$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2738/26JAN-CElFZXYfD9eWMpt46Gbz8.roa File: 26JAN-CElFZXYfD9eWMpt46Gbz8.roa (raw, json) Hash identifier: xzkwQv0+G7HmRZAd1+89vnRwG4dxt5kBbRUn0y8Ts6I= Subject key identifier: DB:A2:40:37:E0:84:94:56:57:61:F0:FD:79:63:29:B7:8E:86:6F:3F Certificate issuer: /CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Certificate serial: 0CA7 Authority key identifier: 8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/26JAN-CElFZXYfD9eWMpt46Gbz8.roa Signing time: Wed 13 Mar 2024 01:22:08 +0000 ROA not before: Wed 13 Mar 2024 01:22:08 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 137798 IP address blocks: 2402:f8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Validity Not Before: Mar 13 01:22:08 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=DBA24037E08494565761F0FD796329B78E866F3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ea:a3:91:3f:8d:83:bc:5e:64:6b:07:84:fe: ab:61:a7:92:60:5c:93:b3:84:57:36:d8:4b:0a:66: 21:a9:ca:83:02:bc:59:29:81:14:50:3a:fd:61:6e: 85:c5:e4:24:14:f5:86:53:4a:0b:fd:ff:ac:1a:31: 2e:b1:84:cf:9e:8c:81:00:7b:38:d3:94:f9:a0:ab: 1b:06:89:d3:3f:96:0e:4c:32:b5:43:d1:f9:96:da: 07:91:fd:f4:93:91:42:87:3a:09:45:c1:0a:6a:5d: b2:b1:76:a1:e7:22:59:c4:65:f7:df:95:07:cb:ef: d1:c4:e8:4c:61:9d:51:0d:ba:ac:08:81:6f:73:5d: 61:ef:d6:23:f7:77:f6:83:bf:8b:47:33:2f:cb:8d: 9c:8c:a6:62:75:d0:9d:c1:24:ff:98:f8:7d:51:07: f6:9f:92:9e:87:67:9f:d0:dc:d2:4c:8e:4e:08:87: f9:10:2e:0a:7f:6d:0a:90:8a:97:73:64:7c:ed:d0: de:fc:02:0e:0b:07:fb:b4:e0:30:ca:4b:40:79:2f: f5:d4:18:98:46:26:be:0e:31:b2:09:3a:50:de:6d: 90:44:af:59:3c:ae:54:61:1e:87:fb:84:ff:fc:b4: d6:1a:68:be:b0:b1:fe:cd:a7:85:32:7d:29:5b:8e: 7b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A2:40:37:E0:84:94:56:57:61:F0:FD:79:63:29:B7:8E:86:6F:3F X509v3 Authority Key Identifier: keyid:8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/26JAN-CElFZXYfD9eWMpt46Gbz8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:f8c0::/48 Signature Algorithm: sha256WithRSAEncryption 88:51:5f:b0:2d:b7:a9:43:59:5d:2d:7a:da:cd:f1:ec:55:26: 6f:ee:54:44:18:7e:75:57:8b:8d:4a:65:c9:5c:4c:1c:7f:6f: e7:d6:16:89:a2:33:a2:59:4e:8a:ca:41:a3:d5:dd:e2:9a:1c: 68:bb:65:8c:29:86:75:4d:0e:aa:bb:1e:2a:8c:cc:c3:68:47: a4:a8:ba:e1:58:88:47:22:55:3c:9d:f1:08:e2:40:fb:df:05: 24:79:28:0e:5f:b8:0d:3b:68:b2:b8:4e:40:e1:fc:49:77:95: a1:5f:63:69:a4:f0:bf:7f:5a:e3:a3:f4:84:45:48:ad:76:ca: d8:f6:c3:d8:49:61:c8:49:e3:8b:7e:00:52:b1:b6:d9:2e:fc: 2a:bf:0c:2f:ba:c8:50:91:bf:72:8f:5b:13:bb:e1:db:23:ac: 5f:87:7f:c8:c2:40:6c:21:8c:ea:21:43:b6:2b:a1:27:ef:9d: a2:dc:11:2a:f8:89:0d:cc:3b:33:54:49:45:bb:6b:e1:39:41: 92:11:ba:82:7d:0d:25:33:72:96:be:96:9d:7c:12:9d:fc:3a: 68:9f:02:26:96:99:ec:7a:c8:a1:cc:69:64:7e:c4:f1:a9:55: f4:2e:9c:68:dd:2c:ca:26:18:13:ba:75:be:ae:35:b8:11:a4: d5:6d:18:1c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEUz RTAyNzE0MkM2MzNENTY1OTg0MThERjZERUJDMDFCREQ4MDA4QzAeFw0yNDAzMTMw MTIyMDhaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKERCQTI0MDM3RTA4NDk0 NTY1NzYxRjBGRDc5NjMyOUI3OEU4NjZGM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf6qORP42DvF5kaweE/qthp5JgXJOzhFc22EsKZiGpyoMCvFkp gRRQOv1hboXF5CQU9YZTSgv9/6waMS6xhM+ejIEAezjTlPmgqxsGidM/lg5MMrVD 0fmW2geR/fSTkUKHOglFwQpqXbKxdqHnIlnEZffflQfL79HE6ExhnVENuqwIgW9z XWHv1iP3d/aDv4tHMy/LjZyMpmJ10J3BJP+Y+H1RB/afkp6HZ5/Q3NJMjk4Ih/kQ Lgp/bQqQipdzZHzt0N78Ag4LB/u04DDKS0B5L/XUGJhGJr4OMbIJOlDebZBEr1k8 rlRhHof7hP/8tNYaaL6wsf7Np4UyfSlbjnsbAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU26JAN+CElFZXYfD9eWMpt46Gbz8wHwYDVR0jBBgwFoAUjj4CcULGM9VlmEGN 9t68Ab3YAIwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcz OC9qajRDY1VMR005VmxtRUdOOXQ2OEFiM1lBSXcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2pqNENjVUxHTTlWbG1FR045dDY4QWIzWUFJdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MzgvMjZKQU4tQ0VsRlpY WWZEOWVXTXB0NDZHYno4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQC+MAAADANBgkqhkiG9w0BAQsFAAOCAQEAiFFfsC23qUNZXS162s3x7FUm b+5URBh+dVeLjUplyVxMHH9v59YWiaIzollOispBo9Xd4pocaLtljCmGdU0Oqrse KozMw2hHpKi64ViIRyJVPJ3xCOJA+98FJHkoDl+4DTtosrhOQOH8SXeVoV9jaaTw v39a46P0hEVIrXbK2PbD2ElhyEnji34AUrG22S78Kr8ML7rIUJG/co9bE7vh2yOs X4d/yMJAbCGM6iFDtiuhJ++dotwRKviJDcw7M1RJRbtr4TlBkhG6gn0NJTNylr6W nXwSnfw6aJ8CJpaZ7HrIocxpZH7E8alV9C6caN0syiYYE7p1vq41uBGk1W0YHA== -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:10 2024 by rpki-client on console-fra.rpki-client.org