$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/tS8PP_c3H_HOnYI-lUn8EVixaio.cer File: tS8PP_c3H_HOnYI-lUn8EVixaio.cer (raw, json) Hash identifier: P1wJvVeO+DQiWmjP8UE+rpUAA7MzvOdAienWhs94PvY= Subject key identifier: B5:2F:0F:3F:F7:37:1F:F1:CE:9D:82:3E:95:49:FC:11:58:B1:6A:2A Authority key identifier: D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 Certificate issuer: /CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Certificate serial: 379F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/tS8PP_c3H_HOnYI-lUn8EVixaio.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:51:17 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: IP: 157.66.42.0/23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 13:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14239 (0x379f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Validity Not Before: Sep 27 02:51:17 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=B52F0F3FF7371FF1CE9D823E9549FC1158B16A2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7c:06:8a:f8:54:06:09:16:4c:32:ce:68:fe: 8d:bd:85:6e:94:51:9d:1f:33:27:a0:26:eb:24:3f: 65:6d:fb:60:af:06:27:38:d3:7f:b9:76:28:9c:c2: 80:18:e1:2c:8a:fa:7e:0b:61:86:85:c6:20:a6:47: a8:ac:b9:93:aa:05:2e:82:83:44:0f:7c:fd:1b:8b: ed:b6:16:bc:ac:45:2e:ba:3f:c7:fa:a8:1f:47:4a: ae:15:24:6c:28:57:ea:5e:e3:d0:c0:d8:4a:9a:a3: 1e:92:cf:60:53:bb:0c:06:31:2d:f4:f2:57:4c:fd: 91:42:ce:b1:df:f7:42:b7:9f:88:e7:1f:13:be:ef: 3b:12:83:ac:d7:48:bd:62:ce:d3:ac:b7:ab:68:92: 56:2f:62:d7:f8:60:75:5b:af:ed:ff:67:90:e7:78: 59:a8:ad:81:db:03:bb:ce:4a:46:52:e1:18:74:17: 07:51:f6:22:2d:d9:4e:aa:d4:c9:5f:c6:81:89:cc: fb:17:f2:5e:a5:8c:e3:ac:d1:49:9c:bd:19:45:8c: de:4a:bd:51:96:6c:f4:4a:58:92:42:6d:65:fb:9b: 36:35:a0:91:b2:51:80:bd:ae:91:16:55:ad:3d:1a: 11:ff:89:ce:3a:17:6f:49:4e:f5:05:4a:ed:ca:ee: ce:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2F:0F:3F:F7:37:1F:F1:CE:9D:82:3E:95:49:FC:11:58:B1:6A:2A X509v3 Authority Key Identifier: keyid:D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/tS8PP_c3H_HOnYI-lUn8EVixaio.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.66.42.0/23 Signature Algorithm: sha256WithRSAEncryption 53:12:7a:a4:25:9f:b6:01:fb:f5:00:87:9c:44:7c:23:bb:c9: 4f:21:26:a5:6d:53:28:59:18:c8:8a:9f:19:e3:e8:9e:05:47: d8:00:12:99:6c:4d:a1:60:3c:c5:2d:6d:46:28:ea:d0:8b:66: 9f:b6:de:b1:be:03:8f:26:da:ee:b8:fc:99:74:4b:5e:14:48: 97:ce:5c:e7:78:1e:28:74:17:33:3a:b1:6c:e0:f7:10:e6:2b: 99:8e:36:88:62:27:4f:c6:07:d7:d7:ad:dc:41:d7:6a:3e:6c: