Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/-7JZNquvAsZtbrsyhSU9KZuXQFk.cer
File: -7JZNquvAsZtbrsyhSU9KZuXQFk.cer (raw, json)
Hash identifier: pgkQXP0s0O6vYBlL5z/qHhR4qQQ7uYnsyQq8R817nWY=
Subject key identifier: FB:B2:59:36:AB:AF:02:C6:6D:6E:BB:32:85:25:3D:29:9B:97:40:59
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CAF9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/-7JZNquvAsZtbrsyhSU9KZuXQFk.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 03:11:05 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 137774
IP: 103.123.208.0/22
IP: 2403:a9c0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51961 (0xcaf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 03:11:05 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=FBB25936ABAF02C66D6EBB3285253D299B974059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cd:46:ca:1d:16:ce:f3:dc:d4:51:24:29:4b:
54:36:01:ac:e9:65:bc:e4:d2:60:a6:8c:be:1a:84:
d1:0a:f6:25:6d:e9:2e:e6:41:b1:44:d2:a9:85:2e:
bf:ac:42:83:ff:fb:52:75:3c:68:65:d9:bf:9e:2c:
d0:a4:c7:2c:0d:a5:12:bd:a4:0b:34:a7:47:33:bf:
21:32:47:d3:ff:4a:0f:c6:86:79:f5:76:4a:74:d1:
0b:9b:a1:4b:ae:a5:b5:63:48:f8:b9:49:a1:0d:ee:
6a:02:2c:91:99:0d:cb:ab:9f:37:ea:c8:d7:e0:f8:
70:61:61:46:8b:b7:70:71:51:14:8c:09:26:55:bf:
3e:07:3c:ec:7b:90:ad:6d:8d:fb:e6:8b:af:d2:e1:
1e:60:3a:db:23:b8:c4:f6:b8:98:51:f0:37:2a:ae:
42:4d:d8:9a:56:4f:df:f4:45:6a:d4:a1:6e:c7:4a:
e5:8e:c6:dc:99:7d:93:89:14:55:96:61:af:15:0e:
17:ae:f7:1c:5f:8d:a2:fd:5d:f1:f8:4a:67:5a:c7:
2a:99:27:f9:70:be:51:5d:30:01:ab:27:49:bb:7d:
1e:97:aa:f3:6f:65:0e:77:c0:c2:bd:8d:54:8f:8c:
5c:35:fd:a9:21:30:6a:ed:51:3e:b1:5a:d4:23:eb:
11:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B2:59:36:AB:AF:02:C6:6D:6E:BB:32:85:25:3D:29:9B:97:40:59
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2810/-7JZNquvAsZtbrsyhSU9KZuXQFk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137774
sbgp-ipAddrBlock: critical
IPv4:
103.123.208.0/22
IPv6:
2403:a9c0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:7c:6f:9f:a1:ef:ec:e0:72:3f:b3:3f:73:49:28:78:0e:57:
4b:1a:7b:76:38:be:20:c3:d4:7a:48:fd:39:6d:0e:ef:64:5d:
ed:a2:01:20:2d:55:b3:7b:60:3f:81:17:b1:49:4e:16:61:e5:
48:45:11:8e:28:b7:f2:a9:46:11:90:24:06:9f:57:02:c0:22:
d2:3e:dc:6d:c5:8a:85:ae:cd:cc:26:bf:8d:b5:a2:f3:ae:6f:
d7:44:6b:5f:7b:ad:c3:c7:b5:56:2f:4d:1e:47:ac:d3:cc:d7:
d1:93:45:b1:06:cb:75:46:8d:03:bb:64:61:b4:1d:2a:3d:a3:
29:cf:71:de:85:2e:5f:10:ad:75:4a:fd:73:35:f7:37:47:88:
24:22:66:77:63:db:38:cb:02:48:60:d1:22:2a:0f:ab:4e:ce:
32:d6:c6:df:06:18:02:c1:bd:17:61:0b:c5:0d:22:98:1e:ca:
da:83:90:18:5a:88:c0:80:a6:9d:ce:e8:72:82:d7:a9:bc:2c:
8c:ba:bf:a4:5f:2b:97:36:d1:55:55:e4:4c:67:ea:1d:b5:37:
eb:3b:ad:8a:63:71:2f:c7:8f:a2:d7:71:3a:2d:f0:a0:2a:7a:
51:63:b6:9e:cc:27:d5:b9:ef:ad:ff:bb:aa:96:b1:c2:3d:72:
ec:e0:a1:44
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgIDAMr5MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTAzMjEwMzExMDVaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKEZCQjI1OTM2QUJBRjAyQzY2RDZFQkIzMjg1MjUzRDI5OUI5NzQw
NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFzUbKHRbO89zUUSQp
S1Q2AazpZbzk0mCmjL4ahNEK9iVt6S7mQbFE0qmFLr+sQoP/+1J1PGhl2b+eLNCk
xywNpRK9pAs0p0czvyEyR9P/Sg/Ghnn1dkp00QuboUuupbVjSPi5SaEN7moCLJGZ
DcurnzfqyNfg+HBhYUaLt3BxURSMCSZVvz4HPOx7kK1tjfvmi6/S4R5gOtsjuMT2
uJhR8DcqrkJN2JpWT9/0RWrUoW7HSuWOxtyZfZOJFFWWYa8VDheu9xxfjaL9XfH4
SmdaxyqZJ/lwvlFdMAGrJ0m7fR6XqvNvZQ53wMK9jVSPjFw1/akhMGrtUT6xWtQj
6xEFAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQU+7JZNquvAsZtbrsyhSU9KZuXQFkw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4
MTAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMjgxMC8tN0paTnF1dkFzWnRicnN5aFNVOUtadVhRRmsubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIaLjAuBggrBgEFBQcBBwEB/wQfMB0w
DAQCAAEwBgMEAmd70DANBAIAAjAHAwUAJAOpwDANBgkqhkiG9w0BAQsFAAOCAQEA
enxvn6Hv7OByP7M/c0koeA5XSxp7dji+IMPUekj9OW0O72Rd7aIBIC1Vs3tgP4EX
sUlOFmHlSEURjii38qlGEZAkBp9XAsAi0j7cbcWKha7NzCa/jbWi865v10RrX3ut
w8e1Vi9NHkes08zX0ZNFsQbLdUaNA7tkYbQdKj2jKc9x3oUuXxCtdUr9czX3N0eI
JCJmd2PbOMsCSGDRIioPq07OMtbG3wYYAsG9F2ELxQ0imB7K2oOQGFqIwICmnc7o
coLXqbwsjLq/pF8rlzbRVVXkTGfqHbU36zutimNxL8ePotdxOi3woCp6UWO2nswn
1bnvrf+7qpaxwj1y7OChRA==
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:22:03 2025 by rpki-client