$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/ao0hEzI1wK-biYmhnqP48X-E8Dc.roa File: ao0hEzI1wK-biYmhnqP48X-E8Dc.roa (raw, json) Hash identifier: cGakVFc7urvQkcUQQhRgXJtr7BDIF+qBPIGtcW0mJug= Subject key identifier: 6A:8D:21:13:32:35:C0:AF:9B:89:89:A1:9E:A3:F8:F1:7F:84:F0:37 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 1730 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/ao0hEzI1wK-biYmhnqP48X-E8Dc.roa Signing time: Fri 24 May 2024 02:26:44 +0000 ROA not before: Fri 24 May 2024 02:26:44 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 23724 IP address blocks: 2406:4d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 00:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5936 (0x1730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: May 24 02:26:44 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=6A8D21133235C0AF9B8989A19EA3F8F17F84F037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9f:72:12:25:54:7b:80:bf:27:32:cb:a3:75: 93:62:df:dc:9f:f2:8b:79:c6:d8:b8:76:05:c2:ac: c4:ee:d0:ad:dc:cf:50:87:cd:8b:34:9f:3a:2e:ea: d3:c8:f1:a5:0b:f3:49:eb:5d:4f:38:ae:6a:cc:0b: 2c:3a:f9:ab:3b:dd:b6:bc:b6:c1:ae:34:fb:aa:2e: 6d:af:55:75:3e:60:10:11:74:56:fc:a7:2d:31:50: 9b:49:3d:ff:46:35:bb:00:a4:5e:84:ec:63:5b:58: 5a:c9:ba:11:17:70:37:2d:ac:d7:83:a7:5f:15:a5: e5:4e:b8:0f:ba:99:65:77:dd:5f:f5:ab:c6:ca:d7: 73:ee:61:05:d7:ee:31:aa:2f:30:64:67:f0:d1:af: dc:60:08:9f:6f:b2:5a:04:be:85:2e:d0:e7:ee:65: cc:e3:f4:f5:9a:18:f7:87:c8:95:4e:56:d1:3e:cf: 41:d0:9c:0c:56:c9:d7:08:0e:62:8d:f5:19:92:de: 3d:b7:8e:99:07:32:a0:ce:f3:aa:49:b5:38:18:32: 05:e6:11:35:8d:17:2b:6e:86:3f:a2:a9:0c:17:02: 59:c1:cf:f0:3e:ce:82:63:1b:0b:7d:48:2e:92:3d: 63:e3:de:b6:dd:0c:57:a5:63:01:92:93:72:d0:23: a9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8D:21:13:32:35:C0:AF:9B:89:89:A1:9E:A3:F8:F1:7F:84:F0:37 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/ao0hEzI1wK-biYmhnqP48X-E8Dc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:4d00::/48 Signature Algorithm: sha256WithRSAEncryption 12:47:fb:df:70:e4:00:6b:5b:a4:54:be:90:39:a9:d3:ca:22: 43:23:8d:0d:fe:6b:85:ce:85:15:f9:65:8b:9a:98:4a:63:25: 31:78:46:02:58:1c:ec:5a:f2:73:96:db:fc:c1:70:bb:76:91: 50:f6:88:a8:34:9e:41:0c:36:fb:32:54:47:68:c0:e7:25:f0: 3a:00:7d:28:06:cf:fb:52:f8:29:d2:c8:4b:74:ad:02:62:be: 4c:5a:c7:78:7d:90:96:c2:52:0a:51:f8:0b:b6:7f:f3:46:d2: 23:bb:52:72:cb:5f:c5:a1:c7:52:18:4a:50:4b:f7:9f:83:30: b2:f9:50:8b:7f:e3:8b:14:34:50:8c:ea:10:76:ee:14:c0:37: c7:01:80:ac:64:07:39:92:2d:f2:ec:a3:14:61:98:e0:74:0b: e7:7a:17:ba:e6:e4:68:6f:1e:1d:d8:c9:e0:e8:2d:42:2b:d0: a1:3d:fe:98:dd:5c:40:9b:5c:f9:11:2f:e3:61:38:be:d9:4f: 2f:bb:7f:6f:03:3e:6e:0c:02:88:75:07:91:ad:15:b5:f2:7e: 28:c5:0e:3d:fd:f0:e4:0e:aa:d2:8f:10:84:63:ba:8e:3e:99: 78:91:71:6c:eb:d9:cc:48:98:84:d1:47:e4:18:20:cd:28:58: 2a:f0:39:af -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICFzAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNDA1MjQw MjI2NDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDZBOEQyMTEzMzIzNUMw QUY5Qjg5ODlBMTlFQTNGOEYxN0Y4NEYwMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQn3ISJVR7gL8nMsujdZNi39yf8ot5xti4dgXCrMTu0K3cz1CH zYs0nzou6tPI8aUL80nrXU84rmrMCyw6+as73ba8tsGuNPuqLm2vVXU+YBARdFb8 py0xUJtJPf9GNbsApF6E7GNbWFrJuhEXcDctrNeDp18VpeVOuA+6mWV33V/1q8bK 13PuYQXX7jGqLzBkZ/DRr9xgCJ9vsloEvoUu0OfuZczj9PWaGPeHyJVOVtE+z0HQ nAxWydcIDmKN9RmS3j23jpkHMqDO86pJtTgYMgXmETWNFytuhj+iqQwXAlnBz/A+ zoJjGwt9SC6SPWPj3rbdDFelYwGSk3LQI6n5AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUao0hEzI1wK+biYmhnqP48X+E8DcwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL2FvMGhFekkxd0stYmlZ bWhucVA0OFgtRThEYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAkBk0AAAAwDQYJKoZIhvcNAQELBQADggEBABJH+99w5ABrW6RUvpA5qdPKIkMj jQ3+a4XOhRX5ZYuamEpjJTF4RgJYHOxa8nOW2/zBcLt2kVD2iKg0nkEMNvsyVEdo wOcl8DoAfSgGz/tS+CnSyEt0rQJivkxax3h9kJbCUgpR+Au2f/NG0iO7UnLLX8Wh x1IYSlBL95+DMLL5UIt/44sUNFCM6hB27hTAN8cBgKxkBzmSLfLsoxRhmOB0C+d6 F7rm5GhvHh3YyeDoLUIr0KE9/pjdXECbXPkRL+NhOL7ZTy+7f28DPm4MAoh1B5Gt FbXyfijFDj398OQOqtKPEIRjuo4+mXiRcWzr2cxImITRR+QYIM0oWCrwOa8= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:12 2024 by rpki-client on console-fra.rpki-client.org