$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/YaDh5D-cWYdqpCsfjBrhLCHMbqA.cer File: YaDh5D-cWYdqpCsfjBrhLCHMbqA.cer (raw, json) Hash identifier: /cZ82xpol0OTZJ7N/yCGkZGj1+MvN8ziuABPKjEewaw= Subject key identifier: 61:A0:E1:E4:3F:9C:59:87:6A:A4:2B:1F:8C:1A:E1:2C:21:CC:6E:A0 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CF8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3142/YaDh5D-cWYdqpCsfjBrhLCHMbqA.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3142/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Mon 14 Apr 2025 09:08:31 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: IP: 103.186.4.0/23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53130 (0xcf8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Apr 14 09:08:31 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=61A0E1E43F9C59876AA42B1F8C1AE12C21CC6EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:12:9a:62:e0:94:96:2c:13:4e:09:79:86:54: 8a:e8:61:41:19:00:db:93:25:a1:b4:45:ad:12:c9: 52:18:77:df:9d:d8:3b:b7:06:27:a3:12:0b:52:5b: 8f:ee:38:0d:24:13:72:f2:0e:18:91:04:e0:f2:17: aa:3a:40:ae:2f:49:24:55:0e:e0:f0:34:d7:f4:29: fe:14:a6:da:33:31:9e:f3:a7:52:d5:14:37:d8:d9: 4d:43:61:65:6d:5b:c6:e0:9a:d8:7b:4a:38:b0:cb: 60:a7:17:19:b1:b7:d7:d3:06:48:5d:51:2b:b6:a3: 6f:e5:82:ad:ee:4d:ff:d0:e8:70:44:79:72:de:ad: 92:d3:bd:31:d0:96:bd:67:3e:d5:dd:0e:2b:73:7f: a4:20:9f:bb:f0:65:6c:45:51:5b:76:32:f7:55:ef: 78:9c:3d:d9:0e:72:77:e0:5c:57:24:04:e3:c3:02: b8:a9:82:f5:73:ae:d3:f0:18:a8:5e:33:d3:e2:ac: b7:71:66:47:a3:ed:48:fd:ba:1c:0e:e9:f9:9d:f9: 51:6e:84:11:e1:8c:fd:6c:d3:a8:4d:29:44:a5:1b: 12:5d:eb:d6:db:6b:b7:45:a2:cc:ea:9f:7c:78:3d: 98:ad:33:88:9b:fc:6a:13:f4:59:99:c0:f8:e7:22: 62:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A0:E1:E4:3F:9C:59:87:6A:A4:2B:1F:8C:1A:E1:2C:21:CC:6E:A0 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3142/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3142/YaDh5D-cWYdqpCsfjBrhLCHMbqA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.186.4.0/23 Signature Algorithm: sha256WithRSAEncryption 02:d3:26:24:c6:b7:5c:35:c2:c0:44:96:6f:3f:e0:11:be:99: e1:78:87:5d:7d:d7:80:11:60:1f:e7:d1:1d:5c:9d:d7:ba:23: dc:df:21:3a:7a:f6:52:19:5d:9a:fc:cc:59:26:64:7d:bc:aa: b1:d9:62:8c:a8:47:dd:d6:67:9c:17:b8:00:c1:64:88:24:a6: 0b:0e:eb:89:8a:f2:23:8f:02:36:f2:1a:22:80:a1:9b:86:95: 58:c0:41:4d:3c:f7:06:b6:38:aa:4d:b1:bc:6f:8f:85:b3:8b: 63:4d:bd:68:c5:92:5e:52:44:24:3e:e8:3b:b5:7f:5b:b5:a6: e4:0d:25:88:fd:09:32:41:b8:8f:78:bc:b2:8e:4e:fd:1f:77: f2:23:87:f9:5d:50:17:3a:6b:dd:04:e6:fc:e1:36:71:32:2b: b9:61:26:fb:8a:86:5c:7e:a4:95:55:f0:99:55:d4:ea:a4:bd: 40:c1:52:3e:99:e4:e5:bf:0a:2b:29:72:85:fd:9f:97:09:a5: 25:d9:c3:c0:43:0b:da:e1:80:c5:1c:cf:4c:be:8b:ed:d0:b4: 2c:e6:f7:55:1c:c1:b7:21:b3:39:b5:2c:9b:8d:37:5f:68:2c: eb:28:79:2b:b2:e1:75:ed:70:cc:fd:4c:72:2d:1d:7b:23:71: 14:56:30:36 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIDAM+KMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MTQwOTA4MzFaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKDYxQTBFMUU0M0Y5QzU5ODc2QUE0MkIxRjhDMUFFMTJDMjFDQzZF QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZEppi4JSWLBNOCXmG VIroYUEZANuTJaG0Ra0SyVIYd9+d2Du3BiejEgtSW4/uOA0kE3LyDhiRBODyF6o6 QK4vSSRVDuDwNNf0Kf4UptozMZ7zp1LVFDfY2U1DYWVtW8bgmth7Sjiwy2CnFxmx t9fTBkhdUSu2o2/lgq3uTf/Q6HBEeXLerZLTvTHQlr1nPtXdDitzf6Qgn7vwZWxF UVt2MvdV73icPdkOcnfgXFckBOPDAripgvVzrtPwGKheM9PirLdxZkej7Uj9uhwO 6fmd+VFuhBHhjP1s06hNKUSlGxJd69bba7dFoszqn3x4PZitM4ib/GoT9FmZwPjn ImI1AgMBAAGjggJVMIICUTAdBgNVHQ4EFgQUYaDh5D+cWYdqpCsfjBrhLCHMbqAw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMx NDIvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzE0Mi9ZYURoNUQtY1dZZHFwQ3NmakJyaExDSE1icUEubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7oEMA0GCSqGSIb3DQEBCwUA A4IBAQAC0yYkxrdcNcLARJZvP+ARvpnheIddfdeAEWAf59EdXJ3XuiPc3yE6evZS GV2a/MxZJmR9vKqx2WKMqEfd1mecF7gAwWSIJKYLDuuJivIjjwI28hoigKGbhpVY wEFNPPcGtjiqTbG8b4+Fs4tjTb1oxZJeUkQkPug7tX9btabkDSWI/QkyQbiPeLyy jk79H3fyI4f5XVAXOmvdBOb84TZxMiu5YSb7ioZcfqSVVfCZVdTqpL1AwVI+meTl vworKXKF/Z+XCaUl2cPAQwva4YDFHM9Mvovt0LQs5vdVHMG3IbM5tSybjTdfaCzr KHkrsuF17XDM/UxyLR17I3EUVjA2 -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:31 2025 by rpki-client on console.sobornost.net