$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/_APy-Wb2K_3GawQVYum6QAMtoJ4.cer File: _APy-Wb2K_3GawQVYum6QAMtoJ4.cer (raw, json) Hash identifier: RlxV3pYbxAI6/ZP17dZNJtfjjA0BjTAvSiIpm6CJ5J0= Subject key identifier: FC:03:F2:F9:66:F6:2B:FD:C6:6B:04:15:62:E9:BA:40:03:2D:A0:9E Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: CCD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3051/_APy-Wb2K_3GawQVYum6QAMtoJ4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3051/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 03 Apr 2025 08:06:19 +0000 Certificate not after: Fri 03 Apr 2026 08:00:09 +0000 Subordinate resources: AS: 63584 IP: 103.60.32.0/22 IP: 111.223.8.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52435 (0xccd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Apr 3 08:06:19 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=FC03F2F966F62BFDC66B041562E9BA40032DA09E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:3b:79:ee:db:29:74:82:6b:c4:d5:21:88: 38:c2:b3:93:b9:4e:56:5b:d4:1d:42:3f:f5:3a:e3: ae:3d:55:30:0b:2f:3f:94:8d:cd:a5:30:70:7a:13: 34:4a:db:a7:08:55:97:64:0b:c0:bd:3e:eb:02:f5: 38:fd:31:c4:1f:3d:dd:ce:23:01:8d:92:a0:53:6e: 87:49:de:d9:24:4e:64:ac:6a:85:b0:86:18:41:87: dc:7d:18:f8:76:3c:4a:02:ac:55:90:e9:5b:65:24: 7c:d5:dd:ed:fe:09:6e:19:d3:2b:bc:c1:ef:9f:97: a6:d9:c7:29:c8:e8:d8:0c:1a:e0:68:69:ee:ff:9b: 04:40:9a:70:82:69:3c:e4:03:34:70:2c:54:b8:d2: b6:16:b1:7e:04:7f:19:85:e8:74:fb:61:e4:66:bd: 6a:79:85:cf:9d:18:a8:0a:eb:f5:d9:b4:d0:75:b4: 1f:68:68:25:28:7c:62:5c:82:66:a7:3c:05:02:22: b6:02:88:e5:0b:78:25:ca:07:78:7c:93:7e:ce:15: 2f:9d:f0:5a:4a:6d:cf:6d:33:bd:28:6f:ba:46:49: ac:67:fc:f3:52:52:a6:d6:0b:da:18:21:43:11:3b: d5:d3:b3:a4:96:73:6a:8a:e0:28:20:d5:47:b2:01: ed:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:03:F2:F9:66:F6:2B:FD:C6:6B:04:15:62:E9:BA:40:03:2D:A0:9E X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3051/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3051/_APy-Wb2K_3GawQVYum6QAMtoJ4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63584 sbgp-ipAddrBlock: critical IPv4: 103.60.32.0/22 111.223.8.0/22 Signature Algorithm: sha256WithRSAEncryption b2:9d:d4:d4:77:8d:cc:ff:d8:77:4c:05:7c:1c:1d:9e:c1:26: 95:f9:68:2d:27:52:ad:b5:ca:e5:94:a5:93:7f:71:a1:28:d6: f5:ae:6f:9a:ed:06:af:3c:7a:bc:be:6e:64:14:33:60:8a:12: a5:ce:91:33:8e:0c:92:98:0e:81:77:ed:20:76:bd:8f:8a:cf: ff:aa:fd:e1:76:80:03:91:ad:7c:ac:c0:a9:9e:e4:c8:d3:63: b4:9c:08:38:38:f0:82:1d:b5:78:9c:10:6a:c6:17:87:35:13: f0:21:5a:e1:f5:57:4e:fc:ca:70:55:26:1a:89:fa:1e:2e:49: ec:fd:18:2e:fe:24:11:08:28:65:da:8d:4a:21:d8:ab:eb:19: db:ee:4b:a4:12:df:39:cd:fd:1f:34:32:76:a1:15:10:9d:5c: 67:4c:33:0a:db:53:0e:fb:1f:3b:99:65:04:d7:2d:00:77:b0: de:45:48:72:40:5b:85:60:c7:c5:0b:d2:18:1c:39:bc:6c:65: 5b:83:14:cb:10:c1:74:9e:4a:1c:b0:1d:89:c5:98:dc:5c:6f: cc:cb:3d:1b:42:b3:d5:ce:b6:61:1f:44:da:ec:85:be:91:b6: d5:89:0d:3e:77:ed:48:6e:da:eb:f4:dd:a0:57:b1:cb:6d:ba: 39:55:99:73 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAMzTMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODA2MTlaFw0yNjA0MDMwODAwMDlaMDMx MTAvBgNVBAMTKEZDMDNGMkY5NjZGNjJCRkRDNjZCMDQxNTYyRTlCQTQwMDMyREEw OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC89Tt57tspdIJrxNUh iDjCs5O5TlZb1B1CP/U64649VTALLz+Ujc2lMHB6EzRK26cIVZdkC8C9PusC9Tj9 McQfPd3OIwGNkqBTbodJ3tkkTmSsaoWwhhhBh9x9GPh2PEoCrFWQ6VtlJHzV3e3+ CW4Z0yu8we+fl6bZxynI6NgMGuBoae7/mwRAmnCCaTzkAzRwLFS40rYWsX4EfxmF 6HT7YeRmvWp5hc+dGKgK6/XZtNB1tB9oaCUofGJcgmanPAUCIrYCiOULeCXKB3h8 k37OFS+d8FpKbc9tM70ob7pGSaxn/PNSUqbWC9oYIUMRO9XTs6SWc2qK4Cgg1Uey Ae1jAgMBAAGjggJ3MIICczAdBgNVHQ4EFgQU/APy+Wb2K/3GawQVYum6QAMtoJ4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw NTEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzA1MS9fQVB5LVdiMktfM0dhd1FWWXVtNlFBTXRvSjQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwD4YDAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAmc8IAMEAm/fCDANBgkqhkiG9w0BAQsFAAOCAQEAsp3U1HeNzP/Y d0wFfBwdnsEmlfloLSdSrbXK5ZSlk39xoSjW9a5vmu0Grzx6vL5uZBQzYIoSpc6R M44MkpgOgXftIHa9j4rP/6r94XaAA5GtfKzAqZ7kyNNjtJwIODjwgh21eJwQasYX hzUT8CFa4fVXTvzKcFUmGon6Hi5J7P0YLv4kEQgoZdqNSiHYq+sZ2+5LpBLfOc39 HzQydqEVEJ1cZ0wzCttTDvsfO5llBNctAHew3kVIckBbhWDHxQvSGBw5vGxlW4MU yxDBdJ5KHLAdicWY3FxvzMs9G0Kz1c62YR9E2uyFvpG21YkNPnftSG7a6/TdoFex y226OVWZcw== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:31 2025 by rpki-client on console.sobornost.net