Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/RstaoMqemvBSLrXYP_vuf88TePA.cer
File: RstaoMqemvBSLrXYP_vuf88TePA.cer (raw, json)
Hash identifier: aUBWSpqZYxl/jEaccExc+AXlbkNxwndA/6pp88I/jmM=
Subject key identifier: 46:CB:5A:A0:CA:9E:9A:F0:52:2E:B5:D8:3F:FB:EE:7F:CF:13:78:F0
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BCE5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/RstaoMqemvBSLrXYP_vuf88TePA.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Sat 28 Sep 2024 19:49:10 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 18245
AS: 24428
IP: 59.108.0.0/15
IP: 103.235.148.0/22
IP: 150.242.168.0/22
IP: 219.232.32.0/19
IP: 2400:5400::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48357 (0xbce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 28 19:49:10 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=46CB5AA0CA9E9AF0522EB5D83FFBEE7FCF1378F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d4:3b:6f:35:a7:60:b3:5a:0e:bd:8b:8a:cd:
3c:28:a4:a3:9a:fb:14:a3:99:df:25:d7:21:6c:fc:
76:02:46:7b:17:ef:9b:c9:9c:3b:fd:11:77:36:60:
65:c3:ba:86:39:85:f7:66:8a:10:02:f7:89:6e:c9:
56:db:7d:7a:c6:39:9b:4d:8e:8f:0b:32:1d:17:e0:
ab:d3:b3:c0:5f:12:67:9d:df:ae:53:4f:74:c2:4c:
59:cc:5e:32:33:ea:b5:5b:b5:59:ab:69:76:a8:dc:
97:fe:c3:79:22:34:ff:a1:2f:37:c7:5e:89:52:13:
1b:6e:c8:2a:b4:b1:e7:0f:98:d4:24:b0:6d:a6:13:
fb:1f:85:38:af:b1:c1:ac:2d:2d:c7:2f:86:09:ac:
5a:1e:81:cf:b7:d4:c0:50:e1:b0:70:97:68:82:45:
51:12:8d:fc:17:e9:a1:a6:5d:be:ac:cf:b2:ca:2f:
f8:8f:c1:35:5d:b3:47:d0:60:48:8c:7f:cb:a9:e2:
b8:a8:93:f8:ad:e3:61:0f:28:89:0b:c6:fc:74:20:
45:7f:41:00:5f:11:68:05:fd:3d:1c:ba:f0:79:3a:
c0:4c:e6:20:8d:6a:57:b1:15:e3:6f:c4:26:b9:ba:
a4:a1:fe:f6:b3:df:86:b1:4b:f7:aa:d3:58:88:94:
96:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CB:5A:A0:CA:9E:9A:F0:52:2E:B5:D8:3F:FB:EE:7F:CF:13:78:F0
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1/RstaoMqemvBSLrXYP_vuf88TePA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18245
24428
sbgp-ipAddrBlock: critical
IPv4:
59.108.0.0/15
103.235.148.0/22
150.242.168.0/22
219.232.32.0/19
IPv6:
2400:5400::/32
Signature Algorithm: sha256WithRSAEncryption
0b:39:67:1a:a2:d0:de:ec:1d:1d:39:b2:30:fd:a0:6c:ab:43:
7b:71:60:13:5a:4f:9d:ee:17:a4:36:25:ec:cf:d4:2f:31:99:
fa:39:c1:3b:50:6a:91:8c:57:97:44:63:b4:9b:da:7d:67:6b:
54:64:68:c2:95:2a:f1:cf:d9:dc:17:a1:b6:ff:3a:ed:c3:1b:
ce:f8:81:1b:1d:59:e3:fd:33:69:a9:ec:5e:c1:0e:a0:d3:64:
1d:7f:4b:7e:a5:a9:7c:ec:27:55:28:2b:61:b1:30:fb:14:7c:
6f:c3:93:1b:f2:17:4f:4d:40:82:72:e8:f4:39:40:b8:8f:8b:
cf:18:6d:0b:a0:70:b7:6e:28:fe:86:62:d5:dd:cb:1c:df:69:
e0:6a:ab:17:0e:b2:3b:5e:e0:68:32:55:4a:20:28:48:a3:6c:
9e:28:90:0c:f5:11:b9:31:17:b8:72:b6:bb:e6:7a:e6:17:9b:
c7:8f:34:30:54:98:0c:a6:29:fc:a6:fc:b1:af:c2:6d:2f:43:
23:f1:3a:d3:1e:e7:f1:e8:ad:61:09:1b:e2:7d:e4:80:b0:7d:
12:0f:75:e4:08:94:6f:f7:ee:f7:b0:1b:80:ff:b6:7c:dd:f3:
f4:9f:94:22:e4:63:6c:74:60:31:67:e9:c2:7a:41:d8:30:42:
69:57:ca:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:42:28 2024 by rpki-client on console-ams.rpki-client.org