$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer File: GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer (raw, json) Hash identifier: UARq4br/ME0HVzEUbDBkcYXVdxMUUPIFQOFKc+jot64= Subject key identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: A2DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 11 Aug 2023 07:48:52 +0000 Certificate not after: Sat 10 Aug 2024 07:41:13 +0000 Subordinate resources: IP: 103.93.180.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 05:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41695 (0xa2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Aug 11 07:48:52 2023 GMT Not After : Aug 10 07:41:13 2024 GMT Subject: CN=1AF902AD66211881EA040C5FF7203D9BCC87FFC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:58:3b:8d:5e:35:dc:be:9e:a4:60:0f:2b: 94:89:d8:cb:89:7b:a8:a4:24:65:16:c9:e8:a9:04: 3e:05:61:80:e1:5d:76:66:72:6c:bd:3d:6e:a9:37: a9:f1:88:69:0e:47:94:c4:7d:d7:b5:74:7e:a1:13: 98:60:99:ad:b6:c2:a2:64:1c:5f:44:38:83:49:dc: 38:ed:03:ed:4a:16:1f:30:ca:0c:40:bf:1a:77:93: 22:48:c7:aa:20:f3:78:0e:2c:4e:f8:73:f3:a9:ae: 29:9f:a0:13:d5:cc:f0:b0:a4:fc:25:31:64:ee:94: f4:ca:e9:0a:f8:bc:eb:1f:6a:2b:57:8f:c5:dc:c5: dc:b4:82:c1:6d:d1:42:f3:12:3b:eb:86:d0:03:30: bc:26:d9:c8:f8:2e:da:dc:7f:af:63:7c:a6:d3:3a: 57:0e:e1:44:9e:11:62:2f:cd:46:1f:63:87:9f:22: af:85:9a:72:a9:42:ef:ce:44:84:9d:9b:12:38:46: ee:e3:65:3e:6e:c4:fe:a6:a9:f9:9d:3e:02:c0:9c: 97:26:a5:2f:2a:0a:08:b8:61:e0:1c:13:1b:42:f9: fd:1f:4e:a7:cf:3d:ab:99:a5:e1:d9:5d:a1:92:28: 4f:f9:1a:d1:9f:60:0f:b4:76:22:e6:7a:b2:2f:83: da:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.93.180.0/22 Signature Algorithm: sha256WithRSAEncryption 27:e5:77:8a:cc:17:3a:c8:6f:f0:d2:78:0b:83:1b:18:6a:00: f8:b3:13:72:0d:60:3f:e9:9d:b3:dc:69:60:2a:b8:9c:20:b7: ef:66:cb:0f:fb:06:21:3e:cd:71:ff:76:18:d4:3b:a6:7b:a7: 17:d7:01:a0:1f:1f:fa:24:78:4e:28:c9:bc:2d:5d:06:1b:80: 7e:8a:9b:d4:98:0f:dd:df:95:0f:97:71:4f:11:fa:4d:5e:41: 4e:a5:7a:01:96:de:1f:86:13:9e:e7:4b:73:7e:6d:ab:45:80: 2f:e8:19:59:d5:62:19:8e:13:45:aa:28:49:c2:71:19:02:cb: c0:05:17:89:fb:40:d0:3d:7a:58:e9:1b:9e:93:b6:15:5e:d0: 4c:16:ea:cf:0c:20:cf:e4:e6:3d:d8:f3:f7:1f:47:50:24:10: 45:99:20:94:45:28:40:7c:1c:32:da:92:91:f8:cb:56:f1:89: a7:02:4a:64:bd:1b:91:a4:e7:b6:8e:a9:2e:ee:2f:1f:91:9d: 14:30:20:bf:e3:ff:b0:38:e3:81:c7:f9:6a:eb:d3:b5:b4:00: 23:92:bf:46:07:bf:eb:8e:45:24:1e:7f:fe:9f:f2:49:5b:0c: 46:93:8d:07:26:c3:b7:e6:f9:d4:66:0c:ad:10:03:30:df:67: 5f:42:de:69 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIDAKLfMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yMzA4MTEwNzQ4NTJaFw0yNDA4MTAwNzQxMTNaMDMx MTAvBgNVBAMTKDFBRjkwMkFENjYyMTE4ODFFQTA0MEM1RkY3MjAzRDlCQ0M4N0ZG QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8TVg7jV413L6epGAP K5SJ2MuJe6ikJGUWyeipBD4FYYDhXXZmcmy9PW6pN6nxiGkOR5TEfde1dH6hE5hg ma22wqJkHF9EOINJ3DjtA+1KFh8wygxAvxp3kyJIx6og83gOLE74c/OprimfoBPV zPCwpPwlMWTulPTK6Qr4vOsfaitXj8Xcxdy0gsFt0ULzEjvrhtADMLwm2cj4Ltrc f69jfKbTOlcO4USeEWIvzUYfY4efIq+FmnKpQu/ORISdmxI4Ru7jZT5uxP6mqfmd PgLAnJcmpS8qCgi4YeAcExtC+f0fTqfPPauZpeHZXaGSKE/5GtGfYA+0diLmerIv g9qFAgMBAAGjggJVMIICUTAdBgNVHQ4EFgQUGvkCrWYhGIHqBAxf9yA9m8yH/8Uw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI0 NTMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjQ1My9HdmtDcldZaEdJSHFCQXhmOXlBOW04eUhfOFUubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ120MA0GCSqGSIb3DQEBCwUA A4IBAQAn5XeKzBc6yG/w0ngLgxsYagD4sxNyDWA/6Z2z3GlgKricILfvZssP+wYh Ps1x/3YY1Dume6cX1wGgHx/6JHhOKMm8LV0GG4B+ipvUmA/d35UPl3FPEfpNXkFO pXoBlt4fhhOe50tzfm2rRYAv6BlZ1WIZjhNFqihJwnEZAsvABReJ+0DQPXpY6Rue k7YVXtBMFurPDCDP5OY92PP3H0dQJBBFmSCURShAfBwy2pKR+MtW8YmnAkpkvRuR pOe2jqku7i8fkZ0UMCC/4/+wOOOBx/lq69O1tAAjkr9GB7/rjkUkHn/+n/JJWwxG k40HJsO35vnUZgytEAMw32dfQt5p -----END CERTIFICATE-----Generated at Sun May 19 01:06:23 2024 by rpki-client on console-fra.rpki-client.org