Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27TF-pa4dBv2i0i_AE29b9ljb60.cer
File: 27TF-pa4dBv2i0i_AE29b9ljb60.cer (raw, json)
Hash identifier: ILdamL0xwqFO1EmsRRX+LNRqxlyuWHiJA17Hexg1zSc=
Subject key identifier: DB:B4:C5:FA:96:B8:74:1B:F6:8B:48:BF:00:4D:BD:6F:D9:63:6F:AD
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: E271
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/27TF-pa4dBv2i0i_AE29b9ljb60.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 23 Oct 2025 03:10:46 +0000
Certificate not after: Fri 23 Oct 2026 03:01:03 +0000
Subordinate resources: AS: 63567
IP: 43.226.96.0/20
IP: 43.240.0.0/22
IP: 43.241.48.0/22
IP: 43.247.92.0/22
IP: 43.248.80.0/20
IP: 43.248.176.0 -- 43.248.207.255
IP: 103.37.44.0/22
IP: 103.40.12.0/22
IP: 103.45.160.0/22
IP: 103.83.72.0/22
IP: 103.87.180.0/22
IP: 103.98.140.0 -- 103.98.147.255
IP: 103.205.252.0/22
IP: 103.239.244.0/22
IP: 111.223.12.0/22
IP: 2403:3380::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57969 (0xe271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 23 03:10:46 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=DBB4C5FA96B8741BF68B48BF004DBD6FD9636FAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9d:10:36:99:e7:de:e4:de:0e:b9:37:c2:c7:
ec:76:32:81:d2:ef:3b:6a:81:8e:2e:8e:2f:6b:ee:
95:bf:e6:70:8b:55:92:f7:b0:ae:74:17:52:d5:77:
83:ec:66:64:d9:48:08:bb:89:6e:af:91:df:86:1f:
e1:4c:6b:f5:ce:ad:1b:8f:89:cd:55:ad:19:46:2a:
80:13:88:15:8c:d9:7e:04:d0:f2:7e:4b:25:e5:1c:
5c:cc:a1:00:b6:ed:94:af:8c:37:6d:dd:37:23:91:
d8:2a:72:5c:fe:98:b6:5e:a0:20:ae:22:64:ec:ae:
b1:08:d8:0a:25:fa:c5:bd:60:51:f3:84:bd:fb:c5:
46:d1:05:93:1c:68:f0:6f:e4:f5:4d:b5:ef:54:c5:
86:82:7c:b0:3b:f4:46:fd:9b:52:27:bf:81:89:72:
2c:e7:e8:84:e4:2a:6c:20:0a:5f:dd:88:ca:ac:88:
03:02:37:54:ee:3a:d5:5a:f2:aa:ed:5c:a7:ab:79:
8e:70:6b:07:73:f7:c6:c4:6b:09:17:a5:c7:18:41:
ae:02:07:11:a0:75:a2:7f:fc:f3:a7:e6:67:1e:cb:
23:41:bb:a7:f8:03:0a:78:26:de:98:87:06:6e:51:
93:be:25:87:b6:7f:84:79:ab:fd:76:b8:15:8f:77:
a3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B4:C5:FA:96:B8:74:1B:F6:8B:48:BF:00:4D:BD:6F:D9:63:6F:AD
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/27TF-pa4dBv2i0i_AE29b9ljb60.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63567
sbgp-ipAddrBlock: critical
IPv4:
43.226.96.0/20
43.240.0.0/22
43.241.48.0/22
43.247.92.0/22
43.248.80.0/20
43.248.176.0-43.248.207.255
103.37.44.0/22
103.40.12.0/22
103.45.160.0/22
103.83.72.0/22
103.87.180.0/22
103.98.140.0-103.98.147.255
103.205.252.0/22
103.239.244.0/22
111.223.12.0/22
IPv6:
2403:3380::/32
Signature Algorithm: sha256WithRSAEncryption
a5:04:bc:b2:d3:28:3d:6d:eb:77:c7:d7:4a:4e:02:45:b6:f2:
a8:6f:e0:00:d9:b6:91:83:3f:b0:69:c4:94:d6:7c:9a:10:55:
89:f9:bd:0e:64:1e:5a:44:ba:4a:58:c5:5b:41:66:cd:09:42:
ff:9a:9c:23:b9:c6:a8:6c:66:73:03:ab:02:ba:64:98:6a:a6:
8c:1d:1d:6a:4c:fc:4d:58:e7:ee:02:4d:05:b0:1c:92:5e:8c:
ce:85:b3:09:00:5e:db:ba:ec:80:56:c8:28:f1:b1:fa:85:60:
d8:7f:c0:2c:33:3c:8e:4d:36:a6:d8:8f:3e:49:eb:db:2d:ae:
04:36:51:26:ba:3e:57:b9:89:a4:f8:af:96:d4:42:1d:53:d5:
49:5a:26:45:6f:01:86:17:8d:79:f1:2b:60:7b:37:d4:35:aa:
2c:f3:e7:2c:5b:c6:68:43:c4:49:4d:c4:6f:28:e5:bd:b0:18:
a3:58:ed:20:49:4b:2e:59:7f:3d:18:24:99:4e:94:96:8a:d3:
77:11:54:a8:1a:7b:62:30:40:20:7b:c6:38:4a:9f:f6:87:7b:
d1:15:3a:9f:ed:0e:b6:8b:1d:1e:0e:ab:9a:8a:c8:d0:87:ea:
29:95:75:95:67:0b:08:ac:2b:69:23:b3:f7:32:f9:18:e2:6a:
06:f5:34:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 16:23:16 2025 by rpki-client