Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer
File: 0qtsm24WUzTAMtBR1fx9FUfk41M.cer (raw, json)
Hash identifier: GEQFaMDUEW+IM/kHrzJBMa+v1mo4ySGatMzmpLJw5oc=
Subject key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: EBC0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Tue 03 Mar 2026 19:58:56 +0000
Certificate not after: Sat 09 Jan 2027 08:23:18 +0000
Subordinate resources: AS: 146845
IP: 103.169.50.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60352 (0xebc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Mar 3 19:58:56 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8a:cb:66:2d:d1:32:c0:4e:17:c6:2d:73:a0:
bb:32:13:d5:70:69:b2:69:8a:f0:bd:f8:e0:f7:4b:
7c:eb:a8:ea:8d:46:10:29:7a:50:ff:ac:43:88:08:
ef:33:cc:7d:81:e9:d4:a8:b8:f6:5d:79:d9:eb:a6:
33:51:dc:c0:cb:df:f7:24:89:f6:84:8d:3f:00:0f:
c8:07:8c:e5:2a:67:dd:92:3e:23:7c:5f:8a:5f:8d:
f5:47:3c:2a:cf:a9:ed:b6:48:76:e1:08:31:f8:dd:
81:ca:d4:09:9c:3d:01:7e:04:6f:97:ba:1e:a5:eb:
15:f4:1a:a3:d9:9d:14:28:ff:9b:22:b6:a0:44:90:
9f:e3:d1:1d:1f:5d:84:56:6d:30:65:31:46:3e:5d:
d9:69:be:2b:7c:ad:dc:f5:36:80:83:6e:f5:d1:c5:
87:23:27:b7:74:da:0b:67:e1:63:4f:c9:a6:20:4d:
7c:fd:9e:23:cc:b6:07:2d:ef:d0:3f:3c:10:e3:69:
47:57:b5:bf:9a:f9:86:9c:e1:09:25:79:50:42:eb:
8d:c9:bf:d7:95:3b:6a:c1:14:b8:96:82:00:6a:1c:
b2:e9:90:f8:8d:77:0b:0e:df:e1:00:66:a1:b1:41:
a0:2f:34:be:43:6f:6c:1b:58:95:21:1a:ff:ff:57:
3d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
146845
sbgp-ipAddrBlock: critical
IPv4:
103.169.50.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:fe:1b:5b:83:47:f4:03:a2:3d:68:f3:84:fd:4f:33:b3:eb:
f5:7f:10:93:7c:48:69:1e:d6:78:30:4d:f0:b5:08:d6:4e:17:
14:f6:13:c5:cd:ba:d3:60:db:5a:04:ec:b6:fe:77:21:dd:15:
7a:c2:0d:86:59:b6:41:ee:4c:33:25:d3:53:2b:92:54:fa:64:
24:3e:b0:86:72:df:4e:4f:c3:2c:61:fc:ac:34:80:28:2a:d4:
78:b9:54:d3:31:a0:11:63:6c:a6:e5:9e:ef:7e:b4:2d:02:ba:
dc:8a:d9:bb:d1:52:0f:8b:50:6a:b4:69:b8:13:83:c4:a1:39:
f0:5f:f0:08:4b:00:6e:53:64:2d:92:89:73:7e:3b:29:77:35:
e1:23:02:b8:ed:5b:e1:9d:a1:ec:bb:a7:88:fb:ca:92:04:67:
40:54:d6:b8:cc:4e:7b:35:91:68:52:50:06:1b:a7:39:cd:20:
52:f8:4c:61:ef:23:04:ed:c2:9c:04:30:8e:87:b8:80:02:47:
6f:97:d2:6d:b3:dc:55:cb:ad:b0:75:a4:75:d7:c6:e9:b3:da:
b4:23:8b:ea:f3:f4:a5:27:55:a2:ca:e8:0b:37:57:5f:53:46:
85:98:e0:4e:17:0e:dc:e6:f8:ea:12:14:59:5a:e2:d5:48:75:
14:15:40:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 21:27:36 2026 by rpki-client