$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/-7JZNquvAsZtbrsyhSU9KZuXQFk.cer File: -7JZNquvAsZtbrsyhSU9KZuXQFk.cer (raw, json) Hash identifier: 7fYqCruOCsIA11uBzXK3Di76LFomZ7wRh7TKInK6+VU= Subject key identifier: FB:B2:59:36:AB:AF:02:C6:6D:6E:BB:32:85:25:3D:29:9B:97:40:59 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BBC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/-7JZNquvAsZtbrsyhSU9KZuXQFk.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:52:41 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 137774 IP: 103.123.208.0/22 IP: 2403:a9c0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48067 (0xbbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:52:41 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=FBB25936ABAF02C66D6EBB3285253D299B974059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cd:46:ca:1d:16:ce:f3:dc:d4:51:24:29:4b: 54:36:01:ac:e9:65:bc:e4:d2:60:a6:8c:be:1a:84: d1:0a:f6:25:6d:e9:2e:e6:41:b1:44:d2:a9:85:2e: bf:ac:42:83:ff:fb:52:75:3c:68:65:d9:bf:9e:2c: d0:a4:c7:2c:0d:a5:12:bd:a4:0b:34:a7:47:33:bf: 21:32:47:d3:ff:4a:0f:c6:86:79:f5:76:4a:74:d1: 0b:9b:a1:4b:ae:a5:b5:63:48:f8:b9:49:a1:0d:ee: 6a:02:2c:91:99:0d:cb:ab:9f:37:ea:c8:d7:e0:f8: 70:61:61:46:8b:b7:70:71:51:14:8c:09:26:55:bf: 3e:07:3c:ec:7b:90:ad:6d:8d:fb:e6:8b:af:d2:e1: 1e:60:3a:db:23:b8:c4:f6:b8:98:51:f0:37:2a:ae: 42:4d:d8:9a:56:4f:df:f4:45:6a:d4:a1:6e:c7:4a: e5:8e:c6:dc:99:7d:93:89:14:55:96:61:af:15:0e: 17:ae:f7:1c:5f:8d:a2:fd:5d:f1:f8:4a:67:5a:c7: 2a:99:27:f9:70:be:51:5d:30:01:ab:27:49:bb:7d: 1e:97:aa:f3:6f:65:0e:77:c0:c2:bd:8d:54:8f:8c: 5c:35:fd:a9:21:30:6a:ed:51:3e:b1:5a:d4:23:eb: 11:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B2:59:36:AB:AF:02:C6:6D:6E:BB:32:85:25:3D:29:9B:97:40:59 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/-7JZNquvAsZtbrsyhSU9KZuXQFk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 137774 sbgp-ipAddrBlock: critical IPv4: 103.123.208.0/22 IPv6: 2403:a9c0::/32 Signature Algorithm: sha256WithRSAEncryption 76:96:c2:da:94:67:af:eb:3b:85:22:58:5d:db:cd:1f:4a:c4: a3:aa:02:f6:f6:a4:c8:34:d1:92:78:8c:e2:39:49:97:ca:4c: 7b:b0:18:3c:fb:ac:ef:7a:30:2d:0a:5e:2b:fb:c3:88:a6:32: 85:02:f4:4a:6d:f4:8b:0c:1e:37:6e:c7:26:6f:61:9a:4e:14: ff:c2:d4:a2:eb:67:9c:7f:1b:ed:82:a0:4d:d4:d3:1e:5e:22: fd:ae:16:97:74:16:29:02:03:c1:51:19:38:42:64:e8:d0:95: d2:16:0a:8e:9a:82:f3:f0:70:f3:49:e7:5f:fe:4a:7c:c6:09: 12:4f:b0:6b:2f:7e:f8:93:3f:57:f0:f3:34:77:82:03:a9:25: 36:61:f4:91:57:9d:99:c1:07:29:98:ae:19:22:f0:e3:44:3d: 43:a4:a1:d5:92:55:ff:07:e1:ab:62:35:06:ca:95:d4:74:38: c2:96:f5:a0:93:fe:82:12:a9:18:4d:df:25:37:74:56:4e:c1: 5b:08:f3:f0:c2:82:3c:72:9d:69:dd:b4:6a:90:ce:00:34:45: 46:97:09:69:9c:c7:0a:ea:23:d5:53:38:c9:b9:ad:4b:d5:b2: 71:cd:4c:97:b5:52:85:e4:f9:bd:54:9b:90:6a:8f:1c:82:4a: 57:0a:69:a3 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDALvDMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjUyNDFaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKEZCQjI1OTM2QUJBRjAyQzY2RDZFQkIzMjg1MjUzRDI5OUI5NzQw NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFzUbKHRbO89zUUSQp S1Q2AazpZbzk0mCmjL4ahNEK9iVt6S7mQbFE0qmFLr+sQoP/+1J1PGhl2b+eLNCk xywNpRK9pAs0p0czvyEyR9P/Sg/Ghnn1dkp00QuboUuupbVjSPi5SaEN7moCLJGZ DcurnzfqyNfg+HBhYUaLt3BxURSMCSZVvz4HPOx7kK1tjfvmi6/S4R5gOtsjuMT2 uJhR8DcqrkJN2JpWT9/0RWrUoW7HSuWOxtyZfZOJFFWWYa8VDheu9xxfjaL9XfH4 SmdaxyqZJ/lwvlFdMAGrJ0m7fR6XqvNvZQ53wMK9jVSPjFw1/akhMGrtUT6xWtQj 6xEFAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU+7JZNquvAsZtbrsyhSU9KZuXQFkw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4 MTAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjgxMC8tN0paTnF1dkFzWnRicnN5aFNVOUtadVhRRmsubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIaLjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmd70DANBAIAAjAHAwUAJAOpwDANBgkqhkiG9w0BAQsFAAOCAQEA dpbC2pRnr+s7hSJYXdvNH0rEo6oC9vakyDTRkniM4jlJl8pMe7AYPPus73owLQpe K/vDiKYyhQL0Sm30iwweN27HJm9hmk4U/8LUoutnnH8b7YKgTdTTHl4i/a4Wl3QW KQIDwVEZOEJk6NCV0hYKjpqC8/Bw80nnX/5KfMYJEk+way9++JM/V/DzNHeCA6kl NmH0kVedmcEHKZiuGSLw40Q9Q6Sh1ZJV/wfhq2I1BsqV1HQ4wpb1oJP+ghKpGE3f JTd0Vk7BWwjz8MKCPHKdad20apDOADRFRpcJaZzHCuoj1VM4ybmtS9Wycc1Ml7VS heT5vVSbkGqPHIJKVwppow== -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:22 2024 by rpki-client on console-ams.rpki-client.org