$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/P-8An1LTAihtvy8lxn5fTTnmaH0.roa File: P-8An1LTAihtvy8lxn5fTTnmaH0.roa (raw, json) Hash identifier: S8hF5qUV3RedR8QdulRc4/jTUiICAcSLf/Ob0oVv+hY= Subject key identifier: 3F:EF:00:9F:52:D3:02:28:6D:BF:2F:25:C6:7E:5F:4D:39:E6:68:7D Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 0C5A Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/P-8An1LTAihtvy8lxn5fTTnmaH0.roa Signing time: Wed 28 Aug 2024 08:53:59 +0000 ROA not before: Wed 28 Aug 2024 08:53:59 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 62387 IP address blocks: 119.59.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Aug 28 08:53:59 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3FEF009F52D302286DBF2F25C67E5F4D39E6687D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c9:82:55:ea:95:43:0c:86:9e:8d:64:c1:59: d1:20:c4:ce:1f:d7:a1:3c:2b:f1:38:c4:cf:46:f3: aa:b2:54:b3:3c:35:f7:1e:b5:c6:c8:bd:51:a1:1f: 9f:50:2b:c4:d8:e6:e9:90:5f:a4:32:bd:0a:fe:ff: 2f:f0:eb:e9:7b:cc:97:c2:67:d4:ff:3a:81:7f:54: b3:f2:45:76:12:fe:6b:c3:1a:39:c2:bb:04:0b:ba: 01:b3:bf:ae:96:93:30:ee:a0:f5:7d:e0:a1:88:56: eb:0b:1b:ce:aa:80:fc:be:bd:51:de:d5:2f:30:b0: bb:f6:d6:37:62:d9:6d:26:2d:63:86:ef:fb:e0:34: da:92:7b:fa:9e:2e:f0:70:43:20:86:9a:80:bd:79: c0:9d:57:7b:a9:bc:06:a8:80:17:c6:98:8f:68:dc: 55:94:7e:f1:bd:1a:30:61:6a:06:72:59:84:47:eb: b2:f5:4c:52:32:78:b8:c2:a6:39:28:f2:ad:a2:e3: 4f:b7:bd:8c:75:6e:14:0d:f3:65:6e:2f:a8:40:9e: e0:3e:c8:c0:a9:d4:81:a8:4c:4e:98:3e:0b:26:39: 86:2d:b4:85:ee:fd:41:ea:34:66:22:13:9a:c7:ba: 25:b5:19:05:ad:78:37:c6:0d:d9:68:68:f8:97:a6: 74:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EF:00:9F:52:D3:02:28:6D:BF:2F:25:C6:7E:5F:4D:39:E6:68:7D X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/P-8An1LTAihtvy8lxn5fTTnmaH0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.59.228.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:c4:99:38:9a:ff:5b:9e:d1:e4:a4:5f:59:91:c1:c7:51:44: af:00:a5:d7:06:9a:0f:98:b2:91:77:be:c4:7d:4b:00:00:dd: b6:a3:90:57:30:8f:cd:1c:17:67:19:2b:58:82:42:d1:10:c0: d5:ef:d1:84:c8:c5:b4:66:77:2e:5d:a4:67:bf:84:21:47:e0: 4b:a8:7c:3c:0f:d6:e8:19:6c:9d:61:36:af:c9:fc:f6:51:36: 5e:ff:1c:14:ea:eb:1a:f7:21:53:3c:e6:b4:5a:e1:72:2d:4b: b2:d2:05:25:ab:43:60:06:d4:a8:fe:87:04:34:14:70:7a:7b: ca:93:22:d2:41:e3:4c:63:72:6e:03:78:bd:2b:dc:04:34:45: cf:5d:b7:e2:e4:f7:fc:7e:df:62:f5:0e:61:78:b5:cd:89:89: 1f:da:54:8c:88:f9:f7:5b:90:e3:30:0a:ae:42:ec:75:f7:fd: 4b:99:58:d9:13:0b:c6:5b:f7:14:13:24:0c:ba:17:80:32:36: b7:d4:2d:aa:f2:c8:08:ff:e1:5b:f8:c3:07:cd:af:1f:e8:76: dd:9d:1d:5d:2b:d6:94:0b:b2:2e:f7:7b:d2:c7:32:7a:b6:88: fa:b5:d6:a8:43:07:3e:28:0a:fc:9f:db:a3:78:16:9e:54:50: 89:ce:30:6d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNDA4Mjgw ODUzNTlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNGRUYwMDlGNTJEMzAy Mjg2REJGMkYyNUM2N0U1RjREMzlFNjY4N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjyYJV6pVDDIaejWTBWdEgxM4f16E8K/E4xM9G86qyVLM8Nfce tcbIvVGhH59QK8TY5umQX6QyvQr+/y/w6+l7zJfCZ9T/OoF/VLPyRXYS/mvDGjnC uwQLugGzv66WkzDuoPV94KGIVusLG86qgPy+vVHe1S8wsLv21jdi2W0mLWOG7/vg NNqSe/qeLvBwQyCGmoC9ecCdV3upvAaogBfGmI9o3FWUfvG9GjBhagZyWYRH67L1 TFIyeLjCpjko8q2i40+3vYx1bhQN82VuL6hAnuA+yMCp1IGoTE6YPgsmOYYttIXu /UHqNGYiE5rHuiW1GQWteDfGDdloaPiXpnQ9AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUP+8An1LTAihtvy8lxn5fTTnmaH0wHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL1AtOEFuMUxUQWlodHZ5 OGx4bjVmVFRubWFIMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJ3O+QwDQYJKoZIhvcNAQELBQADggEBAH/EmTia/1ue0eSkX1mRwcdRRK8ApdcG mg+YspF3vsR9SwAA3bajkFcwj80cF2cZK1iCQtEQwNXv0YTIxbRmdy5dpGe/hCFH 4EuofDwP1ugZbJ1hNq/J/PZRNl7/HBTq6xr3IVM85rRa4XItS7LSBSWrQ2AG1Kj+ hwQ0FHB6e8qTItJB40xjcm4DeL0r3AQ0Rc9dt+Lk9/x+32L1DmF4tc2JiR/aVIyI +fdbkOMwCq5C7HX3/UuZWNkTC8Zb9xQTJAy6F4AyNrfULaryyAj/4Vv4wwfNrx/o dt2dHV0r1pQLsi73e9LHMnq2iPq11qhDBz4oCvyf26N4Fp5UUInOMG0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:28:46 2024 by rpki-client on console-ams.rpki-client.org