Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/LeFPKsfwI4E3BS6qMVxb1kMTQCI.cer
File: LeFPKsfwI4E3BS6qMVxb1kMTQCI.cer (raw, json)
Hash identifier: TFp74XOxI6swr22AG+oEh3658+SOb4/7H5UssFTIWzc=
Subject key identifier: 2D:E1:4F:2A:C7:F0:23:81:37:05:2E:AA:31:5C:5B:D6:43:13:40:22
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BB63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/LeFPKsfwI4E3BS6qMVxb1kMTQCI.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:51:13 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 59033
AS: 63689
IP: 103.204.72.0/22
IP: 202.160.140.0/22
IP: 2402:1440::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47971 (0xbb63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:51:13 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=2DE14F2AC7F0238137052EAA315C5BD643134022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4a:82:ea:4d:d5:e4:c0:7b:f5:35:92:f6:f8:
74:65:2e:9a:8b:9c:9d:67:41:85:8f:a0:1d:9d:b9:
1c:5e:fe:27:9c:6f:87:d8:6a:53:0f:0e:e2:62:2e:
ec:cc:6a:97:d9:b6:ab:f0:9b:59:4a:b6:5d:5d:72:
41:f8:d8:1d:b4:e6:77:0d:ec:96:d3:f4:9e:8b:8a:
2c:76:be:7d:9d:c6:36:bc:9d:10:a6:89:bb:39:93:
5d:f0:89:cb:24:80:38:20:34:19:08:1d:a9:71:6f:
0f:37:5b:2e:2a:90:d8:cf:61:7a:60:fc:a5:71:c5:
0b:cd:4e:b0:c3:b9:e4:01:9c:c4:f7:04:df:84:4d:
3c:c4:62:9f:94:77:89:0b:1c:e2:0d:86:a8:8f:e0:
be:29:1c:46:4e:19:fe:4f:0a:b1:0a:e0:38:b8:30:
db:17:2e:b6:28:ce:75:54:93:9a:e9:26:fe:2f:a7:
21:17:ca:4d:29:76:74:65:50:7f:86:e1:ef:87:f6:
f2:41:fe:42:4b:b6:53:3e:88:01:dd:a1:7e:d2:cb:
98:00:b2:c7:8a:47:d9:b1:e1:7e:4a:74:91:b3:f8:
86:82:83:68:d8:c9:88:99:b0:1f:f8:05:8b:4c:c3:
43:68:cd:d5:d3:e0:3a:2b:5a:12:61:7e:12:14:e9:
53:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E1:4F:2A:C7:F0:23:81:37:05:2E:AA:31:5C:5B:D6:43:13:40:22
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/LeFPKsfwI4E3BS6qMVxb1kMTQCI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59033
63689
sbgp-ipAddrBlock: critical
IPv4:
103.204.72.0/22
202.160.140.0/22
IPv6:
2402:1440::/32
Signature Algorithm: sha256WithRSAEncryption
1c:a1:00:b4:ed:e7:dc:c0:5f:80:78:00:88:97:e3:d5:69:08:
70:22:26:26:05:d8:4c:0b:10:dc:a0:84:28:d0:d6:d2:9f:fd:
2b:63:f6:29:e8:74:9b:da:0e:53:36:72:09:14:f6:81:29:a8:
d3:5f:4e:a1:ae:b6:2f:90:99:94:74:c8:7e:d9:7c:0a:a1:71:
0d:cf:6f:a1:90:2a:5b:d7:8b:c4:84:90:f6:ff:9d:4c:4e:03:
7f:14:76:1c:36:b8:99:2d:96:5f:47:a7:a1:12:35:60:92:0d:
ec:4c:a7:36:98:b4:9f:82:82:e7:4a:89:f9:f5:f6:50:7a:7b:
ef:8c:d5:2e:6c:1d:ab:80:17:6c:b4:21:ff:7b:9a:d5:0d:55:
15:aa:05:32:9a:88:7b:33:00:0a:f9:4f:ac:5a:a2:a8:29:f4:
45:4d:5e:36:98:9c:1c:63:a0:c9:c8:a4:73:13:35:e0:cc:80:
d3:ae:52:a7:d9:29:02:1d:c4:42:21:6e:cd:d8:09:b4:72:95:
cc:4d:db:c3:b9:59:40:3c:c7:d1:66:98:bb:fb:9f:c1:5f:f5:
83:04:60:41:3e:15:a0:09:e5:d2:5d:8d:b3:fc:2f:5d:67:37:
f2:25:08:57:73:3b:3e:fa:1a:90:26:c5:3b:7c:0c:31:25:07:
38:bc:7d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:43:25 2024 by rpki-client on console-fra.rpki-client.org