Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer
File: G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer (raw, json)
Hash identifier: TFJCLBGdIY9fj9YV4ZaltJK2O/Pj3XWzATBYKB1Xx0M=
Subject key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BC19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:54:10 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 146761 -- 146762
IP: 103.2.156.0/22
IP: 103.183.26.0/23
IP: 114.111.176.0/20
IP: 2400:5f60::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48153 (0xbc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:54:10 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3b:3e:10:c0:ec:e9:b6:91:61:ce:8d:06:8e:
0c:b2:ed:a6:ee:51:70:11:26:f8:57:0f:8c:53:58:
c8:8b:14:30:1d:d6:58:eb:ff:49:e7:e4:02:0c:b3:
a5:5d:79:d8:bf:a1:f7:32:49:61:a3:f2:c5:d9:a1:
27:13:e7:5b:e0:a4:b1:fc:87:fe:f3:29:d1:35:a8:
5e:01:fa:a2:b3:19:89:87:2a:eb:b6:e4:60:2a:ca:
83:e9:2f:82:a6:38:3c:97:45:53:08:7a:78:bb:13:
1c:fa:81:e0:6a:a9:95:15:6e:a3:de:8e:8b:1b:3a:
2d:bd:88:b5:21:c3:be:17:9f:b3:40:24:df:53:c2:
92:e6:4e:9d:93:f1:bc:20:e4:c8:9b:a3:1c:7d:15:
e3:31:f3:12:83:a9:02:04:da:42:51:71:ed:b5:08:
be:f3:e9:90:aa:5f:6e:0d:64:2f:3c:fd:97:b8:b5:
02:d5:3f:e3:5f:ad:0b:86:5e:4a:1b:67:e5:0c:ff:
81:8b:2c:bd:44:67:87:8b:2c:74:1e:f8:0d:a5:5e:
a1:f2:b0:93:52:1c:74:87:1c:fe:dd:56:7a:4f:1b:
bc:95:77:ed:cb:ce:f0:ea:04:4f:79:e9:5f:4b:8d:
74:20:52:91:87:07:8b:61:0e:5e:6f:9b:73:e6:1d:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
146761-146762
sbgp-ipAddrBlock: critical
IPv4:
103.2.156.0/22
103.183.26.0/23
114.111.176.0/20
IPv6:
2400:5f60::/32
Signature Algorithm: sha256WithRSAEncryption
b3:35:70:4b:7a:b9:ce:b5:1f:c7:ed:97:13:ed:27:41:75:e3:
ec:0d:ec:67:a5:78:99:b1:c5:e4:34:b4:bf:42:a9:94:a8:a5:
7c:40:8e:19:34:f5:0a:47:a4:0c:f5:9d:f4:70:8c:07:04:cf:
82:20:1f:df:42:95:a0:1f:c1:aa:bd:a1:65:7a:06:36:d1:1c:
27:2d:80:b0:00:f4:4a:d1:2f:3b:01:ec:e6:4d:99:21:ba:27:
91:f7:5c:37:a4:0a:47:a6:97:9d:21:35:bd:50:55:f8:03:57:
32:a2:db:a1:b4:de:95:00:26:c2:4c:90:ef:7d:7d:10:e9:47:
3a:a8:6d:91:69:11:40:40:5a:92:e8:6a:23:ad:37:3d:fd:a1:
69:1a:61:bb:ec:ca:0b:88:fb:75:f6:62:b3:35:1d:4d:8c:a6:
d1:78:c6:2b:66:00:85:08:45:47:84:3e:32:54:86:ce:80:58:
bc:f3:98:07:56:f3:b1:23:3d:8e:d3:0a:5a:52:a9:d4:4e:33:
3b:2e:74:e4:f3:84:7f:7a:27:c6:51:5e:54:bd:d7:58:8b:10:
e0:b6:0b:ff:14:1f:be:e4:79:f6:58:34:49:6e:ff:54:31:0b:
bd:56:76:80:65:0f:8d:2b:22:b7:ee:bc:58:6f:b0:3c:b9:41:
4b:e1:9a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:43:25 2024 by rpki-client on console-fra.rpki-client.org