Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
File: Os4QyDgpLG_HBlhbRE667coqEbk.cer (raw, json)
Hash identifier: 6u+sTOKnUNiJ/o/u6PPyQNAhcGpWNdGzYriQonyuSnM=
Subject key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BA6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:47:43 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 55990
AS: 63727
AS: 139124
AS: 139144
IP: 1.92.0.0/16
IP: 1.94.0.0/15
IP: 14.130.0.0/15
IP: 42.196.0.0 -- 42.198.255.255
IP: 43.226.168.0 -- 43.226.215.255
IP: 43.226.240.0 -- 43.227.7.255
IP: 43.227.36.0 -- 43.227.51.255
IP: 43.227.96.0/21
IP: 43.249.152.0 -- 43.249.167.255
IP: 43.254.0.0/22
IP: 49.4.0.0/17
IP: 49.220.0.0/16
IP: 49.222.0.0/16
IP: 60.201.0.0 -- 60.204.255.255
IP: 101.54.0.0/16
IP: 101.104.0.0/17
IP: 101.105.0.0 -- 101.107.255.255
IP: 101.245.0.0/16
IP: 103.31.200.0/22
IP: 103.39.160.0/19
IP: 103.40.16.0 -- 103.40.47.255
IP: 103.45.80.0/20
IP: 103.45.192.0/19
IP: 103.46.0.0/22
IP: 103.46.152.0 -- 103.46.167.255
IP: 103.46.172.0 -- 103.46.183.255
IP: 103.161.220.0/23
IP: 110.41.0.0/16
IP: 113.44.0.0/14
IP: 114.115.128.0 -- 114.116.255.255
IP: 115.32.0.0/14
IP: 115.120.0.0/16
IP: 115.173.0.0/17
IP: 115.175.0.0/16
IP: 116.61.0.0/16
IP: 116.63.0.0/16
IP: 116.196.192.0/18
IP: 116.204.0.0/17
IP: 116.205.0.0/16
IP: 116.216.0.0/16
IP: 116.218.0.0/16
IP: 116.243.0.0/16
IP: 117.78.0.0/18
IP: 117.100.0.0/17
IP: 117.101.0.0/16
IP: 118.198.0.0/16
IP: 118.207.0.0/16
IP: 118.244.0.0/17
IP: 118.246.0.0/16
IP: 119.3.0.0/16
IP: 120.46.0.0/16
IP: 121.36.0.0/15
IP: 121.71.0.0/16
IP: 122.9.0.0/16
IP: 122.112.128.0/17
IP: 123.60.0.0/16
IP: 123.196.128.0 -- 123.197.127.255
IP: 123.249.0.0/17
IP: 124.15.0.0/17
IP: 124.70.0.0/15
IP: 124.203.0.0/17
IP: 175.189.0.0/16
IP: 175.190.128.0 -- 175.191.255.255
IP: 180.86.0.0/16
IP: 180.89.128.0 -- 180.90.255.255
IP: 218.245.64.0/18
IP: 220.114.0.0/16
IP: 223.20.0.0/15
IP: 223.201.0.0/16
IP: 223.208.0.0/15
IP: 2407:c080::/32
IP: 2409:2000::/21
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47725 (0xba6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:47:43 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d0:c0:7e:44:ce:ba:24:5d:61:3e:e2:45:fd:
9d:06:0d:63:51:b6:9a:52:c2:af:8d:02:75:c8:ca:
86:5e:52:2a:69:d0:d5:ac:6d:76:6e:00:82:f9:77:
b6:be:c9:9a:f6:5b:ad:27:b3:a5:61:f6:14:dd:1d:
f1:2e:e4:21:eb:79:dc:47:c3:00:31:d3:c0:74:aa:
d1:d6:fd:a4:47:00:73:0b:a1:03:f5:d6:6e:f7:1d:
ac:c0:3f:ff:d2:bd:54:27:27:f1:ee:42:15:f7:f3:
e7:e2:74:34:de:9b:93:b6:ab:bb:a7:6d:49:9f:56:
2f:ab:38:86:f6:3f:28:38:83:25:bf:91:80:86:42:
1f:a3:7e:b3:1a:18:a1:df:e6:a8:0c:75:a8:3a:4f:
