$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/cGWAYppxSOSyIYnnuR8UZ5ERY3A.cer File: cGWAYppxSOSyIYnnuR8UZ5ERY3A.cer (raw, json) Hash identifier: 6c1U5LKJjFnzEmIXrFlZOVWecGhXqOFfU5gJE4LAnII= Subject key identifier: 70:65:80:62:9A:71:48:E4:B2:21:89:E7:B9:1F:14:67:91:11:63:70 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AF73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/71/cGWAYppxSOSyIYnnuR8UZ5ERY3A.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/71/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:24:07 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: IP: 110.173.96.0/19 IP: 202.173.224.0/19 IP: 211.148.128.0/19 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 19:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44915 (0xaf73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:24:07 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=706580629A7148E4B22189E7B91F146791116370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e7:ae:5e:61:75:c0:a9:17:47:ae:80:d9:6b: b0:a8:84:4f:87:21:d0:c6:27:d1:c5:94:f3:88:5b: 88:8a:95:d0:f3:16:f4:28:33:64:1f:d2:31:de:a9: 94:7f:43:b7:ea:a4:a9:9c:fa:ee:e2:f6:da:28:6d: 9e:dd:b4:01:a1:20:d9:11:29:e7:03:30:8a:3a:9d: c5:ab:45:c3:dd:84:5e:01:2f:e0:ec:f8:98:e0:50: cd:e5:05:e9:d2:95:03:a9:9e:cb:d3:32:38:f4:02: f9:8d:5e:83:1e:5d:9c:b4:69:1f:1f:aa:d5:ee:54: f8:4f:da:ae:dc:c8:8e:22:05:f0:a7:59:48:4a:1d: 0a:0c:32:cf:46:23:cd:94:0f:9a:ff:db:80:27:bd: e4:2c:10:75:a6:66:7c:ca:20:c4:f5:31:26:a6:37: 29:9d:bd:5e:44:c0:72:c7:9f:21:51:6a:c8:c4:71: be:c8:7a:54:1d:09:87:c4:a4:6e:65:ea:b4:22:6e: 4c:dd:4c:fe:41:ea:99:af:43:d3:82:3d:0d:1c:4f: 51:ee:c5:c1:bb:43:17:83:87:37:15:fe:36:72:ad: 2e:5e:a7:c8:34:b8:c6:03:a5:64:de:7e:4d:d7:93: 02:b7:4a:00:6a:96:45:26:21:9e:53:41:2c:84:5a: 39:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:65:80:62:9A:71:48:E4:B2:21:89:E7:B9:1F:14:67:91:11:63:70 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/71/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/71/cGWAYppxSOSyIYnnuR8UZ5ERY3A.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.173.96.0/19 202.173.224.0/19 211.148.128.0/19 Signature Algorithm: sha256WithRSAEncryption 5a:b1:ed:43:f0:ba:ce:4b:ef:db:47:db:9e:13:10:44:58:ee: eb:37:f1:2d:f4:20:61:a5:b8:00:cf:be:0a:1e:dc:ae:4c:39: 47:e3:e8:26:d0:9f:99:a8:47:94:35:c8:bc:aa:23:88:16:d0: 90:d3:b6:5e:b7:aa:a1:db:86:c0:13:5a:dd:25:26:77:d5:62: 45:c8:fb:60:5f:78:cb:84:c2:16:fe:d0:bd:21:20:1a:9f:24: a1:81:a5:14:05:df:9a:c9:ba:aa:27:9e:0c:f4:5e:e1:08:f9: ea:b1:b4:20:3b:a9:10:53:3f:af:d4:d3:ea:a9:c8:b8:ac:19: 92:0a:b9:f0:28:42:62:a0:12:a4:dc:69:e5:5e:57:df:f3:4e: d6:5f:54:5a:d5:e1:31:d3:8a:4c:b3:9c:90:8c:c5:1d:be:23: f5:54:2f:3f:5f:d0:cf:3c:e9:18:42:3c:94:12:28:fd:00:bb: 2d:af:52:f8:ed:f7:5f:7c:19:b3:66:48:94:1a:3f:23:42:72: 88:8b:e5:74:2d:09:fd:4d:c4:15:bd:68:65:fd:a6:ea:e3:30: 06:d9:92:cb:2c:c5:f2:cb:53:67:f6:86:d7:f7:b8:39:7f:cf: 6a:4d:35:2e:29:db:c1:9e:4e:51:54:df:d1:c8:9d:c7:80:fa: 81:b1:5a:91 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgIDAK9zMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTI0MDdaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKDcwNjU4MDYyOUE3MTQ4RTRCMjIxODlFN0I5MUYxNDY3OTExMTYz NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq565eYXXAqRdHroDZ a7CohE+HIdDGJ9HFlPOIW4iKldDzFvQoM2Qf0jHeqZR/Q7fqpKmc+u7i9toobZ7d tAGhINkRKecDMIo6ncWrRcPdhF4BL+Ds+JjgUM3lBenSlQOpnsvTMjj0AvmNXoMe XZy0aR8fqtXuVPhP2q7cyI4iBfCnWUhKHQoMMs9GI82UD5r/24AnveQsEHWmZnzK IMT1MSamNymdvV5EwHLHnyFRasjEcb7IelQdCYfEpG5l6rQibkzdTP5B6pmvQ9OC PQ0cT1HuxcG7QxeDhzcV/jZyrS5ep8g0uMYDpWTefk3XkwK3SgBqlkUmIZ5TQSyE WjnzAgMBAAGjggJdMIICWTAdBgNVHQ4EFgQUcGWAYppxSOSyIYnnuR8UZ5ERY3Aw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHUBggrBgEFBQcBCwSBxzCBxDA3BggrBgEF BQcwBYYrcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzcx LzBWBggrBgEFBQcwCoZKcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzcxL2NHV0FZcHB4U09TeUlZbm51UjhVWjVFUlkzQS5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5jbi9ycmRwL25vdGlmeS54bWwwKwYI KwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAVurWADBAXKreADBAXTlIAwDQYJKoZI hvcNAQELBQADggEBAFqx7UPwus5L79tH254TEERY7us38S30IGGluADPvgoe3K5M OUfj6CbQn5moR5Q1yLyqI4gW0JDTtl63qqHbhsATWt0lJnfVYkXI+2BfeMuEwhb+ 0L0hIBqfJKGBpRQF35rJuqonngz0XuEI+eqxtCA7qRBTP6/U0+qpyLisGZIKufAo QmKgEqTcaeVeV9/zTtZfVFrV4THTikyznJCMxR2+I/VULz9f0M886RhCPJQSKP0A uy2vUvjt9198GbNmSJQaPyNCcoiL5XQtCf1NxBW9aGX9purjMAbZksssxfLLU2f2 htf3uDl/z2pNNS4p28GeTlFU39HInceA+oGxWpE= -----END CERTIFICATE-----Generated at Sat May 18 15:40:31 2024 by rpki-client on console-fra.rpki-client.org