Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer
File: -3g5E2fIrZfRqcIaNTKFrV5ojRw.cer (raw, json)
Hash identifier: tBWzeQy4wMhrwvep9Ygn02BiX+j4+5ErcZHKrynb1yU=
Subject key identifier: FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: C941
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 02:58:18 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 55991
IP: 103.44.144.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51521 (0xc941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 02:58:18 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d6:ff:5b:36:43:33:e0:b4:b8:c3:c0:6c:35:
14:53:01:f6:e0:b6:42:43:2f:fb:60:1a:51:2f:14:
90:ff:e6:e1:41:ac:99:bf:af:d5:fb:96:95:40:a5:
cd:19:d9:9a:07:ea:38:47:0d:c2:22:fc:b6:c9:25:
8a:6a:0b:f4:37:44:0f:6f:6a:d9:8d:b2:81:6a:e8:
50:ef:38:3d:55:2a:77:f1:53:fc:7c:0d:a8:c6:7d:
d5:39:52:6e:a3:d2:60:84:a6:2c:4f:00:30:fa:cb:
ac:1d:a7:3e:dd:09:7e:eb:36:24:7e:96:7a:ca:0f:
48:1b:b6:05:68:19:e3:2f:02:a3:50:ec:b4:9a:d3:
08:7f:8f:2d:e7:74:b0:77:56:72:ce:f4:4f:a7:fe:
4c:2b:f4:20:0d:38:c5:f4:7f:0c:26:72:9a:64:49:
57:10:3e:9e:66:47:1d:50:fa:b4:bd:63:0d:5a:ef:
50:6b:d1:aa:d1:68:30:33:68:82:af:99:13:38:d5:
5e:af:5f:df:f2:cf:db:a8:59:f8:6f:ca:ed:fa:ab:
20:12:49:0f:0d:29:8a:4f:eb:39:77:05:8e:a9:31:
46:d0:db:a1:ca:d1:a2:92:f6:39:9b:2b:6d:ca:b8:
33:d3:07:68:1a:99:1b:a0:53:05:29:6e:43:91:9e:
d3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55991
sbgp-ipAddrBlock: critical
IPv4:
103.44.144.0/22
Signature Algorithm: sha256WithRSAEncryption
46:4b:4b:05:7f:ae:c4:38:34:93:61:55:3e:1e:b6:53:d5:43:
85:a9:49:04:2d:af:4c:9d:12:31:a0:4e:b4:99:aa:eb:98:46:
8f:fb:ef:f0:41:7d:3a:3e:c7:40:d9:75:22:99:fd:ac:91:1e:
b6:71:5d:07:e7:9c:93:08:b0:75:f4:e9:5b:ea:5c:05:3e:07:
34:63:f5:50:75:d5:d8:fe:18:c2:fc:ca:93:e5:ec:ea:0e:a3:
e3:be:7b:a3:95:1a:84:cb:ed:9e:53:98:60:3f:ad:6d:5a:2a:
6c:a0:9e:f2:d5:3a:de:8c:2d:54:7f:99:23:b2:bd:ea:fa:b3:
3e:6c:bc:c9:b1:79:ae:4e:f7:23:29:d9:34:e6:bd:4f:7e:38:
c0:6f:4d:b2:c1:5b:ba:c7:2c:b9:89:39:ad:fc:b5:ff:b4:53:
66:83:7f:f9:70:f7:88:83:4e:36:09:84:4c:0e:17:09:a2:74:
bb:7f:09:31:70:4e:23:4e:ae:c3:92:51:10:83:f1:bb:e6:4d:
92:0b:c9:49:3a:71:ba:e1:15:dc:90:7c:2d:a7:b0:5b:21:b9:
36:60:69:57:6e:89:09:ac:5d:4f:7f:39:22:f6:89:f0:c5:91:
1a:5c:8d:de:7d:95:d7:ca:bd:1a:3a:d4:6e:05:4f:3d:c5:b4:
3e:2b:1f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:18:49 2025 by rpki-client