$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1rsep985B3YngQY-7FeZ2Qdz2cI.cer File: 1rsep985B3YngQY-7FeZ2Qdz2cI.cer (raw, json) Hash identifier: xDR43i0gf2Jn4lJ06fLsCUB+AUncd/nZEyd7Mk7xTf4= Subject key identifier: D6:BB:1E:A7:DF:39:07:76:27:81:06:3E:EC:57:99:D9:07:73:D9:C2 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BCC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2141/1rsep985B3YngQY-7FeZ2Qdz2cI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2141/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:57:30 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 63629 IP: 103.75.152.0/22 IP: 2407:5380::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48321 (0xbcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:57:30 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=D6BB1EA7DF3907762781063EEC5799D90773D9C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:f5:3a:e9:a2:a9:eb:5a:13:b7:7b:42:cc: 71:86:5e:78:0e:29:5b:3b:f3:1b:df:a4:25:a5:c0: b9:23:da:6d:48:cb:51:5f:ed:25:4c:94:e5:e8:94: e2:5b:21:69:a3:f3:b6:31:af:02:f3:3d:36:eb:a2: 84:2e:e9:c6:a5:ba:5a:6c:69:bf:34:77:31:0c:36: 7c:9c:32:50:72:22:66:7c:18:aa:62:f6:44:1d:e5: f5:ab:c2:58:23:ce:fd:98:3b:5c:62:17:3a:06:85: 7f:3a:f3:6a:9e:c7:60:4e:fe:9e:38:33:00:a1:6e: 2a:23:6f:b2:b2:89:d2:92:25:36:9d:ca:cc:74:b0: 46:fa:65:e2:84:9e:03:41:40:1c:1b:75:e7:83:88: 45:81:e8:4e:22:3d:8f:3d:8f:9f:f8:37:42:59:cc: 24:08:1f:6b:e3:b2:ed:df:26:8d:ef:d5:00:0f:a2: cd:49:2d:2f:a4:17:21:8a:29:d1:60:8d:5f:bd:37: 9b:eb:5b:79:4f:09:92:2e:44:31:9a:e1:85:38:31: 17:b6:06:f4:0a:6d:44:f5:d1:bf:15:04:e2:5c:8a: ac:ef:93:0a:84:79:e7:41:0c:70:91:9b:b9:6a:90: b9:8a:e1:c4:6f:03:23:2a:51:6e:b3:dd:1d:58:1d: ab:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BB:1E:A7:DF:39:07:76:27:81:06:3E:EC:57:99:D9:07:73:D9:C2 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2141/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2141/1rsep985B3YngQY-7FeZ2Qdz2cI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63629 sbgp-ipAddrBlock: critical IPv4: 103.75.152.0/22 IPv6: 2407:5380::/32 Signature Algorithm: sha256WithRSAEncryption ad:86:49:b3:28:40:fc:78:29:16:d9:a4:47:41:53:28:f9:3d: bb:36:41:cc:94:4a:a4:55:9b:04:95:ad:91:74:14:8d:2b:24: 40:3e:bd:dc:80:3c:30:1d:a7:27:bf:df:58:5f:54:5d:02:07: 8b:c4:0a:94:1b:34:b5:be:23:21:7a:c0:32:f8:54:2b:ed:92: 91:75:08:25:b5:c1:6e:a8:6a:39:5b:4a:55:88:88:54:3e:90: 0c:d0:c4:8d:69:41:92:d7:2d:f6:96:0b:7d:27:50:9d:aa:92: 39:59:8c:e9:57:65:b1:55:8d:20:c6:c4:f5:4e:ef:d8:e2:cc: 5e:43:98:94:02:72:69:d3:64:b8:b0:f3:73:3c:8b:7c:37:42: ce:ef:b7:4f:9c:89:d2:7a:e1:10:e9:76:7c:28:93:00:07:04: f3:72:eb:f3:c2:16:63:8a:b7:68:bf:c4:77:6f:e0:72:c6:14: 34:29:48:00:54:57:1a:df:81:87:05:97:10:4d:60:24:60:60: e3:13:d5:7c:4d:78:89:64:40:7b:9a:10:85:6e:bd:c2:dd:4a: af:4f:bf:f2:71:34:1b:4c:86:e4:0b:73:a7:fb:0b:10:28:67: 51:d9:41:b5:b0:4e:47:47:58:b5:e4:25:5e:85:b5:6a:ed:4e: 18:1e:04:d6 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDALzBMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjU3MzBaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKEQ2QkIxRUE3REYzOTA3NzYyNzgxMDYzRUVDNTc5OUQ5MDc3M0Q5 QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFsvU66aKp61oTt3tC zHGGXngOKVs78xvfpCWlwLkj2m1Iy1Ff7SVMlOXolOJbIWmj87YxrwLzPTbrooQu 6calulpsab80dzEMNnycMlByImZ8GKpi9kQd5fWrwlgjzv2YO1xiFzoGhX8682qe x2BO/p44MwChbiojb7KyidKSJTadysx0sEb6ZeKEngNBQBwbdeeDiEWB6E4iPY89 j5/4N0JZzCQIH2vjsu3fJo3v1QAPos1JLS+kFyGKKdFgjV+9N5vrW3lPCZIuRDGa 4YU4MRe2BvQKbUT10b8VBOJciqzvkwqEeedBDHCRm7lqkLmK4cRvAyMqUW6z3R1Y HavFAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU1rsep985B3YngQY+7FeZ2Qdz2cIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIx NDEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjE0MS8xcnNlcDk4NUIzWW5nUVktN0ZlWjJRZHoyY0kubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwD4jTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmdLmDANBAIAAjAHAwUAJAdTgDANBgkqhkiG9w0BAQsFAAOCAQEA rYZJsyhA/HgpFtmkR0FTKPk9uzZBzJRKpFWbBJWtkXQUjSskQD693IA8MB2nJ7/f WF9UXQIHi8QKlBs0tb4jIXrAMvhUK+2SkXUIJbXBbqhqOVtKVYiIVD6QDNDEjWlB ktct9pYLfSdQnaqSOVmM6VdlsVWNIMbE9U7v2OLMXkOYlAJyadNkuLDzczyLfDdC zu+3T5yJ0nrhEOl2fCiTAAcE83Lr88IWY4q3aL/Ed2/gcsYUNClIAFRXGt+BhwWX EE1gJGBg4xPVfE14iWRAe5oQhW69wt1Kr0+/8nE0G0yG5Atzp/sLEChnUdlBtbBO R0dYteQlXoW1au1OGB4E1g== -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:24 2024 by rpki-client on console-ams.rpki-client.org