Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer
File: D0BCGu_TepwoYqhQBOR57yH1tgg.cer (raw, json)
Hash identifier: KCkztcgWGyV6Z3Q/PCDZZ4Z3C5Cufq6kFvaH4BBsGTU=
Subject key identifier: 0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BBF9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:53:34 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: IP: 43.224.200.0/22
IP: 43.229.40.0/22
IP: 43.254.184.0/22
IP: 45.114.196.0/22
IP: 45.123.136.0/22
IP: 103.15.200.0/22
IP: 103.26.156.0/22
IP: 103.30.228.0/22
IP: 103.43.220.0 -- 103.43.227.255
IP: 103.54.160.0/22
IP: 103.199.164.0/22
IP: 103.200.64.0/21
IP: 103.228.176.0/22
IP: 137.59.88.0/22
IP: 150.242.116.0/22
IP: 210.7.56.0/21
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48121 (0xbbf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:53:34 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=0F40421AEFD37A9C2862A85004E479EF21F5B608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5a:d4:59:16:78:16:25:ff:65:bf:5f:3a:fe:
de:11:72:69:c4:4d:a4:c7:17:02:a7:ab:0c:b0:7b:
57:75:48:17:14:e5:5d:75:3f:98:3b:8a:e1:0f:76:
8c:40:38:12:e1:fc:63:99:a2:58:4d:59:9d:c5:ce:
f8:f2:97:bc:83:08:d2:53:d8:d5:31:e5:77:e9:67:
e3:a1:40:00:89:9e:83:e5:b0:5f:ea:99:a3:17:46:
69:3a:55:2b:73:d7:ce:40:4c:c7:3f:e4:a6:be:21:
8a:fa:6d:55:85:ee:44:c9:a1:72:08:58:b3:7e:32:
2b:3c:4b:40:8f:42:08:f3:8c:13:3b:e6:c8:ca:bc:
a0:64:1f:a2:89:3b:6e:b3:e8:33:ab:1d:04:44:17:
53:12:d6:1c:5b:0d:6a:e6:21:70:74:02:96:51:0d:
6b:66:7b:09:cc:43:d6:6c:bf:df:73:f1:39:b8:8c:
61:ab:52:fc:85:38:09:6a:85:32:72:b7:09:e7:59:
14:34:f2:6e:ca:95:82:9d:b8:04:a6:01:4a:18:17:
c7:ad:30:44:ce:7d:3a:3f:99:2b:f2:18:ac:d2:c3:
5e:a7:95:f5:24:5d:17:42:b2:06:4c:05:4f:d5:1b:
f0:14:dd:91:95:81:af:c9:ca:9f:ba:25:15:ad:7a:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.200.0/22
43.229.40.0/22
43.254.184.0/22
45.114.196.0/22
45.123.136.0/22
103.15.200.0/22
103.26.156.0/22
103.30.228.0/22
103.43.220.0-103.43.227.255
103.54.160.0/22
103.199.164.0/22
103.200.64.0/21
103.228.176.0/22
137.59.88.0/22
150.242.116.0/22
210.7.56.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:6f:4a:0e:3a:79:b4:9e:e9:cf:a3:85:8d:2e:16:74:5a:70:
02:fe:32:81:29:53:8d:c6:53:f9:e4:92:9a:cb:8b:a0:bb:d6:
fe:1a:f0:e8:e8:bd:ea:12:3c:8c:55:bf:88:80:d1:66:d6:c5:
a4:a1:71:bd:72:16:ad:39:77:0a:b3:94:d8:c1:22:84:c6:36:
24:8c:87:1b:cb:11:c7:64:e7:c5:85:a4:fb:6c:11:57:f3:dd:
d3:3f:26:89:ea:13:0a:c9:05:e3:bb:ad:a3:92:88:d1:c6:35:
e3:9b:49:88:43:11:6d:96:62:40:48:dc:da:38:f8:7b:89:eb:
5e:ad:be:79:c9:c1:ae:4f:38:ea:bd:2b:bd:7c:2a:bc:f7:cc:
97:c0:32:0c:56:8e:70:ca:9d:c1:9f:f7:58:2a:f3:ba:12:18:
28:c8:3f:93:0f:43:ed:4d:0e:e4:37:9e:a4:a7:ed:0d:0f:0f:
81:e3:58:b1:b4:68:14:3a:9c:e8:c4:3b:3e:f8:a7:f3:3b:ba:
b5:36:4d:9e:b6:c6:c7:d5:d1:6d:10:83:0e:89:9c:3c:47:3b:
9c:60:86:5c:14:42:c8:a7:73:08:48:55:be:64:fc:ed:8a:62:
98:1a:51:67:da:47:6e:e3:a0:fe:c9:08:23:f7:f6:f5:df:b8:
a7:1f:83:99
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgIDALv5MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjUzMzRaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKDBGNDA0MjFBRUZEMzdBOUMyODYyQTg1MDA0RTQ3OUVGMjFGNUI2
MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOWtRZFngWJf9lv186
/t4RcmnETaTHFwKnqwywe1d1SBcU5V11P5g7iuEPdoxAOBLh/GOZolhNWZ3Fzvjy
l7yDCNJT2NUx5XfpZ+OhQACJnoPlsF/qmaMXRmk6VStz185ATMc/5Ka+IYr6bVWF
7kTJoXIIWLN+Mis8S0CPQgjzjBM75sjKvKBkH6KJO26z6DOrHQREF1MS1hxbDWrm
IXB0ApZRDWtmewnMQ9Zsv99z8Tm4jGGrUvyFOAlqhTJytwnnWRQ08m7KlYKduASm
AUoYF8etMETOfTo/mSvyGKzSw16nlfUkXRdCsgZMBU/VG/AU3ZGVga/Jyp+6JRWt
erB/AgMBAAGjggK4MIICtDAdBgNVHQ4EFgQUD0BCGu/TepwoYqhQBOR57yH1tggw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEw
ODkvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMTA4OS9EMEJDR3VfVGVwd29ZcWhRQk9SNTd5SDF0Z2cubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAivgyAMEAivlKAMEAiv+uAME
Ai1yxAMEAi17iAMEAmcPyAMEAmcanAMEAmce5DAMAwQCZyvcAwQCZyvgAwQCZzag
AwQCZ8ekAwQDZ8hAAwQCZ+SwAwQCiTtYAwQClvJ0AwQD0gc4MA0GCSqGSIb3DQEB
CwUAA4IBAQCeb0oOOnm0nunPo4WNLhZ0WnAC/jKBKVONxlP55JKay4ugu9b+GvDo
6L3qEjyMVb+IgNFm1sWkoXG9chatOXcKs5TYwSKExjYkjIcbyxHHZOfFhaT7bBFX
893TPyaJ6hMKyQXju62jkojRxjXjm0mIQxFtlmJASNzaOPh7ieterb55ycGuTzjq
vSu9fCq898yXwDIMVo5wyp3Bn/dYKvO6EhgoyD+TD0PtTQ7kN56kp+0NDw+B41ix
tGgUOpzoxDs++KfzO7q1Nk2etsbH1dFtEIMOiZw8RzucYIZcFELIp3MISFW+ZPzt
imKYGlFn2kdu46D+yQgj9/b137inH4OZ
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:42:26 2024 by rpki-client on console-ams.rpki-client.org