$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer File: H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer (raw, json) Hash identifier: wHbUrsu0l+whkSa04L6WDl4wSl8c7lUV0nyOLH3FtNM= Subject key identifier: 1F:CA:D7:22:56:77:91:FD:73:A0:91:FE:89:1C:94:8F:19:14:D6:72 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CF37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Wed 09 Apr 2025 06:48:43 +0000 Certificate not after: Thu 09 Apr 2026 06:41:32 +0000 Subordinate resources: AS: 132019 IP: 103.69.116.0/22 IP: 2405:f580::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 02:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53047 (0xcf37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Apr 9 06:48:43 2025 GMT Not After : Apr 9 06:41:32 2026 GMT Subject: CN=1FCAD722567791FD73A091FE891C948F1914D672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:36:d8:f9:30:48:0e:c1:ea:33:d0:d2:18:9f: e5:5f:d8:26:4b:5d:60:e0:30:66:64:4a:82:fe:d6: 38:3a:5f:89:25:92:c2:f3:6b:11:85:d8:f7:47:50: cd:b6:6c:55:d3:c6:5b:21:37:92:57:7e:9e:2b:e8: 36:c6:f1:5c:ce:d0:05:94:fe:67:b1:e5:b1:38:e8: 70:0c:3b:b6:1f:03:a6:2b:31:8e:df:4b:7b:19:c5: e8:6b:1e:19:66:91:25:b3:53:f1:18:0c:7a:9f:a1: 1b:b3:80:78:58:a6:25:30:dd:3c:4f:87:f9:ee:e5: a2:52:c5:06:08:47:b7:bb:a5:4b:10:07:7c:2c:80: ff:95:45:91:9c:a9:a9:25:a9:4e:34:5e:3f:4e:94: 4e:51:5b:89:90:d9:f8:c2:ba:95:b7:c6:04:bf:3d: a6:8d:8d:95:a7:79:57:76:d8:9a:99:26:ab:39:08: 17:33:e0:01:fd:ab:8c:bd:4c:4f:b7:99:54:5e:e3: ed:59:e0:f3:fe:c6:98:5b:f9:e3:ed:45:57:eb:46: 9e:27:3a:70:b4:31:6a:b1:43:a3:bb:18:1b:e7:3e: 1b:09:c3:0b:fd:b1:bc:1e:8b:24:26:2e:47:f2:94: 4a:43:96:e2:89:67:01:29:c6:15:bd:d9:2d:e9:34: c8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CA:D7:22:56:77:91:FD:73:A0:91:FE:89:1C:94:8F:19:14:D6:72 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 132019 sbgp-ipAddrBlock: critical IPv4: 103.69.116.0/22 IPv6: 2405:f580::/32 Signature Algorithm: sha256WithRSAEncryption 49:f7:c0:7e:2f:ab:44:d6:19:5c:65:40:a7:70:50:84:50:f7: 0f:ec:e5:30:6c:78:8b:e8:20:a2:12:ff:10:0a:93:a2:eb:86: 7e:be:f8:c4:54:bf:71:9b:34:f1:c2:68:f2:0c:db:05:fc:b4: c9:36:5d:61:f8:08:88:cf:d1:f8:d5:d0:db:ca:2a:07:62:4a: c7:32:44:5d:29:78:fa:fd:80:c4:8f:cc:20:ae:bc:29:d8:b0: 49:9d:1d:22:c6:34:29:30:9a:47:d4:75:5f:db:c3:90:b1:c0: bb:57:1d:07:1f:e3:b7:83:f2:b8:c6:67:51:d2:dd:ce:56:5c: 9c:1f:08:04:b4:64:12:be:01:5e:6f:5c:6a:eb:c0:9d:05:e1: 82:8b:cc:9b:ab:95:bd:74:50:80:02:b8:94:49:1a:9b:97:58: 7c:be:f2:49:71:24:f0:0b:50:5c:95:05:28:a3:d1:5c:59:be: 3d:70:e4:b3:f2:eb:7e:8b:29:75:75:60:ed:e4:00:c7:27:fb: d4:cf:df:5b:fd:d6:cb:fd:f4:2e:c1:7b:2a:6d:02:c3:bc:39: 7f:66:f8:d0:b1:8f:87:1c:65:74:3b:e4:36:d8:e7:d5:69:0e: a8:2e:96:5c:90:51:c3:28:da:d6:04:f4:0f:58:5c:71:c1:19: a4:c7:7a:60 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAM83MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDkwNjQ4NDNaFw0yNjA0MDkwNjQxMzJaMDMx MTAvBgNVBAMTKDFGQ0FENzIyNTY3NzkxRkQ3M0EwOTFGRTg5MUM5NDhGMTkxNEQ2 NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNNtj5MEgOweoz0NIY n+Vf2CZLXWDgMGZkSoL+1jg6X4klksLzaxGF2PdHUM22bFXTxlshN5JXfp4r6DbG 8VzO0AWU/mex5bE46HAMO7YfA6YrMY7fS3sZxehrHhlmkSWzU/EYDHqfoRuzgHhY piUw3TxPh/nu5aJSxQYIR7e7pUsQB3wsgP+VRZGcqaklqU40Xj9OlE5RW4mQ2fjC upW3xgS/PaaNjZWneVd22JqZJqs5CBcz4AH9q4y9TE+3mVRe4+1Z4PP+xphb+ePt RVfrRp4nOnC0MWqxQ6O7GBvnPhsJwwv9sbweiyQmLkfylEpDluKJZwEpxhW92S3p NMjnAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUH8rXIlZ3kf1zoJH+iRyUjxkU1nIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4 MTUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjgxNS9IOHJYSWxaM2tmMXpvSkgtaVJ5VWp4a1UxbkkubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIDszAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmdFdDANBAIAAjAHAwUAJAX1gDANBgkqhkiG9w0BAQsFAAOCAQEA SffAfi+rRNYZXGVAp3BQhFD3D+zlMGx4i+ggohL/EAqTouuGfr74xFS/cZs08cJo 8gzbBfy0yTZdYfgIiM/R+NXQ28oqB2JKxzJEXSl4+v2AxI/MIK68KdiwSZ0dIsY0 KTCaR9R1X9vDkLHAu1cdBx/jt4PyuMZnUdLdzlZcnB8IBLRkEr4BXm9cauvAnQXh govMm6uVvXRQgAK4lEkam5dYfL7ySXEk8AtQXJUFKKPRXFm+PXDks/LrfospdXVg 7eQAxyf71M/fW/3Wy/30LsF7Km0Cw7w5f2b40LGPhxxldDvkNtjn1WkOqC6WXJBR wyja1gT0D1hcccEZpMd6YA== -----END CERTIFICATE-----Generated at Wed Apr 23 00:09:09 2025 by rpki-client