Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/RstaoMqemvBSLrXYP_vuf88TePA.cer
File: RstaoMqemvBSLrXYP_vuf88TePA.cer (raw, json)
Hash identifier: YVjQz2DLtLlEz+berO+H0iAlwmOpCsfB49v8blO3dVE=
Subject key identifier: 46:CB:5A:A0:CA:9E:9A:F0:52:2E:B5:D8:3F:FB:EE:7F:CF:13:78:F0
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: AF25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/RstaoMqemvBSLrXYP_vuf88TePA.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 01 Feb 2024 01:22:34 +0000
Certificate not after: Fri 31 Jan 2025 01:13:46 +0000
Subordinate resources: AS: 18245
AS: 24428
IP: 59.108.0.0/15
IP: 103.235.148.0/22
IP: 150.242.168.0/22
IP: 219.232.32.0/19
IP: 2400:5400::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 May 2024 11:25:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44837 (0xaf25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Feb 1 01:22:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=46CB5AA0CA9E9AF0522EB5D83FFBEE7FCF1378F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d4:3b:6f:35:a7:60:b3:5a:0e:bd:8b:8a:cd:
3c:28:a4:a3:9a:fb:14:a3:99:df:25:d7:21:6c:fc:
76:02:46:7b:17:ef:9b:c9:9c:3b:fd:11:77:36:60:
65:c3:ba:86:39:85:f7:66:8a:10:02:f7:89:6e:c9:
56:db:7d:7a:c6:39:9b:4d:8e:8f:0b:32:1d:17:e0:
ab:d3:b3:c0:5f:12:67:9d:df:ae:53:4f:74:c2:4c:
59:cc:5e:32:33:ea:b5:5b:b5:59:ab:69:76:a8:dc:
97:fe:c3:79:22:34:ff:a1:2f:37:c7:5e:89:52:13:
1b:6e:c8:2a:b4:b1:e7:0f:98:d4:24:b0:6d:a6:13:
fb:1f:85:38:af:b1:c1:ac:2d:2d:c7:2f:86:09:ac:
5a:1e:81:cf:b7:d4:c0:50:e1:b0:70:97:68:82:45:
51:12:8d:fc:17:e9:a1:a6:5d:be:ac:cf:b2:ca:2f:
f8:8f:c1:35:5d:b3:47:d0:60:48:8c:7f:cb:a9:e2:
b8:a8:93:f8:ad:e3:61:0f:28:89:0b:c6:fc:74:20:
45:7f:41:00:5f:11:68:05:fd:3d:1c:ba:f0:79:3a:
c0:4c:e6:20:8d:6a:57:b1:15:e3:6f:c4:26:b9:ba:
a4:a1:fe:f6:b3:df:86:b1:4b:f7:aa:d3:58:88:94:
96:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CB:5A:A0:CA:9E:9A:F0:52:2E:B5:D8:3F:FB:EE:7F:CF:13:78:F0
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/RstaoMqemvBSLrXYP_vuf88TePA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18245
24428
sbgp-ipAddrBlock: critical
IPv4:
59.108.0.0/15
103.235.148.0/22
150.242.168.0/22
219.232.32.0/19
IPv6:
2400:5400::/32
Signature Algorithm: sha256WithRSAEncryption
30:a2:6d:f9:a5:c0:69:0a:16:c7:22:e2:59:13:d8:48:b6:8f:
6b:84:cd:e9:bf:25:9d:82:93:04:b5:ba:d9:20:bc:5e:8d:0e:
ce:eb:af:e8:62:45:4c:01:97:f3:96:7c:f8:ef:18:1b:f6:ee:
af:2b:bf:e3:af:c0:00:fe:9e:a3:fb:08:35:25:59:8d:29:11:
cd:20:bc:c9:1d:e6:b2:45:f6:15:c5:ca:fe:97:ef:11:55:05:
e1:f7:6a:e3:33:a8:a3:d8:d5:31:80:33:4d:7f:6c:f8:05:13:
61:ad:ac:46:b4:27:ea:71:6b:c5:29:a6:e8:a8:a3:f0:9c:13:
ea:fc:5b:f1:c6:dc:d2:64:3a:ef:9a:46:07:4d:c1:d8:a4:a1:
f7:a6:39:ff:c6:0e:3b:43:2d:34:14:e7:92:d7:ea:36:05:cc:
7a:8b:54:ec:f8:75:35:6a:f6:89:20:e1:71:b2:7a:98:d8:7d:
aa:3f:57:04:a6:de:88:4d:5b:d2:9e:83:ca:2e:f8:85:a9:6a:
45:05:92:da:85:d2:01:da:2e:e6:25:9b:1d:97:c0:d3:d4:49:
5f:63:d6:04:4d:6c:4d:f5:0b:d1:5a:08:b1:9c:83:77:f1:ae:
af:a9:9d:4e:db:80:0e:9e:46:0e:0b:5a:0b:25:fc:ec:0d:d3:
98:ec:16:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 06:19:02 2024 by rpki-client on console-fra.rpki-client.org