db:ac:ac:d7:7d:d9:91: d7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:77:A2:5F:BD:5F:FF:A8:00:47:9E:3C:36:86:E0:6B:79:55:93:3F X509v3 Authority Key Identifier: keyid:9A:5C:74:AE:3F:8C:D3:B6:79:AC:56:C4:73:F4:50:37:85:91:92:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/mlx0rj-M07Z5rFbEc_RQN4WRkms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/IXeiX71f_6gAR548Nobga3lVkz8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.103.0.0/16 119.16.0.0/16 125.169.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:e5:92:c7:23:6b:0f:51:72:b1:0f:ca:ed:3a:00:2e:a2:75: 15:f6:5f:b5:d7:c1:21:26:54:92:99:7a:ec:3b:8e:af:ad:9f: 5a:10:90:ba:30:47:f9:ab:e9:10:eb:50:be:28:bf:69:d1:9f: bd:7b:ba:4d:99:50:27:d3:d2:fe:19:96:e5:2e:7c:d7:b4:a2: 09:12:68:5b:05:a4:2b:c8:53:2f:20:34:dc:92:10:59:1f:ea: dd:a2:bb:59:d4:41:64:52:58:58:23:89:ca:c5:2b:8a:ed:65: b8:9a:68:92:57:78:dc:4d:2c:96:7d:d5:19:92:75:5a:57:37: 57:42:03:99:29:59:59:86:15:02:c5:32:9b:70:1c:95:a8:37: 43:e8:b8:40:ad:28:95:3d:1d:1d:39:df:db:b2:4d:8d:8d:16: 64:dc:41:68:ee:73:e1:5d:f4:66:3b:84:2c:33:58:b8:d2:00: 6b:9f:aa:e8:11:61:ae:1f:d0:51:f7:84:81:48:8e:40:72:f2: 5c:b9:f5:1e:89:a9:37:30:ba:e3:2f:c4:a8:12:2a:ce:a5:34: 84:88:ba:eb:ed:d6:b1:f0:0d:11:17:1a:ff:7a:a0:69:7e:2b: a5:84:d5:d4:1c:ca:10:95:01:69:2b:0b:a4:c0:fd:ce:7d:d0: b2:b6:92:c9 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgICGdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUE1 Qzc0QUUzRjhDRDNCNjc5QUM1NkM0NzNGNDUwMzc4NTkxOTI2QjAeFw0yNDA5MDMx OTQ2NDJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDIxNzdBMjVGQkQ1RkZG QTgwMDQ3OUUzQzM2ODZFMDZCNzk1NTkzM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBma4U0LfE/mq5Cww4Jl9zSR3ZK1SMNhihS2knmyiFjJOYQdVZ QY8d8Gr7MnBxgPZgjBoG1o+e0EFywAv0tLI58YzaNBaCAZC+H94xqCsFJC4VTtT9 bLpgAJe3v9vVU4no0qCLjggIWuidzWPfLXlgJb64X/z8nGFvirHlPkEw6D3G1dHu 8EwfvjEWNiR99xqlYRYJoHwoJr79ipzAX1WEac855hGNQm+XhCv6jkeKqD8mrsHW SzwPymZP5+4VWeMleBN0tpVFLi+9j28GxpVvqGWyESs4pJdpWCAIVgNr15ZwHRcd RCAW5LWon5vFk9g7JVHsF5+826ys133ZkdeXAgMBAAGjggH4MIIB9DAdBgNVHQ4E FgQUIXeiX71f/6gAR548Nobga3lVkz8wHwYDVR0jBBgwFoAUmlx0rj+M07Z5rFbE c/RQN4WRkmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv bWx4MHJqLU0wN1o1ckZiRWNfUlFONFdSa21zLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9tbHgwcmotTTA3WjVyRmJFY19SUU40V1JrbXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9JWGVpWDcxZl82Z0FSNTQ4 Tm9iZ2EzbFZrejgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCgGCCsGAQUFBwEHAQH/BBkwFzAVBAIAATAPAwMA G2cDAwB3EAMDAH2pMA0GCSqGSIb3DQEBCwUAA4IBAQDK5ZLHI2sPUXKxD8rtOgAu onUV9l+118EhJlSSmXrsO46vrZ9aEJC6MEf5q+kQ61C+KL9p0Z+9e7pNmVAn09L+ GZblLnzXtKIJEmhbBaQryFMvIDTckhBZH+rdortZ1EFkUlhYI4nKxSuK7WW4mmiS V3jcTSyWfdUZknVaVzdXQgOZKVlZhhUCxTKbcByVqDdD6LhArSiVPR0dOd/bsk2N jRZk3EFo7nPhXfRmO4QsM1i40gBrn6roEWGuH9BR94SBSI5AcvJcufUeiak3MLrj L8SoEirOpTSEiLrr7dax8A0RFxr/eqBpfiulhNXUHMoQlQFpKwukwP3OfdCytpLJ -----END CERTIFICATE-----Generated at Tue Nov 26 11:14:44 2024 by rpki-client on console-fra.rpki-client.org