$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/eSWLcPLwqnrf_qSE8eKVAzX9zEk.cer File: eSWLcPLwqnrf_qSE8eKVAzX9zEk.cer (raw, json) Hash identifier: M+YaWg/5V7yRl7Ny3b8RZFiqg239Z2dJK75+ewTVCts= Subject key identifier: 79:25:8B:70:F2:F0:AA:7A:DF:FE:A4:84:F1:E2:95:03:35:FD:CC:49 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BAD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3248/eSWLcPLwqnrf_qSE8eKVAzX9zEk.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3248/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:49:14 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 151299 IP: 113.192.40.0/23 IP: 2401:58a0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47827 (0xbad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:49:14 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=79258B70F2F0AA7ADFFEA484F1E2950335FDCC49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:31:a1:7e:af:83:19:0d:b4:50:99:cf:8b:68: f1:8e:50:22:ab:b9:36:c6:d7:a6:8d:6e:df:0c:ec: 10:eb:7f:70:fe:bf:e7:84:19:2a:14:02:2a:a2:86: 62:e7:f4:fd:5f:c7:2f:d2:c7:da:29:4a:5e:8e:4b: 3d:b0:02:65:16:36:c3:ff:9f:b6:ee:53:8b:39:db: 53:ca:3d:93:c7:e6:8c:48:7c:a1:b0:6a:e1:68:11: 9b:21:c9:c1:b2:55:46:a1:9c:a6:35:60:44:82:1a: c6:d5:7a:e3:ca:ec:9f:d0:db:a3:9e:69:4c:fe:84: d9:67:75:aa:a0:f7:61:62:60:54:3b:24:2e:2c:f4: b9:44:61:75:25:06:50:09:8d:f7:6d:2a:82:f2:8f: 88:5d:23:07:b5:ae:1a:ed:5c:28:85:0e:b1:59:16: 17:76:ab:79:44:c5:de:e6:a2:39:a1:17:13:0a:d0: 8e:26:42:3b:ed:3f:13:56:f9:49:d4:1c:88:54:b9: 84:31:ab:44:81:3e:39:ca:a8:c7:9e:cb:63:45:72: 44:09:c0:d9:b7:a9:d6:a0:07:73:8b:63:3e:98:48: 61:1c:1a:3c:eb:ec:0f:3f:09:6d:96:81:68:a2:3a: b7:cf:fb:42:57:45:b8:64:68:67:3b:70:83:48:1c: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:25:8B:70:F2:F0:AA:7A:DF:FE:A4:84:F1:E2:95:03:35:FD:CC:49 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3248/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3248/eSWLcPLwqnrf_qSE8eKVAzX9zEk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151299 sbgp-ipAddrBlock: critical IPv4: 113.192.40.0/23 IPv6: 2401:58a0::/32 Signature Algorithm: sha256WithRSAEncryption 7a:19:65:9b:4a:38:df:b0:6f:9e:f4:62:2e:a6:30:66:94:bb: 76:84:2f:8f:28:b6:2e:5d:22:b5:d9:4a:ea:df:3c:07:18:85: 0c:d6:e0:ea:bc:4e:d2:2d:51:ab:d4:19:1c:71:41:86:0f:ea: 98:d4:4a:53:81:21:7e:bd:cd:d6:af:b4:c8:11:f0:61:17:74: 4b:a2:43:7d:f0:35:d4:15:25:43:f3:d5:cf:db:66:cc:7a:01: 64:05:bd:39:39:fb:02:c3:9b:b6:95:c4:38:12:bd:c9:1a:e2: 08:cf:c1:ca:b2:82:27:c3:28:91:1e:06:15:67:10:bb:d5:aa: ed:c3:39:95:2e:2e:9d:b9:e6:27:74:24:d3:9f:48:b1:50:9b: b7:24:4b:e0:26:31:f8:21:a8:9d:ac:51:0d:36:a7:45:4c:89: 37:81:be:b2:cf:c4:d5:98:39:c1:a0:84:af:1f:52:21:ab:73: 74:68:ca:ef:1d:59:98:dd:d9:9c:97:c9:9c:c2:2a:10:9d:da: b5:a3:21:9e:b5:66:c2:8a:63:22:25:45:a3:c8:a2:12:15:3e: 36:a4:b8:6e:80:ce:a1:56:02:1c:f3:a5:bf:12:ff:f4:53:85: 7d:09:e2:68:0c:ee:e4:69:79:83:33:f1:e6:05:15:de:8f:a5: 87:b7:79:88 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDALrTMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjQ5MTRaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKDc5MjU4QjcwRjJGMEFBN0FERkZFQTQ4NEYxRTI5NTAzMzVGREND NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGMaF+r4MZDbRQmc+L aPGOUCKruTbG16aNbt8M7BDrf3D+v+eEGSoUAiqihmLn9P1fxy/Sx9opSl6OSz2w AmUWNsP/n7buU4s521PKPZPH5oxIfKGwauFoEZshycGyVUahnKY1YESCGsbVeuPK 7J/Q26OeaUz+hNlndaqg92FiYFQ7JC4s9LlEYXUlBlAJjfdtKoLyj4hdIwe1rhrt XCiFDrFZFhd2q3lExd7mojmhFxMK0I4mQjvtPxNW+UnUHIhUuYQxq0SBPjnKqMee y2NFckQJwNm3qdagB3OLYz6YSGEcGjzr7A8/CW2WgWiiOrfP+0JXRbhkaGc7cINI HDS5AgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUeSWLcPLwqnrf/qSE8eKVAzX9zEkw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NDgvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI0OC9lU1dMY1BMd3FucmZfcVNFOGVLVkF6WDl6RWsubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJPAzAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAXHAKDANBAIAAjAHAwUAJAFYoDANBgkqhkiG9w0BAQsFAAOCAQEA ehllm0o437BvnvRiLqYwZpS7doQvjyi2Ll0itdlK6t88BxiFDNbg6rxO0i1Rq9QZ HHFBhg/qmNRKU4Ehfr3N1q+0yBHwYRd0S6JDffA11BUlQ/PVz9tmzHoBZAW9OTn7 AsObtpXEOBK9yRriCM/ByrKCJ8MokR4GFWcQu9Wq7cM5lS4unbnmJ3Qk059IsVCb tyRL4CYx+CGonaxRDTanRUyJN4G+ss/E1Zg5waCErx9SIatzdGjK7x1ZmN3ZnJfJ nMIqEJ3ataMhnrVmwopjIiVFo8iiEhU+NqS4boDOoVYCHPOlvxL/9FOFfQniaAzu 5Gl5gzPx5gUV3o+lh7d5iA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:27 2024 by rpki-client on console-fra.rpki-client.org