$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer File: Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer (raw, json) Hash identifier: /LNdr7Cgnf6f3pczOwvbiMsvV9HSpKrcs8FcW6QQIDg= Subject key identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BB49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:50:53 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 56002 IP: 103.12.232.0/22 IP: 2405:ad00::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47945 (0xbb49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:50:53 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:75:1b:de:c2:b1:fb:c1:96:a4:a9:42:37:0c: a8:38:c1:eb:b4:e8:2e:c0:eb:6f:25:95:f5:60:23: 02:33:fc:c0:e6:e0:33:b4:5b:5b:45:29:cf:3c:8b: 11:25:c4:c6:d1:dc:06:ce:07:b3:e6:c2:88:81:48: 5d:b3:fb:60:54:67:d1:79:25:2c:a7:23:97:1a:62: da:91:3c:21:7d:a2:75:aa:5d:d0:bc:30:80:8f:ca: 3d:37:08:85:15:9e:8f:50:c9:a3:52:e4:6e:6f:37: c7:a4:10:c3:7d:6d:f7:62:c2:96:88:1c:2d:fa:e0: 55:88:fe:7c:31:d9:97:5a:39:7d:8e:8a:f3:ba:de: 35:46:55:a4:54:b4:2e:b0:0a:e1:e8:ea:46:92:47: f5:78:68:bf:6d:bb:29:7e:e1:52:90:76:0e:77:27: 31:b7:d6:a4:3d:c2:c2:bc:e4:42:a3:fb:40:e0:7b: dd:c6:09:cb:b0:74:61:16:04:17:89:31:f0:da:32: b6:ed:e4:55:e0:c8:29:f8:a5:63:90:d5:b0:15:61: 45:da:84:04:22:ec:6e:7d:91:06:6f:c4:e2:3c:b1: b7:b7:8d:33:7b:78:01:20:bc:cb:61:f1:86:4d:b8: 6e:8e:e2:b4:33:b6:c4:c4:56:1d:0a:84:19:ea:a9: b0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 56002 sbgp-ipAddrBlock: critical IPv4: 103.12.232.0/22 IPv6: 2405:ad00::/32 Signature Algorithm: sha256WithRSAEncryption 4b:62:67:88:c7:aa:da:e3:db:a6:5d:a3:d8:2d:1f:9a:09:3c: 91:7c:97:1e:75:e0:dc:3a:50:69:d1:4d:2a:17:24:30:fd:73: aa:1c:d7:77:b2:c1:36:57:17:5f:1f:1e:74:40:1f:5f:bf:b1: 75:17:1e:fe:d7:ac:f5:0e:12:e5:ab:db:85:e0:67:21:be:48: a5:9f:47:cb:66:ae:cc:b2:96:29:14:5c:93:af:5c:ab:51:f0: 4d:76:f0:58:a2:a2:2d:f9:3f:f5:38:57:92:35:06:a5:17:07: 1f:b9:9f:af:0b:71:0f:ff:98:18:e9:9e:93:fc:b1:12:8d:29: d5:bc:03:15:1a:c6:b5:70:a9:be:a6:e0:33:69:7a:bc:83:0e: b2:66:61:5a:e5:75:27:e1:06:f7:75:4d:ac:88:7b:be:3f:08: bf:2b:32:49:e6:4f:8d:94:47:22:c3:c2:70:e2:a4:27:9c:07: f3:11:84:85:9c:d7:6f:ff:f5:22:d4:75:8c:49:7c:2b:a0:cf: 45:eb:91:7c:c9:02:7b:e9:ad:0b:9e:f2:2e:4f:62:a1:f7:4b: 62:b4:03:1f:01:78:ec:bf:1d:51:7d:d2:6a:b1:17:64:97:79: fb:e7:bc:4c:13:24:4a:01:87:6b:7f:1e:73:a6:51:5e:34:13: 96:40:6d:32 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIDALtJMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjUwNTNaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDQ2RjgzNDNEQ0RBRDNBQUM0MDg1NjA0OTJDMjFCNTlENzYyQkM0 NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCldRvewrH7wZakqUI3 DKg4weu06C7A628llfVgIwIz/MDm4DO0W1tFKc88ixElxMbR3AbOB7PmwoiBSF2z +2BUZ9F5JSynI5caYtqRPCF9onWqXdC8MICPyj03CIUVno9QyaNS5G5vN8ekEMN9 bfdiwpaIHC364FWI/nwx2ZdaOX2OivO63jVGVaRUtC6wCuHo6kaSR/V4aL9tuyl+ 4VKQdg53JzG31qQ9wsK85EKj+0Dge93GCcuwdGEWBBeJMfDaMrbt5FXgyCn4pWOQ 1bAVYUXahAQi7G59kQZvxOI8sbe3jTN7eAEgvMth8YZNuG6O4rQztsTEVh0KhBnq qbAXAgMBAAGjggJ+MIICejAdBgNVHQ4EFgQURvg0Pc2tOqxAhWBJLCG1nXYrxFYw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzQ5 Ny8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC80OTcvUnZnMFBjMnRPcXhBaFdCSkxDRzFuWFlyeEZZLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA2sIwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAJnDOgwDQQCAAIwBwMFACQFrQAwDQYJKoZIhvcNAQELBQADggEBAEti Z4jHqtrj26Zdo9gtH5oJPJF8lx514Nw6UGnRTSoXJDD9c6oc13eywTZXF18fHnRA H1+/sXUXHv7XrPUOEuWr24XgZyG+SKWfR8tmrsyylikUXJOvXKtR8E128Fiioi35 P/U4V5I1BqUXBx+5n68LcQ//mBjpnpP8sRKNKdW8AxUaxrVwqb6m4DNperyDDrJm YVrldSfhBvd1TayIe74/CL8rMknmT42URyLDwnDipCecB/MRhIWc12//9SLUdYxJ fCugz0XrkXzJAnvprQue8i5PYqH3S2K0Ax8BeOy/HVF90mqxF2SXefvnvEwTJEoB h2t/HnOmUV40E5ZAbTI= -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:39 2024 by rpki-client on console-ams.rpki-client.org