$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/FAIF14i0ivdfhlhdBpuVogqhO1w.cer File: FAIF14i0ivdfhlhdBpuVogqhO1w.cer (raw, json) Hash identifier: B1pFzcU0P+lTIqY8GU7F2H0LSLkV2fcT6S8DrDA4+Vw= Subject key identifier: 14:02:05:D7:88:B4:8A:F7:5F:86:58:5D:06:9B:95:A2:0A:A1:3B:5C Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AE49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/FAIF14i0ivdfhlhdBpuVogqhO1w.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:20:01 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: AS: 151313 IP: 103.230.110.0/23 IP: 2401:1160::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 00:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44617 (0xae49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:20:01 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=140205D788B48AF75F86585D069B95A20AA13B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4a:e8:62:4e:34:ff:2b:e4:42:ec:00:af:e1: bb:9e:2b:4b:ce:5c:8e:44:c0:78:85:87:6c:70:71: eb:d2:4f:1a:56:9b:79:0b:e9:5d:a5:ad:e1:a8:cc: 9c:01:43:b3:61:2e:66:7c:6b:b0:48:bd:72:fe:27: a4:73:52:5c:56:99:7c:0c:f8:ef:73:47:db:36:75: de:ae:91:40:6c:55:dd:85:dc:2d:bd:50:01:eb:4a: 4f:90:ca:9b:60:ed:53:37:7b:5e:62:fb:b4:cf:60: 13:28:f3:57:e9:15:1f:5f:5d:93:3d:ae:1c:36:dd: 9f:91:d3:b6:98:a6:ec:1f:e5:2b:61:de:a3:4a:c5: 22:f6:40:b1:bc:04:1f:8f:60:b7:e5:bc:9e:51:4b: f2:30:d5:c3:94:61:59:b8:a5:85:af:6f:e4:bd:39: cb:12:c6:43:2d:0c:83:cc:bb:74:7b:3e:d9:49:f4: 11:cf:d1:a9:fb:c1:2a:cc:46:a6:26:52:02:da:db: 50:41:b1:d5:9f:e0:1a:b5:2d:87:73:6c:4a:b0:cd: 62:a5:57:ce:69:0b:ea:09:3b:b6:f3:db:71:47:f9: d7:65:77:a4:0f:29:d7:3d:ac:6d:ed:9e:3f:b6:c9: 52:a9:15:5a:10:5a:80:3e:a0:7c:62:a8:f5:ee:53: 98:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:02:05:D7:88:B4:8A:F7:5F:86:58:5D:06:9B:95:A2:0A:A1:3B:5C X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3225/FAIF14i0ivdfhlhdBpuVogqhO1w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151313 sbgp-ipAddrBlock: critical IPv4: 103.230.110.0/23 IPv6: 2401:1160::/32 Signature Algorithm: sha256WithRSAEncryption 93:8f:1e:3b:de:26:a6:75:80:dd:0e:67:c3:e1:94:ef:7e:4c: 45:89:3e:48:88:05:64:54:3d:a8:3a:40:3c:29:31:73:2b:fb: 4c:89:f0:f3:99:6c:0d:2c:e9:fd:a9:34:af:fa:12:32:b8:74: f6:ce:fe:1a:48:25:70:6c:89:08:0e:50:47:dd:28:30:0a:92: f0:f3:73:80:53:b9:22:24:25:d8:27:61:4e:a1:38:b5:ea:ff: 53:22:2e:f7:05:82:14:cd:b3:f0:e7:2c:a4:bc:ce:04:3f:c2: c7:b6:60:73:6d:d8:35:a6:29:50:e8:e2:bf:f6:ad:0f:64:66: 00:29:17:25:31:88:09:83:c4:88:d9:60:70:bb:1a:2d:fd:59: a9:9e:b2:d6:fa:01:4d:34:71:30:de:4c:fb:f1:aa:d0:a9:eb: 1d:93:36:d5:a5:02:88:04:e7:2d:0a:06:b0:79:ee:92:26:b9: 3a:37:6c:f9:f5:cc:c8:66:b2:43:b1:5a:e2:ac:58:7b:72:bd: 1e:66:c0:40:ff:52:ab:87:dc:53:31:a9:56:97:85:0a:f6:3a: 04:12:87:3a:4a:af:f8:a0:b8:c3:f1:f9:c7:39:8f:82:83:4f: 5b:a1:77:f3:a0:47:91:44:30:8a:bf:e5:71:34:6d:85:45:6c: e6:18:22:7f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAK5JMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIwMDFaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKDE0MDIwNUQ3ODhCNDhBRjc1Rjg2NTg1RDA2OUI5NUEyMEFBMTNC NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDISuhiTjT/K+RC7ACv 4bueK0vOXI5EwHiFh2xwcevSTxpWm3kL6V2lreGozJwBQ7NhLmZ8a7BIvXL+J6Rz UlxWmXwM+O9zR9s2dd6ukUBsVd2F3C29UAHrSk+Qyptg7VM3e15i+7TPYBMo81fp FR9fXZM9rhw23Z+R07aYpuwf5Sth3qNKxSL2QLG8BB+PYLflvJ5RS/Iw1cOUYVm4 pYWvb+S9OcsSxkMtDIPMu3R7PtlJ9BHP0an7wSrMRqYmUgLa21BBsdWf4Bq1LYdz bEqwzWKlV85pC+oJO7bz23FH+ddld6QPKdc9rG3tnj+2yVKpFVoQWoA+oHxiqPXu U5hnAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUFAIF14i0ivdfhlhdBpuVogqhO1ww HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy MjUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzIyNS9GQUlGMTRpMGl2ZGZobGhkQnB1Vm9ncWhPMXcubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJPETAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWfmbjANBAIAAjAHAwUAJAERYDANBgkqhkiG9w0BAQsFAAOCAQEA k48eO94mpnWA3Q5nw+GU735MRYk+SIgFZFQ9qDpAPCkxcyv7TInw85lsDSzp/ak0 r/oSMrh09s7+GkglcGyJCA5QR90oMAqS8PNzgFO5IiQl2CdhTqE4ter/UyIu9wWC FM2z8OcspLzOBD/Cx7Zgc23YNaYpUOjiv/atD2RmACkXJTGICYPEiNlgcLsaLf1Z qZ6y1voBTTRxMN5M+/Gq0KnrHZM21aUCiATnLQoGsHnukia5Ojds+fXMyGayQ7Fa 4qxYe3K9HmbAQP9Sq4fcUzGpVpeFCvY6BBKHOkqv+KC4w/H5xzmPgoNPW6F386BH kUQwir/lcTRthUVs5hgifw== -----END CERTIFICATE-----Generated at Sun May 19 19:43:01 2024 by rpki-client on console-ams.rpki-client.org