$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/xWg5B3F2O7YxSEuxvd-uSFlvXOI.cer File: xWg5B3F2O7YxSEuxvd-uSFlvXOI.cer (raw, json) Hash identifier: 8rSeLSbuJNixaXTDKU1jRO6fYMzM8couqnOZXZuIi9k= Subject key identifier: C5:68:39:07:71:76:3B:B6:31:48:4B:B1:BD:DF:AE:48:59:6F:5C:E2 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: BC15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 27 Sep 2024 02:54:04 +0000 Certificate not after: Sat 27 Sep 2025 02:40:14 +0000 Subordinate resources: AS: 151288 IP: 2401:a4e0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48149 (0xbc15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Sep 27 02:54:04 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=C568390771763BB631484BB1BDDFAE48596F5CE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c3:02:7a:ae:26:16:7d:80:23:fa:5e:7d:ff: 53:5b:cf:ea:69:ab:9c:38:10:b1:14:cc:79:8b:9a: f0:04:f0:3f:07:1c:3d:46:7b:ef:00:cf:b3:fa:29: 1d:9f:ff:f4:66:29:18:2d:b0:87:a3:11:8d:3a:e4: 58:16:2d:23:14:89:43:91:06:21:04:1b:ec:c6:fa: 18:6e:79:00:bb:48:8d:aa:f0:0c:1e:7b:22:a8:0a: 0a:6e:f0:3a:0c:87:4f:02:c0:b0:2e:a7:63:ff:fc: 6d:87:09:44:a1:44:b2:8a:3d:f8:c4:94:aa:e2:31: c4:40:d5:9b:c5:6d:a7:eb:e6:7c:3b:34:46:00:d0: be:e7:4c:83:f9:a7:f6:86:f1:8b:44:cf:b7:fc:37: 08:5b:ba:0e:60:69:b6:29:fa:95:42:df:00:b9:88: b3:a1:c5:82:cc:2d:bc:47:22:31:9b:4b:da:b4:12: 4b:81:a2:9d:89:51:9d:0a:ff:41:d9:16:d2:17:9e: 68:55:7a:2c:c9:1e:d9:ed:70:1b:e5:b9:c1:aa:67: 65:04:08:94:91:25:43:2e:2a:19:57:de:92:7d:0b: 4e:dc:0f:aa:0c:3e:9e:21:b5:9e:44:9f:bf:ae:49: 6a:c3:9d:ad:43:ce:b3:0d:fc:0a:05:1a:e9:77:60: e2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:68:39:07:71:76:3B:B6:31:48:4B:B1:BD:DF:AE:48:59:6F:5C:E2 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151288 sbgp-ipAddrBlock: critical IPv6: 2401:a4e0::/32 Signature Algorithm: sha256WithRSAEncryption 04:bf:d6:96:5d:18:c8:97:da:f9:2e:a0:d5:2e:e2:56:8d:b3: ad:57:ec:96:fb:3d:4d:1f:9c:e5:cc:28:11:b1:96:7b:6e:fe: 46:88:27:16:b2:02:dd:35:76:f7:4a:9a:b5:fe:05:4b:a0:3e: 35:18:8e:c0:02:ea:dd:52:27:07:53:9f:88:85:30:31:8e:3d: 62:5f:20:e5:57:7b:f7:cb:72:b1:25:d8:fc:a0:ee:d1:48:72: 97:2b:33:d3:cc:fb:4e:d2:84:63:05:1e:d1:43:87:9e:67:e0: d9:b6:b4:38:8c:3f:9d:24:94:d9:4f:77:10:f9:6c:87:df:33: 4d:ab:40:f7:23:5e:e0:74:d8:5e:97:c4:fd:c2:8f:aa:25:e1: cb:50:f5:d0:c8:cb:93:85:d1:e8:31:f2:5e:93:7d:a0:97:b8: 74:4f:77:b6:0e:13:bc:86:a7:1c:5d:8b:9a:e6:54:f0:bb:59: b6:15:31:21:c6:3c:96:7e:23:83:0e:7f:8b:56:a9:d4:95:c4: 17:e0:1e:5c:ab:3a:3c:c5:00:04:a9:46:bf:f7:83:1e:4a:47: 1b:ed:37:ce:a6:52:bb:94:b3:da:f0:99:26:ef:cd:aa:19:9d: ae:b9:4b:6d:c9:84:c1:29:21:df:4b:5a:b6:54:54:d0:eb:99: 62:94:7c:70 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDALwVMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjU0MDRaFw0yNTA5MjcwMjQwMTRaMDMx MTAvBgNVBAMTKEM1NjgzOTA3NzE3NjNCQjYzMTQ4NEJCMUJEREZBRTQ4NTk2RjVD RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0wwJ6riYWfYAj+l59 /1Nbz+ppq5w4ELEUzHmLmvAE8D8HHD1Ge+8Az7P6KR2f//RmKRgtsIejEY065FgW LSMUiUORBiEEG+zG+hhueQC7SI2q8AweeyKoCgpu8DoMh08CwLAup2P//G2HCUSh RLKKPfjElKriMcRA1ZvFbafr5nw7NEYA0L7nTIP5p/aG8YtEz7f8Nwhbug5gabYp +pVC3wC5iLOhxYLMLbxHIjGbS9q0EkuBop2JUZ0K/0HZFtIXnmhVeizJHtntcBvl ucGqZ2UECJSRJUMuKhlX3pJ9C07cD6oMPp4htZ5En7+uSWrDna1DzrMN/AoFGul3 YOKrAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUxWg5B3F2O7YxSEuxvd+uSFlvXOIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy OTAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI5MC94V2c1QjNGMk83WXhTRXV4dmQtdVNGbHZYT0kubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO+DAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBpOAwDQYJKoZIhvcNAQELBQADggEBAAS/1pZdGMiX2vkuoNUu 4laNs61X7Jb7PU0fnOXMKBGxlntu/kaIJxayAt01dvdKmrX+BUugPjUYjsAC6t1S JwdTn4iFMDGOPWJfIOVXe/fLcrEl2Pyg7tFIcpcrM9PM+07ShGMFHtFDh55n4Nm2 tDiMP50klNlPdxD5bIffM02rQPcjXuB02F6XxP3Cj6ol4ctQ9dDIy5OF0egx8l6T faCXuHRPd7YOE7yGpxxdi5rmVPC7WbYVMSHGPJZ+I4MOf4tWqdSVxBfgHlyrOjzF AASpRr/3gx5KRxvtN86mUruUs9rwmSbvzaoZna65S23JhMEpId9LWrZUVNDrmWKU fHA= -----END CERTIFICATE-----Generated at Fri Nov 22 12:14:41 2024 by rpki-client on console-ams.rpki-client.org