$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/zfv2KGSEFu4dmdMuX5yWhae-K7w.cer File: zfv2KGSEFu4dmdMuX5yWhae-K7w.cer (raw, json) Hash identifier: 0medaZvyUrHBJbvxaNL2QUqECm6aL/kMWqFke2QyWN0= Subject key identifier: CD:FB:F6:28:64:84:16:EE:1D:99:D3:2E:5F:9C:96:85:A7:BE:2B:BC Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: AF65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/zfv2KGSEFu4dmdMuX5yWhae-K7w.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 01 Feb 2024 01:23:56 +0000 Certificate not after: Fri 31 Jan 2025 01:13:46 +0000 Subordinate resources: IP: 103.114.240.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 05:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44901 (0xaf65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 1 01:23:56 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=CDFBF628648416EE1D99D32E5F9C9685A7BE2BBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b0:c7:b8:87:f0:c6:0a:c1:de:07:cc:6f:8e: 4f:8d:b3:58:d2:28:37:99:0d:06:ec:d4:f7:46:23: b6:f8:4f:20:ca:5d:c6:1f:f7:7f:76:29:65:4d:23: fd:6e:7d:14:4e:c3:ac:ee:35:39:8d:ee:6f:d7:b4: 2a:9c:0b:9d:f5:95:12:27:a1:c5:95:2d:13:9b:13: 5c:ea:5c:8f:62:ab:eb:ea:a8:ad:11:e4:06:47:8c: 59:90:3a:b0:e2:99:3e:65:eb:85:24:8e:cd:f7:f5: 10:ae:4e:d3:fb:ea:36:c6:d4:87:0f:97:7b:89:9a: 79:40:f7:b2:95:ec:d2:f9:af:88:6c:f4:00:a3:25: c9:05:56:89:7d:37:06:b2:aa:ba:52:3a:f1:42:70: a4:ab:4d:0f:4c:99:29:38:6d:b3:fd:3d:c0:53:6d: f8:1a:3f:98:d0:04:3e:ba:79:77:80:2f:00:57:90: 52:5f:15:19:23:66:97:e1:87:ca:56:d7:20:40:0e: 50:78:9c:cf:db:e2:9f:4a:d7:c2:f9:8e:39:da:3c: 55:97:01:d8:85:b5:00:4c:c6:2e:01:8e:e8:17:11: b9:31:1d:45:38:16:fc:b7:3a:5d:57:45:d7:b3:2c: 1b:da:a4:68:8f:8a:c8:f5:9a:c4:97:11:04:06:27: fd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FB:F6:28:64:84:16:EE:1D:99:D3:2E:5F:9C:96:85:A7:BE:2B:BC X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/zfv2KGSEFu4dmdMuX5yWhae-K7w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.114.240.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:16:00:d6:78:46:06:f6:60:be:99:fe:cc:ae:0c:fb:ce:10: 55:0e:3d:74:51:d8:6b:df:40:c8:07:67:03:c2:29:53:e1:c2: 60:1a:31:d4:bf:8e:8a:1c:00:49:01:92:7c:46:4c:83:4d:8f: c2:8e:78:b9:b7:3a:14:93:ef:5d:76:ab:51:89:60:be:30:d9: 13:ff:ad:0d:c9:59:05:ae:60:1b:71:5e:48:79:8e:7c:17:d5: 69:83:f3:87:89:46:c2:3f:49:c2:66:0d:b8:cd:51:ad:da:a3: 8e:e0:63:fa:c4:32:9e:43:56:6c:36:e4:0f:b9:40:f3:86:4b: 7a:d0:b4:6a:bf:a4:a5:97:c5:9b:dd:9e:5b:41:54:14:24:a0: 8d:8e:b7:43:19:72:7b:53:75:96:10:65:ae:c5:4c:1f:e2:29: ec:fc:a1:a7:be:19:1e:9c:65:d4:cd:00:3a:32:37:34:8c:d3: 58:8d:09:74:60:51:20:01:8b:21:94:92:20:7c:a1:fc:c7:2f: e6:5f:1d:d5:95:71:f4:0a:4c:2c:ea:84:fe:ae:58:cc:66:5b: 49:6a:c3:55:7a:ec:a1:40:e6:35:f7:e1:4d:19:86:7f:13:d1: c8:9d:4b:00:07:23:47:11:67:14:4c:ef:d7:bc:ad:22:25:9c: cb:d0:17:f5 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIDAK9lMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTIzNTZaFw0yNTAxMzEwMTEzNDZaMDMx MTAvBgNVBAMTKENERkJGNjI4NjQ4NDE2RUUxRDk5RDMyRTVGOUM5Njg1QTdCRTJC QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCusMe4h/DGCsHeB8xv jk+Ns1jSKDeZDQbs1PdGI7b4TyDKXcYf9392KWVNI/1ufRROw6zuNTmN7m/XtCqc C531lRInocWVLRObE1zqXI9iq+vqqK0R5AZHjFmQOrDimT5l64Ukjs339RCuTtP7 6jbG1IcPl3uJmnlA97KV7NL5r4hs9ACjJckFVol9NwayqrpSOvFCcKSrTQ9MmSk4 bbP9PcBTbfgaP5jQBD66eXeALwBXkFJfFRkjZpfhh8pW1yBADlB4nM/b4p9K18L5 jjnaPFWXAdiFtQBMxi4BjugXEbkxHUU4Fvy3Ol1XRdezLBvapGiPisj1msSXEQQG J/1bAgMBAAGjggJVMIICUTAdBgNVHQ4EFgQUzfv2KGSEFu4dmdMuX5yWhae+K7ww HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3 MjMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjcyMy96ZnYyS0dTRUZ1NGRtZE11WDV5V2hhZS1LN3cubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3LwMA0GCSqGSIb3DQEBCwUA A4IBAQCNFgDWeEYG9mC+mf7Mrgz7zhBVDj10Udhr30DIB2cDwilT4cJgGjHUv46K HABJAZJ8RkyDTY/Cjni5tzoUk+9ddqtRiWC+MNkT/60NyVkFrmAbcV5IeY58F9Vp g/OHiUbCP0nCZg24zVGt2qOO4GP6xDKeQ1ZsNuQPuUDzhkt60LRqv6Sll8Wb3Z5b QVQUJKCNjrdDGXJ7U3WWEGWuxUwf4ins/KGnvhkenGXUzQA6Mjc0jNNYjQl0YFEg AYshlJIgfKH8xy/mXx3VlXH0Ckws6oT+rljMZltJasNVeuyhQOY19+FNGYZ/E9HI nUsAByNHEWcUTO/XvK0iJZzL0Bf1 -----END CERTIFICATE-----Generated at Sun May 19 00:38:46 2024 by rpki-client on console-ams.rpki-client.org