$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/76cx8fquGQlU67eDFsoViD7rZXg.roa File: 76cx8fquGQlU67eDFsoViD7rZXg.roa (raw, json) Hash identifier: n9L11ufu3a/2aLZGTCC1juQpzKRigFfe6Jl/VTLRgWE= Subject key identifier: EF:A7:31:F1:FA:AE:19:09:54:EB:B7:83:16:CA:15:88:3E:EB:65:78 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 1E78 Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/76cx8fquGQlU67eDFsoViD7rZXg.roa Signing time: Wed 13 Mar 2024 01:21:36 +0000 ROA not before: Wed 13 Mar 2024 01:21:36 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 134762 IP address blocks: 43.226.50.0/23 maxlen: 23 43.226.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 21:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7800 (0x1e78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Mar 13 01:21:36 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=EFA731F1FAAE190954EBB78316CA15883EEB6578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:bb:95:17:f9:44:95:e8:b6:87:a9:60:a9: dd:cc:a8:10:21:c2:08:c6:8d:c2:9b:ef:9f:13:ad: cd:39:4e:91:a3:e9:9e:df:d1:06:ac:b3:87:d2:c3: 68:66:21:05:7d:3b:f9:8f:5d:63:91:20:fc:37:60: b7:f7:80:55:d4:b2:5a:f6:56:21:48:0f:5a:a0:6c: e5:88:35:dc:7f:6e:62:0f:6a:76:72:d7:43:fb:c3: b2:6c:3f:52:78:cb:5b:6f:01:bc:d6:a8:1f:85:57: 34:0f:fe:cc:0f:b3:b2:88:6c:d7:bc:09:6f:9f:a6: 3a:e9:2c:bf:2c:51:9f:db:13:e4:63:aa:29:b5:84: 85:56:85:99:4b:dd:47:e5:de:44:30:5d:ca:e0:8d: c0:63:e0:63:5e:91:05:ed:32:9e:7f:da:49:71:c4: 7e:5b:62:0d:18:dd:c4:42:f3:c6:a5:67:ac:aa:94: eb:89:5b:08:6f:2e:22:95:56:f1:3d:54:ba:d6:3c: 17:23:7c:47:ec:e7:53:8d:65:2b:ea:b4:c9:08:76: 4a:c7:98:04:77:33:40:03:3d:d2:c3:38:ef:16:e5: 6b:c8:5f:8d:c6:24:08:ee:e2:a6:37:21:31:09:cd: 14:99:75:64:af:f9:5b:28:f9:ae:7b:24:8e:b4:2e: a6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A7:31:F1:FA:AE:19:09:54:EB:B7:83:16:CA:15:88:3E:EB:65:78 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/76cx8fquGQlU67eDFsoViD7rZXg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.50.0/23 43.226.76.0/23 Signature Algorithm: sha256WithRSAEncryption a3:7b:34:1a:7d:c5:25:77:ca:9e:ab:36:e9:e8:2f:5d:19:85: ac:86:69:37:7f:10:66:5d:21:9f:4a:ee:b3:36:3e:4f:ae:4f: e9:9a:6a:64:ce:e5:1b:77:03:72:cb:89:60:b1:fc:52:ba:c7: 66:2b:ec:6b:2c:8b:f6:fe:ab:c2:2b:30:63:04:00:da:c3:ba: 03:ff:96:d1:01:83:e1:fb:30:13:ee:95:59:95:d8:3c:ec:bc: e1:46:e6:89:5e:7a:ef:88:25:0f:bb:f1:04:ae:05:a6:a9:2e: f9:ad:2e:61:9f:69:f5:41:c2:07:e5:59:48:60:3e:d4:4d:5c: f0:01:02:57:55:22:7e:3b:e6:d4:d5:27:5a:0e:5a:39:f7:bb: 93:16:91:2d:71:f1:24:40:53:ab:e1:23:63:d2:ae:da:33:81: ef:72:e7:7c:31:7f:2d:be:57:0c:b3:a2:d5:da:b8:5f:a7:d4: e1:cd:75:1c:21:3c:c6:40:ee:4b:76:a5:89:eb:34:f2:ef:c3: 62:af:25:d0:cb:67:c7:51:57:35:fb:db:3d:fd:96:f2:81:c2: e3:db:a7:8f:1f:87:21:bd:8e:9a:e1:0b:d6:e6:88:b9:38:0a: 34:81:8b:d8:6e:5a:f6:2b:1a:fa:4b:dd:9a:c5:c7:4f:64:2e: 37:79:11:e8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICHngwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNDAzMTMw MTIxMzZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEVGQTczMUYxRkFBRTE5 MDk1NEVCQjc4MzE2Q0ExNTg4M0VFQjY1NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAn7uVF/lElei2h6lgqd3MqBAhwgjGjcKb758Trc05TpGj6Z7f 0Qass4fSw2hmIQV9O/mPXWORIPw3YLf3gFXUslr2ViFID1qgbOWINdx/bmIPanZy 10P7w7JsP1J4y1tvAbzWqB+FVzQP/swPs7KIbNe8CW+fpjrpLL8sUZ/bE+Rjqim1 hIVWhZlL3Ufl3kQwXcrgjcBj4GNekQXtMp5/2klxxH5bYg0Y3cRC88alZ6yqlOuJ WwhvLiKVVvE9VLrWPBcjfEfs51ONZSvqtMkIdkrHmAR3M0ADPdLDOO8W5WvIX43G JAju4qY3ITEJzRSZdWSv+Vso+a57JI60LqYdAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQU76cx8fquGQlU67eDFsoViD7rZXgwHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvNzZjeDhmcXVHUWxV NjdlREZzb1ZpRDdyWlhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEw DAMEASviMgMEASviTDANBgkqhkiG9w0BAQsFAAOCAQEAo3s0Gn3FJXfKnqs26egv XRmFrIZpN38QZl0hn0ruszY+T65P6ZpqZM7lG3cDcsuJYLH8UrrHZivsayyL9v6r wiswYwQA2sO6A/+W0QGD4fswE+6VWZXYPOy84UbmiV5674glD7vxBK4Fpqku+a0u YZ9p9UHCB+VZSGA+1E1c8AECV1Uifjvm1NUnWg5aOfe7kxaRLXHxJEBTq+EjY9Ku 2jOB73LnfDF/Lb5XDLOi1dq4X6fU4c11HCE8xkDuS3alies08u/DYq8l0Mtnx1FX NfvbPf2W8oHC49unjx+HIb2OmuEL1uaIuTgKNIGL2G5a9isa+kvdmsXHT2QuN3kR 6A== -----END CERTIFICATE-----Generated at Fri Nov 22 19:57:39 2024 by rpki-client on console-ams.rpki-client.org