$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/wdMSkWOPSkBAzT1S3sP_K5cJxfI.cer File: wdMSkWOPSkBAzT1S3sP_K5cJxfI.cer (raw, json) Hash identifier: kU/np/BhcrIxBpNOdg9nLOb+X/Qwnsve7Q7Z1GJAdDM= Subject key identifier: C1:D3:12:91:63:8F:4A:40:40:CD:3D:52:DE:C3:FF:2B:97:09:C5:F2 Authority key identifier: D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 Certificate issuer: /CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Certificate serial: 377F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/wdMSkWOPSkBAzT1S3sP_K5cJxfI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:47:44 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: IP: 139.9.0.0/16 IP: 139.159.128.0/17 IP: 140.210.128.0/17 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 13:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14207 (0x377f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Validity Not Before: Sep 27 02:47:44 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=C1D31291638F4A4040CD3D52DEC3FF2B9709C5F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a1:39:32:80:d1:6f:97:3a:58:b8:29:8d:a3: e5:4a:9a:87:d5:55:d7:cd:ee:2b:46:f8:91:6d:67: ad:9f:39:3f:89:06:c8:87:d3:85:b3:37:07:68:05: 6f:5b:10:c6:f5:10:bc:50:b5:85:de:91:ad:40:c5: a4:f4:c6:50:e5:d4:25:2b:d7:b3:cc:e4:76:1e:7b: d9:e1:7f:ba:c1:ac:01:ef:c8:b3:f4:81:74:63:1a: 4a:de:f7:02:aa:11:63:c9:2a:10:48:f7:e4:23:a1: ff:f7:3d:65:68:ca:68:ea:b9:3d:d3:c5:af:bf:27: 5f:1d:aa:b1:b9:fa:38:39:c5:12:fa:a3:09:9e:b3: 0e:f3:c5:60:18:eb:ca:93:10:09:4f:6f:93:b7:54: 7d:51:96:12:fc:ea:0f:5c:49:a1:8b:f4:96:0c:9a: ef:5a:7b:ad:2c:95:2d:00:a5:c2:d7:d3:53:81:47: 8f:7e:13:f8:7f:0d:70:60:46:33:28:5e:a7:6f:09: 14:a1:87:85:40:e6:15:65:54:80:c6:69:b1:94:e9: f9:58:37:50:02:31:23:a8:c4:79:de:60:6b:ca:d5: 75:c7:70:5c:46:a6:94:3e:cb:c5:17:3e:aa:09:35: 9c:27:97:57:be:1e:61:cc:9f:70:43:a9:1f:d3:35: 95:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D3:12:91:63:8F:4A:40:40:CD:3D:52:DE:C3:FF:2B:97:09:C5:F2 X509v3 Authority Key Identifier: keyid:D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/wdMSkWOPSkBAzT1S3sP_K5cJxfI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 139.9.0.0/16 139.159.128.0/17 140.210.128.0/17 Signature Algorithm: sha256WithRSAEncryption 13:78:73:e8:9d:5b:92:11:31:53:38:18:50:9a:2e:50:0a:55: f3:af:20:e6:3f:4b:8b:fb:2a:86:d0:fc:f4:87:8e:93:02:90: df:8f:24:c1:99:e2:d6:ce:57:6e:0f:15:d1:ac:54:fe:59:43: 61:06:8a:aa:fc:c9:62:4b:13:f1:59:96:ae:de:07:91:d5:dd: 2d:b5:b5:a7:c3:8a:59:a4:fe:72:83:42:cf:93:b4:32:f9:01: 