Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/RstaoMqemvBSLrXYP_vuf88TePA.cer
File: RstaoMqemvBSLrXYP_vuf88TePA.cer (raw, json)
Hash identifier: xcofkXgDshinMCNMmRkxURvk/z14jGKGa/YouEHANe4=
Subject key identifier: 46:CB:5A:A0:CA:9E:9A:F0:52:2E:B5:D8:3F:FB:EE:7F:CF:13:78:F0
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CCBD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/RstaoMqemvBSLrXYP_vuf88TePA.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 03 Apr 2025 08:05:59 +0000
Certificate not after: Fri 03 Apr 2026 08:00:09 +0000
Subordinate resources: AS: 18245
IP: 45.253.68.0/22
IP: 59.108.0.0/15
IP: 103.222.192.0/22
IP: 103.235.148.0/22
IP: 150.242.168.0/22
IP: 219.232.32.0/19
IP: 2400:5400::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 08 Apr 2025 05:07:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52413 (0xccbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Apr 3 08:05:59 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=46CB5AA0CA9E9AF0522EB5D83FFBEE7FCF1378F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d4:3b:6f:35:a7:60:b3:5a:0e:bd:8b:8a:cd:
3c:28:a4:a3:9a:fb:14:a3:99:df:25:d7:21:6c:fc:
76:02:46:7b:17:ef:9b:c9:9c:3b:fd:11:77:36:60:
65:c3:ba:86:39:85:f7:66:8a:10:02:f7:89:6e:c9:
56:db:7d:7a:c6:39:9b:4d:8e:8f:0b:32:1d:17:e0:
ab:d3:b3:c0:5f:12:67:9d:df:ae:53:4f:74:c2:4c:
59:cc:5e:32:33:ea:b5:5b:b5:59:ab:69:76:a8:dc:
97:fe:c3:79:22:34:ff:a1:2f:37:c7:5e:89:52:13:
1b:6e:c8:2a:b4:b1:e7:0f:98:d4:24:b0:6d:a6:13:
fb:1f:85:38:af:b1:c1:ac:2d:2d:c7:2f:86:09:ac:
5a:1e:81:cf:b7:d4:c0:50:e1:b0:70:97:68:82:45:
51:12:8d:fc:17:e9:a1:a6:5d:be:ac:cf:b2:ca:2f:
f8:8f:c1:35:5d:b3:47:d0:60:48:8c:7f:cb:a9:e2:
b8:a8:93:f8:ad:e3:61:0f:28:89:0b:c6:fc:74:20:
45:7f:41:00:5f:11:68:05:fd:3d:1c:ba:f0:79:3a:
c0:4c:e6:20:8d:6a:57:b1:15:e3:6f:c4:26:b9:ba:
a4:a1:fe:f6:b3:df:86:b1:4b:f7:aa:d3:58:88:94:
96:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CB:5A:A0:CA:9E:9A:F0:52:2E:B5:D8:3F:FB:EE:7F:CF:13:78:F0
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/RstaoMqemvBSLrXYP_vuf88TePA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18245
sbgp-ipAddrBlock: critical
IPv4:
45.253.68.0/22
59.108.0.0/15
103.222.192.0/22
103.235.148.0/22
150.242.168.0/22
219.232.32.0/19
IPv6:
2400:5400::/32
Signature Algorithm: sha256WithRSAEncryption
08:25:a6:47:02:65:52:2d:24:de:48:56:66:28:2d:b8:56:ba:
