$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/VyVNn31j60IRhMWNAuBBlwWaag4.cer File: VyVNn31j60IRhMWNAuBBlwWaag4.cer (raw, json) Hash identifier: 4toyu+oFvBZR/YpvcBQvaJ2CnVR/T0cnZXLmkQcr6iI= Subject key identifier: 57:25:4D:9F:7D:63:EB:42:11:84:C5:8D:02:E0:41:97:05:9A:6A:0E Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CE7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/VyVNn31j60IRhMWNAuBBlwWaag4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 03 Apr 2025 08:14:55 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: AS: 151292 IP: 2401:87e0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 04:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52863 (0xce7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Apr 3 08:14:55 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=57254D9F7D63EB421184C58D02E04197059A6A0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fd:37:8e:db:d6:95:dc:de:26:34:77:12:7e: b2:0a:df:25:df:ac:bd:6d:15:48:22:2e:5c:74:de: 14:4e:10:0f:3a:41:6e:2e:02:40:45:b5:d0:fc:ea: 76:b8:49:10:30:a3:48:90:2a:a2:3a:0f:e1:59:40: 77:25:a8:f6:ce:c9:31:71:00:98:c5:3a:f8:ba:0f: 73:18:0b:ca:4f:b9:7c:cb:18:bd:c1:da:2a:60:7d: 7e:04:b8:ea:3b:77:95:fa:5a:5c:38:80:cb:8d:6b: bf:38:d8:1c:d2:0c:8a:0a:fe:07:cf:63:48:50:48: b1:51:c6:9c:b3:08:22:0a:66:eb:c5:7e:b5:9b:04: 3c:af:dc:22:b3:d4:a7:d9:d9:c9:57:22:8d:b0:c5: ed:b2:d5:6c:da:15:c4:91:19:f9:7d:72:af:5c:ae: 11:bf:1c:64:38:7c:67:70:b1:04:57:19:b3:f0:2f: 3c:56:b7:3b:3d:d3:cf:fe:4a:e6:dd:cd:df:88:dc: d9:20:20:f5:51:a5:f2:04:b6:4e:86:d4:76:06:cb: ab:fc:d9:46:57:56:15:6a:60:8d:ff:84:4f:d9:a3: 51:9d:f3:ea:07:9f:78:99:ee:83:72:38:1c:4a:2a: 55:f9:c0:01:64:f2:95:1d:95:37:81:91:6c:26:c9: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:25:4D:9F:7D:63:EB:42:11:84:C5:8D:02:E0:41:97:05:9A:6A:0E X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/VyVNn31j60IRhMWNAuBBlwWaag4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151292 sbgp-ipAddrBlock: critical IPv6: 2401:87e0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:15:45:58:94:8e:12:f6:15:57:c7:9b:8a:d9:90:7d:07:89: 96:4a:c0:5b:d9:48:4f:9c:e4:86:40:cf:9f:10:82:18:ae:2e: 4c:bb:d0:ee:14:bb:81:89:d1:42:03:81:38:b9:b8:7c:95:79: 5b:6c:c4:60:61:35:5e:fb:ed:a0:d4:e8:64:15:b7:6f:65:1d: 09:e3:b4:c9:20:61:63:f1:c1:72:e8:d8:8d:63:7a:dc:3a:7c: 03:35:e8:30:ec:bc:38:b0:39:16:37:ad:f2:b7:75:f6:8c:ba: 1e:48:be:08:c6:62:32:ed:ae:89:d6:a0:46:4b:15:e3:04:0d: bc:43:f2:8f:be:5d:2c:54:d4:e3:03:ba:ce:33:c8:cd:c5:46: 7c:e4:bb:1f:58:39:28:0f:22:d2:b4:67:c0:5b:7c:87:07:1f: 40:bd:bb:26:23:b4:e9:ac:94:27:36:4b:07:f1:05:98:d6:72: a5:31:ac:d9:0b:e4:5c:34:4e:26:6e:25:aa:4f:5f:df:e8:ca: 9c:d6:a4:b7:b9:65:b6:35:5c:88:dc:24:3e:34:63:37:2f:72: cd:01:a4:12:2c:bc:d2:6f:d3:a5:1b:a4:43:66:2b:71:c3:b7: fa:f7:d1:d3:d7:c8:12:9e:85:1e:c8:6f:83:64:77:3f:a5:a8: 23:f3:45:80 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDAM5/MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODE0NTVaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKDU3MjU0RDlGN0Q2M0VCNDIxMTg0QzU4RDAyRTA0MTk3MDU5QTZB MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW/TeO29aV3N4mNHcS frIK3yXfrL1tFUgiLlx03hROEA86QW4uAkBFtdD86na4SRAwo0iQKqI6D+FZQHcl qPbOyTFxAJjFOvi6D3MYC8pPuXzLGL3B2ipgfX4EuOo7d5X6Wlw4gMuNa7842BzS DIoK/gfPY0hQSLFRxpyzCCIKZuvFfrWbBDyv3CKz1KfZ2clXIo2wxe2y1WzaFcSR Gfl9cq9crhG/HGQ4fGdwsQRXGbPwLzxWtzs908/+Subdzd+I3NkgIPVRpfIEtk6G 1HYGy6v82UZXVhVqYI3/hE/Zo1Gd8+oHn3iZ7oNyOBxKKlX5wAFk8pUdlTeBkWwm yUM1AgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUVyVNn31j60IRhMWNAuBBlwWaag4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NzAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI3MC9WeVZObjMxajYwSVJoTVdOQXVCQmx3V2FhZzQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO/DAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBh+AwDQYJKoZIhvcNAQELBQADggEBAGoVRViUjhL2FVfHm4rZ kH0HiZZKwFvZSE+c5IZAz58QghiuLky70O4Uu4GJ0UIDgTi5uHyVeVtsxGBhNV77 7aDU6GQVt29lHQnjtMkgYWPxwXLo2I1jetw6fAM16DDsvDiwORY3rfK3dfaMuh5I vgjGYjLtronWoEZLFeMEDbxD8o++XSxU1OMDus4zyM3FRnzkux9YOSgPItK0Z8Bb fIcHH0C9uyYjtOmslCc2SwfxBZjWcqUxrNkL5Fw0TiZuJapPX9/oypzWpLe5ZbY1 XIjcJD40Yzcvcs0BpBIsvNJv06UbpENmK3HDt/r30dPXyBKehR7Ib4Nkdz+lqCPz RYA= -----END CERTIFICATE-----Generated at Fri Apr 4 02:17:47 2025 by rpki-client