7f:59:c6:4c:f5:93:d3:00:d1:0e:c4:7e:82:25:c6:fe:2e:bc: 44:71:61:19:06:b4:13:a2:b2:70:f8:66:4d:68:dd:06:2f:58: 30:38:77:bd:c8:82:67:8d:db:8c:14:f0:d4:49:7d:bb:9f:8b: 70:43:48:26:96:fc:17:3b:a2:79:f0:7b:03:33:44:bf:26:e8: 90:13:96:42:c0:2c:46:5c:db:f0:45:72:ab:6b:bc:5e:41:52: 1b:fa:2f:3c:36:2a:8f:5b:88:20:02:d6:c5:f4:ba:4d:07:23: cd:19:1f:c8:f9:4c:64:99:31:ba:a1:32:19:1a:f9:69:f8:b1: 74:2a:43:61:26:a9:b7:63:a5:2b:ac:b3:fc:b0:17:5e:d6:9e: 50:13:3a:a0:7f:3b:16:a0:90:d1:fc:ef:df:1c:ad:a3:5a:03: 78:6f:32:8c -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICN38wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx NjJFM0QwMDAwMTEwLwYDVQQFEyhENzExRUMwRDM3ODE1OEE0NDc2RkU2RUE3RDcw QTU0QTk1MTk1QTExMB4XDTI0MDkyNzAyNDc0NFoXDTI1MDkyNzAyNDAxNFowMzEx MC8GA1UEAxMoQzFEMzEyOTE2MzhGNEE0MDQwQ0QzRDUyREVDM0ZGMkI5NzA5QzVG MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOyhOTKA0W+XOli4KY2j 5Uqah9VV183uK0b4kW1nrZ85P4kGyIfThbM3B2gFb1sQxvUQvFC1hd6RrUDFpPTG UOXUJSvXs8zkdh572eF/usGsAe/Is/SBdGMaSt73AqoRY8kqEEj35COh//c9ZWjK aOq5PdPFr78nXx2qsbn6ODnFEvqjCZ6zDvPFYBjrypMQCU9vk7dUfVGWEvzqD1xJ oYv0lgya71p7rSyVLQClwtfTU4FHj34T+H8NcGBGMyhep28JFKGHhUDmFWVUgMZp sZTp+Vg3UAIxI6jEed5ga8rVdcdwXEamlD7LxRc+qgk1nCeXV74eYcyfcEOpH9M1 lSECAwEAAaOCAmAwggJcMB0GA1UdDgQWBBTB0xKRY49KQEDNPVLew/8rlwnF8jAf BgNVHSMEGDAWgBTXEewNN4FYpEdv5up9cKVKlRlaETAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFgGA1UdHwRRME8wTaBLoEmGR3JzeW5jOi8vcnBraS5jbm5pYy5j bi9ycGtpL0E5MTYyRTNEMDAwMC8xeEhzRFRlQldLUkhiLWJxZlhDbFNwVVpXaEUu Y3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFw bmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQx RkYyLzF4SHNEVGVCV0tSSGItYnFmWENsU3BVWldoRS5jZXIwDwYDVR0TAQH/BAUw AwEB/zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUF BzAFhi1yc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC8wWAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8zMDE0L3dkTVNrV09QU2tCQXpUMVMzc1BfSzVjSnhmSS5tZnQwMQYI KwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5jbi9ycmRwL25vdGlmeS54bWww KgYIKwYBBQUHAQcBAf8EGzAZMBcEAgABMBEDAwCLCQMEB4ufgAMEB4zSgDANBgkq hkiG9w0BAQsFAAOCAQEAE3hz6J1bkhExUzgYUJouUApV868g5j9Li/sqhtD89IeO kwKQ348kwZni1s5Xbg8V0axU/llDYQaKqvzJYksT8VmWrt4HkdXdLbW1p8OKWaT+ coNCz5O0MvkBf1nGTPWT0wDRDsR+giXG/i68RHFhGQa0E6KycPhmTWjdBi9YMDh3 vciCZ43bjBTw1El9u5+LcENIJpb8FzuiefB7AzNEvybokBOWQsAsRlzb8EVyq2u8 XkFSG/ovPDYqj1uIIALWxfS6TQcjzRkfyPlMZJkxuqEyGRr5afixdCpDYSapt2Ol K6yz/LAXXtaeUBM6oH87FqCQ0fzv3xyto1oDeG8yjA== -----END CERTIFICATE-----Generated at Fri Nov 22 09:42:28 2024 by rpki-client on console-ams.rpki-client.org