$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/wq4P5eDZls0aR2KmwndP8pw88Us.cer File: wq4P5eDZls0aR2KmwndP8pw88Us.cer (raw, json) Hash identifier: +MjEnc9M4zh+ceJuMD28PToKFWYrd6VniaCw5JMu6oA= Subject key identifier: C2:AE:0F:E5:E0:D9:96:CD:1A:47:62:A6:C2:77:4F:F2:9C:3C:F1:4B Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AE77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/wq4P5eDZls0aR2KmwndP8pw88Us.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:20:29 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: AS: 146784 IP: 36.50.254.0/23 IP: 2401:5fa0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 12:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44663 (0xae77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:20:29 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=C2AE0FE5E0D996CD1A4762A6C2774FF29C3CF14B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f3:17:93:91:73:25:3d:fd:e3:2c:8f:04:ae: da:bb:a9:38:18:10:50:b0:3d:b7:6b:d7:1e:66:9b: 55:00:40:53:27:43:69:6f:1f:dd:4d:e2:1f:88:51: a0:79:71:0b:1f:45:c5:f7:ac:a8:fa:b9:92:34:b6: f7:b8:20:9a:33:9c:db:b5:9b:c9:02:52:70:be:1f: 3a:92:27:1c:bc:0b:50:08:75:89:84:1e:c0:39:27: 25:26:91:c3:57:53:86:64:c7:42:ae:90:80:ff:9a: d8:ac:50:7f:49:77:c2:0d:05:e3:f7:40:46:b0:bd: 20:8e:b8:d9:fc:7f:cf:9b:56:27:e4:50:d4:12:2f: 57:85:01:ae:c4:95:a0:6c:e6:c6:b9:8a:eb:89:a5: 0a:7f:75:d1:66:48:c7:7a:06:a6:89:a8:9c:42:3a: 5c:cf:75:fa:bb:12:a8:2d:e0:c6:2c:cb:2c:6b:67: 0c:1c:bc:bd:79:78:81:e9:f0:eb:45:66:0d:c4:50: ce:2f:4c:bb:4f:4d:e6:50:06:7a:fd:80:ce:24:ac: 11:f1:91:15:aa:91:5f:4f:05:41:f7:c1:f5:4e:70: 23:a5:1b:97:33:a9:73:5b:c1:28:7d:c4:b2:50:36: 37:f0:fb:24:21:46:69:97:cc:eb:d8:18:dd:65:b4: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AE:0F:E5:E0:D9:96:CD:1A:47:62:A6:C2:77:4F:F2:9C:3C:F1:4B X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/wq4P5eDZls0aR2KmwndP8pw88Us.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146784 sbgp-ipAddrBlock: critical IPv4: 36.50.254.0/23 IPv6: 2401:5fa0::/32 Signature Algorithm: sha256WithRSAEncryption 0a:6d:80:8a:cc:24:42:8f:c5:84:87:c8:ef:09:c0:8b:80:e7: c8:ec:ae:a5:f6:3f:33:a2:77:56:d0:fd:a6:31:ca:fd:b6:c1: 09:70:87:bc:63:70:2a:b7:59:6e:0c:2f:aa:04:a6:0b:24:95: ca:1c:4a:f3:f7:3e:68:8d:d1:5d:14:20:bb:31:c5:da:ba:98: 24:db:ee:d6:26:e0:78:b5:a1:86:16:89:3d:65:5a:ec:bd:c3: 09:68:9a:ce:5c:99:e1:94:08:a9:d1:59:aa:29:4c:2d:3c:c7: 4a:82:17:b3:f4:70:e5:2c:66:42:49:f6:64:f4:c8:3b:5a:ef: 78:57:ea:04:23:63:f9:43:0e:de:78:63:b7:df:91:42:00:fa: 5d:3c:74:60:55:33:bc:48:f4:f6:ab:97:38:76:79:04:14:84: ae:07:5f:de:80:4a:62:59:be:49:db:be:d8:23:c1:08:c3:c9: 92:e8:3f:31:e9:10:ba:ab:29:b2:c0:4e:91:30:5d:bb:d3:00: 8c:ef:14:3b:a6:b0:07:bd:ac:53:5c:9f:1b:95:e4:7c:fb:3d: b9:a7:35:c7:3d:e8:89:91:1b:f0:81:3c:0b:57:19:4b:2a:4e: d4:ba:fd:78:06:eb:94:1a:fc:66:f4:ba:74:d1:d6:e6:d5:a6: 72:1d:be:a1 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAK53MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIwMjlaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKEMyQUUwRkU1RTBEOTk2Q0QxQTQ3NjJBNkMyNzc0RkYyOUMzQ0Yx NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY8xeTkXMlPf3jLI8E rtq7qTgYEFCwPbdr1x5mm1UAQFMnQ2lvH91N4h+IUaB5cQsfRcX3rKj6uZI0tve4 IJoznNu1m8kCUnC+HzqSJxy8C1AIdYmEHsA5JyUmkcNXU4Zkx0KukID/mtisUH9J d8INBeP3QEawvSCOuNn8f8+bVifkUNQSL1eFAa7ElaBs5sa5iuuJpQp/ddFmSMd6 BqaJqJxCOlzPdfq7Eqgt4MYsyyxrZwwcvL15eIHp8OtFZg3EUM4vTLtPTeZQBnr9 gM4krBHxkRWqkV9PBUH3wfVOcCOlG5czqXNbwSh9xLJQNjfw+yQhRmmXzOvYGN1l tH9VAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUwq4P5eDZls0aR2KmwndP8pw88Usw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NTEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI1MS93cTRQNWVEWmxzMGFSMkttd25kUDhwdzg4VXMubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9YDAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEASQy/jANBAIAAjAHAwUAJAFfoDANBgkqhkiG9w0BAQsFAAOCAQEA Cm2AiswkQo/FhIfI7wnAi4DnyOyupfY/M6J3VtD9pjHK/bbBCXCHvGNwKrdZbgwv qgSmCySVyhxK8/c+aI3RXRQguzHF2rqYJNvu1ibgeLWhhhaJPWVa7L3DCWiazlyZ 4ZQIqdFZqilMLTzHSoIXs/Rw5SxmQkn2ZPTIO1rveFfqBCNj+UMO3nhjt9+RQgD6 XTx0YFUzvEj09quXOHZ5BBSErgdf3oBKYlm+Sdu+2CPBCMPJkug/MekQuqspssBO kTBdu9MAjO8UO6awB72sU1yfG5XkfPs9uac1xz3oiZEb8IE8C1cZSypO1Lr9eAbr lBr8ZvS6dNHW5tWmch2+oQ== -----END CERTIFICATE-----Generated at Sat Jun 1 07:14:00 2024 by rpki-client on console-ams.rpki-client.org