$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/wq4P5eDZls0aR2KmwndP8pw88Us.cer File: wq4P5eDZls0aR2KmwndP8pw88Us.cer (raw, json) Hash identifier: W9Idum/a5+bd6LOhguhc3chLs7X48V9UABKG7doskZE= Subject key identifier: C2:AE:0F:E5:E0:D9:96:CD:1A:47:62:A6:C2:77:4F:F2:9C:3C:F1:4B Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CD01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/wq4P5eDZls0aR2KmwndP8pw88Us.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 03 Apr 2025 08:07:08 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: AS: 146784 IP: 36.50.254.0/23 IP: 2401:5fa0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 04:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52481 (0xcd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000 Validity Not Before: Apr 3 08:07:08 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=C2AE0FE5E0D996CD1A4762A6C2774FF29C3CF14B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f3:17:93:91:73:25:3d:fd:e3:2c:8f:04:ae: da:bb:a9:38:18:10:50:b0:3d:b7:6b:d7:1e:66:9b: 55:00:40:53:27:43:69:6f:1f:dd:4d:e2:1f:88:51: a0:79:71:0b:1f:45:c5:f7:ac:a8:fa:b9:92:34:b6: f7:b8:20:9a:33:9c:db:b5:9b:c9:02:52:70:be:1f: 3a:92:27:1c:bc:0b:50:08:75:89:84:1e:c0:39:27: 25:26:91:c3:57:53:86:64:c7:42:ae:90:80:ff:9a: d8:ac:50:7f:49:77:c2:0d:05:e3:f7:40:46:b0:bd: 20:8e:b8:d9:fc:7f:cf:9b:56:27:e4:50:d4:12:2f: 57:85:01:ae:c4:95:a0:6c:e6:c6:b9:8a:eb:89:a5: 0a:7f:75:d1:66:48:c7:7a:06:a6:89:a8:9c:42:3a: 5c:cf:75:fa:bb:12:a8:2d:e0:c6:2c:cb:2c:6b:67: 0c:1c:bc:bd:79:78:81:e9:f0:eb:45:66:0d:c4:50: ce:2f:4c:bb:4f:4d:e6:50:06:7a:fd:80:ce:24:ac: 11:f1:91:15:aa:91:5f:4f:05:41:f7:c1:f5:4e:70: 23:a5:1b:97:33:a9:73:5b:c1:28:7d:c4:b2:50:36: 37:f0:fb:24:21:46:69:97:cc:eb:d8:18:dd:65:b4: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AE:0F:E5:E0:D9:96:CD:1A:47:62:A6:C2:77:4F:F2:9C:3C:F1:4B X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/wq4P5eDZls0aR2KmwndP8pw88Us.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146784 sbgp-ipAddrBlock: critical IPv4: 36.50.254.0/23 IPv6: 2401:5fa0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:52:1d:f8:cc:e0:6b:d7:2b:60:8c:a4:da:df:e0:42:0a:86: 19:74:29:b7:6f:05:28:86:1a:57:dd:5b:ee:5b:76:02:18:b4: 66:08:1e:e7:f4:fd:37:2b:63:4a:19:69:74:b4:c9:15:c1:b4: 2c:48:75:36:52:49:da:0a:91:3f:2e:9e:9c:a8:c6:6a:69:cd: 2f:28:5c:f1:79:d7:2e:8e:8c:dd:5f:65:96:37:7b:df:85:24: 1d:37:c2:03:98:d1:cf:a6:08:37:ef:67:15:42:cb:ac:cf:38: 5e:68:e3:49:74:64:10:8e:73:b9:d3:64:5d:54:31:a9:b7:31: fc:a2:f9:fe:98:3a:fd:0b:36:09:f7:8a:8b:0e:b8:fa:e6:72: 6e:c9:a9:9a:93:95:a2:00:53:44:bd:db:51:5f:9f:6a:bd:62: 31:ec:ef:26:6b:f5:60:ed:0b:a1:4d:1c:b9:c7:b1:2e:c5:d2: 37:ca:42:79:dc:d8:90:54:45:35:90:4b:2a:23:8d:14:34:52: 73:de:8f:7b:b2:e0:69:d1:11:10:37:ed:9c:a7:14:fc:29:0e: 92:13:86:61:23:5c:77:d3:b6:32:12:22:31:76:4a:38:e7:45: a1:7a:d2:c7:5a:8e:b8:48:1b:12:8b:a2:9b:23:14:95:bc:4c: f2:01:d4:1f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAM0BMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODA3MDhaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKEMyQUUwRkU1RTBEOTk2Q0QxQTQ3NjJBNkMyNzc0RkYyOUMzQ0Yx NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY8xeTkXMlPf3jLI8E rtq7qTgYEFCwPbdr1x5mm1UAQFMnQ2lvH91N4h+IUaB5cQsfRcX3rKj6uZI0tve4 IJoznNu1m8kCUnC+HzqSJxy8C1AIdYmEHsA5JyUmkcNXU4Zkx0KukID/mtisUH9J d8INBeP3QEawvSCOuNn8f8+bVifkUNQSL1eFAa7ElaBs5sa5iuuJpQp/ddFmSMd6 BqaJqJxCOlzPdfq7Eqgt4MYsyyxrZwwcvL15eIHp8OtFZg3EUM4vTLtPTeZQBnr9 gM4krBHxkRWqkV9PBUH3wfVOcCOlG5czqXNbwSh9xLJQNjfw+yQhRmmXzOvYGN1l tH9VAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUwq4P5eDZls0aR2KmwndP8pw88Usw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NTEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI1MS93cTRQNWVEWmxzMGFSMkttd25kUDhwdzg4VXMubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9YDAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEASQy/jANBAIAAjAHAwUAJAFfoDANBgkqhkiG9w0BAQsFAAOCAQEA T1Id+Mzga9crYIyk2t/gQgqGGXQpt28FKIYaV91b7lt2Ahi0Zgge5/T9NytjShlp dLTJFcG0LEh1NlJJ2gqRPy6enKjGamnNLyhc8XnXLo6M3V9lljd734UkHTfCA5jR z6YIN+9nFULLrM84XmjjSXRkEI5zudNkXVQxqbcx/KL5/pg6/Qs2CfeKiw64+uZy bsmpmpOVogBTRL3bUV+far1iMezvJmv1YO0LoU0cucexLsXSN8pCedzYkFRFNZBL KiONFDRSc96Pe7LgadEREDftnKcU/CkOkhOGYSNcd9O2MhIiMXZKOOdFoXrSx1qO uEgbEouimyMUlbxM8gHUHw== -----END CERTIFICATE-----Generated at Fri Apr 4 02:17:47 2025 by rpki-client