$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/aeIZ61u2_sIhJJFAsoBEtf5Fxxw.cer File: aeIZ61u2_sIhJJFAsoBEtf5Fxxw.cer (raw, json) Hash identifier: D+ASaYIHGIdtm5pRExa9wuEsHb5PbH7v/ECxXCzYj8E= Subject key identifier: 69:E2:19:EB:5B:B6:FE:C2:21:24:91:40:B2:80:44:B5:FE:45:C7:1C Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AF8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/aeIZ61u2_sIhJJFAsoBEtf5Fxxw.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:24:31 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: IP: 103.249.244.0/22 IP: 163.53.60.0/22 IP: 218.245.48.0/20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 15:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44943 (0xaf8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:24:31 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=69E219EB5BB6FEC221249140B28044B5FE45C71C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:ab:37:1b:33:ac:d9:b6:0f:e9:41:e2:9e: 34:75:fa:1f:5d:b8:5f:0b:3a:23:85:f4:73:e5:95: de:c5:1a:55:84:e9:2f:58:71:66:91:08:6a:9e:f2: 21:e3:2a:c2:89:8c:09:5e:f6:41:6a:e5:ac:5f:fa: 61:b9:fa:72:0d:d8:0c:88:1f:65:2e:50:03:38:20: fd:5e:ab:bf:a4:99:d7:30:1f:7c:86:30:25:a0:cc: 13:25:2d:82:a7:a3:2b:91:9e:49:94:28:41:61:1f: 98:b4:1f:b6:a0:ea:0e:12:6f:75:4e:4f:f9:3b:03: fb:6b:8b:07:0d:23:56:91:bd:3f:ac:46:71:59:df: 34:bd:60:e5:1c:a8:26:42:77:94:be:b1:57:87:49: bf:32:44:03:0d:27:91:89:4d:ae:4c:63:81:ab:bf: a4:77:a1:38:aa:24:9f:13:6f:2e:93:bd:7f:2b:7f: 8f:56:55:d0:fb:7c:82:f8:59:fd:bd:72:89:15:26: 96:a4:5b:a1:20:d2:a6:9e:c3:9c:59:c8:36:52:a2: 02:38:db:97:6a:68:43:d3:b0:b3:3b:0e:c2:e7:a0: 15:09:26:89:49:bc:7c:f5:6e:1a:92:30:af:38:d2: 22:33:f4:a3:4a:0b:86:ed:79:5d:af:36:bb:aa:a8: b1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E2:19:EB:5B:B6:FE:C2:21:24:91:40:B2:80:44:B5:FE:45:C7:1C X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/aeIZ61u2_sIhJJFAsoBEtf5Fxxw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.249.244.0/22 163.53.60.0/22 218.245.48.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:82:53:ab:5a:15:52:17:3b:b8:9b:ee:59:70:c3:bc:ca:4d: 02:31:4a:a5:0b:b3:d4:f7:41:78:51:0f:bf:d3:a4:89:ed:d3: 6a:c4:29:2a:42:0b:be:81:7a:a6:6e:99:82:b3:a3:db:51:18: 3d:be:a4:d5:72:95:e5:96:fd:6b:d6:09:09:5c:9d:ad:fb:d8: 19:9d:11:87:f3:cb:81:d8:1d:f9:0c:09:ec:93:21:ea:df:37: 6c:2a:08:70:0e:0a:60:bf:1c:c1:2e:06:48:89:86:47:06:7a: 9e:06:4c:f6:ff:03:1b:de:1e:b2:89:1f:1b:1c:a9:9c:9c:f7: 79:7e:ef:fc:74:e7:96:44:c9:ab:93:67:5e:5f:6b:68:dc:65: 06:82:f2:fd:02:f3:4d:ef:3d:e4:88:85:03:7c:66:09:f4:16: 74:f2:c5:31:43:d6:2e:28:a8:ef:dd:d2:2f:75:a0:69:cf:23: ae:86:9f:ce:b8:16:33:36:00:b2:cf:1b:f1:db:75:94:e6:59: db:49:89:b3:97:4d:a5:81:bc:7f:87:a4:39:9e:b7:b0:f4:5b: 7f:90:a8:d4:d5:e6:e5:a6:bf:91:c9:88:c0:ea:a8:1f:c0:0d: 31:a5:82:ac:f5:b6:87:71:a7:95:26:8a:61:3d:b8:c9:57:ce: d9:0c:fa:d6 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIDAK+PMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTI0MzFaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKDY5RTIxOUVCNUJCNkZFQzIyMTI0OTE0MEIyODA0NEI1RkU0NUM3 MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Fas3GzOs2bYP6UHi njR1+h9duF8LOiOF9HPlld7FGlWE6S9YcWaRCGqe8iHjKsKJjAle9kFq5axf+mG5 +nIN2AyIH2UuUAM4IP1eq7+kmdcwH3yGMCWgzBMlLYKnoyuRnkmUKEFhH5i0H7ag 6g4Sb3VOT/k7A/triwcNI1aRvT+sRnFZ3zS9YOUcqCZCd5S+sVeHSb8yRAMNJ5GJ Ta5MY4Grv6R3oTiqJJ8Tby6TvX8rf49WVdD7fIL4Wf29cokVJpakW6Eg0qaew5xZ yDZSogI425dqaEPTsLM7DsLnoBUJJolJvHz1bhqSMK840iIz9KNKC4bteV2vNruq qLFVAgMBAAGjggJfMIICWzAdBgNVHQ4EFgQUaeIZ61u2/sIhJJFAsoBEtf5Fxxww HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYx Ni8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC82MTYvYWVJWjYxdTJfc0loSkpGQXNvQkV0ZjVGeHh3Lm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAr BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAmf59AMEAqM1PAMEBNr1MDANBgkq hkiG9w0BAQsFAAOCAQEADYJTq1oVUhc7uJvuWXDDvMpNAjFKpQuz1PdBeFEPv9Ok ie3TasQpKkILvoF6pm6ZgrOj21EYPb6k1XKV5Zb9a9YJCVydrfvYGZ0Rh/PLgdgd +QwJ7JMh6t83bCoIcA4KYL8cwS4GSImGRwZ6ngZM9v8DG94esokfGxypnJz3eX7v /HTnlkTJq5NnXl9raNxlBoLy/QLzTe895IiFA3xmCfQWdPLFMUPWLiio793SL3Wg ac8jroafzrgWMzYAss8b8dt1lOZZ20mJs5dNpYG8f4ekOZ63sPRbf5Co1NXm5aa/ kcmIwOqoH8ANMaWCrPW2h3GnlSaKYT24yVfO2Qz61g== -----END CERTIFICATE-----Generated at Sun May 19 10:14:57 2024 by rpki-client on console-fra.rpki-client.org