$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer File: Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer (raw, json) Hash identifier: L1ao+rrN/I5eXBh1KQM3V2aFPcJkOfieqfp5a/6f2dw= Subject key identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AEB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:21:11 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: AS: 56002 IP: 103.12.232.0/22 IP: 2405:ad00::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 19:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44721 (0xaeb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:21:11 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:75:1b:de:c2:b1:fb:c1:96:a4:a9:42:37:0c: a8:38:c1:eb:b4:e8:2e:c0:eb:6f:25:95:f5:60:23: 02:33:fc:c0:e6:e0:33:b4:5b:5b:45:29:cf:3c:8b: 11:25:c4:c6:d1:dc:06:ce:07:b3:e6:c2:88:81:48: 5d:b3:fb:60:54:67:d1:79:25:2c:a7:23:97:1a:62: da:91:3c:21:7d:a2:75:aa:5d:d0:bc:30:80:8f:ca: 3d:37:08:85:15:9e:8f:50:c9:a3:52:e4:6e:6f:37: c7:a4:10:c3:7d:6d:f7:62:c2:96:88:1c:2d:fa:e0: 55:88:fe:7c:31:d9:97:5a:39:7d:8e:8a:f3:ba:de: 35:46:55:a4:54:b4:2e:b0:0a:e1:e8:ea:46:92:47: f5:78:68:bf:6d:bb:29:7e:e1:52:90:76:0e:77:27: 31:b7:d6:a4:3d:c2:c2:bc:e4:42:a3:fb:40:e0:7b: dd:c6:09:cb:b0:74:61:16:04:17:89:31:f0:da:32: b6:ed:e4:55:e0:c8:29:f8:a5:63:90:d5:b0:15:61: 45:da:84:04:22:ec:6e:7d:91:06:6f:c4:e2:3c:b1: b7:b7:8d:33:7b:78:01:20:bc:cb:61:f1:86:4d:b8: 6e:8e:e2:b4:33:b6:c4:c4:56:1d:0a:84:19:ea:a9: b0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 56002 sbgp-ipAddrBlock: critical IPv4: 103.12.232.0/22 IPv6: 2405:ad00::/32 Signature Algorithm: sha256WithRSAEncryption 09:a5:c5:ba:3e:ad:da:a3:dc:29:f2:67:d4:ba:79:39:f4:e1: 7c:fe:73:fc:46:7e:44:3b:17:15:e7:5d:90:ea:89:7d:d3:74: 89:ca:75:da:22:c4:43:fb:2d:ba:e4:45:18:25:76:ff:ea:45: e2:00:df:e3:9d:78:16:c0:6d:82:ee:40:0a:21:22:b3:9b:33: c1:a1:6b:31:0e:e8:da:f6:21:a9:db:a7:af:7c:b3:ee:1f:d0: ed:8c:44:47:52:83:e9:58:cf:a6:3d:82:ad:f9:cf:34:50:6d: 93:2e:1c:97:96:d0:ef:10:4e:0f:2c:45:c2:84:4d:26:7e:e2: 16:cd:51:b3:0d:61:cc:87:87:94:9f:6b:fd:c9:a5:fa:83:43: a5:f6:26:05:95:b0:19:60:20:30:9f:41:a1:f4:50:de:6a:c2: 31:3c:95:ed:08:d2:68:64:e8:b9:e9:6d:19:96:bd:db:71:66: c3:7c:fe:0f:a6:05:ec:f7:f6:75:40:c2:ef:ab:27:0a:01:05: b5:0e:33:62:5f:6e:81:27:9c:17:70:76:a3:73:0d:ec:b4:c0: 0c:41:0f:78:17:37:86:5e:ad:d8:70:c5:67:fd:7e:35:0a:f8: 80:29:83:bf:ee:84:79:09:b7:c7:cc:a8:39:4b:63:dd:7c:db: 59:af:2b:30 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIDAK6xMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIxMTFaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKDQ2RjgzNDNEQ0RBRDNBQUM0MDg1NjA0OTJDMjFCNTlENzYyQkM0 NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCldRvewrH7wZakqUI3 DKg4weu06C7A628llfVgIwIz/MDm4DO0W1tFKc88ixElxMbR3AbOB7PmwoiBSF2z +2BUZ9F5JSynI5caYtqRPCF9onWqXdC8MICPyj03CIUVno9QyaNS5G5vN8ekEMN9 bfdiwpaIHC364FWI/nwx2ZdaOX2OivO63jVGVaRUtC6wCuHo6kaSR/V4aL9tuyl+ 4VKQdg53JzG31qQ9wsK85EKj+0Dge93GCcuwdGEWBBeJMfDaMrbt5FXgyCn4pWOQ 1bAVYUXahAQi7G59kQZvxOI8sbe3jTN7eAEgvMth8YZNuG6O4rQztsTEVh0KhBnq qbAXAgMBAAGjggJ+MIICejAdBgNVHQ4EFgQURvg0Pc2tOqxAhWBJLCG1nXYrxFYw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzQ5 Ny8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC80OTcvUnZnMFBjMnRPcXhBaFdCSkxDRzFuWFlyeEZZLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA2sIwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAJnDOgwDQQCAAIwBwMFACQFrQAwDQYJKoZIhvcNAQELBQADggEBAAml xbo+rdqj3CnyZ9S6eTn04Xz+c/xGfkQ7FxXnXZDqiX3TdInKddoixEP7LbrkRRgl dv/qReIA3+OdeBbAbYLuQAohIrObM8GhazEO6Nr2Ianbp698s+4f0O2MREdSg+lY z6Y9gq35zzRQbZMuHJeW0O8QTg8sRcKETSZ+4hbNUbMNYcyHh5Sfa/3JpfqDQ6X2 JgWVsBlgIDCfQaH0UN5qwjE8le0I0mhk6LnpbRmWvdtxZsN8/g+mBez39nVAwu+r JwoBBbUOM2JfboEnnBdwdqNzDey0wAxBD3gXN4ZerdhwxWf9fjUK+IApg7/uhHkJ t8fMqDlLY91821mvKzA= -----END CERTIFICATE-----Generated at Sat May 18 15:40:30 2024 by rpki-client on console-fra.rpki-client.org