Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/WRxbA8l84P4-x44jxoVveSwg1AQ.cer
File: WRxbA8l84P4-x44jxoVveSwg1AQ.cer (raw, json)
Hash identifier: 9EjGVzfbX/5s0Nh9/RWP7HcjmAmyS/Vc7OpGPoczLYE=
Subject key identifier: 59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: ADF7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 01 Feb 2024 01:19:06 +0000
Certificate not after: Fri 31 Jan 2025 01:13:46 +0000
Subordinate resources: AS: 63719
IP: 45.255.152.0/22
IP: 103.232.144.0/22
IP: 2401:2780::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 05:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44535 (0xadf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Feb 1 01:19:06 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=591C5B03C97CE0FE3EC78E23C6856F792C20D404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:98:ad:fa:6a:51:e5:d8:9e:9d:1c:d3:cd:73:
aa:54:b0:78:0c:e0:e9:a9:68:4c:c9:9b:09:b2:c5:
a8:0a:05:fb:46:2e:29:37:0d:2d:c3:a1:79:a4:10:
bb:53:00:c7:de:61:9d:80:4a:16:a3:ac:ff:75:23:
40:a9:5a:b7:99:2c:0d:b7:9d:61:df:82:d4:e7:e7:
ba:bd:7b:50:a5:02:30:67:7a:f6:37:27:31:25:28:
81:ab:91:49:95:22:6a:f0:e7:58:a2:ee:1a:48:55:
b9:da:20:48:05:dc:e2:1c:ee:22:51:6c:5d:7b:8d:
95:17:a0:0c:b9:a6:a5:63:28:a2:96:e2:7e:5a:d9:
9a:10:39:b4:27:8a:28:7f:76:26:4d:9e:c0:43:9f:
aa:47:96:48:af:fe:7c:be:6d:a3:36:6a:33:89:5a:
cb:82:03:2c:8d:d7:a2:68:88:c1:46:9f:91:db:b5:
54:44:22:3e:09:7e:e1:98:5a:e4:e1:0b:99:c4:ac:
b0:85:55:46:6d:74:5c:42:f4:47:72:6e:b3:62:33:
f0:37:4f:40:8b:f8:66:9c:fb:68:6b:ce:5f:82:dd:
5e:35:27:20:10:8c:a1:32:8e:cb:e8:3c:38:93:a2:
0e:ac:e3:4f:5c:c7:11:94:f4:0a:4c:d9:72:00:e3:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63719
sbgp-ipAddrBlock: critical
IPv4:
45.255.152.0/22
103.232.144.0/22
IPv6:
2401:2780::/32
Signature Algorithm: sha256WithRSAEncryption
18:29:09:16:0b:9f:33:1d:91:3e:78:2e:fc:d8:98:58:6a:d9:
28:74:52:f4:8d:9c:8f:9c:39:15:40:2d:3d:15:ea:87:c1:28:
ee:01:36:52:c9:7a:fd:1d:26:cb:35:cc:4c:e6:65:08:44:8f:
3a:68:16:ef:31:f8:f9:79:39:bf:28:f1:6e:d1:0e:05:8d:76:
0f:42:6f:12:31:c5:24:6c:7c:a9:33:a6:6a:93:9c:8e:d1:5f:
da:59:a1:84:5c:d8:e5:af:c2:12:25:11:3b:fc:78:2b:34:a3:
b0:dc:b1:75:d5:c0:d8:04:e7:d5:ae:5d:9a:b2:eb:46:50:6f:
64:39:db:2c:51:49:f9:85:08:10:60:ee:c9:65:e1:57:f8:c7:
86:5c:8e:26:ef:12:36:3c:4e:ff:d3:6a:7c:2c:10:83:e4:47:
33:a8:9a:e8:3b:ea:ec:8c:4d:ca:fa:92:3b:a7:f3:bd:6b:c2:
5c:b2:f0:6a:e5:54:29:ab:0a:bc:2b:75:6c:0b:fe:fe:32:3c:
25:12:8e:59:9f:c2:ca:9c:cc:f9:46:46:f8:80:ec:f8:c5:82:
31:62:98:9a:94:d8:e6:26:e5:af:96:76:e3:ec:b6:3c:43:b5:
da:50:10:48:a9:26:18:29:40:59:72:96:5d:92:bc:93:9d:3f:
3f:b5:78:1c
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIDAK33MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDAyMDEwMTE5MDZaFw0yNTAxMzEwMTEzNDZaMDMx
MTAvBgNVBAMTKDU5MUM1QjAzQzk3Q0UwRkUzRUM3OEUyM0M2ODU2Rjc5MkMyMEQ0
MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQmK36alHl2J6dHNPN
c6pUsHgM4OmpaEzJmwmyxagKBftGLik3DS3DoXmkELtTAMfeYZ2AShajrP91I0Cp
WreZLA23nWHfgtTn57q9e1ClAjBnevY3JzElKIGrkUmVImrw51ii7hpIVbnaIEgF
3OIc7iJRbF17jZUXoAy5pqVjKKKW4n5a2ZoQObQniih/diZNnsBDn6pHlkiv/ny+
baM2ajOJWsuCAyyN16JoiMFGn5HbtVREIj4JfuGYWuThC5nErLCFVUZtdFxC9Edy
brNiM/A3T0CL+Gac+2hrzl+C3V41JyAQjKEyjsvoPDiTog6s409cxxGU9ApM2XIA
4+1bAgMBAAGjggKEMIICgDAdBgNVHQ4EFgQUWRxbA8l84P4+x44jxoVveSwg1AQw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF
BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzc1
Ni8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy
RTNEMDAwMC83NTYvV1J4YkE4bDg0UDQteDQ0anhvVnZlU3dnMUFRLm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa
BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA+OcwNAYIKwYBBQUHAQcBAf8EJTAjMBIE
AgABMAwDBAIt/5gDBAJn6JAwDQQCAAIwBwMFACQBJ4AwDQYJKoZIhvcNAQELBQAD
ggEBABgpCRYLnzMdkT54LvzYmFhq2Sh0UvSNnI+cORVALT0V6ofBKO4BNlLJev0d
Jss1zEzmZQhEjzpoFu8x+Pl5Ob8o8W7RDgWNdg9CbxIxxSRsfKkzpmqTnI7RX9pZ
oYRc2OWvwhIlETv8eCs0o7DcsXXVwNgE59WuXZqy60ZQb2Q52yxRSfmFCBBg7sll
4Vf4x4ZcjibvEjY8Tv/TanwsEIPkRzOomug76uyMTcr6kjun871rwlyy8GrlVCmr
CrwrdWwL/v4yPCUSjlmfwsqczPlGRviA7PjFgjFimJqU2OYm5a+WduPstjxDtdpQ
EEipJhgpQFlyll2SvJOdPz+1eBw=
-----END CERTIFICATE-----
Generated at Thu May 2 23:49:54 2024 by rpki-client on console-fra.rpki-client.org