$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/_i1c0c9OKHJuJ3MPCnRmYEf68K4.cer File: _i1c0c9OKHJuJ3MPCnRmYEf68K4.cer (raw, json) Hash identifier: azMQZC9mGTqgb3uqeXJrOzRivmChGkVSk1WRMgL/IGE= Subject key identifier: FE:2D:5C:D1:CF:4E:28:72:6E:27:73:0F:0A:74:66:60:47:FA:F0:AE Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AEFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3143/_i1c0c9OKHJuJ3MPCnRmYEf68K4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3143/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:22:05 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: IP: 2400:6da0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 19:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44797 (0xaefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:22:05 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=FE2D5CD1CF4E28726E27730F0A74666047FAF0AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bc:38:b9:d0:94:29:89:95:83:4b:59:06:b9: 72:86:0e:d4:db:ed:cd:b7:09:1b:9c:41:1f:26:bb: 4d:01:c5:85:cd:56:c1:6d:b6:55:d7:bf:30:4e:25: 24:e8:79:64:4c:0d:33:14:e3:c7:68:1e:e4:d3:cc: d3:0e:7b:92:55:0b:d4:73:8c:5e:1b:de:d8:e1:6e: dd:28:49:7f:da:27:8a:60:07:9e:c8:f9:0d:bf:1e: bb:74:74:7b:d6:b3:0f:d3:2f:6f:52:71:ba:c9:f5: a2:13:cd:d2:99:b4:e9:cb:a1:25:da:b0:b4:7a:54: 12:99:51:1d:c1:20:76:8c:56:75:d7:35:1e:e2:a4: bb:19:ab:4d:cb:da:cc:e4:3d:cd:8e:ef:17:fa:03: 77:b9:56:d3:d7:78:85:04:12:3c:b8:45:ea:b3:0e: 75:c6:27:af:2c:33:4b:c6:77:bf:32:cb:d9:7f:0a: 05:d0:e2:2a:50:e0:d3:0a:ff:96:11:dc:3e:92:e4: bf:13:7d:e9:2b:2d:3b:83:c2:29:34:6d:52:5e:a5: 56:27:87:f8:20:bf:f6:5e:1d:55:c7:f5:d1:63:0d: 4a:d5:ad:16:c0:71:f3:e2:97:bc:f0:ce:bf:e1:a3: 18:4d:d3:f1:e1:7c:05:57:47:00:9d:c1:1c:44:95: 00:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2D:5C:D1:CF:4E:28:72:6E:27:73:0F:0A:74:66:60:47:FA:F0:AE X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3143/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3143/_i1c0c9OKHJuJ3MPCnRmYEf68K4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:6da0::/32 Signature Algorithm: sha256WithRSAEncryption 73:a2:a6:b8:d8:19:5f:37:23:7e:eb:1b:86:c9:81:9e:f8:fe: 87:71:f5:57:b8:a6:0e:02:bb:f9:9d:3b:7e:68:e8:d4:f1:13: 67:5e:f0:cb:69:0a:2a:38:16:88:77:7c:e6:e2:47:49:eb:30: 9e:4d:01:66:a0:2c:19:15:3d:90:87:3e:31:2d:b1:09:4e:94: 38:76:2a:2a:66:67:df:04:fe:e0:4a:cd:2b:2a:79:95:ed:48: 45:80:b2:f5:f0:93:15:6a:ac:00:9c:bc:7d:98:e1:a7:20:99: ad:81:45:cc:47:d8:99:ba:77:5f:c7:fa:0d:d6:02:43:f4:07: 87:ad:3d:a2:2c:f7:d2:ab:8c:fc:e6:ec:7a:39:6b:35:1c:5e: 8b:e4:be:cb:28:7d:e8:1e:40:ba:70:82:93:75:0a:c7:51:32: e5:9a:ca:73:15:e8:70:75:62:86:a7:e8:eb:bb:cf:2e:04:e5: c9:d9:03:15:04:d7:64:64:cb:aa:7a:8f:7f:b4:bc:80:60:db: ef:9e:c5:40:2a:c6:cf:fa:db:c6:da:89:62:03:83:44:57:68: 5d:28:72:a2:78:14:7b:21:91:18:ff:57:36:d6:fc:3e:8a:10: 15:b5:60:c7:a1:b6:82:8f:af:26:f8:5e:60:07:48:75:69:7f: 32:ee:b5:2e -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIDAK79MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIyMDVaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKEZFMkQ1Q0QxQ0Y0RTI4NzI2RTI3NzMwRjBBNzQ2NjYwNDdGQUYw QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4vDi50JQpiZWDS1kG uXKGDtTb7c23CRucQR8mu00BxYXNVsFttlXXvzBOJSToeWRMDTMU48doHuTTzNMO e5JVC9RzjF4b3tjhbt0oSX/aJ4pgB57I+Q2/Hrt0dHvWsw/TL29ScbrJ9aITzdKZ tOnLoSXasLR6VBKZUR3BIHaMVnXXNR7ipLsZq03L2szkPc2O7xf6A3e5VtPXeIUE Ejy4ReqzDnXGJ68sM0vGd78yy9l/CgXQ4ipQ4NMK/5YR3D6S5L8TfekrLTuDwik0 bVJepVYnh/ggv/ZeHVXH9dFjDUrVrRbAcfPil7zwzr/hoxhN0/HhfAVXRwCdwRxE lQDvAgMBAAGjggJWMIICUjAdBgNVHQ4EFgQU/i1c0c9OKHJuJ3MPCnRmYEf68K4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMx NDMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzE0My9faTFjMGM5T0tISnVKM01QQ25SbVlFZjY4SzQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJABtoDANBgkqhkiG9w0BAQsF AAOCAQEAc6KmuNgZXzcjfusbhsmBnvj+h3H1V7imDgK7+Z07fmjo1PETZ17wy2kK KjgWiHd85uJHSeswnk0BZqAsGRU9kIc+MS2xCU6UOHYqKmZn3wT+4ErNKyp5le1I RYCy9fCTFWqsAJy8fZjhpyCZrYFFzEfYmbp3X8f6DdYCQ/QHh609oiz30quM/Obs ejlrNRxei+S+yyh96B5AunCCk3UKx1Ey5ZrKcxXocHVihqfo67vPLgTlydkDFQTX ZGTLqnqPf7S8gGDb757FQCrGz/rbxtqJYgODRFdoXShyongUeyGRGP9XNtb8PooQ FbVgx6G2go+vJvheYAdIdWl/Mu61Lg== -----END CERTIFICATE-----Generated at Sun May 19 14:41:54 2024 by rpki-client on console-ams.rpki-client.org