$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/vA4pYej85EoFIOyHadgiWSp_xJo.cer File: vA4pYej85EoFIOyHadgiWSp_xJo.cer (raw, json) Hash identifier: 2PXPOWuvSQ1mj/Dmr7XWYy1pkWuy+u8BJXy+21Zg048= Subject key identifier: BC:0E:29:61:E8:FC:E4:4A:05:20:EC:87:69:D8:22:59:2A:7F:C4:9A Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BBB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3266/vA4pYej85EoFIOyHadgiWSp_xJo.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3266/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:52:27 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 146789 IP: 2401:7ce0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48055 (0xbbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:52:27 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=BC0E2961E8FCE44A0520EC8769D822592A7FC49A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:50:ed:b1:42:4e:54:d3:d7:d4:72:b9:15:fe: 4c:73:2e:95:2f:e1:82:cd:74:46:c7:b7:c6:b8:83: 58:28:e4:ab:7d:7a:dd:51:52:97:3b:a6:ae:e3:16: 04:1c:9a:ff:26:c4:57:d1:42:8b:69:1b:8e:73:d7: 43:52:3b:f6:1b:9d:53:a8:50:23:0f:66:ce:89:37: c4:0c:88:43:53:6e:3a:94:81:b4:7b:1a:82:0d:ae: 5c:34:7f:2c:ec:da:9b:58:04:30:c2:cc:b3:5b:5b: 27:7d:bc:6d:aa:e1:d0:d3:3d:a8:48:db:b3:7b:4a: 35:d6:de:e5:ac:d2:e1:42:79:c0:9d:96:7a:7c:43: b9:a1:4e:53:8f:fc:2b:27:ca:b7:cf:01:2f:bc:a8: d3:b4:27:9d:b8:29:42:26:51:c1:e5:e3:d7:6b:e9: d8:d6:18:98:ac:7b:12:d9:1c:20:c0:1c:2c:30:1f: a1:af:93:f9:aa:41:5a:8e:6e:a8:e1:5b:3d:c2:54: 89:38:54:09:6b:b8:24:16:ba:e7:8e:1c:3d:22:a1: 6c:dd:52:61:98:d0:fe:fa:10:68:d2:a1:16:81:e6: ef:0b:d3:53:1c:cf:fa:80:5a:36:0a:da:c4:f3:86: f7:17:a7:ca:d9:16:d3:88:22:b1:9a:08:20:55:a8: ca:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0E:29:61:E8:FC:E4:4A:05:20:EC:87:69:D8:22:59:2A:7F:C4:9A X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3266/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3266/vA4pYej85EoFIOyHadgiWSp_xJo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146789 sbgp-ipAddrBlock: critical IPv6: 2401:7ce0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:02:33:80:a0:ed:79:3a:2d:d6:f9:63:69:5a:43:b9:62:6c: 07:bc:3b:e7:37:71:b8:5f:94:df:1c:82:a3:f9:ad:bd:a4:5d: f1:36:00:bc:91:e8:e0:b4:05:00:35:d6:6e:8d:4d:e6:2e:53: 04:27:d0:d0:ed:72:16:02:47:19:b4:39:6a:44:6c:0d:ff:64: 38:ba:cd:3f:e0:09:1f:c3:60:8d:ff:61:a5:d2:68:ce:e8:5c: 52:51:bb:f1:60:7a:de:5c:b0:a3:69:1d:d5:3d:25:29:51:f5: 23:9a:3c:4c:ef:1c:78:b8:c9:08:86:98:50:c8:7f:4c:79:13: d8:ff:3b:39:86:e2:89:8e:54:f4:46:1b:ef:8c:f5:79:b0:ea: 1f:b4:ec:d3:5a:fe:11:e2:46:6a:20:09:76:e7:ff:eb:c5:a5: 3c:d3:d1:df:c9:df:90:e4:43:b4:50:82:39:c1:57:2b:d1:e7: 0a:4f:af:c9:6a:42:36:66:f4:a2:00:8b:31:d9:d9:c8:6d:51: 58:fb:08:02:18:fb:8c:64:f5:d0:c8:e9:16:20:2d:b2:27:d0: 03:c2:23:3a:e2:43:ff:cc:3f:2c:2b:9a:97:e8:a7:34:a4:82: e4:ad:dc:59:51:dc:1b:35:a2:23:42:a9:cd:6b:a2:f9:20:53: 42:d7:e4:2f -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDALu3MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjUyMjdaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKEJDMEUyOTYxRThGQ0U0NEEwNTIwRUM4NzY5RDgyMjU5MkE3RkM0 OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgUO2xQk5U09fUcrkV /kxzLpUv4YLNdEbHt8a4g1go5Kt9et1RUpc7pq7jFgQcmv8mxFfRQotpG45z10NS O/YbnVOoUCMPZs6JN8QMiENTbjqUgbR7GoINrlw0fyzs2ptYBDDCzLNbWyd9vG2q 4dDTPahI27N7SjXW3uWs0uFCecCdlnp8Q7mhTlOP/CsnyrfPAS+8qNO0J524KUIm UcHl49dr6djWGJisexLZHCDAHCwwH6Gvk/mqQVqObqjhWz3CVIk4VAlruCQWuueO HD0ioWzdUmGY0P76EGjSoRaB5u8L01Mcz/qAWjYK2sTzhvcXp8rZFtOIIrGaCCBV qMppAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUvA4pYej85EoFIOyHadgiWSp/xJow HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NjYvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI2Ni92QTRwWWVqODVFb0ZJT3lIYWRnaVdTcF94Sm8ubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9ZTAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBfOAwDQYJKoZIhvcNAQELBQADggEBAIoCM4Cg7Xk6Ldb5Y2la Q7libAe8O+c3cbhflN8cgqP5rb2kXfE2ALyR6OC0BQA11m6NTeYuUwQn0NDtchYC Rxm0OWpEbA3/ZDi6zT/gCR/DYI3/YaXSaM7oXFJRu/Fget5csKNpHdU9JSlR9SOa PEzvHHi4yQiGmFDIf0x5E9j/OzmG4omOVPRGG++M9Xmw6h+07NNa/hHiRmogCXbn /+vFpTzT0d/J35DkQ7RQgjnBVyvR5wpPr8lqQjZm9KIAizHZ2chtUVj7CAIY+4xk 9dDI6RYgLbIn0APCIzriQ//MPywrmpfopzSkguSt3FlR3Bs1oiNCqc1rovkgU0LX 5C8= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:28 2024 by rpki-client on console-fra.rpki-client.org