$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer File: TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer (raw, json) Hash identifier: UgYAG7Lxr0cez8mZJWoN02Se72+WU8BZJvSoIfoA0/g= Subject key identifier: 4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: C9DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 21 Mar 2025 02:58:38 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 59039 IP: 61.8.160.0/20 IP: 103.13.196.0/22 IP: 124.108.8.0/21 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 04:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51675 (0xc9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Mar 21 02:58:38 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=4DD36955B4E7A00CA1FA6EDCDA84AA0730FD26AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:ed:ac:d8:09:8a:57:eb:28:b8:87:12:20: 50:60:ac:1e:a6:8b:75:27:9f:be:88:18:90:22:38: e1:0f:e6:8d:ff:81:d3:b2:da:87:85:45:52:73:7e: ad:bc:6e:22:d0:eb:cb:04:60:38:df:24:38:d2:be: 40:34:6f:81:67:e1:34:a9:4a:5b:60:72:b6:d9:20: 12:f6:28:c6:6b:e2:3c:18:5e:c4:4c:ab:9b:af:5a: a3:a6:3c:59:df:11:00:3f:84:f2:1a:8d:af:b8:39: 95:22:34:99:db:a3:82:00:21:63:4f:92:36:ae:35: 1c:1b:1b:09:55:40:80:a7:bc:c5:4e:a8:08:8a:44: 34:88:32:92:3c:26:a1:a7:d4:9f:75:81:e4:2a:96: cc:0b:e7:90:d2:fb:d3:4e:50:82:55:6c:8d:6d:20: 41:41:a3:8d:87:b2:21:f7:1e:9d:be:63:01:83:f4: 77:7d:fc:ce:7a:db:b3:24:c2:ef:f3:01:e8:0b:ee: 69:ea:ba:3b:a8:e5:3e:e1:dc:f9:4e:92:e7:d7:57: 6a:89:1a:7c:fb:84:98:20:3f:3f:79:2c:80:4e:31: 02:8b:d1:43:34:d8:b5:fc:cc:c0:ac:ef:28:2a:fc: e2:44:b0:0b:88:6e:3b:da:84:eb:9c:c7:0e:7b:c0: 0c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 59039 sbgp-ipAddrBlock: critical IPv4: 61.8.160.0/20 103.13.196.0/22 124.108.8.0/21 Signature Algorithm: sha256WithRSAEncryption 6f:fc:0e:72:43:f7:76:97:9c:79:26:e6:9c:cf:1b:05:62:f8: ad:a0:27:63:d9:b4:b4:60:41:66:dd:ba:20:90:a3:1e:3b:c3: 2d:d0:77:dc:43:2d:b9:ef:9c:61:96:0b:66:98:7e:8e:2f:7b: 69:bb:2b:11:bd:5b:21:bf:29:49:da:2e:30:90:af:bd:fe:cf: 91:fe:49:56:77:f8:a7:2c:a2:e5:79:4a:48:61:63:ba:27:12: 2a:64:15:0c:1f:c4:02:84:6e:bd:3e:77:cb:36:31:f0:cc:19: 4f:5e:bc:9b:9c:f6:4d:36:1a:ee:38:53:b4:0a:ff:8c:ab:28: 74:46:9a:30:32:12:0a:3a:fd:03:49:52:3d:bd:ac:fd:05:40: 10:03:7f:23:c8:7a:8e:98:99:55:53:83:79:33:04:4e:91:54: 9e:51:2e:dc:9b:b1:e8:38:d9:ab:e8:c1:0f:93:23:77:2d:32: 7e:25:de:fa:f6:0f:cd:d8:de:1a:41:46:da:1d:d3:9d:c1:60: 34:0e:fb:02:b5:f5:6e:0f:51:58:7b:74:7e:f4:55:fc:f2:e2: bb:32:0b:02:c2:f4:27:13:82:1a:2e:42:18:bb:bd:81:fa:29: 87:ea:fc:d4:e4:e9:82:ec:a4:31:e4:15:4c:e4:13:97:06:d4: c2:fc:45:c2 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIDAMnbMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTAzMjEwMjU4MzhaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDRERDM2OTU1QjRFN0EwMENBMUZBNkVEQ0RBODRBQTA3MzBGRDI2 QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEuu2s2AmKV+souIcS IFBgrB6mi3Unn76IGJAiOOEP5o3/gdOy2oeFRVJzfq28biLQ68sEYDjfJDjSvkA0 b4Fn4TSpSltgcrbZIBL2KMZr4jwYXsRMq5uvWqOmPFnfEQA/hPIaja+4OZUiNJnb o4IAIWNPkjauNRwbGwlVQICnvMVOqAiKRDSIMpI8JqGn1J91geQqlswL55DS+9NO UIJVbI1tIEFBo42HsiH3Hp2+YwGD9Hd9/M5627Mkwu/zAegL7mnqujuo5T7h3PlO kufXV2qJGnz7hJggPz95LIBOMQKL0UM02LX8zMCs7ygq/OJEsAuIbjvahOucxw57 wAyRAgMBAAGjggJ9MIICeTAdBgNVHQ4EFgQUTdNpVbTnoAyh+m7c2oSqBzD9Jq4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIy MDMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjIwMy9UZE5wVmJUbm9BeWgtbTdjMm9TcUJ6RDlKcTQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDmnzArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEBD0IoAMEAmcNxAMEA3xsCDANBgkqhkiG9w0BAQsFAAOCAQEAb/wO ckP3dpeceSbmnM8bBWL4raAnY9m0tGBBZt26IJCjHjvDLdB33EMtue+cYZYLZph+ ji97absrEb1bIb8pSdouMJCvvf7Pkf5JVnf4pyyi5XlKSGFjuicSKmQVDB/EAoRu vT53yzYx8MwZT168m5z2TTYa7jhTtAr/jKsodEaaMDISCjr9A0lSPb2s/QVAEAN/ I8h6jpiZVVODeTMETpFUnlEu3Jux6DjZq+jBD5Mjdy0yfiXe+vYPzdjeGkFG2h3T ncFgNA77ArX1bg9RWHt0fvRV/PLiuzILAsL0JxOCGi5CGLu9gfoph+r81OTpguyk MeQVTOQTlwbUwvxFwg== -----END CERTIFICATE-----Generated at Fri Apr 4 02:04:21 2025 by rpki-client