$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer File: Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer (raw, json) Hash identifier: OEuLNF47LqsdrmH+214h7r2Q88q9TfO9Nt4LsXx3Zx4= Subject key identifier: 0F:28:65:83:59:C9:77:32:21:71:F4:02:33:23:42:C3:1D:D7:C5:6E Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BC55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:55:46 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 151218 IP: 2401:a9a0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48213 (0xbc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:55:46 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=0F28658359C977322171F402332342C31DD7C56E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:05:82:25:72:fd:6c:78:7a:43:a5:cc:e3: 08:c7:87:d5:fb:6d:16:03:af:8c:1b:db:31:95:d1: fa:14:dc:dd:3e:51:fb:d5:0a:46:13:9c:42:12:51: a2:81:9b:60:ae:51:45:c8:34:7b:fc:62:c9:6a:6b: 83:63:60:21:75:9b:82:63:7d:f4:53:e7:dd:e3:c3: 09:6a:d2:35:2c:10:29:af:30:84:c4:c3:cb:20:3b: 1f:6d:49:1d:f5:40:61:5e:88:3a:11:70:b7:97:e9: bb:80:ac:51:bb:3a:71:d9:a6:55:e3:09:4d:80:92: 7a:f3:61:fd:29:ed:ca:36:0c:04:86:1c:19:71:06: 4d:eb:1e:ae:7d:40:1a:5a:c4:74:ff:76:fc:e4:96: f4:15:65:20:22:61:bc:dc:82:05:88:44:60:6c:19: f9:79:71:b4:0b:c9:e1:6c:ed:8c:28:8a:98:0d:97: f7:79:e2:c4:1a:66:19:74:3f:16:73:22:00:81:ce: ba:8d:e9:50:2c:43:ed:2b:d6:34:9e:11:f3:45:4e: 04:cb:28:3f:04:5c:62:38:35:af:a0:92:e3:1d:81: 76:7f:8d:69:03:76:09:09:af:16:3f:b6:11:ca:8f: a4:de:1e:85:82:d5:12:2d:3f:5e:96:26:57:4a:d6: 4a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:28:65:83:59:C9:77:32:21:71:F4:02:33:23:42:C3:1D:D7:C5:6E X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151218 sbgp-ipAddrBlock: critical IPv6: 2401:a9a0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:d0:42:7c:91:d5:78:65:46:9e:a8:d2:6b:e3:58:61:5b:24: df:51:90:2a:7d:3e:e1:ca:b9:1a:dc:94:5a:40:10:dd:51:fd: 41:49:6d:9c:93:49:3c:d1:d7:0c:96:30:2f:9d:21:04:2e:6c: 89:81:26:da:24:c3:da:19:38:d4:20:67:aa:7c:1f:b1:64:29: ed:87:24:da:2f:69:29:9b:8a:4d:b0:2f:0a:43:7c:03:c2:8c: d9:c5:9a:c9:92:a9:69:d5:2c:bb:b5:64:f8:e4:b2:a0:a9:fc: 4a:2d:7a:0c:ff:87:a8:4c:fa:a7:40:8b:b2:9c:23:b1:68:97: fa:f2:93:14:c6:23:d4:54:f2:55:64:e1:b9:b8:0c:7a:1d:4c: 1c:74:d1:2b:ff:3e:6b:e2:f2:cf:a6:b6:2b:fa:af:54:10:35: fc:a2:4e:a1:fe:4d:06:0f:9f:72:dc:6b:cb:97:3a:7d:1e:e9: 05:3d:43:89:a8:a8:b7:65:f5:fd:54:74:93:6d:fd:ae:b3:07: c8:24:6b:3c:14:db:cf:a7:76:8a:a7:c8:89:55:13:bf:59:74: dd:8f:0f:ef:61:2e:e9:6c:91:11:54:03:94:10:81:9b:4d:db: 3d:88:44:9b:49:e2:71:22:9a:5c:c3:a6:b4:ee:d0:29:5e:73: c7:b5:a4:22 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDALxVMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjU1NDZaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDBGMjg2NTgzNTlDOTc3MzIyMTcxRjQwMjMzMjM0MkMzMUREN0M1 NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC21QWCJXL9bHh6Q6XM 4wjHh9X7bRYDr4wb2zGV0foU3N0+UfvVCkYTnEISUaKBm2CuUUXINHv8Yslqa4Nj YCF1m4JjffRT593jwwlq0jUsECmvMITEw8sgOx9tSR31QGFeiDoRcLeX6buArFG7 OnHZplXjCU2AknrzYf0p7co2DASGHBlxBk3rHq59QBpaxHT/dvzklvQVZSAiYbzc ggWIRGBsGfl5cbQLyeFs7YwoipgNl/d54sQaZhl0PxZzIgCBzrqN6VAsQ+0r1jSe EfNFTgTLKD8EXGI4Na+gkuMdgXZ/jWkDdgkJrxY/thHKj6TeHoWC1RItP16WJldK 1kojAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUDyhlg1nJdzIhcfQCMyNCwx3XxW4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy OTYvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI5Ni9EeWhsZzFuSmR6SWhjZlFDTXlOQ3d4M1h4VzQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJOsjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBqaAwDQYJKoZIhvcNAQELBQADggEBAA/QQnyR1XhlRp6o0mvj WGFbJN9RkCp9PuHKuRrclFpAEN1R/UFJbZyTSTzR1wyWMC+dIQQubImBJtokw9oZ ONQgZ6p8H7FkKe2HJNovaSmbik2wLwpDfAPCjNnFmsmSqWnVLLu1ZPjksqCp/Eot egz/h6hM+qdAi7KcI7Fol/rykxTGI9RU8lVk4bm4DHodTBx00Sv/Pmvi8s+mtiv6 r1QQNfyiTqH+TQYPn3Lca8uXOn0e6QU9Q4moqLdl9f1UdJNt/a6zB8gkazwU28+n doqnyIlVE79ZdN2PD+9hLulskRFUA5QQgZtN2z2IRJtJ4nEimlzDprTu0Clec8e1 pCI= -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:38 2024 by rpki-client on console-ams.rpki-client.org