$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer File: 0qtsm24WUzTAMtBR1fx9FUfk41M.cer (raw, json) Hash identifier: KxvG1P2fdcpN0UIosr/CFFxXGKBnLiW4AbA6YTJ/bzg= Subject key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AE0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:19:23 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: AS: 146845 IP: 103.169.50.0/23 IP: 2407:9b40::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 00:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44559 (0xae0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:19:23 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:cb:66:2d:d1:32:c0:4e:17:c6:2d:73:a0: bb:32:13:d5:70:69:b2:69:8a:f0:bd:f8:e0:f7:4b: 7c:eb:a8:ea:8d:46:10:29:7a:50:ff:ac:43:88:08: ef:33:cc:7d:81:e9:d4:a8:b8:f6:5d:79:d9:eb:a6: 33:51:dc:c0:cb:df:f7:24:89:f6:84:8d:3f:00:0f: c8:07:8c:e5:2a:67:dd:92:3e:23:7c:5f:8a:5f:8d: f5:47:3c:2a:cf:a9:ed:b6:48:76:e1:08:31:f8:dd: 81:ca:d4:09:9c:3d:01:7e:04:6f:97:ba:1e:a5:eb: 15:f4:1a:a3:d9:9d:14:28:ff:9b:22:b6:a0:44:90: 9f:e3:d1:1d:1f:5d:84:56:6d:30:65:31:46:3e:5d: d9:69:be:2b:7c:ad:dc:f5:36:80:83:6e:f5:d1:c5: 87:23:27:b7:74:da:0b:67:e1:63:4f:c9:a6:20:4d: 7c:fd:9e:23:cc:b6:07:2d:ef:d0:3f:3c:10:e3:69: 47:57:b5:bf:9a:f9:86:9c:e1:09:25:79:50:42:eb: 8d:c9:bf:d7:95:3b:6a:c1:14:b8:96:82:00:6a:1c: b2:e9:90:f8:8d:77:0b:0e:df:e1:00:66:a1:b1:41: a0:2f:34:be:43:6f:6c:1b:58:95:21:1a:ff:ff:57: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146845 sbgp-ipAddrBlock: critical IPv4: 103.169.50.0/23 IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 65:54:ee:a8:12:ab:74:7a:49:43:8c:83:08:72:d9:bd:4e:b0: ba:29:4e:6a:87:64:fe:d7:a5:51:19:16:b6:b2:40:7b:42:8a: cf:3e:51:7c:d6:93:9c:a1:09:b1:9a:42:7c:69:ff:65:ed:53: 59:18:10:e8:d4:f0:84:b2:22:69:de:94:8e:a0:51:8f:d9:ec: 3e:54:40:c5:01:61:5b:7b:be:c0:c1:83:4e:a0:44:2d:14:b7: e8:5c:fb:2e:9e:36:d3:c6:fc:cf:98:8d:70:97:27:fc:1f:0e: 87:20:06:12:5d:1d:09:49:1f:3c:0b:52:26:83:0b:28:50:f3: 33:fd:d7:91:be:a4:46:ea:87:32:8f:b5:2d:4b:90:d7:1c:56: c0:16:e4:7d:f5:2e:71:a5:d8:da:d6:fc:28:cb:1f:80:18:70: e4:62:9e:0a:7c:89:07:b6:36:48:f6:a0:36:19:9e:7e:00:32: 10:5c:7d:75:75:76:f4:12:7e:43:4a:58:1d:23:ee:7f:d6:fb: 4d:f0:4e:d9:1c:30:0c:e9:e4:d7:ee:ab:d2:8c:40:83:1e:16: 18:09:3d:0c:1f:c5:00:6a:68:22:2f:e5:e9:6c:d1:90:17:e4: fc:1b:f7:2a:35:52:58:6a:54:f5:32:68:6f:7b:4d:9b:67:05: ea:fb:6f:0e -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAK4PMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTE5MjNaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKEQyQUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUz NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEistmLdEywE4Xxi1z oLsyE9VwabJpivC9+OD3S3zrqOqNRhApelD/rEOICO8zzH2B6dSouPZdednrpjNR 3MDL3/ckifaEjT8AD8gHjOUqZ92SPiN8X4pfjfVHPCrPqe22SHbhCDH43YHK1Amc PQF+BG+Xuh6l6xX0GqPZnRQo/5sitqBEkJ/j0R0fXYRWbTBlMUY+Xdlpvit8rdz1 NoCDbvXRxYcjJ7d02gtn4WNPyaYgTXz9niPMtgct79A/PBDjaUdXtb+a+Yac4Qkl eVBC643Jv9eVO2rBFLiWggBqHLLpkPiNdwsO3+EAZqGxQaAvNL5Db2wbWJUhGv// Vz0nAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU0qtsm24WUzTAMtBR1fx9FUfk41Mw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzA5OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0ubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9nTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWepMjANBAIAAjAHAwUAJAebQDANBgkqhkiG9w0BAQsFAAOCAQEA ZVTuqBKrdHpJQ4yDCHLZvU6wuilOaodk/telURkWtrJAe0KKzz5RfNaTnKEJsZpC fGn/Ze1TWRgQ6NTwhLIiad6UjqBRj9nsPlRAxQFhW3u+wMGDTqBELRS36Fz7Lp42 08b8z5iNcJcn/B8OhyAGEl0dCUkfPAtSJoMLKFDzM/3Xkb6kRuqHMo+1LUuQ1xxW wBbkffUucaXY2tb8KMsfgBhw5GKeCnyJB7Y2SPagNhmefgAyEFx9dXV29BJ+Q0pY HSPuf9b7TfBO2RwwDOnk1+6r0oxAgx4WGAk9DB/FAGpoIi/l6WzRkBfk/Bv3KjVS WGpU9TJob3tNm2cF6vtvDg== -----END CERTIFICATE-----Generated at Sun May 19 19:42:59 2024 by rpki-client on console-ams.rpki-client.org