$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer File: 0qtsm24WUzTAMtBR1fx9FUfk41M.cer (raw, json) Hash identifier: LXBRXc7IoOAPuuMsE3Xia4F/qIWHht0qYtbYIiheZ90= Subject key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BA99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:48:22 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 146845 IP: 103.169.50.0/23 IP: 2407:9b40::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47769 (0xba99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:48:22 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:cb:66:2d:d1:32:c0:4e:17:c6:2d:73:a0: bb:32:13:d5:70:69:b2:69:8a:f0:bd:f8:e0:f7:4b: 7c:eb:a8:ea:8d:46:10:29:7a:50:ff:ac:43:88:08: ef:33:cc:7d:81:e9:d4:a8:b8:f6:5d:79:d9:eb:a6: 33:51:dc:c0:cb:df:f7:24:89:f6:84:8d:3f:00:0f: c8:07:8c:e5:2a:67:dd:92:3e:23:7c:5f:8a:5f:8d: f5:47:3c:2a:cf:a9:ed:b6:48:76:e1:08:31:f8:dd: 81:ca:d4:09:9c:3d:01:7e:04:6f:97:ba:1e:a5:eb: 15:f4:1a:a3:d9:9d:14:28:ff:9b:22:b6:a0:44:90: 9f:e3:d1:1d:1f:5d:84:56:6d:30:65:31:46:3e:5d: d9:69:be:2b:7c:ad:dc:f5:36:80:83:6e:f5:d1:c5: 87:23:27:b7:74:da:0b:67:e1:63:4f:c9:a6:20:4d: 7c:fd:9e:23:cc:b6:07:2d:ef:d0:3f:3c:10:e3:69: 47:57:b5:bf:9a:f9:86:9c:e1:09:25:79:50:42:eb: 8d:c9:bf:d7:95:3b:6a:c1:14:b8:96:82:00:6a:1c: b2:e9:90:f8:8d:77:0b:0e:df:e1:00:66:a1:b1:41: a0:2f:34:be:43:6f:6c:1b:58:95:21:1a:ff:ff:57: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146845 sbgp-ipAddrBlock: critical IPv4: 103.169.50.0/23 IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 39:0a:a0:25:e6:fe:98:f8:98:8b:cc:27:35:58:08:19:8b:71: a1:3f:7c:9e:35:be:5e:3f:12:c7:9a:d5:98:5b:1b:e2:84:ba: be:53:80:3b:99:30:99:91:c8:78:db:69:1a:fe:72:34:b7:f2: 54:61:aa:0d:e5:19:f7:a6:34:36:76:20:34:32:c5:42:84:53: 90:66:f9:36:12:9a:76:c9:e3:5a:ca:77:ee:bc:94:c6:1d:cf: cd:88:0f:fb:01:ee:96:16:3e:d0:82:4c:ce:a9:f3:6e:11:83: 14:39:58:19:c6:8a:18:be:58:bf:30:75:2b:e6:e1:45:9b:a3: 37:39:1c:a7:c9:17:a6:29:d2:2b:57:39:f1:55:dc:e2:a8:b1: a9:82:6f:3b:ed:54:42:4e:42:6f:af:b4:ad:a5:ee:51:93:f1: 1d:72:67:df:8b:4c:d2:d5:32:f9:69:9d:16:bc:9e:63:54:40: a0:c0:10:67:25:4f:6d:52:51:32:b5:5f:ad:21:98:9f:3c:5f: 6a:56:f0:bf:b2:cb:ee:f2:31:98:a9:52:5a:4c:13:e4:18:5f: d8:bb:f6:be:ba:7e:1f:e0:6c:29:ae:0d:ec:b9:8f:4a:d5:df: 0b:8f:a4:ac:85:63:97:10:16:7d:79:29:bc:38:fe:3c:d1:37: 4f:1a:b1:1e -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDALqZMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjQ4MjJaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKEQyQUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUz NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEistmLdEywE4Xxi1z oLsyE9VwabJpivC9+OD3S3zrqOqNRhApelD/rEOICO8zzH2B6dSouPZdednrpjNR 3MDL3/ckifaEjT8AD8gHjOUqZ92SPiN8X4pfjfVHPCrPqe22SHbhCDH43YHK1Amc PQF+BG+Xuh6l6xX0GqPZnRQo/5sitqBEkJ/j0R0fXYRWbTBlMUY+Xdlpvit8rdz1 NoCDbvXRxYcjJ7d02gtn4WNPyaYgTXz9niPMtgct79A/PBDjaUdXtb+a+Yac4Qkl eVBC643Jv9eVO2rBFLiWggBqHLLpkPiNdwsO3+EAZqGxQaAvNL5Db2wbWJUhGv// Vz0nAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU0qtsm24WUzTAMtBR1fx9FUfk41Mw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzA5OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0ubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9nTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWepMjANBAIAAjAHAwUAJAebQDANBgkqhkiG9w0BAQsFAAOCAQEA OQqgJeb+mPiYi8wnNVgIGYtxoT98njW+Xj8Sx5rVmFsb4oS6vlOAO5kwmZHIeNtp Gv5yNLfyVGGqDeUZ96Y0NnYgNDLFQoRTkGb5NhKadsnjWsp37ryUxh3PzYgP+wHu lhY+0IJMzqnzbhGDFDlYGcaKGL5YvzB1K+bhRZujNzkcp8kXpinSK1c58VXc4qix qYJvO+1UQk5Cb6+0raXuUZPxHXJn34tM0tUy+WmdFryeY1RAoMAQZyVPbVJRMrVf rSGYnzxfalbwv7LL7vIxmKlSWkwT5Bhf2Lv2vrp+H+BsKa4N7LmPStXfC4+krIVj lxAWfXkpvDj+PNE3TxqxHg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:42:19 2024 by rpki-client on console-ams.rpki-client.org