Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer
File: GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer (raw, json)
Hash identifier: u/EpVgmYoZ1a16ClylWhK+crIMgtX06p2xVyuVgOPXw=
Subject key identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CCD7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 03 Apr 2025 08:06:22 +0000
Certificate not after: Fri 03 Apr 2026 08:00:09 +0000
Subordinate resources: AS: 151301
IP: 103.93.180.0/22
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 08 Apr 2025 10:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52439 (0xccd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Apr 3 08:06:22 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=1AF902AD66211881EA040C5FF7203D9BCC87FFC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4d:58:3b:8d:5e:35:dc:be:9e:a4:60:0f:2b:
94:89:d8:cb:89:7b:a8:a4:24:65:16:c9:e8:a9:04:
3e:05:61:80:e1:5d:76:66:72:6c:bd:3d:6e:a9:37:
a9:f1:88:69:0e:47:94:c4:7d:d7:b5:74:7e:a1:13:
98:60:99:ad:b6:c2:a2:64:1c:5f:44:38:83:49:dc:
38:ed:03:ed:4a:16:1f:30:ca:0c:40:bf:1a:77:93:
22:48:c7:aa:20:f3:78:0e:2c:4e:f8:73:f3:a9:ae:
29:9f:a0:13:d5:cc:f0:b0:a4:fc:25:31:64:ee:94:
f4:ca:e9:0a:f8:bc:eb:1f:6a:2b:57:8f:c5:dc:c5:
dc:b4:82:c1:6d:d1:42:f3:12:3b:eb:86:d0:03:30:
bc:26:d9:c8:f8:2e:da:dc:7f:af:63:7c:a6:d3:3a:
57:0e:e1:44:9e:11:62:2f:cd:46:1f:63:87:9f:22:
af:85:9a:72:a9:42:ef:ce:44:84:9d:9b:12:38:46:
ee:e3:65:3e:6e:c4:fe:a6:a9:f9:9d:3e:02:c0:9c:
97:26:a5:2f:2a:0a:08:b8:61:e0:1c:13:1b:42:f9:
fd:1f:4e:a7:cf:3d:ab:99:a5:e1:d9:5d:a1:92:28:
4f:f9:1a:d1:9f:60:0f:b4:76:22:e6:7a:b2:2f:83:
da:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151301
sbgp-ipAddrBlock: critical
IPv4:
103.93.180.0/22
Signature Algorithm: sha256WithRSAEncryption
99:48:98:5f:53:04:7e:7c:ed:b3:2e:6c:f6:c3:56:ee:ea:f1:
96:f4:ca:22:f8:c2:20:52:87:3e:ea:3a:64:8c:8f:51:bd:90:
9c:dd:e0:02:88:55:91:17:33:81:1b:f4:b4:d1:c2:ff:8e:6a:
bb:51:f4:d3:95:6f:2c:a6:d5:dc:69:a8:6b:2f:d5:a8:da:5a:
22:94:a0:09:c4:fd:6a:e9:4a:85:ce:da:c7:9a:07:cc:b0:ba:
4c:65:7b:af:bf:0c:98:d9:fb:16:04:ad:aa:ea:61:b2:44:82:
91:b5:f0:10:0d:39:c7:ed:c8:51:7d:9e:ca:b2:60:b4:8f:b6:
17:84:6f:e0:23:9a:70:34:00:40:d5:fd:19:84:de:52:ef:93:
56:9d:e1:ca:eb:f4:cb:f8:4a:64:fe:16:47:c8:4a:5d:ed:ea:
60:38:e9:ec:23:be:ea:c4:30:eb:29:ba:94:5f:89:ed:fd:6b:
1b:56:6d:98:7c:94:e3:79:a8:ea:2a:2e:9d:36:50:0e:9d:9f:
dd:d0:53:d9:38:4d:20:09:94:bd:c2:56:43:93:de:a3:61:9b:
ae:6d:8f:00:27:85:04:a3:69:8c:90:e9:de:61:b2:11:14:0b:
5b:25:0e:40:95:a8:03:09:2f:a3:4a:e0:25:fb:87:89:7c:a9:
e3:ff:fe:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:01:39 2025 by rpki-client