$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer File: 0qtsm24WUzTAMtBR1fx9FUfk41M.cer (raw, json) Hash identifier: WhT6I070cGGiUo7ZKFn9ceZbPkVJlxl35YzYAN5JrWg= Subject key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: D38F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Mon 26 May 2025 09:14:00 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: AS: 146845 IP: 103.169.50.0/23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Jun 2025 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54159 (0xd38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: May 26 09:14:00 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:cb:66:2d:d1:32:c0:4e:17:c6:2d:73:a0: bb:32:13:d5:70:69:b2:69:8a:f0:bd:f8:e0:f7:4b: 7c:eb:a8:ea:8d:46:10:29:7a:50:ff:ac:43:88:08: ef:33:cc:7d:81:e9:d4:a8:b8:f6:5d:79:d9:eb:a6: 33:51:dc:c0:cb:df:f7:24:89:f6:84:8d:3f:00:0f: c8:07:8c:e5:2a:67:dd:92:3e:23:7c:5f:8a:5f:8d: f5:47:3c:2a:cf:a9:ed:b6:48:76:e1:08:31:f8:dd: 81:ca:d4:09:9c:3d:01:7e:04:6f:97:ba:1e:a5:eb: 15:f4:1a:a3:d9:9d:14:28:ff:9b:22:b6:a0:44:90: 9f:e3:d1:1d:1f:5d:84:56:6d:30:65:31:46:3e:5d: d9:69:be:2b:7c:ad:dc:f5:36:80:83:6e:f5:d1:c5: 87:23:27:b7:74:da:0b:67:e1:63:4f:c9:a6:20:4d: 7c:fd:9e:23:cc:b6:07:2d:ef:d0:3f:3c:10:e3:69: 47:57:b5:bf:9a:f9:86:9c:e1:09:25:79:50:42:eb: 8d:c9:bf:d7:95:3b:6a:c1:14:b8:96:82:00:6a:1c: b2:e9:90:f8:8d:77:0b:0e:df:e1:00:66:a1:b1:41: a0:2f:34:be:43:6f:6c:1b:58:95:21:1a:ff:ff:57: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146845 sbgp-ipAddrBlock: critical IPv4: 103.169.50.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:b5:ec:79:16:69:ad:44:8f:8e:50:fe:f4:d5:b2:16:3f:0d: 27:57:91:72:00:10:b7:25:24:63:dc:c7:9c:65:6e:81:2f:4b: 24:d9:ff:11:24:bb:36:ca:54:fa:cd:08:7e:bf:0d:5c:53:1d: 31:2f:c1:3a:30:c4:60:d0:b4:1c:da:42:14:90:ac:77:2f:4b: 35:65:05:b0:58:72:ea:16:b7:1e:36:d5:7c:dc:9a:43:66:c3: c5:de:36:0d:7b:af:83:e6:be:23:ee:86:db:25:c2:29:30:b2: 3c:77:9c:79:75:34:f9:f1:de:96:44:39:9a:4d:67:ac:fc:43: 3a:ea:cd:9d:f0:db:3a:78:95:f1:c0:e0:03:28:de:02:b4:96: 33:06:b7:36:b4:09:64:9e:e6:d5:36:70:c3:13:26:4a:3d:e0: 43:92:a3:e6:39:0f:b3:da:22:6a:8c:70:e3:06:15:b4:f2:68: 60:22:5e:fd:4d:27:12:10:b3:b2:63:76:1b:c8:73:74:c1:2a: 30:3e:1a:00:bb:a8:05:38:48:1f:70:f6:b8:41:5b:99:20:f4: 1d:03:e9:34:75:83:e6:27:b5:e5:2b:22:cf:fe:2a:c7:12:35: bb:a0:f1:bf:69:57:24:2d:39:3b:b6:fb:85:75:ef:5b:00:d7: 94:e2:7f:96 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIDANOPMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA1MjYwOTE0MDBaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKEQyQUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUz NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEistmLdEywE4Xxi1z oLsyE9VwabJpivC9+OD3S3zrqOqNRhApelD/rEOICO8zzH2B6dSouPZdednrpjNR 3MDL3/ckifaEjT8AD8gHjOUqZ92SPiN8X4pfjfVHPCrPqe22SHbhCDH43YHK1Amc PQF+BG+Xuh6l6xX0GqPZnRQo/5sitqBEkJ/j0R0fXYRWbTBlMUY+Xdlpvit8rdz1 NoCDbvXRxYcjJ7d02gtn4WNPyaYgTXz9niPMtgct79A/PBDjaUdXtb+a+Yac4Qkl eVBC643Jv9eVO2rBFLiWggBqHLLpkPiNdwsO3+EAZqGxQaAvNL5Db2wbWJUhGv// Vz0nAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQU0qtsm24WUzTAMtBR1fx9FUfk41Mw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzA5OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0ubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9nTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWepMjANBgkqhkiG9w0BAQsFAAOCAQEAPbXseRZprUSPjlD+9NWy Fj8NJ1eRcgAQtyUkY9zHnGVugS9LJNn/ESS7NspU+s0Ifr8NXFMdMS/BOjDEYNC0 HNpCFJCsdy9LNWUFsFhy6ha3HjbVfNyaQ2bDxd42DXuvg+a+I+6G2yXCKTCyPHec eXU0+fHelkQ5mk1nrPxDOurNnfDbOniV8cDgAyjeArSWMwa3NrQJZJ7m1TZwwxMm Sj3gQ5Kj5jkPs9oiaoxw4wYVtPJoYCJe/U0nEhCzsmN2G8hzdMEqMD4aALuoBThI H3D2uEFbmSD0HQPpNHWD5ie15Ssiz/4qxxI1u6Dxv2lXJC05O7b7hXXvWwDXlOJ/ lg== -----END CERTIFICATE-----Generated at Mon Jun 2 07:23:21 2025 by rpki-client