$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/a5mV9HjPG2vSjnyeKoOeyeBpgKg.cer File: a5mV9HjPG2vSjnyeKoOeyeBpgKg.cer (raw, json) Hash identifier: WisYAao1zftaNpc8/T/N34KpNpzXuUhITwHeI6tU3qE= Subject key identifier: 6B:99:95:F4:78:CF:1B:6B:D2:8E:7C:9E:2A:83:9E:C9:E0:69:80:A8 Authority key identifier: D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 Certificate issuer: /CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Certificate serial: 39E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3344/a5mV9HjPG2vSjnyeKoOeyeBpgKg.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3344/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 26 Dec 2024 02:20:53 +0000 Certificate not after: Fri 26 Dec 2025 02:04:56 +0000 Subordinate resources: IP: 161.248.42.0/23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 21:29:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14821 (0x39e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Dec 26 02:20:53 2024 GMT Not After : Dec 26 02:04:56 2025 GMT Subject: CN=6B9995F478CF1B6BD28E7C9E2A839EC9E06980A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:41:7f:e3:6c:a5:39:03:95:3d:82:0a:06:e4: 7e:c3:5e:a0:a0:be:e5:4a:73:46:7b:41:d2:92:37: 4b:ba:3c:d6:3e:bb:c6:76:f7:9e:ce:d5:56:66:ca: 08:da:0f:f2:bd:50:8a:b0:b5:1b:30:d9:a2:a6:41: a8:eb:31:76:91:30:fb:72:79:f3:fe:07:15:1a:d4: 89:41:c1:d4:08:e3:ee:5b:4d:c1:d8:aa:0c:c9:5e: c7:d6:c6:24:d0:e6:e7:ac:93:24:97:ff:bf:d0:3f: 9a:cb:0c:4b:85:76:e3:2a:57:67:05:ea:5a:94:a3: b4:f2:69:18:53:59:71:04:02:f5:8e:09:e2:30:9a: fa:9b:25:95:90:96:34:7e:ee:f5:7e:a8:ee:75:98: 82:cb:dc:9f:cb:5d:cb:6d:41:ca:03:0e:1c:3e:29: 40:6f:d2:41:58:2f:f6:4c:94:ce:27:3d:5a:32:76: 2f:a0:2a:f1:4f:ce:37:ad:8f:f6:30:06:bc:64:f1: cf:a1:fe:cd:5f:7c:39:1c:39:e9:c7:7c:71:be:1d: ca:5a:19:67:99:61:02:65:3a:d6:01:70:4c:7a:b4: cb:de:6f:f2:c8:5b:8c:04:ee:49:ec:86:c4:77:0a: d2:58:bc:05:6f:15:a3:b0:2d:3d:40:eb:ce:94:68: a6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:99:95:F4:78:CF:1B:6B:D2:8E:7C:9E:2A:83:9E:C9:E0:69:80:A8 X509v3 Authority Key Identifier: keyid:D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3344/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3344/a5mV9HjPG2vSjnyeKoOeyeBpgKg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 161.248.42.0/23 Signature Algorithm: sha256WithRSAEncryption 00:42:9e:91:fb:f9:6f:41:26:90:6c:ff:06:c7:36:ae:53:43: a9:6a:03:dc:cd:f1:2f:3b:df:96:d0:3a:21:e0:cb:0b:8e:ce: f0:e6:4a:f7:82:d7:03:28:40:33:ad:ca:04:58:31:fc:8c:1b: 1e:b7:85:3e:31:96:9c:d7:8d:a5:7e:c7:36:7c:34:36:72:9f: