$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/FAIF14i0ivdfhlhdBpuVogqhO1w.cer File: FAIF14i0ivdfhlhdBpuVogqhO1w.cer (raw, json) Hash identifier: ULi5L+YuchmGKY3666F8OTNvf0Exsi3ioz0MjnD72Tc= Subject key identifier: 14:02:05:D7:88:B4:8A:F7:5F:86:58:5D:06:9B:95:A2:0A:A1:3B:5C Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BD2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/FAIF14i0ivdfhlhdBpuVogqhO1w.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Sun 06 Oct 2024 19:50:28 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 151313 IP: 103.230.110.0/23 IP: 2401:1160::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48426 (0xbd2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Oct 6 19:50:28 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=140205D788B48AF75F86585D069B95A20AA13B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4a:e8:62:4e:34:ff:2b:e4:42:ec:00:af:e1: bb:9e:2b:4b:ce:5c:8e:44:c0:78:85:87:6c:70:71: eb:d2:4f:1a:56:9b:79:0b:e9:5d:a5:ad:e1:a8:cc: 9c:01:43:b3:61:2e:66:7c:6b:b0:48:bd:72:fe:27: a4:73:52:5c:56:99:7c:0c:f8:ef:73:47:db:36:75: de:ae:91:40:6c:55:dd:85:dc:2d:bd:50:01:eb:4a: 4f:90:ca:9b:60:ed:53:37:7b:5e:62:fb:b4:cf:60: 13:28:f3:57:e9:15:1f:5f:5d:93:3d:ae:1c:36:dd: 9f:91:d3:b6:98:a6:ec:1f:e5:2b:61:de:a3:4a:c5: 22:f6:40:b1:bc:04:1f:8f:60:b7:e5:bc:9e:51:4b: f2:30:d5:c3:94:61:59:b8:a5:85:af:6f:e4:bd:39: cb:12:c6:43:2d:0c:83:cc:bb:74:7b:3e:d9:49:f4: 11:cf:d1:a9:fb:c1:2a:cc:46:a6:26:52:02:da:db: 50:41:b1:d5:9f:e0:1a:b5:2d:87:73:6c:4a:b0:cd: 62:a5:57:ce:69:0b:ea:09:3b:b6:f3:db:71:47:f9: d7:65:77:a4:0f:29:d7:3d:ac:6d:ed:9e:3f:b6:c9: 52:a9:15:5a:10:5a:80:3e:a0:7c:62:a8:f5:ee:53: 98:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:02:05:D7:88:B4:8A:F7:5F:86:58:5D:06:9B:95:A2:0A:A1:3B:5C X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/FAIF14i0ivdfhlhdBpuVogqhO1w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151313 sbgp-ipAddrBlock: critical IPv4: 103.230.110.0/23 IPv6: 2401:1160::/32 Signature Algorithm: sha256WithRSAEncryption b4:dc:2f:da:48:9f:dc:c0:6d:77:cb:88:7b:2a:e2:d8:ae:61: 2d:54:99:79:30:7c:89:4c:3d:60:be:cd:7a:6d:c6:a1:1c:22: 08:38:8e:05:4c:e3:0e:3a:b9:5d:31:87:9a:ed:1a:13:42:e7: ff:86:71:f5:45:13:05:84:73:62:2f:f3:e4:55:0d:11:12:27: f0:22:9f:77:14:37:5d:bb:35:e7:30:f0:0b:11:00:13:45:bc: 82:91:b4:ff:a3:a6:43:9f:c1:d6:ad:2e:06:41:1b:36:54:7a: e7:3e:3d:05:b5:6b:50:eb:73:c0:9e:89:e9:e9:2d:fe:33:ce: 59:cd:f8:c2:96:93:b3:5a:9f:23:4b:f6:f8:06:f8:14:54:77: 81:8e:6a:92:23:9e:6d:31:72:9d:6a:38:d0:04:36:c2:3c:78: fa:91:a2:bb:07:63:07:60:98:f2:8d:96:a5:48:c9:1e:46:25: c4:d7:7a:6d:6d:3f:85:a7:83:84:fb:c4:45:21:bd:30:6c:1c: 6a:a1:7e:76:69:4a:41:39:28:74:4d:6b:7c:b1:99:c3:f5:39: 38:69:bc:5c:63:0a:2c:08:79:02:93:b4:e6:1a:51:65:63:1d: ec:3a:7c:e2:27:6e:d3:5c:a8:2a:2b:dc:d0:82:b9:4c:28:56: e2:72:9d:fc -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAL0qMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDEwMDYxOTUwMjhaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDE0MDIwNUQ3ODhCNDhBRjc1Rjg2NTg1RDA2OUI5NUEyMEFBMTNC NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDISuhiTjT/K+RC7ACv 4bueK0vOXI5EwHiFh2xwcevSTxpWm3kL6V2lreGozJwBQ7NhLmZ8a7BIvXL+J6Rz UlxWmXwM+O9zR9s2dd6ukUBsVd2F3C29UAHrSk+Qyptg7VM3e15i+7TPYBMo81fp FR9fXZM9rhw23Z+R07aYpuwf5Sth3qNKxSL2QLG8BB+PYLflvJ5RS/Iw1cOUYVm4 pYWvb+S9OcsSxkMtDIPMu3R7PtlJ9BHP0an7wSrMRqYmUgLa21BBsdWf4Bq1LYdz bEqwzWKlV85pC+oJO7bz23FH+ddld6QPKdc9rG3tnj+2yVKpFVoQWoA+oHxiqPXu U5hnAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUFAIF14i0ivdfhlhdBpuVogqhO1ww HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy MjUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzIyNS9GQUlGMTRpMGl2ZGZobGhkQnB1Vm9ncWhPMXcubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJPETAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWfmbjANBAIAAjAHAwUAJAERYDANBgkqhkiG9w0BAQsFAAOCAQEA tNwv2kif3MBtd8uIeyri2K5hLVSZeTB8iUw9YL7Nem3GoRwiCDiOBUzjDjq5XTGH mu0aE0Ln/4Zx9UUTBYRzYi/z5FUNERIn8CKfdxQ3Xbs15zDwCxEAE0W8gpG0/6Om Q5/B1q0uBkEbNlR65z49BbVrUOtzwJ6J6ekt/jPOWc34wpaTs1qfI0v2+Ab4FFR3 gY5qkiOebTFynWo40AQ2wjx4+pGiuwdjB2CY8o2WpUjJHkYlxNd6bW0/haeDhPvE RSG9MGwcaqF+dmlKQTkodE1rfLGZw/U5OGm8XGMKLAh5ApO05hpRZWMd7Dp84idu 01yoKivc0IK5TChW4nKd/A== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:25 2024 by rpki-client on console-fra.rpki-client.org