Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/OpXd7iyMGeRxgIou20cqqm_g9Jg.cer
File: OpXd7iyMGeRxgIou20cqqm_g9Jg.cer (raw, json)
Hash identifier: 4WzOChGOxYAo2CnBoFosMSeyQ9loK1rgDqnmYmyKxGE=
Subject key identifier: 3A:95:DD:EE:2C:8C:19:E4:71:80:8A:2E:DB:47:2A:AA:6F:E0:F4:98
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CB0F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/OpXd7iyMGeRxgIou20cqqm_g9Jg.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 03:11:27 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 151219
IP: 2401:aa20::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51983 (0xcb0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 03:11:27 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3A95DDEE2C8C19E471808A2EDB472AAA6FE0F498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e8:49:0c:1a:8f:92:44:66:a3:cc:e1:bc:ca:
85:6f:60:c5:c8:cc:6c:ee:39:be:c1:af:3f:88:5c:
75:1f:e5:52:e9:4d:8c:d5:ef:ad:08:a6:e6:86:39:
51:a2:eb:c1:8e:54:12:9c:53:cf:f9:b5:f7:7e:25:
a6:e1:78:21:41:b3:9b:b5:77:ae:d2:8c:82:aa:ce:
01:11:ec:d0:a3:3c:38:7d:04:7c:b9:61:3d:c8:82:
1e:fb:2a:3c:ea:89:fb:2b:69:49:de:bc:88:1c:17:
d7:57:b1:19:da:d5:52:b5:1c:73:91:69:92:84:65:
4d:e5:1d:67:5f:ba:6e:52:3c:bb:e4:1f:13:8d:c2:
62:be:21:47:6e:5f:05:35:f3:fa:0d:35:36:d1:11:
d1:23:92:3c:99:8b:81:d1:7a:4e:42:ba:54:97:c8:
36:76:2b:8c:17:a3:fa:0b:1f:29:f6:3e:f8:34:ea:
ab:f0:b8:51:df:4e:b2:23:08:13:c6:61:4e:8d:de:
d3:15:00:31:1d:b9:30:6f:c0:d8:af:56:87:e3:1f:
6b:89:48:8a:32:51:4a:49:bc:7f:1a:48:09:6e:17:
5f:9d:9e:e5:78:b8:8d:d9:2d:bd:ab:79:61:75:10:
ef:8f:51:35:30:8b:4a:3c:0a:a1:20:c2:f3:fa:b6:
cc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:95:DD:EE:2C:8C:19:E4:71:80:8A:2E:DB:47:2A:AA:6F:E0:F4:98
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3297/OpXd7iyMGeRxgIou20cqqm_g9Jg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151219
sbgp-ipAddrBlock: critical
IPv6:
2401:aa20::/32
Signature Algorithm: sha256WithRSAEncryption
5f:77:80:d5:19:3f:25:47:78:6a:56:26:c7:1a:db:6e:7d:6e:
ce:68:7f:65:2f:c0:91:34:8b:d3:06:b3:21:af:0b:c8:7c:18:
02:a4:62:3e:f5:15:26:46:c3:f7:69:cc:ff:fb:63:e6:d9:f3:
a4:29:30:9f:36:6c:fe:ff:20:a9:a3:c7:8e:08:bc:98:50:2b:
1c:b8:00:88:77:79:56:59:6f:1d:42:75:6d:46:0f:4a:6e:dc:
95:b3:0a:44:35:87:a9:87:8b:d2:f9:e0:f3:77:07:60:96:af:
ed:6d:14:8c:07:a0:44:d8:dc:5e:9f:9c:8d:4d:cc:11:3b:4e:
bc:f2:d3:30:ec:72:f0:ad:d4:20:f8:d7:36:32:b7:88:a7:c1:
76:56:f7:d4:66:31:69:84:af:fa:cc:35:13:20:9a:23:50:f0:
7a:0a:e7:a9:42:26:ec:03:25:d4:f5:73:62:90:61:42:42:2a:
a8:35:a4:bf:2d:27:f2:4a:f2:61:28:8b:0c:77:2c:be:f6:f9:
db:f8:dc:40:4a:36:06:da:bc:a6:7b:2c:8f:be:18:42:14:ff:
8b:1a:80:a8:55:d1:01:92:fb:f7:ac:ed:bc:56:f3:98:b6:86:
45:5d:5c:da:1f:ab:15:e7:36:61:10:35:1f:ac:dd:13:45:47:
b7:ff:31:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:17:39 2025 by rpki-client