f0:0d:0b:63:c3:2e:1a:49:01:9b:17:5e:ca:69:f6:b4:e3:ee: 56:dc:7e:76:7f:8e:32:4e:52:45:66:88:81:20:b8:ba:4c:f1: c2:18:8d:e0:18:f1:4a:26:e2:85:a3:e7:a8:00:9a:f7:ef:6b: 0d:df:37:71:24:8a:2f:0f:d1:8a:44:53:6b:9e:04:ea:2d:fb: 70:97:18:21:a3:9c:33:ee:7a:2f:a1:40:dd:42:bd:e7:01:8b: dc:42:f4:89:ec:6d:c8:08:08:90:d1:56:7d:70:fc:03:f9:91: 76:2b:d0:61:b6:5b:9a:07:d6:a7:87:8f:ba:ba:55:dc:c9:60: 92:96:40:aa:fb:89:34:e9:ef:22:97:25:ac:ca:92:db:54:92: c4:c2:16:3c:6c:70:fe:e1:14:9e:14:b9:e6:c0:1c:fb:b9:4b: 15:4b:92:3c:5f:04:6c:27:0b:79:21:48:68:b9:98:3f:df:c7: 40:da:f7:46 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICOeUwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx NjJFM0QwMDAwMTEwLwYDVQQFEyhENzExRUMwRDM3ODE1OEE0NDc2RkU2RUE3RDcw QTU0QTk1MTk1QTExMB4XDTI0MTIyNjAyMjA1M1oXDTI1MTIyNjAyMDQ1NlowMzEx MC8GA1UEAxMoNkI5OTk1RjQ3OENGMUI2QkQyOEU3QzlFMkE4MzlFQzlFMDY5ODBB ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANFBf+NspTkDlT2CCgbk fsNeoKC+5UpzRntB0pI3S7o81j67xnb3ns7VVmbKCNoP8r1QirC1GzDZoqZBqOsx dpEw+3J58/4HFRrUiUHB1Ajj7ltNwdiqDMlex9bGJNDm56yTJJf/v9A/mssMS4V2 4ypXZwXqWpSjtPJpGFNZcQQC9Y4J4jCa+psllZCWNH7u9X6o7nWYgsvcn8tdy21B ygMOHD4pQG/SQVgv9kyUzic9WjJ2L6Aq8U/ON62P9jAGvGTxz6H+zV98ORw56cd8 cb4dyloZZ5lhAmU61gFwTHq0y95v8shbjATuSeyGxHcK0li8BW8Vo7AtPUDrzpRo pkcCAwEAAaOCAlUwggJRMB0GA1UdDgQWBBRrmZX0eM8ba9KOfJ4qg57J4GmAqDAf BgNVHSMEGDAWgBTXEewNN4FYpEdv5up9cKVKlRlaETAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFgGA1UdHwRRME8wTaBLoEmGR3JzeW5jOi8vcnBraS5jbm5pYy5j bi9ycGtpL0E5MTYyRTNEMDAwMC8xeEhzRFRlQldLUkhiLWJxZlhDbFNwVVpXaEUu Y3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFw bmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQx RkYyLzF4SHNEVGVCV0tSSGItYnFmWENsU3BVWldoRS5jZXIwDwYDVR0TAQH/BAUw AwEB/zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUF BzAFhi1yc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 NC8wWAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8zMzQ0L2E1bVY5SGpQRzJ2U2pueWVLb09leWVCcGdLZy5tZnQwMQYI KwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5jbi9ycmRwL25vdGlmeS54bWww HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGh+CowDQYJKoZIhvcNAQELBQAD ggEBAABCnpH7+W9BJpBs/wbHNq5TQ6lqA9zN8S8735bQOiHgywuOzvDmSveC1wMo QDOtygRYMfyMGx63hT4xlpzXjaV+xzZ8NDZyn/ANC2PDLhpJAZsXXspp9rTj7lbc fnZ/jjJOUkVmiIEguLpM8cIYjeAY8Uom4oWj56gAmvfvaw3fN3Ekii8P0YpEU2ue BOot+3CXGCGjnDPuei+hQN1CvecBi9xC9InsbcgICJDRVn1w/AP5kXYr0GG2W5oH 1qeHj7q6VdzJYJKWQKr7iTTp7yKXJazKkttUksTCFjxscP7hFJ4UuebAHPu5SxVL kjxfBGwnC3khSGi5mD/fx0Da90Y= -----END CERTIFICATE-----Generated at Wed Feb 19 20:43:31 2025 by rpki-client