c9:f9:3b:8e:a1:87:0a:c6:b7:b4:c1:3c:1e:f6:b5:61:83:a6: 57:b7:30:b0:8d:be:f6:5f:9e:c9:d4:63:37:68:75:25:bd:53: e0:24:60:a2:f3:3c:8a:1e:37:82:10:05:23:1b:0f:35:57:26: 7b:2c:2c:19:09:54:9f:06:9d:a5:10:ae:aa:db:65:fc:08:e8: 37:5a:a4:74:a5:f7:c0:42:2d:c9:ba:3b:92:2c:b0:86:97:2a: da:dc:8a:5c:51:f1:24:f4:c0:ff:6c:40:95:00:ad:2f:04:ce: c2:75:48:8f:c0:5a:99:4d:3b:38:c6:62:c8:e7:a1:45:d8:41: c1:de:87:d6:4d:02:32:a4:66:73:5f:bf:c2:06:2e:03:ec:77: 07:d1:37:18 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICN58wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx NjJFM0QwMDAwMTEwLwYDVQQFEyhENzExRUMwRDM3ODE1OEE0NDc2RkU2RUE3RDcw QTU0QTk1MTk1QTExMB4XDTI0MDkyNzAyNTExN1oXDTI1MDkyNzAyNDAxNFowMzEx MC8GA1UEAxMoQjUyRjBGM0ZGNzM3MUZGMUNFOUQ4MjNFOTU0OUZDMTE1OEIxNkEy QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM18Bor4VAYJFkwyzmj+ jb2FbpRRnR8zJ6Am6yQ/ZW37YK8GJzjTf7l2KJzCgBjhLIr6fgthhoXGIKZHqKy5 k6oFLoKDRA98/RuL7bYWvKxFLro/x/qoH0dKrhUkbChX6l7j0MDYSpqjHpLPYFO7 DAYxLfTyV0z9kULOsd/3QrefiOcfE77vOxKDrNdIvWLO06y3q2iSVi9i1/hgdVuv 7f9nkOd4WaitgdsDu85KRlLhGHQXB1H2Ii3ZTqrUyV/GgYnM+xfyXqWM46zRSZy9 GUWM3kq9UZZs9EpYkkJtZfubNjWgkbJRgL2ukRZVrT0aEf+JzjoXb0lO9QVK7cru zgMCAwEAAaOCAlUwggJRMB0GA1UdDgQWBBS1Lw8/9zcf8c6dgj6VSfwRWLFqKjAf BgNVHSMEGDAWgBTXEewNN4FYpEdv5up9cKVKlRlaETAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFgGA1UdHwRRME8wTaBLoEmGR3JzeW5jOi8vcnBraS5jbm5pYy5j bi9ycGtpL0E5MTYyRTNEMDAwMC8xeEhzRFRlQldLUkhiLWJxZlhDbFNwVVpXaEUu Y3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFw bmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQx RkYyLzF4SHNEVGVCV0tSSGItYnFmWENsU3BVWldoRS5jZXIwDwYDVR0TAQH/BAUw AwEB/zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUF BzAFhi1yc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI3 Mi8wWAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8zMjcyL3RTOFBQX2MzSF9IT25ZSS1sVW44RVZpeGFpby5tZnQwMQYI KwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5jbi9ycmRwL25vdGlmeS54bWww HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQiowDQYJKoZIhvcNAQELBQAD ggEBAFMSeqQln7YB+/UAh5xEfCO7yU8hJqVtUyhZGMiKnxnj6J4FR9gAEplsTaFg PMUtbUYo6tCLZp+23rG+A48m2u64/Jl0S14USJfOXOd4Hih0FzM6sWzg9xDmK5mO NohiJ0/GB9fXrdxB12o+bMn5O46hhwrGt7TBPB72tWGDple3MLCNvvZfnsnUYzdo dSW9U+AkYKLzPIoeN4IQBSMbDzVXJnssLBkJVJ8GnaUQrqrbZfwI6DdapHSl98BC Lcm6O5IssIaXKtrcilxR8ST0wP9sQJUArS8EzsJ1SI/AWplNOzjGYsjnoUXYQcHe h9ZNAjKkZnNfv8IGLgPsdwfRNxg= -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:41 2024 by rpki-client on console-ams.rpki-client.org