$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer File: AvsF3jxUSp8cNEpj619s_dNIEVY.cer (raw, json) Hash identifier: CooWm55GBo6t2kII7SNDIjxkjGwKVHbxEkGj1N3WGG0= Subject key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AEB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:21:15 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: IP: 103.139.92.0/23 IP: 103.197.180.0/22 IP: 103.218.92.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 05:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44727 (0xaeb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:21:15 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1b:57:25:fe:aa:6f:70:07:04:6d:fc:66:ad: 73:c2:5a:7d:17:48:66:9a:01:26:d5:e6:69:3a:55: 6a:ea:2c:fe:d9:e8:16:6d:44:c8:c1:49:12:0a:e4: e9:7c:db:1c:c1:42:2a:d3:e5:3a:47:39:52:08:2e: 84:7d:0a:dc:99:fe:95:69:bc:c2:ee:8c:b1:16:8d: 7f:f8:d8:f1:5f:bd:ae:2c:9a:65:7f:83:83:ce:2c: df:c3:c2:76:b7:c1:56:19:b8:b1:88:a9:a4:b6:6e: f9:2f:4c:24:34:e2:31:25:be:57:68:68:7e:63:ff: 84:32:f8:cc:3b:52:40:15:12:a3:71:5c:4a:68:17: 5b:2c:58:ef:10:0b:53:ca:ed:1e:41:81:f8:94:c4: a0:4b:0f:fc:3c:8f:1f:9e:f9:11:8b:87:0b:3e:8b: a7:6c:38:ff:25:ce:ed:59:b8:86:95:aa:b1:02:96: a5:f8:22:d5:ba:3b:05:c5:67:4a:0d:1b:0b:b1:85: 88:07:90:04:ab:c5:d3:42:db:c1:46:46:d5:1c:90: 5e:1c:39:8e:09:d8:0a:1d:53:ca:25:fc:4a:9b:53: 67:1f:6f:10:e2:d8:b7:6a:70:3c:52:47:c6:3f:9e: c0:6b:d5:1e:7d:e2:d6:48:e2:dd:a1:f9:cb:ca:21: e6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.139.92.0/23 103.197.180.0/22 103.218.92.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:e1:a1:85:14:f2:75:6c:d8:a8:35:03:e9:ba:81:31:48:a8: e8:e9:75:0a:32:5a:79:de:17:60:6f:bf:55:74:e5:f8:38:17: a0:1b:fc:01:0a:34:fa:de:61:0d:ee:a9:4c:40:51:d3:46:21: 26:ba:58:47:fc:14:ea:13:22:55:b8:b0:c1:16:67:1b:6d:f9: ae:8d:24:5e:62:02:69:17:31:d5:11:03:75:36:46:a2:42:7f: 97:fb:d4:0c:43:08:d6:8d:7b:7a:73:c7:ce:0f:fd:b7:ca:be: 45:39:5b:7b:94:ef:b3:da:a6:6a:e0:d1:d0:e8:2f:d4:26:f5: b8:fe:00:e8:b9:ab:72:93:cc:18:9d:5d:a3:54:63:d3:f8:d1: e2:8a:3e:db:4d:22:13:7c:33:52:ad:f3:27:2a:df:9e:18:18: 95:04:95:da:cf:d4:62:d1:01:35:18:4d:f1:01:0b:7c:c8:d8: d8:12:f0:af:68:a1:44:28:4e:84:28:18:1a:69:9e:d7:59:f4: 5f:d2:48:1e:17:1d:db:fb:78:73:a5:d1:82:d4:23:1e:b8:e9: 91:84:60:52:cf:cf:b9:02:3a:b2:20:0a:82:26:b6:2e:09:f7: 87:df:ad:97:12:c4:a4:a6:74:ce:a3:72:f8:3f:fb:ed:33:06: df:7a:8e:c2 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIDAK63MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIxMTVaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKDAyRkIwNURFM0M1NDRBOUYxQzM0NEE2M0VCNUY2Q0ZERDM0ODEx NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzG1cl/qpvcAcEbfxm rXPCWn0XSGaaASbV5mk6VWrqLP7Z6BZtRMjBSRIK5Ol82xzBQirT5TpHOVIILoR9 CtyZ/pVpvMLujLEWjX/42PFfva4smmV/g4POLN/Dwna3wVYZuLGIqaS2bvkvTCQ0 4jElvldoaH5j/4Qy+Mw7UkAVEqNxXEpoF1ssWO8QC1PK7R5BgfiUxKBLD/w8jx+e +RGLhws+i6dsOP8lzu1ZuIaVqrEClqX4ItW6OwXFZ0oNGwuxhYgHkASrxdNC28FG RtUckF4cOY4J2AodU8ol/EqbU2cfbxDi2LdqcDxSR8Y/nsBr1R594tZI4t2h+cvK IeZRAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUAvsF3jxUSp8cNEpj619s/dNIEVYw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMx NzEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzE3MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBZ4tcAwQCZ8W0AwQCZ9pcMA0G CSqGSIb3DQEBCwUAA4IBAQAd4aGFFPJ1bNioNQPpuoExSKjo6XUKMlp53hdgb79V dOX4OBegG/wBCjT63mEN7qlMQFHTRiEmulhH/BTqEyJVuLDBFmcbbfmujSReYgJp FzHVEQN1NkaiQn+X+9QMQwjWjXt6c8fOD/23yr5FOVt7lO+z2qZq4NHQ6C/UJvW4 /gDouatyk8wYnV2jVGPT+NHiij7bTSITfDNSrfMnKt+eGBiVBJXaz9Ri0QE1GE3x AQt8yNjYEvCvaKFEKE6EKBgaaZ7XWfRf0kgeFx3b+3hzpdGC1CMeuOmRhGBSz8+5 AjqyIAqCJrYuCfeH362XEsSkpnTOo3L4P/vtMwbfeo7C -----END CERTIFICATE-----Generated at Sun May 19 01:06:23 2024 by rpki-client on console-fra.rpki-client.org