29:81:02:aa:f4:32:7e:64:8b:77:b2:08:f2:99:ad:
1d:1d:5e:70:f2:4c:68:34:6f:72:b3:43:12:a0:f4:
69:07:91:35:59:35:a3:ef:3f:d6:23:ab:50:61:e6:
38:71:db:15:52:62:ca:90:b0:f2:12:19:ae:4a:cc:
83:9e:59:96:20:37:67:76:f8:8b:22:a0:e5:da:6c:
7e:8f:6a:84:66:6d:97:f7:79:a0:4a:dc:a0:b7:bb:
27:36:8a:3f:de:98:ed:46:dd:d0:75:bf:0a:93:3f:
8f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55990
63727
139124
139144
sbgp-ipAddrBlock: critical
IPv4:
1.92.0.0/16
1.94.0.0/15
14.130.0.0/15
42.196.0.0-42.198.255.255
43.226.168.0-43.226.215.255
43.226.240.0-43.227.7.255
43.227.36.0-43.227.51.255
43.227.96.0/21
43.249.152.0-43.249.167.255
43.254.0.0/22
49.4.0.0/17
49.220.0.0/16
49.222.0.0/16
60.201.0.0-60.204.255.255
101.54.0.0/16
101.104.0.0/17
101.105.0.0-101.107.255.255
101.245.0.0/16
103.31.200.0/22
103.39.160.0/19
103.40.16.0-103.40.47.255
103.45.80.0/20
103.45.192.0/19
103.46.0.0/22
103.46.152.0-103.46.167.255
103.46.172.0-103.46.183.255
103.161.220.0/23
110.41.0.0/16
113.44.0.0/14
114.115.128.0-114.116.255.255
115.32.0.0/14
115.120.0.0/16
115.173.0.0/17
115.175.0.0/16
116.61.0.0/16
116.63.0.0/16
116.196.192.0/18
116.204.0.0/17
116.205.0.0/16
116.216.0.0/16
116.218.0.0/16
116.243.0.0/16
117.78.0.0/18
117.100.0.0/17
117.101.0.0/16
118.198.0.0/16
118.207.0.0/16
118.244.0.0/17
118.246.0.0/16
119.3.0.0/16
120.46.0.0/16
121.36.0.0/15
121.71.0.0/16
122.9.0.0/16
122.112.128.0/17
123.60.0.0/16
123.196.128.0-123.197.127.255
123.249.0.0/17
124.15.0.0/17
124.70.0.0/15
124.203.0.0/17
175.189.0.0/16
175.190.128.0-175.191.255.255
180.86.0.0/16
180.89.128.0-180.90.255.255
218.245.64.0/18
220.114.0.0/16
223.20.0.0/15
223.201.0.0/16
223.208.0.0/15
IPv6:
2407:c080::/32
2409:2000::/21
Signature Algorithm: sha256WithRSAEncryption
ae:3c:a5:f3:ec:19:58:7b:e3:8d:bb:be:52:7f:c1:67:47:c8:
d8:e0:31:65:7b:1d:ed:ac:59:c9:83:dc:87:de:44:54:76:3b:
09:3e:8b:6d:e3:02:21:39:e1:4c:6a:c4:fe:f1:24:1b:a8:14:
be:1b:9a:09:9c:86:32:0f:bf:83:c5:4b:f2:53:23:f7:49:a7:
8b:43:8a:c4:40:db:6d:71:21:39:6a:28:17:f1:85:4e:fd:30:
30:44:65:81:1f:b9:02:53:da:5f:e7:9c:31:60:d9:cf:56:3a:
06:05:a6:5b:93:b5:e3:b2:e9:0e:a2:c5:3f:63:8e:4e:24:45:
02:d7:ef:9a:66:c8:ed:f2:1d:6a:ef:4c:1d:63:47:09:c7:6d:
d9:46:17:d3:80:fd:cf:9a:26:b3:a5:8c:09:9c:f1:aa:5a:f0:
c4:8c:63:3f:0b:12:88:4b:27:8d:37:69:a2:d0:05:fb:e4:17:
a5:80:ef:0d:b4:b8:8c:bc:8f:a7:78:aa:ea:32:08:5e:de:a1:
bf:f8:99:8a:3f:c3:48:ed:cd:94:22:06:36:b2:0e:03:0d:8f:
bb:65:90:a7:fd:f8:ad:ea:15:9b:01:f2:93:56:39:54:bb:6f:
09:e1:d8:7d:1a:b3:98:c0:06:b6:55:00:ec:78:e1:f9:c3:5c:
76:30:fd:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:42:28 2024 by rpki-client on console-ams.rpki-client.org