$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer File: GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer (raw, json) Hash identifier: Zs4UenwFpGtAO7UWUuRNHcLwZcw7zqT7m7A1Ct6yUfs= Subject key identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BAB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:48:45 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 151301 IP: 103.93.180.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47793 (0xbab1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:48:45 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=1AF902AD66211881EA040C5FF7203D9BCC87FFC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:58:3b:8d:5e:35:dc:be:9e:a4:60:0f:2b: 94:89:d8:cb:89:7b:a8:a4:24:65:16:c9:e8:a9:04: 3e:05:61:80:e1:5d:76:66:72:6c:bd:3d:6e:a9:37: a9:f1:88:69:0e:47:94:c4:7d:d7:b5:74:7e:a1:13: 98:60:99:ad:b6:c2:a2:64:1c:5f:44:38:83:49:dc: 38:ed:03:ed:4a:16:1f:30:ca:0c:40:bf:1a:77:93: 22:48:c7:aa:20:f3:78:0e:2c:4e:f8:73:f3:a9:ae: 29:9f:a0:13:d5:cc:f0:b0:a4:fc:25:31:64:ee:94: f4:ca:e9:0a:f8:bc:eb:1f:6a:2b:57:8f:c5:dc:c5: dc:b4:82:c1:6d:d1:42:f3:12:3b:eb:86:d0:03:30: bc:26:d9:c8:f8:2e:da:dc:7f:af:63:7c:a6:d3:3a: 57:0e:e1:44:9e:11:62:2f:cd:46:1f:63:87:9f:22: af:85:9a:72:a9:42:ef:ce:44:84:9d:9b:12:38:46: ee:e3:65:3e:6e:c4:fe:a6:a9:f9:9d:3e:02:c0:9c: 97:26:a5:2f:2a:0a:08:b8:61:e0:1c:13:1b:42:f9: fd:1f:4e:a7:cf:3d:ab:99:a5:e1:d9:5d:a1:92:28: 4f:f9:1a:d1:9f:60:0f:b4:76:22:e6:7a:b2:2f:83: da:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151301 sbgp-ipAddrBlock: critical IPv4: 103.93.180.0/22 Signature Algorithm: sha256WithRSAEncryption 00:0c:9e:ea:e1:0f:97:ce:d8:5b:fc:40:d9:bd:c0:2f:91:71: 20:ce:6e:fd:7f:6e:32:2f:d0:09:ff:f0:29:cf:af:b5:65:ef: 3c:ff:5e:9d:57:9c:ee:fb:ba:62:29:68:4d:33:18:45:0f:49: c4:dc:11:de:33:af:49:06:85:4f:e2:0d:48:c4:d1:f0:c1:14: 1b:bc:10:8b:7d:90:93:11:3e:af:12:7d:8d:db:0b:72:35:7c: 03:11:e7:23:76:f7:01:3d:70:06:db:04:f5:9f:5c:c3:c4:f3: 86:23:22:66:f7:85:08:b7:5d:00:dd:44:50:55:1d:17:b1:22: 67:77:9f:87:22:56:dc:77:4b:c3:2a:38:08:c0:c5:b8:d0:74: 22:ad:b1:67:f0:cc:7f:d8:b1:6e:f7:87:89:1d:0c:63:8c:5d: 75:f2:fa:a8:90:87:a5:32:07:69:69:87:eb:d6:90:a9:a4:ab: b5:56:1a:8e:c7:fe:46:e2:4f:1b:8b:1a:c5:11:4c:08:d7:f5: 39:f8:33:d0:b9:22:98:fa:8c:7c:17:69:c9:37:7e:d5:c8:ce: 44:7c:21:12:05:0f:8e:29:d7:33:82:60:78:8d:03:6b:77:76: fe:6c:c9:37:ec:48:e5:28:b9:97:f2:03:88:45:a6:0b:b1:33: df:6a:2e:1e -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIDALqxMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjQ4NDVaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDFBRjkwMkFENjYyMTE4ODFFQTA0MEM1RkY3MjAzRDlCQ0M4N0ZG QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8TVg7jV413L6epGAP K5SJ2MuJe6ikJGUWyeipBD4FYYDhXXZmcmy9PW6pN6nxiGkOR5TEfde1dH6hE5hg ma22wqJkHF9EOINJ3DjtA+1KFh8wygxAvxp3kyJIx6og83gOLE74c/OprimfoBPV zPCwpPwlMWTulPTK6Qr4vOsfaitXj8Xcxdy0gsFt0ULzEjvrhtADMLwm2cj4Ltrc f69jfKbTOlcO4USeEWIvzUYfY4efIq+FmnKpQu/ORISdmxI4Ru7jZT5uxP6mqfmd PgLAnJcmpS8qCgi4YeAcExtC+f0fTqfPPauZpeHZXaGSKE/5GtGfYA+0diLmerIv g9qFAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUGvkCrWYhGIHqBAxf9yA9m8yH/8Uw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI0 NTMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjQ1My9HdmtDcldZaEdJSHFCQXhmOXlBOW04eUhfOFUubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJPBTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmddtDANBgkqhkiG9w0BAQsFAAOCAQEAAAye6uEPl87YW/xA2b3A L5FxIM5u/X9uMi/QCf/wKc+vtWXvPP9enVec7vu6YiloTTMYRQ9JxNwR3jOvSQaF T+INSMTR8MEUG7wQi32QkxE+rxJ9jdsLcjV8AxHnI3b3AT1wBtsE9Z9cw8TzhiMi ZveFCLddAN1EUFUdF7EiZ3efhyJW3HdLwyo4CMDFuNB0Iq2xZ/DMf9ixbveHiR0M Y4xddfL6qJCHpTIHaWmH69aQqaSrtVYajsf+RuJPG4saxRFMCNf1Ofgz0LkimPqM fBdpyTd+1cjORHwhEgUPjinXM4JgeI0Da3d2/mzJN+xI5Si5l/IDiEWmC7Ez32ou Hg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:25 2024 by rpki-client on console-fra.rpki-client.org