Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer
File: -3g5E2fIrZfRqcIaNTKFrV5ojRw.cer (raw, json)
Hash identifier: PTvsCJY7hkUAggJRhpk5nAbMWgaG3pVSb+YpkRjYn2k=
Subject key identifier: FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: AF1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 01 Feb 2024 01:22:27 +0000
Certificate not after: Fri 31 Jan 2025 01:13:46 +0000
Subordinate resources: AS: 55991
IP: 43.228.204.0/22
IP: 43.228.240.0/22
IP: 103.41.116.0/22
IP: 103.44.144.0/22
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 May 2024 05:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44827 (0xaf1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Feb 1 01:22:27 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d6:ff:5b:36:43:33:e0:b4:b8:c3:c0:6c:35:
14:53:01:f6:e0:b6:42:43:2f:fb:60:1a:51:2f:14:
90:ff:e6:e1:41:ac:99:bf:af:d5:fb:96:95:40:a5:
cd:19:d9:9a:07:ea:38:47:0d:c2:22:fc:b6:c9:25:
8a:6a:0b:f4:37:44:0f:6f:6a:d9:8d:b2:81:6a:e8:
50:ef:38:3d:55:2a:77:f1:53:fc:7c:0d:a8:c6:7d:
d5:39:52:6e:a3:d2:60:84:a6:2c:4f:00:30:fa:cb:
ac:1d:a7:3e:dd:09:7e:eb:36:24:7e:96:7a:ca:0f:
48:1b:b6:05:68:19:e3:2f:02:a3:50:ec:b4:9a:d3:
08:7f:8f:2d:e7:74:b0:77:56:72:ce:f4:4f:a7:fe:
4c:2b:f4:20:0d:38:c5:f4:7f:0c:26:72:9a:64:49:
57:10:3e:9e:66:47:1d:50:fa:b4:bd:63:0d:5a:ef:
50:6b:d1:aa:d1:68:30:33:68:82:af:99:13:38:d5:
5e:af:5f:df:f2:cf:db:a8:59:f8:6f:ca:ed:fa:ab:
20:12:49:0f:0d:29:8a:4f:eb:39:77:05:8e:a9:31:
46:d0:db:a1:ca:d1:a2:92:f6:39:9b:2b:6d:ca:b8:
33:d3:07:68:1a:99:1b:a0:53:05:29:6e:43:91:9e:
d3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55991
sbgp-ipAddrBlock: critical
IPv4:
43.228.204.0/22
43.228.240.0/22
103.41.116.0/22
103.44.144.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:2d:46:bc:13:43:3a:0d:c8:cd:64:0e:25:7c:bb:3a:c0:72:
6c:c2:33:a8:cb:51:27:74:2c:19:12:81:45:2f:cf:03:43:5d:
d5:c6:36:ce:5e:e2:f9:9e:9e:99:3f:b3:36:80:c5:93:18:3c:
63:c7:a2:98:8e:4f:f2:92:f8:c2:c5:d3:e9:35:96:a8:d1:6b:
7e:8b:a0:9b:85:78:69:e9:fa:3d:41:8a:0b:b6:95:7c:94:3c:
3e:b2:1f:7c:ae:d7:5d:d5:d5:6c:b1:ef:ff:b4:c9:a5:df:e1:
1d:b2:43:66:c9:33:13:7b:92:84:1d:96:ef:77:1d:71:22:85:
a6:48:6d:a6:aa:40:41:81:df:b9:79:91:e8:7c:13:50:ac:a1:
30:e9:fd:aa:78:f7:4e:94:c8:d6:89:c0:93:e7:02:b4:0f:36:
b5:61:cc:7a:ac:4e:2a:93:16:af:0c:60:a7:57:23:66:30:be:
58:92:c9:b0:68:de:70:cc:c6:f4:c1:0c:b4:ee:79:1c:ac:03:
86:62:e2:35:11:5e:d5:bc:05:71:48:54:c5:7a:93:c7:31:cf:
a0:29:fa:5c:3c:f5:69:27:61:a4:aa:fd:4c:8c:ae:29:dd:2a:
88:f3:4a:58:3a:3a:72:ef:fc:39:3c:45:7d:6c:78:bc:f7:27:
d5:7f:9c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:06:21 2024 by rpki-client on console-fra.rpki-client.org