$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer File: fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer (raw, json) Hash identifier: XPJ9VVHaioe05Xh4bbjUVDsAYIaqSVomR5bGM23ZGcI= Subject key identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CF2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Wed 09 Apr 2025 06:47:59 +0000 Certificate not after: Thu 09 Apr 2026 06:40:34 +0000 Subordinate resources: AS: 56002 IP: 103.12.232.0/22 IP: 2405:ad00::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 12:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53035 (0xcf2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Apr 9 06:47:59 2025 GMT Not After : Apr 9 06:40:34 2026 GMT Subject: CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:50:ec:fb:a6:53:c1:a4:a0:f3:f4:57:83: 93:ce:52:bf:3f:e4:a6:c4:3b:42:a6:24:f1:93:d0: 6d:6e:8f:31:9c:a7:1a:39:da:07:24:86:13:fa:df: 72:74:0f:9f:2f:4f:97:26:e7:39:ba:16:b5:2c:97: 03:47:b0:81:b2:0c:57:23:1f:f8:bd:ba:63:64:79: af:d5:93:a7:65:a9:51:c3:a9:3b:c3:6e:fc:7c:39: 85:b1:8a:a3:a3:31:b1:93:0c:1c:b9:6e:e6:ae:aa: a3:42:9d:db:7b:49:07:fc:e7:38:c0:ad:e9:13:f8: ad:74:69:bd:9f:ee:fa:77:fb:9a:a1:60:b1:0e:6c: eb:3a:be:ca:cc:25:ed:73:f8:9b:f8:81:de:1c:02: 94:97:ff:bc:8c:d6:eb:18:2f:d3:71:03:d8:fc:04: 18:46:3a:02:28:d4:f2:99:b3:97:b3:6d:b9:31:63: 71:a2:b4:51:8e:38:1f:b5:26:9d:7f:fc:6b:aa:cc: 29:98:0a:00:44:06:aa:2d:81:0d:f8:1e:c7:fd:13: 66:ac:51:38:33:7d:6f:4f:6b:d8:58:95:5d:3e:73: 0a:78:89:f9:15:d5:eb:d3:b2:69:fd:85:cd:da:4c: b5:5a:a1:8e:f6:38:9e:47:58:70:02:0f:ad:6d:7c: 78:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 56002 sbgp-ipAddrBlock: critical IPv4: 103.12.232.0/22 IPv6: 2405:ad00::/32 Signature Algorithm: sha256WithRSAEncryption 04:b9:1b:b2:b1:85:a6:53:50:4e:79:00:c5:d9:8c:0d:68:a2: 86:3f:24:1f:93:b6:58:5e:15:c8:ca:fb:f3:4a:76:a3:46:5f: cc:bf:4e:30:64:c8:d8:9b:59:67:19:f5:b3:eb:ca:fe:6b:11: 97:2b:94:be:df:5e:c3:c6:c5:d4:86:f7:3a:db:f4:d2:4e:7b: be:3f:79:4b:8d:df:06:13:7b:30:a1:cc:be:11:5f:b8:e9:4a: d6:2d:75:b3:8a:f7:86:fe:1a:07:6d:aa:48:12:cd:83:31:82: a2:41:79:1a:56:c6:06:f2:0c:eb:2f:ea:b4:09:bf:40:fa:62: b0:ba:c3:e7:5d:78:60:11:49:9b:67:99:d5:86:a2:67:ba:30: 02:a6:7e:ba:a4:4d:2a:87:b1:5d:46:ef:a0:3f:5d:1c:85:6d: 6e:95:04:1d:e5:64:78:e9:ae:63:43:3e:1f:77:bc:61:ab:f1: c1:58:ed:b2:d9:5d:82:0d:c3:4d:4f:e4:63:2e:74:4c:56:ec: 36:52:b8:14:0d:fd:e3:13:9e:a3:d5:da:3c:38:90:f4:93:62: b2:e7:f0:01:f2:c8:0e:f0:92:19:78:c2:47:05:47:1d:72:87: 32:c9:a3:43:ee:de:ec:73:be:4c:f4:7d:1a:b8:66:d3:ed:e0: 99:a8:97:0d -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIDAM8rMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDkwNjQ3NTlaFw0yNjA0MDkwNjQwMzRaMDMx MTAvBgNVBAMTKDdFNDBBRTkwMDEwMEUyQjk3QjMxQ0UwMDY5MDJGMzFFN0QxRDJB RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN1lDs+6ZTwaSg8/RX g5POUr8/5KbEO0KmJPGT0G1ujzGcpxo52gckhhP633J0D58vT5cm5zm6FrUslwNH sIGyDFcjH/i9umNkea/Vk6dlqVHDqTvDbvx8OYWxiqOjMbGTDBy5buauqqNCndt7 SQf85zjArekT+K10ab2f7vp3+5qhYLEObOs6vsrMJe1z+Jv4gd4cApSX/7yM1usY L9NxA9j8BBhGOgIo1PKZs5ezbbkxY3GitFGOOB+1Jp1//GuqzCmYCgBEBqotgQ34 Hsf9E2asUTgzfW9Pa9hYlV0+cwp4ifkV1evTsmn9hc3aTLVaoY72OJ5HWHACD61t fHhFAgMBAAGjggJ+MIICejAdBgNVHQ4EFgQUfkCukAEA4rl7Mc4AaQLzHn0dKvIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzQ5 Ny8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC80OTcvZmtDdWtBRUE0cmw3TWM0QWFRTHpIbjBkS3ZJLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA2sIwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAJnDOgwDQQCAAIwBwMFACQFrQAwDQYJKoZIhvcNAQELBQADggEBAAS5 G7KxhaZTUE55AMXZjA1oooY/JB+TtlheFcjK+/NKdqNGX8y/TjBkyNibWWcZ9bPr yv5rEZcrlL7fXsPGxdSG9zrb9NJOe74/eUuN3wYTezChzL4RX7jpStYtdbOK94b+ GgdtqkgSzYMxgqJBeRpWxgbyDOsv6rQJv0D6YrC6w+ddeGARSZtnmdWGome6MAKm frqkTSqHsV1G76A/XRyFbW6VBB3lZHjprmNDPh93vGGr8cFY7bLZXYINw01P5GMu dExW7DZSuBQN/eMTnqPV2jw4kPSTYrLn8AHyyA7wkhl4wkcFRx1yhzLJo0Pu3uxz vkz0fRq4ZtPt4Jmolw0= -----END CERTIFICATE-----Generated at Sat Apr 26 08:21:38 2025 by rpki-client