Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer
File: TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer (raw, json)
Hash identifier: +Hn2xlVw1kByUuNIHouhP+BazaEnaHQw1GxN4RhBpg0=
Subject key identifier: 4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BBE1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:53:10 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 59039
IP: 61.8.160.0/20
IP: 103.13.196.0/22
IP: 124.108.8.0/21
IP: 2405:7d40::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48097 (0xbbe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:53:10 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=4DD36955B4E7A00CA1FA6EDCDA84AA0730FD26AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:ed:ac:d8:09:8a:57:eb:28:b8:87:12:20:
50:60:ac:1e:a6:8b:75:27:9f:be:88:18:90:22:38:
e1:0f:e6:8d:ff:81:d3:b2:da:87:85:45:52:73:7e:
ad:bc:6e:22:d0:eb:cb:04:60:38:df:24:38:d2:be:
40:34:6f:81:67:e1:34:a9:4a:5b:60:72:b6:d9:20:
12:f6:28:c6:6b:e2:3c:18:5e:c4:4c:ab:9b:af:5a:
a3:a6:3c:59:df:11:00:3f:84:f2:1a:8d:af:b8:39:
95:22:34:99:db:a3:82:00:21:63:4f:92:36:ae:35:
1c:1b:1b:09:55:40:80:a7:bc:c5:4e:a8:08:8a:44:
34:88:32:92:3c:26:a1:a7:d4:9f:75:81:e4:2a:96:
cc:0b:e7:90:d2:fb:d3:4e:50:82:55:6c:8d:6d:20:
41:41:a3:8d:87:b2:21:f7:1e:9d:be:63:01:83:f4:
77:7d:fc:ce:7a:db:b3:24:c2:ef:f3:01:e8:0b:ee:
69:ea:ba:3b:a8:e5:3e:e1:dc:f9:4e:92:e7:d7:57:
6a:89:1a:7c:fb:84:98:20:3f:3f:79:2c:80:4e:31:
02:8b:d1:43:34:d8:b5:fc:cc:c0:ac:ef:28:2a:fc:
e2:44:b0:0b:88:6e:3b:da:84:eb:9c:c7:0e:7b:c0:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59039
sbgp-ipAddrBlock: critical
IPv4:
61.8.160.0/20
103.13.196.0/22
124.108.8.0/21
IPv6:
2405:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
47:b1:40:9b:2b:28:ac:ca:8d:d8:af:e1:e4:4e:e3:df:16:9f:
3b:0e:29:63:87:c0:e7:e1:8f:57:53:48:29:ed:50:84:e5:97:
12:67:72:21:b2:37:34:71:9c:0c:4f:2c:af:a3:79:5e:d8:7d:
a3:e1:b0:fb:68:7c:6c:c0:98:f5:8c:45:a7:cf:52:10:a3:83:
c0:bd:92:0b:ea:de:de:d7:ab:6e:31:38:44:94:67:54:ee:9e:
4e:b2:c3:96:c6:73:e7:23:68:44:c1:2e:65:bf:45:69:75:75:
7a:f9:ce:44:e7:d4:77:c6:08:0f:60:c3:da:39:10:e6:ce:b9:
61:39:ef:99:e4:fe:10:a9:6f:7b:f9:86:30:4c:ce:aa:99:c6:
f7:c7:e7:11:80:62:39:6a:58:45:db:52:b2:ce:ea:b5:a9:4a:
38:3b:03:62:3d:60:c0:2a:90:ce:b0:11:29:89:7d:79:08:49:
b6:8b:c7:c7:36:9d:46:4c:ab:35:ef:b0:96:1d:d7:df:cf:08:
88:29:0b:23:4c:3d:65:38:67:de:87:f9:15:b6:66:9c:43:d6:
9c:6a:c4:a3:a7:3c:94:1d:7b:6b:67:09:30:12:8a:a4:a5:db:
51:c3:82:81:5e:e7:ef:05:1c:1c:df:c1:66:33:01:90:b7:ba:
12:47:8d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:14:39 2024 by rpki-client on console-ams.rpki-client.org