$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/WLgZSzwzcbxcVm3iBvxhD6d_TnM.roa File: WLgZSzwzcbxcVm3iBvxhD6d_TnM.roa (raw, json) Hash identifier: nRNAHYVeSSJ36NTk3mf19ffMvnL4Gt+meOVBenyfm24= Subject key identifier: 58:B8:19:4B:3C:33:71:BC:5C:56:6D:E2:06:FC:61:0F:A7:7F:4E:73 Certificate issuer: /CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Certificate serial: 15E9 Authority key identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/WLgZSzwzcbxcVm3iBvxhD6d_TnM.roa Signing time: Wed 13 Mar 2024 01:21:45 +0000 ROA not before: Wed 13 Mar 2024 01:21:45 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 56002 IP address blocks: 2405:ad00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5609 (0x15e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Validity Not Before: Mar 13 01:21:45 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=58B8194B3C3371BC5C566DE206FC610FA77F4E73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:71:5f:17:6c:1b:59:b9:ca:34:db:b3:65:f6: a0:d5:7a:f0:28:2c:10:94:b9:21:4d:0d:54:e4:67: 18:d5:de:59:59:2f:6b:80:76:d6:08:95:fd:9a:0d: 50:a2:6e:5c:19:4d:40:3e:41:55:2d:d6:4c:b7:8e: b0:43:03:84:d0:1a:a5:b3:4e:4f:25:63:c1:d4:2e: 0d:17:27:c5:a0:16:b3:c0:9a:e0:e9:1c:17:78:e7: ba:6c:ae:ec:a0:be:1f:45:84:1e:b9:af:bf:bd:99: 7d:b0:80:b4:09:3f:1e:b4:cf:88:dd:21:95:e1:b5: 60:e2:4e:8e:58:cd:9f:ee:10:73:59:90:2b:cb:fa: 4f:a6:b8:be:f0:5a:be:d0:61:f1:f5:57:74:93:35: c3:c8:37:0d:0b:01:1f:b9:e3:e8:d1:ab:f7:b7:7b: d7:d3:b5:0f:1d:f0:fc:2e:b1:36:76:fb:16:57:8c: 86:b2:7f:64:65:4d:d4:e8:70:8f:8c:6b:47:01:c1: 42:91:fd:b5:2f:b7:c7:51:24:8c:f4:e6:23:6c:a3: 42:f4:b8:0d:e0:60:bf:4d:66:a5:3d:40:97:80:65: df:2b:6e:07:b5:c8:7b:38:f3:a5:a1:63:39:0e:d2: 9d:78:61:72:d1:aa:ac:42:fc:22:c9:01:08:86:e8: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B8:19:4B:3C:33:71:BC:5C:56:6D:E2:06:FC:61:0F:A7:7F:4E:73 X509v3 Authority Key Identifier: keyid:46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/WLgZSzwzcbxcVm3iBvxhD6d_TnM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:ad00::/32 Signature Algorithm: sha256WithRSAEncryption a1:0f:02:11:33:8a:66:bb:3f:e5:11:96:3e:2c:b7:62:b1:6c: fd:cc:af:0a:b4:36:9f:9f:a0:69:6d:53:2d:c2:4c:ce:4b:ec: 05:9c:58:9b:d5:b9:86:25:66:7f:14:ff:8f:26:fd:2c:20:c0: db:6b:e7:70:be:28:8f:33:ec:6e:ea:12:7d:d7:91:2a:74:e8: 27:13:fc:41:57:4f:28:35:39:6d:3c:e5:92:31:fb:4c:55:47: b6:17:2d:25:4f:d9:75:2e:9b:2e:38:a0:9b:f4:d8:7b:e9:2f: d8:f2:6f:6a:a9:2f:1b:66:8b:f0:5d:74:f4:7a:dd:a8:3b:0a: 0e:cf:d3:f4:31:c5:25:c8:66:16:b3:74:34:ae:48:42:42:73: 9d:c6:53:6e:21:d7:5a:5b:58:70:cb:28:37:32:6c:1b:21:83: a1:e9:52:eb:0d:8a:8c:59:c9:5e:9b:86:ee:b9:fd:6b:5c:26: 11:53:0a:6f:db:de:fc:30:6c:05:ac:22:64:13:81:1c:74:97: 7f:35:58:81:87:56:ab:e1:32:7b:7d:55:c7:51:05:a9:74:e8: bb:d1:6e:9d:78:8d:48:17:57:be:dd:4a:00:0e:ed:fa:2c:ff: 82:01:bc:bf:b9:5b:37:06:ba:91:49:06:b7:88:3e:58:7b:1c: 22:95:f1:2e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDZG ODM0M0RDREFEM0FBQzQwODU2MDQ5MkMyMUI1OUQ3NjJCQzQ1NjAeFw0yNDAzMTMw MTIxNDVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDU4QjgxOTRCM0MzMzcx QkM1QzU2NkRFMjA2RkM2MTBGQTc3RjRFNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCscV8XbBtZuco027Nl9qDVevAoLBCUuSFNDVTkZxjV3llZL2uA dtYIlf2aDVCiblwZTUA+QVUt1ky3jrBDA4TQGqWzTk8lY8HULg0XJ8WgFrPAmuDp HBd457psruygvh9FhB65r7+9mX2wgLQJPx60z4jdIZXhtWDiTo5YzZ/uEHNZkCvL +k+muL7wWr7QYfH1V3STNcPINw0LAR+54+jRq/e3e9fTtQ8d8PwusTZ2+xZXjIay f2RlTdTocI+Ma0cBwUKR/bUvt8dRJIz05iNso0L0uA3gYL9NZqU9QJeAZd8rbge1 yHs486WhYzkO0p14YXLRqqxC/CLJAQiG6MwZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUWLgZSzwzcbxcVm3iBvxhD6d/TnMwHwYDVR0jBBgwFoAURvg0Pc2tOqxAhWBJ LCG1nXYrxFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3 L1J2ZzBQYzJ0T3F4QWhXQkpMQ0cxblhZcnhGWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvUnZnMFBjMnRPcXhBaFdCSkxDRzFuWFlyeEZZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3L1dMZ1pTend6Y2J4Y1Zt M2lCdnhoRDZkX1RuTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBa0AMA0GCSqGSIb3DQEBCwUAA4IBAQChDwIRM4pmuz/lEZY+LLdisWz9zK8K tDafn6BpbVMtwkzOS+wFnFib1bmGJWZ/FP+PJv0sIMDba+dwviiPM+xu6hJ915Eq dOgnE/xBV08oNTltPOWSMftMVUe2Fy0lT9l1LpsuOKCb9Nh76S/Y8m9qqS8bZovw XXT0et2oOwoOz9P0McUlyGYWs3Q0rkhCQnOdxlNuIddaW1hwyyg3MmwbIYOh6VLr DYqMWclem4buuf1rXCYRUwpv2978MGwFrCJkE4EcdJd/NViBh1ar4TJ7fVXHUQWp dOi70W6deI1IF1e+3UoADu36LP+CAby/uVs3BrqRSQa3iD5YexwilfEu -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:12 2024 by rpki-client on console-fra.rpki-client.org