$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer File: 0qtsm24WUzTAMtBR1fx9FUfk41M.cer (raw, json) Hash identifier: YEszcCQqVkkWqqKVJeRJeQuqr+4bcasmy+xYbR0xnk4= Subject key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CCBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 03 Apr 2025 08:06:00 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: AS: 146845 IP: 103.169.50.0/23 IP: 2407:9b40::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 04:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52415 (0xccbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Apr 3 08:06:00 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:cb:66:2d:d1:32:c0:4e:17:c6:2d:73:a0: bb:32:13:d5:70:69:b2:69:8a:f0:bd:f8:e0:f7:4b: 7c:eb:a8:ea:8d:46:10:29:7a:50:ff:ac:43:88:08: ef:33:cc:7d:81:e9:d4:a8:b8:f6:5d:79:d9:eb:a6: 33:51:dc:c0:cb:df:f7:24:89:f6:84:8d:3f:00:0f: c8:07:8c:e5:2a:67:dd:92:3e:23:7c:5f:8a:5f:8d: f5:47:3c:2a:cf:a9:ed:b6:48:76:e1:08:31:f8:dd: 81:ca:d4:09:9c:3d:01:7e:04:6f:97:ba:1e:a5:eb: 15:f4:1a:a3:d9:9d:14:28:ff:9b:22:b6:a0:44:90: 9f:e3:d1:1d:1f:5d:84:56:6d:30:65:31:46:3e:5d: d9:69:be:2b:7c:ad:dc:f5:36:80:83:6e:f5:d1:c5: 87:23:27:b7:74:da:0b:67:e1:63:4f:c9:a6:20:4d: 7c:fd:9e:23:cc:b6:07:2d:ef:d0:3f:3c:10:e3:69: 47:57:b5:bf:9a:f9:86:9c:e1:09:25:79:50:42:eb: 8d:c9:bf:d7:95:3b:6a:c1:14:b8:96:82:00:6a:1c: b2:e9:90:f8:8d:77:0b:0e:df:e1:00:66:a1:b1:41: a0:2f:34:be:43:6f:6c:1b:58:95:21:1a:ff:ff:57: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146845 sbgp-ipAddrBlock: critical IPv4: 103.169.50.0/23 IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 6d:28:10:87:28:3d:39:da:e0:c7:4d:db:f0:eb:e6:3e:f9:21: 66:af:e6:73:cf:56:92:a0:22:c9:29:bb:b3:5a:0c:19:db:dc: 3d:5c:13:35:c7:b7:69:c9:79:7a:15:2a:50:8c:2d:76:77:d8: 08:13:41:f7:57:e9:97:67:d4:29:d9:10:95:e3:17:6a:b8:c4: b9:93:7a:ec:06:40:5d:ff:1f:f8:07:be:c4:c0:96:f5:1c:0e: c4:a9:5c:7d:27:ff:77:1a:0b:a4:f7:a3:a2:11:81:f6:6e:02: d4:0b:b2:b1:cc:42:00:df:ca:b6:11:c2:19:4c:4d:30:e5:af: 03:0e:c4:9a:72:c9:87:a2:08:03:62:88:21:1a:03:70:4c:15: d8:bc:8c:b5:5d:8f:17:30:4e:6f:7c:55:29:1b:64:67:11:e6: e6:b2:94:27:ca:c1:26:fd:2f:53:cf:3f:5c:19:40:67:31:ea: f8:20:56:f0:00:7e:96:9f:c5:8a:f7:d8:62:4e:11:06:c7:3b: a5:41:fe:87:ee:bd:48:42:85:16:99:b8:7c:ab:a3:49:a6:1f: 6c:74:39:ee:cf:55:c8:3b:04:0e:d1:09:fc:51:10:0c:f4:58: 87:36:76:e6:f3:c1:ae:18:32:99:85:21:f7:48:5a:c5:df:7c: 76:ef:93:83 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAMy/MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODA2MDBaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKEQyQUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUz NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEistmLdEywE4Xxi1z oLsyE9VwabJpivC9+OD3S3zrqOqNRhApelD/rEOICO8zzH2B6dSouPZdednrpjNR 3MDL3/ckifaEjT8AD8gHjOUqZ92SPiN8X4pfjfVHPCrPqe22SHbhCDH43YHK1Amc PQF+BG+Xuh6l6xX0GqPZnRQo/5sitqBEkJ/j0R0fXYRWbTBlMUY+Xdlpvit8rdz1 NoCDbvXRxYcjJ7d02gtn4WNPyaYgTXz9niPMtgct79A/PBDjaUdXtb+a+Yac4Qkl eVBC643Jv9eVO2rBFLiWggBqHLLpkPiNdwsO3+EAZqGxQaAvNL5Db2wbWJUhGv// Vz0nAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU0qtsm24WUzTAMtBR1fx9FUfk41Mw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzA5OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0ubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9nTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWepMjANBAIAAjAHAwUAJAebQDANBgkqhkiG9w0BAQsFAAOCAQEA bSgQhyg9Odrgx03b8OvmPvkhZq/mc89WkqAiySm7s1oMGdvcPVwTNce3acl5ehUq UIwtdnfYCBNB91fpl2fUKdkQleMXarjEuZN67AZAXf8f+Ae+xMCW9RwOxKlcfSf/ dxoLpPejohGB9m4C1AuyscxCAN/KthHCGUxNMOWvAw7EmnLJh6IIA2KIIRoDcEwV 2LyMtV2PFzBOb3xVKRtkZxHm5rKUJ8rBJv0vU88/XBlAZzHq+CBW8AB+lp/FivfY Yk4RBsc7pUH+h+69SEKFFpm4fKujSaYfbHQ57s9VyDsEDtEJ/FEQDPRYhzZ25vPB rhgymYUh90haxd98du+Tgw== -----END CERTIFICATE-----Generated at Fri Apr 4 02:20:57 2025 by rpki-client