Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/A_XQOpMuSOf5T61oEuoovsj1LQI.cer
File: A_XQOpMuSOf5T61oEuoovsj1LQI.cer (raw, json)
Hash identifier: Wr2Z5v0SivBVxzKm4GYR2MqR4XjglxWZyKl9SIrC2r8=
Subject key identifier: 03:F5:D0:3A:93:2E:48:E7:F9:4F:AD:68:12:EA:28:BE:C8:F5:2D:02
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: DC44
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/A_XQOpMuSOf5T61oEuoovsj1LQI.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Sat 30 Aug 2025 19:34:24 +0000
Certificate not after: Mon 03 Aug 2026 08:44:40 +0000
Subordinate resources: AS: 131547
IP: 43.227.252.0/22
IP: 43.228.36.0/22
IP: 43.241.240.0/22
IP: 43.243.136.0/22
IP: 59.153.64.0/22
IP: 103.37.172.0/22
IP: 103.38.224.0/22
IP: 103.43.184.0/22
IP: 103.47.48.0/22
IP: 103.93.204.0/22
IP: 103.198.60.0/22
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 07 Sep 2025 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56388 (0xdc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Aug 30 19:34:24 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=03F5D03A932E48E7F94FAD6812EA28BEC8F52D02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8d:7a:df:07:03:62:05:47:a5:b8:1c:30:23:
0a:6a:2f:16:2f:72:e7:6b:7d:33:d5:63:c0:7e:fc:
f3:9b:95:c1:8f:40:80:f9:a5:19:c5:f4:3f:35:0d:
3d:6c:85:f2:7c:a2:75:73:f9:6d:97:d7:70:d1:2b:
0e:84:35:63:7f:e5:cb:32:68:fa:79:e5:40:29:d1:
70:53:b2:8a:2b:dc:ae:6f:61:1f:ad:1d:9d:ca:d8:
13:5f:bc:f3:45:24:4f:08:3f:25:2f:b5:8a:8d:bb:
a5:4f:77:76:31:81:83:16:a4:2d:cf:5c:f9:11:23:
3f:1f:8b:c7:71:af:45:e1:c3:59:4f:3c:51:1b:06:
d6:a9:00:b3:dc:4c:a8:01:44:f4:61:8c:a6:c8:4a:
90:e8:4a:f2:8a:d8:83:a9:f3:37:78:f5:8a:33:f2:
ac:6e:a8:ea:aa:a5:2c:d6:d8:9a:01:00:4d:72:59:
3c:52:15:ef:c1:1a:4f:1e:58:20:43:5f:cc:9e:76:
bb:1e:f3:53:19:ab:40:d1:86:8b:af:a4:6c:71:db:
7d:31:2a:24:8f:ff:58:36:29:dd:f4:54:5b:f3:e3:
95:9c:ac:c2:b6:db:ab:19:40:55:88:33:2e:ec:e7:
e3:8e:88:ee:1d:68:69:d1:ae:0c:04:b1:57:82:44:
84:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F5:D0:3A:93:2E:48:E7:F9:4F:AD:68:12:EA:28:BE:C8:F5:2D:02
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/A_XQOpMuSOf5T61oEuoovsj1LQI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131547
sbgp-ipAddrBlock: critical
IPv4:
43.227.252.0/22
43.228.36.0/22
43.241.240.0/22
43.243.136.0/22
59.153.64.0/22
103.37.172.0/22
103.38.224.0/22
103.43.184.0/22
103.47.48.0/22
103.93.204.0/22
103.198.60.0/22
Signature Algorithm: sha256WithRSAEncryption
41:f7:55:df:6c:c4:8c:ab:50:53:2d:5e:10:4e:7f:37:4d:42:
94:f8:e1:f5:7a:7c:03:40:29:74:08:28:89:6f:a1:f7:b0:f7:
71:41:e6:9b:61:23:6f:ec:7a:2e:9d:3b:4c:c8:d3:1d:1e:02:
44:ec:dc:f4:ee:c0:d1:ab:bc:59:3b:94:61:a7:32:32:91:69:
c3:e8:bb:5d:1e:21:2b:d4:b3:cf:6f:35:d9:91:fe:00:e2:3c:
b0:96:26:23:d2:8b:dc:ac:3c:43:56:28:44:96:14:1a:0e:c2:
69:ff:1d:e7:59:2f:fe:a7:95:86:eb:da:31:9f:aa:9d:f2:38:
88:eb:d4:b5:79:a5:50:08:8b:64:30:9e:6d:2f:e7:b6:e2:90:
e7:b8:34:40:cb:c5:d2:23:bd:c8:f6:d2:a1:dc:23:ba:f8:6d:
4f:63:c5:eb:0c:06:5a:4f:b3:79:eb:bf:a8:d9:89:f9:19:90:
2f:23:d6:8c:05:15:5b:63:46:d2:2d:7e:a9:81:64:e1:7b:2d:
6b:40:8a:33:5d:69:00:c2:eb:16:e4:4e:8b:fc:c0:eb:81:9b:
46:30:f4:dc:b7:69:69:4d:4d:72:84:8d:d9:3e:a2:1b:2c:d8:
25:50:f3:87:16:cd:89:aa:8b:ea:63:d8:e3:de:f2:7f:e3:e7:
ea:24:ff:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:52:56 2025 by rpki-client