$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/-7JZNquvAsZtbrsyhSU9KZuXQFk.cer File: -7JZNquvAsZtbrsyhSU9KZuXQFk.cer (raw, json) Hash identifier: LhCkgiNnOgplTekwW/eLcvKj12r8vlkm2FwIbUP9VhI= Subject key identifier: FB:B2:59:36:AB:AF:02:C6:6D:6E:BB:32:85:25:3D:29:9B:97:40:59 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AF19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/-7JZNquvAsZtbrsyhSU9KZuXQFk.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:22:26 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: AS: 137774 IP: 103.123.208.0/22 IP: 2403:a9c0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 00:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44825 (0xaf19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:22:26 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=FBB25936ABAF02C66D6EBB3285253D299B974059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cd:46:ca:1d:16:ce:f3:dc:d4:51:24:29:4b: 54:36:01:ac:e9:65:bc:e4:d2:60:a6:8c:be:1a:84: d1:0a:f6:25:6d:e9:2e:e6:41:b1:44:d2:a9:85:2e: bf:ac:42:83:ff:fb:52:75:3c:68:65:d9:bf:9e:2c: d0:a4:c7:2c:0d:a5:12:bd:a4:0b:34:a7:47:33:bf: 21:32:47:d3:ff:4a:0f:c6:86:79:f5:76:4a:74:d1: 0b:9b:a1:4b:ae:a5:b5:63:48:f8:b9:49:a1:0d:ee: 6a:02:2c:91:99:0d:cb:ab:9f:37:ea:c8:d7:e0:f8: 70:61:61:46:8b:b7:70:71:51:14:8c:09:26:55:bf: 3e:07:3c:ec:7b:90:ad:6d:8d:fb:e6:8b:af:d2:e1: 1e:60:3a:db:23:b8:c4:f6:b8:98:51:f0:37:2a:ae: 42:4d:d8:9a:56:4f:df:f4:45:6a:d4:a1:6e:c7:4a: e5:8e:c6:dc:99:7d:93:89:14:55:96:61:af:15:0e: 17:ae:f7:1c:5f:8d:a2:fd:5d:f1:f8:4a:67:5a:c7: 2a:99:27:f9:70:be:51:5d:30:01:ab:27:49:bb:7d: 1e:97:aa:f3:6f:65:0e:77:c0:c2:bd:8d:54:8f:8c: 5c:35:fd:a9:21:30:6a:ed:51:3e:b1:5a:d4:23:eb: 11:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B2:59:36:AB:AF:02:C6:6D:6E:BB:32:85:25:3D:29:9B:97:40:59 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/-7JZNquvAsZtbrsyhSU9KZuXQFk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 137774 sbgp-ipAddrBlock: critical IPv4: 103.123.208.0/22 IPv6: 2403:a9c0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:2b:63:16:e1:b4:dc:b6:4b:2e:c1:ef:bb:99:0f:c5:21:e7: 1a:56:2b:09:30:1b:64:72:58:a5:17:44:95:7f:52:67:2d:e1: 71:e8:60:8d:28:ed:93:e0:31:a9:ef:b6:dd:28:03:22:f6:47: 5c:4f:e9:92:7f:2c:56:50:f9:79:de:e7:15:6d:e1:ad:5b:d0: 54:15:a3:be:09:f9:19:76:55:2a:df:74:8b:84:c9:a2:b0:41: 83:37:57:0f:49:2e:98:c2:9a:00:5c:4e:9e:00:bb:50:45:6b: 76:04:c1:51:37:6c:b1:00:59:88:fa:15:11:07:f8:38:11:b5: fe:f5:dd:1f:33:13:ca:4f:26:e9:e9:bf:37:0b:ac:93:11:bc: fa:df:fc:6d:22:fc:f4:a9:5e:56:ad:b4:c2:2b:4b:7e:fa:40: 34:1a:b5:2e:5e:4a:82:3b:6a:94:69:98:a3:62:01:8c:41:65: d2:40:f9:a7:b7:4b:09:3a:e7:db:3b:f7:44:59:e5:46:e5:e5: 8d:ba:3d:96:97:d7:8f:d7:26:1a:29:29:5a:1b:55:33:0e:0d: 59:a0:c0:28:91:fb:60:4f:9f:08:2e:a0:78:67:e2:c1:df:a2: d0:6a:88:5c:b5:0e:88:f9:45:58:21:4f:70:1b:27:19:04:68: ed:a9:19:8a -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAK8ZMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIyMjZaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKEZCQjI1OTM2QUJBRjAyQzY2RDZFQkIzMjg1MjUzRDI5OUI5NzQw NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFzUbKHRbO89zUUSQp S1Q2AazpZbzk0mCmjL4ahNEK9iVt6S7mQbFE0qmFLr+sQoP/+1J1PGhl2b+eLNCk xywNpRK9pAs0p0czvyEyR9P/Sg/Ghnn1dkp00QuboUuupbVjSPi5SaEN7moCLJGZ DcurnzfqyNfg+HBhYUaLt3BxURSMCSZVvz4HPOx7kK1tjfvmi6/S4R5gOtsjuMT2 uJhR8DcqrkJN2JpWT9/0RWrUoW7HSuWOxtyZfZOJFFWWYa8VDheu9xxfjaL9XfH4 SmdaxyqZJ/lwvlFdMAGrJ0m7fR6XqvNvZQ53wMK9jVSPjFw1/akhMGrtUT6xWtQj 6xEFAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU+7JZNquvAsZtbrsyhSU9KZuXQFkw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4 MTAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjgxMC8tN0paTnF1dkFzWnRicnN5aFNVOUtadVhRRmsubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIaLjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmd70DANBAIAAjAHAwUAJAOpwDANBgkqhkiG9w0BAQsFAAOCAQEA aitjFuG03LZLLsHvu5kPxSHnGlYrCTAbZHJYpRdElX9SZy3hcehgjSjtk+Axqe+2 3SgDIvZHXE/pkn8sVlD5ed7nFW3hrVvQVBWjvgn5GXZVKt90i4TJorBBgzdXD0ku mMKaAFxOngC7UEVrdgTBUTdssQBZiPoVEQf4OBG1/vXdHzMTyk8m6em/NwuskxG8 +t/8bSL89KleVq20witLfvpANBq1Ll5KgjtqlGmYo2IBjEFl0kD5p7dLCTrn2zv3 RFnlRuXljbo9lpfXj9cmGikpWhtVMw4NWaDAKJH7YE+fCC6geGfiwd+i0GqIXLUO iPlFWCFPcBsnGQRo7akZig== -----END CERTIFICATE-----Generated at Sun May 19 19:42:59 2024 by rpki-client on console-ams.rpki-client.org