$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/aeIZ61u2_sIhJJFAsoBEtf5Fxxw.cer File: aeIZ61u2_sIhJJFAsoBEtf5Fxxw.cer (raw, json) Hash identifier: liLdl5AodeMiVuDTnLbxr6pTC+CHwUIQF6uu2Myr43A= Subject key identifier: 69:E2:19:EB:5B:B6:FE:C2:21:24:91:40:B2:80:44:B5:FE:45:C7:1C Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CE7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/aeIZ61u2_sIhJJFAsoBEtf5Fxxw.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 03 Apr 2025 08:14:54 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: IP: 103.249.244.0/22 IP: 163.53.60.0/22 IP: 218.245.48.0/20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 04:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52861 (0xce7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Apr 3 08:14:54 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=69E219EB5BB6FEC221249140B28044B5FE45C71C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:ab:37:1b:33:ac:d9:b6:0f:e9:41:e2:9e: 34:75:fa:1f:5d:b8:5f:0b:3a:23:85:f4:73:e5:95: de:c5:1a:55:84:e9:2f:58:71:66:91:08:6a:9e:f2: 21:e3:2a:c2:89:8c:09:5e:f6:41:6a:e5:ac:5f:fa: 61:b9:fa:72:0d:d8:0c:88:1f:65:2e:50:03:38:20: fd:5e:ab:bf:a4:99:d7:30:1f:7c:86:30:25:a0:cc: 13:25:2d:82:a7:a3:2b:91:9e:49:94:28:41:61:1f: 98:b4:1f:b6:a0:ea:0e:12:6f:75:4e:4f:f9:3b:03: fb:6b:8b:07:0d:23:56:91:bd:3f:ac:46:71:59:df: 34:bd:60:e5:1c:a8:26:42:77:94:be:b1:57:87:49: bf:32:44:03:0d:27:91:89:4d:ae:4c:63:81:ab:bf: a4:77:a1:38:aa:24:9f:13:6f:2e:93:bd:7f:2b:7f: 8f:56:55:d0:fb:7c:82:f8:59:fd:bd:72:89:15:26: 96:a4:5b:a1:20:d2:a6:9e:c3:9c:59:c8:36:52:a2: 02:38:db:97:6a:68:43:d3:b0:b3:3b:0e:c2:e7:a0: 15:09:26:89:49:bc:7c:f5:6e:1a:92:30:af:38:d2: 22:33:f4:a3:4a:0b:86:ed:79:5d:af:36:bb:aa:a8: b1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E2:19:EB:5B:B6:FE:C2:21:24:91:40:B2:80:44:B5:FE:45:C7:1C X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/616/aeIZ61u2_sIhJJFAsoBEtf5Fxxw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.249.244.0/22 163.53.60.0/22 218.245.48.0/20 Signature Algorithm: sha256WithRSAEncryption a4:e1:8b:65:35:3f:74:66:1d:80:24:f4:03:e3:0f:f8:d9:50: da:23:10:b1:a2:1d:76:73:00:fa:d2:e3:e9:9b:e6:53:81:e0: e7:31:d1:67:80:d8:79:d5:1f:ae:3a:e2:97:88:80:fc:5d:d5: 58:07:f9:85:ca:ee:f8:02:8a:86:df:67:3b:bf:04:ee:56:b5: 37:25:3a:18:73:9a:e1:c5:90:ae:23:ef:17:28:c2:6a:b8:d3: a1:4e:00:e4:68:6b:eb:c1:6f:a6:9f:58:f9:ea:cc:44:32:36: 02:c9:a0:49:c4:9f:ca:16:14:82:8a:72:3a:2e:43:3c:dc:a8: 4a:49:73:2c:6a:4c:20:ca:03:4f:0f:d1:5d:01:dc:d9:44:77: 83:23:68:22:eb:e6:4e:bc:e9:45:34:a7:26:4d:cc:7e:6d:b9: 9a:ea:0a:ce:71:f9:b7:f6:d1:ec:46:b0:60:2e:58:24:24:27: 37:cc:e9:23:12:7b:57:27:6e:58:6a:55:4a:6c:46:3f:27:03: 7a:90:8b:e7:b3:97:85:cf:5f:5e:38:31:f6:4d:49:51:c5:32: f6:d6:35:9c:b9:f5:80:22:4a:4f:16:6f:bd:bc:87:b7:62:08: 37:30:36:e9:f1:d6:1d:ea:52:ef:b0:a1:70:12:be:6a:80:ed: 97:37:64:eb -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIDAM59MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODE0NTRaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKDY5RTIxOUVCNUJCNkZFQzIyMTI0OTE0MEIyODA0NEI1RkU0NUM3 MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Fas3GzOs2bYP6UHi njR1+h9duF8LOiOF9HPlld7FGlWE6S9YcWaRCGqe8iHjKsKJjAle9kFq5axf+mG5 +nIN2AyIH2UuUAM4IP1eq7+kmdcwH3yGMCWgzBMlLYKnoyuRnkmUKEFhH5i0H7ag 6g4Sb3VOT/k7A/triwcNI1aRvT+sRnFZ3zS9YOUcqCZCd5S+sVeHSb8yRAMNJ5GJ Ta5MY4Grv6R3oTiqJJ8Tby6TvX8rf49WVdD7fIL4Wf29cokVJpakW6Eg0qaew5xZ yDZSogI425dqaEPTsLM7DsLnoBUJJolJvHz1bhqSMK840iIz9KNKC4bteV2vNruq qLFVAgMBAAGjggJfMIICWzAdBgNVHQ4EFgQUaeIZ61u2/sIhJJFAsoBEtf5Fxxww HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYx Ni8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC82MTYvYWVJWjYxdTJfc0loSkpGQXNvQkV0ZjVGeHh3Lm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAr BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAmf59AMEAqM1PAMEBNr1MDANBgkq hkiG9w0BAQsFAAOCAQEApOGLZTU/dGYdgCT0A+MP+NlQ2iMQsaIddnMA+tLj6Zvm U4Hg5zHRZ4DYedUfrjril4iA/F3VWAf5hcru+AKKht9nO78E7la1NyU6GHOa4cWQ riPvFyjCarjToU4A5Ghr68Fvpp9Y+erMRDI2AsmgScSfyhYUgopyOi5DPNyoSklz LGpMIMoDTw/RXQHc2UR3gyNoIuvmTrzpRTSnJk3Mfm25muoKznH5t/bR7EawYC5Y JCQnN8zpIxJ7VyduWGpVSmxGPycDepCL57OXhc9fXjgx9k1JUcUy9tY1nLn1gCJK TxZvvbyHt2IINzA26fHWHepS77ChcBK+aoDtlzdk6w== -----END CERTIFICATE-----Generated at Fri Apr 4 02:22:10 2025 by rpki-client