$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/VyVNn31j60IRhMWNAuBBlwWaag4.cer File: VyVNn31j60IRhMWNAuBBlwWaag4.cer (raw, json) Hash identifier: AvfxaUQzr4bZ/LXPAQjoQUw6aBDhDYpj+q19kPvZBFc= Subject key identifier: 57:25:4D:9F:7D:63:EB:42:11:84:C5:8D:02:E0:41:97:05:9A:6A:0E Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: B07B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/VyVNn31j60IRhMWNAuBBlwWaag4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Tue 12 Mar 2024 02:15:10 +0000 Certificate not after: Wed 12 Mar 2025 01:36:20 +0000 Subordinate resources: AS: 151292 IP: 2401:87e0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 15:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45179 (0xb07b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Mar 12 02:15:10 2024 GMT Not After : Mar 12 01:36:20 2025 GMT Subject: CN=57254D9F7D63EB421184C58D02E04197059A6A0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fd:37:8e:db:d6:95:dc:de:26:34:77:12:7e: b2:0a:df:25:df:ac:bd:6d:15:48:22:2e:5c:74:de: 14:4e:10:0f:3a:41:6e:2e:02:40:45:b5:d0:fc:ea: 76:b8:49:10:30:a3:48:90:2a:a2:3a:0f:e1:59:40: 77:25:a8:f6:ce:c9:31:71:00:98:c5:3a:f8:ba:0f: 73:18:0b:ca:4f:b9:7c:cb:18:bd:c1:da:2a:60:7d: 7e:04:b8:ea:3b:77:95:fa:5a:5c:38:80:cb:8d:6b: bf:38:d8:1c:d2:0c:8a:0a:fe:07:cf:63:48:50:48: b1:51:c6:9c:b3:08:22:0a:66:eb:c5:7e:b5:9b:04: 3c:af:dc:22:b3:d4:a7:d9:d9:c9:57:22:8d:b0:c5: ed:b2:d5:6c:da:15:c4:91:19:f9:7d:72:af:5c:ae: 11:bf:1c:64:38:7c:67:70:b1:04:57:19:b3:f0:2f: 3c:56:b7:3b:3d:d3:cf:fe:4a:e6:dd:cd:df:88:dc: d9:20:20:f5:51:a5:f2:04:b6:4e:86:d4:76:06:cb: ab:fc:d9:46:57:56:15:6a:60:8d:ff:84:4f:d9:a3: 51:9d:f3:ea:07:9f:78:99:ee:83:72:38:1c:4a:2a: 55:f9:c0:01:64:f2:95:1d:95:37:81:91:6c:26:c9: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:25:4D:9F:7D:63:EB:42:11:84:C5:8D:02:E0:41:97:05:9A:6A:0E X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/VyVNn31j60IRhMWNAuBBlwWaag4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151292 sbgp-ipAddrBlock: critical IPv6: 2401:87e0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:be:35:2c:ca:d5:40:22:98:6e:72:56:32:e4:fa:07:8c:c1: cd:1a:bb:f6:b2:ae:2f:63:cf:bd:e3:5c:3f:b2:3d:ae:5e:1e: ad:83:ac:1a:33:23:23:09:94:62:ba:9d:7a:b2:da:94:4e:85: c9:1c:59:d9:c8:6a:f3:89:d8:59:ac:3b:18:d8:f6:e8:53:4c: 8e:ae:52:c3:69:6a:38:6f:ac:45:57:67:2e:41:88:5e:7b:1e: 3a:59:3e:49:68:b0:38:77:95:ed:53:a0:0a:17:79:df:35:8f: 77:4d:e2:dc:7f:19:01:62:77:42:bb:6c:43:a0:26:53:de:fb: 8c:bb:2f:47:92:09:b9:bb:56:ca:35:ae:08:e9:ef:ad:b5:8e: 39:67:3f:cd:ea:d0:b9:e9:4e:97:8e:1c:17:d2:c2:14:26:5c: 4c:7d:cf:b3:8e:5e:4f:93:15:cc:7e:d0:1c:b4:a1:30:46:31: 86:c7:94:af:f3:38:4e:be:80:2d:c5:95:9e:f2:cd:36:24:f1: ea:b5:ae:99:b0:5b:14:b6:a9:90:4c:2c:76:ba:f1:00:bb:37: 21:98:93:47:aa:9c:2e:9b:ce:0a:b8:4a:0c:75:80:10:2b:d0: 71:6d:0f:a3:b6:f3:3d:51:bf:5e:1e:b3:88:28:7a:2b:fe:99: af:b5:5f:6c -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDALB7MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAzMTIwMjE1MTBaFw0yNTAzMTIwMTM2MjBaMDMx MTAvBgNVBAMTKDU3MjU0RDlGN0Q2M0VCNDIxMTg0QzU4RDAyRTA0MTk3MDU5QTZB MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW/TeO29aV3N4mNHcS frIK3yXfrL1tFUgiLlx03hROEA86QW4uAkBFtdD86na4SRAwo0iQKqI6D+FZQHcl qPbOyTFxAJjFOvi6D3MYC8pPuXzLGL3B2ipgfX4EuOo7d5X6Wlw4gMuNa7842BzS DIoK/gfPY0hQSLFRxpyzCCIKZuvFfrWbBDyv3CKz1KfZ2clXIo2wxe2y1WzaFcSR Gfl9cq9crhG/HGQ4fGdwsQRXGbPwLzxWtzs908/+Subdzd+I3NkgIPVRpfIEtk6G 1HYGy6v82UZXVhVqYI3/hE/Zo1Gd8+oHn3iZ7oNyOBxKKlX5wAFk8pUdlTeBkWwm yUM1AgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUVyVNn31j60IRhMWNAuBBlwWaag4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NzAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI3MC9WeVZObjMxajYwSVJoTVdOQXVCQmx3V2FhZzQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO/DAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBh+AwDQYJKoZIhvcNAQELBQADggEBAGu+NSzK1UAimG5yVjLk +geMwc0au/ayri9jz73jXD+yPa5eHq2DrBozIyMJlGK6nXqy2pROhckcWdnIavOJ 2FmsOxjY9uhTTI6uUsNpajhvrEVXZy5BiF57HjpZPklosDh3le1ToAoXed81j3dN 4tx/GQFid0K7bEOgJlPe+4y7L0eSCbm7Vso1rgjp7621jjlnP83q0LnpTpeOHBfS whQmXEx9z7OOXk+TFcx+0By0oTBGMYbHlK/zOE6+gC3FlZ7yzTYk8eq1rpmwWxS2 qZBMLHa68QC7NyGYk0eqnC6bzgq4Sgx1gBAr0HFtD6O28z1Rv14es4goeiv+ma+1 X2w= -----END CERTIFICATE-----Generated at Sun May 19 10:14:57 2024 by rpki-client on console-fra.rpki-client.org