$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/OpXd7iyMGeRxgIou20cqqm_g9Jg.cer File: OpXd7iyMGeRxgIou20cqqm_g9Jg.cer (raw, json) Hash identifier: 8vJgtvBN5u89EKKODqvd1AgACiokKm5pG30TNdY8jNE= Subject key identifier: 3A:95:DD:EE:2C:8C:19:E4:71:80:8A:2E:DB:47:2A:AA:6F:E0:F4:98 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: D7EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/OpXd7iyMGeRxgIou20cqqm_g9Jg.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Sun 03 Aug 2025 09:11:35 +0000 Certificate not after: Mon 03 Aug 2026 08:44:40 +0000 Subordinate resources: AS: 151219 IP: 2401:aa20::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 07:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55278 (0xd7ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Aug 3 09:11:35 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=3A95DDEE2C8C19E471808A2EDB472AAA6FE0F498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:49:0c:1a:8f:92:44:66:a3:cc:e1:bc:ca: 85:6f:60:c5:c8:cc:6c:ee:39:be:c1:af:3f:88:5c: 75:1f:e5:52:e9:4d:8c:d5:ef:ad:08:a6:e6:86:39: 51:a2:eb:c1:8e:54:12:9c:53:cf:f9:b5:f7:7e:25: a6:e1:78:21:41:b3:9b:b5:77:ae:d2:8c:82:aa:ce: 01:11:ec:d0:a3:3c:38:7d:04:7c:b9:61:3d:c8:82: 1e:fb:2a:3c:ea:89:fb:2b:69:49:de:bc:88:1c:17: d7:57:b1:19:da:d5:52:b5:1c:73:91:69:92:84:65: 4d:e5:1d:67:5f:ba:6e:52:3c:bb:e4:1f:13:8d:c2: 62:be:21:47:6e:5f:05:35:f3:fa:0d:35:36:d1:11: d1:23:92:3c:99:8b:81:d1:7a:4e:42:ba:54:97:c8: 36:76:2b:8c:17:a3:fa:0b:1f:29:f6:3e:f8:34:ea: ab:f0:b8:51:df:4e:b2:23:08:13:c6:61:4e:8d:de: d3:15:00:31:1d:b9:30:6f:c0:d8:af:56:87:e3:1f: 6b:89:48:8a:32:51:4a:49:bc:7f:1a:48:09:6e:17: 5f:9d:9e:e5:78:b8:8d:d9:2d:bd:ab:79:61:75:10: ef:8f:51:35:30:8b:4a:3c:0a:a1:20:c2:f3:fa:b6: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:95:DD:EE:2C:8C:19:E4:71:80:8A:2E:DB:47:2A:AA:6F:E0:F4:98 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/OpXd7iyMGeRxgIou20cqqm_g9Jg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151219 sbgp-ipAddrBlock: critical IPv6: 2401:aa20::/32 Signature Algorithm: sha256WithRSAEncryption 1e:1d:ea:68:fe:28:69:82:97:6e:80:cc:08:71:6b:19:90:c4: dc:50:13:0d:55:01:6a:84:72:62:80:ee:fc:ed:db:b7:c3:43: 77:3c:56:8d:cd:17:5b:bc:c6:7a:d6:a7:69:fe:8a:b4:58:a8: 49:60:84:04:c3:12:c0:d5:6e:63:25:c9:ec:91:7f:3d:0b:6b: f4:05:c7:fb:5b:29:c5:a1:44:89:53:7a:74:8d:eb:a3:eb:ab: fe:b7:1d:22:51:17:08:f9:8b:b6:ef:0d:08:ab:cb:2c:77:0b: 2b:d9:cc:c0:f3:6e:ab:38:5d:c6:57:89:28:4b:5a:32:87:41: 39:6d:b5:be:e0:69:9f:a7:ea:bd:95:73:7c:e9:8a:8b:49:0f: 4d:dd:cd:d6:72:d2:96:c2:0f:28:6b:18:8d:59:cb:92:b2:f7: 8b:73:e6:ed:7b:d0:b0:2c:d0:47:90:81:d8:ed:30:b3:7d:bd: c4:96:d5:32:4d:e0:ab:a2:8b:cb:b8:b9:5e:20:01:66:f1:e6: 29:63:7a:45:ae:07:16:14:e8:04:cb:a1:10:35:91:38:be:e8: 74:37:8b:53:15:cb:4e:4c:50:46:6c:fb:81:1e:b4:88:5a:f7: 69:14:6e:80:69:be:a0:8b:47:a4:72:00:cc:02:b1:30:e3:99: f6:d6:a3:aa -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDANfuMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA4MDMwOTExMzVaFw0yNjA4MDMwODQ0NDBaMDMx MTAvBgNVBAMTKDNBOTVEREVFMkM4QzE5RTQ3MTgwOEEyRURCNDcyQUFBNkZFMEY0 OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC56EkMGo+SRGajzOG8 yoVvYMXIzGzuOb7Brz+IXHUf5VLpTYzV760IpuaGOVGi68GOVBKcU8/5tfd+Jabh eCFBs5u1d67SjIKqzgER7NCjPDh9BHy5YT3Igh77KjzqifsraUnevIgcF9dXsRna 1VK1HHORaZKEZU3lHWdfum5SPLvkHxONwmK+IUduXwU18/oNNTbREdEjkjyZi4HR ek5CulSXyDZ2K4wXo/oLHyn2Pvg06qvwuFHfTrIjCBPGYU6N3tMVADEduTBvwNiv VofjH2uJSIoyUUpJvH8aSAluF1+dnuV4uI3ZLb2reWF1EO+PUTUwi0o8CqEgwvP6 tswJAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUOpXd7iyMGeRxgIou20cqqm/g9Jgw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy OTcvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI5Ny9PcFhkN2l5TUdlUnhnSW91MjBjcXFtX2c5SmcubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJOszAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBqiAwDQYJKoZIhvcNAQELBQADggEBAB4d6mj+KGmCl26AzAhx axmQxNxQEw1VAWqEcmKA7vzt27fDQ3c8Vo3NF1u8xnrWp2n+irRYqElghATDEsDV bmMlyeyRfz0La/QFx/tbKcWhRIlTenSN66Prq/63HSJRFwj5i7bvDQiryyx3CyvZ zMDzbqs4XcZXiShLWjKHQTlttb7gaZ+n6r2Vc3zpiotJD03dzdZy0pbCDyhrGI1Z y5Ky94tz5u170LAs0EeQgdjtMLN9vcSW1TJN4Kuii8u4uV4gAWbx5iljekWuBxYU 6ATLoRA1kTi+6HQ3i1MVy05MUEZs+4EetIha92kUboBpvqCLR6RyAMwCsTDjmfbW o6o= -----END CERTIFICATE-----Generated at Wed Aug 13 04:30:08 2025 by rpki-client