$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer File: AvsF3jxUSp8cNEpj619s_dNIEVY.cer (raw, json) Hash identifier: 2e5JeMz8pGSC2SQh6SPdnw2xTocs7z1YBsVIoQt0VoU= Subject key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CD37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 03 Apr 2025 08:08:06 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: IP: 103.139.92.0/23 IP: 103.197.180.0/22 IP: 103.218.92.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 04:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52535 (0xcd37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Apr 3 08:08:06 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1b:57:25:fe:aa:6f:70:07:04:6d:fc:66:ad: 73:c2:5a:7d:17:48:66:9a:01:26:d5:e6:69:3a:55: 6a:ea:2c:fe:d9:e8:16:6d:44:c8:c1:49:12:0a:e4: e9:7c:db:1c:c1:42:2a:d3:e5:3a:47:39:52:08:2e: 84:7d:0a:dc:99:fe:95:69:bc:c2:ee:8c:b1:16:8d: 7f:f8:d8:f1:5f:bd:ae:2c:9a:65:7f:83:83:ce:2c: df:c3:c2:76:b7:c1:56:19:b8:b1:88:a9:a4:b6:6e: f9:2f:4c:24:34:e2:31:25:be:57:68:68:7e:63:ff: 84:32:f8:cc:3b:52:40:15:12:a3:71:5c:4a:68:17: 5b:2c:58:ef:10:0b:53:ca:ed:1e:41:81:f8:94:c4: a0:4b:0f:fc:3c:8f:1f:9e:f9:11:8b:87:0b:3e:8b: a7:6c:38:ff:25:ce:ed:59:b8:86:95:aa:b1:02:96: a5:f8:22:d5:ba:3b:05:c5:67:4a:0d:1b:0b:b1:85: 88:07:90:04:ab:c5:d3:42:db:c1:46:46:d5:1c:90: 5e:1c:39:8e:09:d8:0a:1d:53:ca:25:fc:4a:9b:53: 67:1f:6f:10:e2:d8:b7:6a:70:3c:52:47:c6:3f:9e: c0:6b:d5:1e:7d:e2:d6:48:e2:dd:a1:f9:cb:ca:21: e6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.139.92.0/23 103.197.180.0/22 103.218.92.0/22 Signature Algorithm: sha256WithRSAEncryption 55:60:3d:1d:af:ea:2f:02:0d:14:28:1b:c7:0e:f0:f5:de:21: 97:54:78:41:9b:e4:71:2b:3b:e7:10:79:88:a7:2f:3b:1b:2a: 57:79:fc:1b:7e:93:6e:a8:b9:e9:bf:fe:c2:fc:bf:aa:2f:95: 3d:ba:0c:91:9d:88:40:17:07:0f:0c:f6:1f:7f:a9:b0:77:f3: a3:c1:08:db:4b:4d:aa:54:f4:28:22:e8:06:fa:ca:ec:c0:f8: e3:a4:ed:59:ed:f4:6b:59:49:c6:5a:9c:73:cb:08:90:e4:ab: a2:86:07:94:90:d6:35:e0:2e:59:c7:e2:12:49:b7:48:ee:85: b0:53:06:4b:4d:d5:c2:e0:10:e9:69:5e:61:5c:04:91:3f:07: 52:8d:d1:55:45:18:5d:9b:34:45:13:2f:e7:6c:3d:96:db:bc: 87:7c:25:43:8f:a5:e1:b5:a3:c2:00:d7:7e:1b:2d:95:d5:e1: 24:d0:f5:ac:d4:39:44:d9:2b:8f:32:dc:73:16:5d:9d:16:84: 15:79:30:3d:98:0f:59:19:1c:db:4a:9b:15:a7:a8:bc:11:2d: a8:39:c8:9a:4c:1a:10:89:0e:8f:1f:6e:91:3e:ff:6a:b0:62: 4c:ac:84:13:1a:85:b5:22:f1:cd:a4:61:66:2c:94:67:06:57: a6:b2:be:21 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIDAM03MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODA4MDZaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKDAyRkIwNURFM0M1NDRBOUYxQzM0NEE2M0VCNUY2Q0ZERDM0ODEx NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzG1cl/qpvcAcEbfxm rXPCWn0XSGaaASbV5mk6VWrqLP7Z6BZtRMjBSRIK5Ol82xzBQirT5TpHOVIILoR9 CtyZ/pVpvMLujLEWjX/42PFfva4smmV/g4POLN/Dwna3wVYZuLGIqaS2bvkvTCQ0 4jElvldoaH5j/4Qy+Mw7UkAVEqNxXEpoF1ssWO8QC1PK7R5BgfiUxKBLD/w8jx+e +RGLhws+i6dsOP8lzu1ZuIaVqrEClqX4ItW6OwXFZ0oNGwuxhYgHkASrxdNC28FG RtUckF4cOY4J2AodU8ol/EqbU2cfbxDi2LdqcDxSR8Y/nsBr1R594tZI4t2h+cvK IeZRAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUAvsF3jxUSp8cNEpj619s/dNIEVYw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMx NzEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzE3MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBZ4tcAwQCZ8W0AwQCZ9pcMA0G CSqGSIb3DQEBCwUAA4IBAQBVYD0dr+ovAg0UKBvHDvD13iGXVHhBm+RxKzvnEHmI py87GypXefwbfpNuqLnpv/7C/L+qL5U9ugyRnYhAFwcPDPYff6mwd/OjwQjbS02q VPQoIugG+srswPjjpO1Z7fRrWUnGWpxzywiQ5KuihgeUkNY14C5Zx+ISSbdI7oWw UwZLTdXC4BDpaV5hXASRPwdSjdFVRRhdmzRFEy/nbD2W27yHfCVDj6XhtaPCANd+ Gy2V1eEk0PWs1DlE2SuPMtxzFl2dFoQVeTA9mA9ZGRzbSpsVp6i8ES2oOciaTBoQ iQ6PH26RPv9qsGJMrIQTGoW1IvHNpGFmLJRnBlemsr4h -----END CERTIFICATE-----Generated at Fri Apr 4 02:22:01 2025 by rpki-client