f5:be:2f:d1:fa:10:8c:b6:64:15:97:e7:5c:e8:4e:19:72:85:
d5:5e:73:a4:d4:a6:35:49:d1:af:57:d3:37:e0:35:28:63:bb:
23:c4:9f:27:b2:c8:7a:30:1e:1e:2f:c0:ab:51:2f:a3:43:60:
58:80:8b:3e:49:dd:73:3c:b5:29:f0:90:59:25:b8:19:b3:e3:
5a:cf:41:92:00:29:27:3d:27:6c:fc:ee:28:db:90:d0:bf:29:
77:f8:a7:1d:ae:b6:a0:27:12:d4:cf:40:52:80:9d:64:0e:17:
20:75:d0:2c:be:17:b8:8b:88:9e:47:9f:1c:87:21:7f:8b:e7:
c8:e6:16:76:d7:ce:d5:8f:dd:bd:2d:ce:2b:fe:77:2a:12:a6:
82:46:d6:37:b8:27:e1:13:30:61:1c:ea:72:3a:7e:0b:59:1e:
54:3a:50:6a:67:90:90:25:55:e3:ea:0c:59:17:e6:7d:5d:e3:
0c:c8:76:5c:6d:1c:5a:94:a5:37:40:d5:cc:d4:c7:df:13:1e:
a0:e8:2c:8f:ae:46:18:be:f0:f4:e8:f8:05:f7:04:91:9d:7b:
86:77:5e:5f:69:0d:ff:d1:bb:86:39:3c:cd:e4:be:f0:ab:4d:
fe:c7:79:b8
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAMy9MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODA1NTlaFw0yNjA0MDMwODAwMDlaMDMx
MTAvBgNVBAMTKDQ2Q0I1QUEwQ0E5RTlBRjA1MjJFQjVEODNGRkJFRTdGQ0YxMzc4
RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/1DtvNadgs1oOvYuK
zTwopKOa+xSjmd8l1yFs/HYCRnsX75vJnDv9EXc2YGXDuoY5hfdmihAC94luyVbb
fXrGOZtNjo8LMh0X4KvTs8BfEmed365TT3TCTFnMXjIz6rVbtVmraXao3Jf+w3ki
NP+hLzfHXolSExtuyCq0secPmNQksG2mE/sfhTivscGsLS3HL4YJrFoegc+31MBQ
4bBwl2iCRVESjfwX6aGmXb6sz7LKL/iPwTVds0fQYEiMf8up4riok/it42EPKIkL
xvx0IEV/QQBfEWgF/T0cuvB5OsBM5iCNalexFeNvxCa5uqSh/vaz34axS/eq01iI
lJapAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQURstaoMqemvBSLrXYP/vuf88TePAw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHSBggrBgEFBQcBCwSBxTCBwjA2BggrBgEF
BQcwBYYqcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEv
MFUGCCsGAQUFBzAKhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvMS9Sc3Rhb01xZW12QlNMclhZUF92dWY4OFRlUEEubWZ0MDEGCCsGAQUF
BzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1sMBkGCCsG
AQUFBwEIAQH/BAowCKAGMAQCAkdFMEsGCCsGAQUFBwEHAQH/BDwwOjApBAIAATAj
AwQCLf1EAwMBO2wDBAJn3sADBAJn65QDBAKW8qgDBAXb6CAwDQQCAAIwBwMFACQA
VAAwDQYJKoZIhvcNAQELBQADggEBAAglpkcCZVItJN5IVmYoLbhWuvW+L9H6EIy2
ZBWX51zoThlyhdVec6TUpjVJ0a9X0zfgNShjuyPEnyeyyHowHh4vwKtRL6NDYFiA
iz5J3XM8tSnwkFkluBmz41rPQZIAKSc9J2z87ijbkNC/KXf4px2utqAnEtTPQFKA
nWQOFyB10Cy+F7iLiJ5HnxyHIX+L58jmFnbXztWP3b0tziv+dyoSpoJG1je4J+ET
MGEc6nI6fgtZHlQ6UGpnkJAlVePqDFkX5n1d4wzIdlxtHFqUpTdA1czUx98THqDo
LI+uRhi+8PTo+AX3BJGde4Z3Xl9pDf/Ru4Y5PM3kvvCrTf7Hebg=
-----END CERTIFICATE-----
Generated at Tue Apr 8 01:42:04 2025 by rpki-client