$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/OpXd7iyMGeRxgIou20cqqm_g9Jg.cer File: OpXd7iyMGeRxgIou20cqqm_g9Jg.cer (raw, json) Hash identifier: rkP9dA1kFaHKuvg6wcho9KuUXmJ7NTQyPGuPYJqiVkc= Subject key identifier: 3A:95:DD:EE:2C:8C:19:E4:71:80:8A:2E:DB:47:2A:AA:6F:E0:F4:98 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BC21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/OpXd7iyMGeRxgIou20cqqm_g9Jg.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:54:17 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 151219 IP: 2401:aa20::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48161 (0xbc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:54:17 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=3A95DDEE2C8C19E471808A2EDB472AAA6FE0F498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:49:0c:1a:8f:92:44:66:a3:cc:e1:bc:ca: 85:6f:60:c5:c8:cc:6c:ee:39:be:c1:af:3f:88:5c: 75:1f:e5:52:e9:4d:8c:d5:ef:ad:08:a6:e6:86:39: 51:a2:eb:c1:8e:54:12:9c:53:cf:f9:b5:f7:7e:25: a6:e1:78:21:41:b3:9b:b5:77:ae:d2:8c:82:aa:ce: 01:11:ec:d0:a3:3c:38:7d:04:7c:b9:61:3d:c8:82: 1e:fb:2a:3c:ea:89:fb:2b:69:49:de:bc:88:1c:17: d7:57:b1:19:da:d5:52:b5:1c:73:91:69:92:84:65: 4d:e5:1d:67:5f:ba:6e:52:3c:bb:e4:1f:13:8d:c2: 62:be:21:47:6e:5f:05:35:f3:fa:0d:35:36:d1:11: d1:23:92:3c:99:8b:81:d1:7a:4e:42:ba:54:97:c8: 36:76:2b:8c:17:a3:fa:0b:1f:29:f6:3e:f8:34:ea: ab:f0:b8:51:df:4e:b2:23:08:13:c6:61:4e:8d:de: d3:15:00:31:1d:b9:30:6f:c0:d8:af:56:87:e3:1f: 6b:89:48:8a:32:51:4a:49:bc:7f:1a:48:09:6e:17: 5f:9d:9e:e5:78:b8:8d:d9:2d:bd:ab:79:61:75:10: ef:8f:51:35:30:8b:4a:3c:0a:a1:20:c2:f3:fa:b6: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:95:DD:EE:2C:8C:19:E4:71:80:8A:2E:DB:47:2A:AA:6F:E0:F4:98 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/OpXd7iyMGeRxgIou20cqqm_g9Jg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151219 sbgp-ipAddrBlock: critical IPv6: 2401:aa20::/32 Signature Algorithm: sha256WithRSAEncryption 5b:8c:24:54:bf:e9:04:ff:f7:84:7a:ed:d3:e2:df:e0:51:69: 3d:72:f8:e9:1b:1f:56:72:c2:45:f9:eb:84:ae:f1:13:b4:70: 7c:13:fd:14:1c:8a:81:6b:db:8c:39:80:89:e3:d5:20:d2:04: cf:ff:6a:0e:83:61:26:2b:71:89:f0:a1:4d:b3:ad:b8:18:b3: 1a:b5:ae:92:62:dc:94:f4:e2:d7:89:57:47:a0:ee:aa:e0:80: cb:68:59:6d:8b:06:d8:0f:95:85:2a:4a:2e:85:51:6e:de:96: a4:91:26:66:dc:96:09:97:f1:94:4c:65:33:9a:24:f8:12:49: 80:36:a6:b6:3a:88:43:49:c7:2d:dc:5e:f8:a7:1d:17:ec:1c: 76:c4:40:ee:5d:97:b7:e1:d1:98:46:62:44:bc:56:b2:76:5a: 4a:22:5e:ba:a1:d4:e9:bc:c8:1e:b2:27:d6:5e:b1:11:95:56: f4:89:e4:79:71:75:33:6e:51:db:ae:9d:f1:fe:d7:2d:ae:7f: 74:79:42:42:28:86:39:73:ad:55:5a:aa:1f:58:34:17:5d:38: 12:b9:18:5b:07:62:27:31:a9:26:de:70:8e:9e:d2:e6:f8:1f: 46:18:5d:30:c2:ce:ca:b1:e0:2b:9e:91:d8:fe:f3:9f:12:21: 97:ee:5a:23 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDALwhMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjU0MTdaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDNBOTVEREVFMkM4QzE5RTQ3MTgwOEEyRURCNDcyQUFBNkZFMEY0 OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC56EkMGo+SRGajzOG8 yoVvYMXIzGzuOb7Brz+IXHUf5VLpTYzV760IpuaGOVGi68GOVBKcU8/5tfd+Jabh eCFBs5u1d67SjIKqzgER7NCjPDh9BHy5YT3Igh77KjzqifsraUnevIgcF9dXsRna 1VK1HHORaZKEZU3lHWdfum5SPLvkHxONwmK+IUduXwU18/oNNTbREdEjkjyZi4HR ek5CulSXyDZ2K4wXo/oLHyn2Pvg06qvwuFHfTrIjCBPGYU6N3tMVADEduTBvwNiv VofjH2uJSIoyUUpJvH8aSAluF1+dnuV4uI3ZLb2reWF1EO+PUTUwi0o8CqEgwvP6 tswJAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUOpXd7iyMGeRxgIou20cqqm/g9Jgw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy OTcvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI5Ny9PcFhkN2l5TUdlUnhnSW91MjBjcXFtX2c5SmcubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJOszAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBqiAwDQYJKoZIhvcNAQELBQADggEBAFuMJFS/6QT/94R67dPi 3+BRaT1y+OkbH1ZywkX564Su8RO0cHwT/RQcioFr24w5gInj1SDSBM//ag6DYSYr cYnwoU2zrbgYsxq1rpJi3JT04teJV0eg7qrggMtoWW2LBtgPlYUqSi6FUW7elqSR JmbclgmX8ZRMZTOaJPgSSYA2prY6iENJxy3cXvinHRfsHHbEQO5dl7fh0ZhGYkS8 VrJ2WkoiXrqh1Om8yB6yJ9ZesRGVVvSJ5HlxdTNuUduunfH+1y2uf3R5QkIohjlz rVVaqh9YNBddOBK5GFsHYicxqSbecI6e0ub4H0YYXTDCzsqx4Cuekdj+858SIZfu WiM= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:26 2024 by rpki-client on console-fra.rpki-client.org