Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/WRxbA8l84P4-x44jxoVveSwg1AQ.cer
File: WRxbA8l84P4-x44jxoVveSwg1AQ.cer (raw, json)
Hash identifier: op+QLo2k1r08EY6c8ZxI0HLLHLqve8W+1/jnXMa829k=
Subject key identifier: 59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: DC02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 28 Aug 2025 19:32:21 +0000
Certificate not after: Mon 03 Aug 2026 08:44:40 +0000
Subordinate resources: AS: 63719
IP: 45.255.152.0/22
IP: 103.232.144.0/22
IP: 2401:2780::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 07 Sep 2025 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56322 (0xdc02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Aug 28 19:32:21 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=591C5B03C97CE0FE3EC78E23C6856F792C20D404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:98:ad:fa:6a:51:e5:d8:9e:9d:1c:d3:cd:73:
aa:54:b0:78:0c:e0:e9:a9:68:4c:c9:9b:09:b2:c5:
a8:0a:05:fb:46:2e:29:37:0d:2d:c3:a1:79:a4:10:
bb:53:00:c7:de:61:9d:80:4a:16:a3:ac:ff:75:23:
40:a9:5a:b7:99:2c:0d:b7:9d:61:df:82:d4:e7:e7:
ba:bd:7b:50:a5:02:30:67:7a:f6:37:27:31:25:28:
81:ab:91:49:95:22:6a:f0:e7:58:a2:ee:1a:48:55:
b9:da:20:48:05:dc:e2:1c:ee:22:51:6c:5d:7b:8d:
95:17:a0:0c:b9:a6:a5:63:28:a2:96:e2:7e:5a:d9:
9a:10:39:b4:27:8a:28:7f:76:26:4d:9e:c0:43:9f:
aa:47:96:48:af:fe:7c:be:6d:a3:36:6a:33:89:5a:
cb:82:03:2c:8d:d7:a2:68:88:c1:46:9f:91:db:b5:
54:44:22:3e:09:7e:e1:98:5a:e4:e1:0b:99:c4:ac:
b0:85:55:46:6d:74:5c:42:f4:47:72:6e:b3:62:33:
f0:37:4f:40:8b:f8:66:9c:fb:68:6b:ce:5f:82:dd:
5e:35:27:20:10:8c:a1:32:8e:cb:e8:3c:38:93:a2:
0e:ac:e3:4f:5c:c7:11:94:f4:0a:4c:d9:72:00:e3:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63719
sbgp-ipAddrBlock: critical
IPv4:
45.255.152.0/22
103.232.144.0/22
IPv6:
2401:2780::/32
Signature Algorithm: sha256WithRSAEncryption
a7:d0:4a:c8:06:97:e2:d1:11:10:e3:ad:32:ba:20:88:a2:b0:
64:f5:fe:37:3d:af:c8:ee:a2:7a:d0:a5:45:28:20:4d:a5:e2:
5a:ee:69:00:4a:01:a5:5f:87:e9:0d:d3:b0:af:67:ed:b9:90:
bd:83:10:13:de:1f:ab:41:32:fc:b1:73:dd:d2:ea:ea:89:99:
0a:b6:a0:af:ea:ca:b0:15:9d:a7:79:47:d6:34:3b:ee:13:b9:
d5:1e:e3:44:10:c6:74:76:97:da:57:11:ba:71:14:8d:4c:f0:
c0:8b:08:c6:63:51:d3:4f:4b:33:40:76:2f:88:22:bc:e0:63:
e4:b4:7f:05:df:5c:36:11:bc:7f:6f:aa:a3:8b:d6:5e:51:28:
dd:b5:f3:20:b6:0e:a6:2e:c0:a2:cb:8d:87:0e:cd:3a:a0:9e:
ca:76:21:4e:7f:2b:2f:47:5a:1f:df:74:a5:3c:91:fb:12:fa:
14:38:90:10:b0:40:0e:a1:ca:2a:f8:03:a7:3d:35:0b:57:2c:
f7:8c:6f:ac:fc:2e:ae:f0:58:57:98:d7:a2:b7:af:b4:2a:bd:
d8:4f:f7:e6:02:9d:d4:64:be:4f:13:f2:01:37:74:b8:f8:f5:
3c:97:66:22:d9:97:9a:c3:b2:71:af:91:02:dc:46:73:23:de:
ec:3c:3a:57
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIDANwCMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTA4MjgxOTMyMjFaFw0yNjA4MDMwODQ0NDBaMDMx
MTAvBgNVBAMTKDU5MUM1QjAzQzk3Q0UwRkUzRUM3OEUyM0M2ODU2Rjc5MkMyMEQ0
MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQmK36alHl2J6dHNPN
c6pUsHgM4OmpaEzJmwmyxagKBftGLik3DS3DoXmkELtTAMfeYZ2AShajrP91I0Cp
WreZLA23nWHfgtTn57q9e1ClAjBnevY3JzElKIGrkUmVImrw51ii7hpIVbnaIEgF
3OIc7iJRbF17jZUXoAy5pqVjKKKW4n5a2ZoQObQniih/diZNnsBDn6pHlkiv/ny+
baM2ajOJWsuCAyyN16JoiMFGn5HbtVREIj4JfuGYWuThC5nErLCFVUZtdFxC9Edy
brNiM/A3T0CL+Gac+2hrzl+C3V41JyAQjKEyjsvoPDiTog6s409cxxGU9ApM2XIA
4+1bAgMBAAGjggKEMIICgDAdBgNVHQ4EFgQUWRxbA8l84P4+x44jxoVveSwg1AQw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF
BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzc1
Ni8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy
RTNEMDAwMC83NTYvV1J4YkE4bDg0UDQteDQ0anhvVnZlU3dnMUFRLm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa
BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA+OcwNAYIKwYBBQUHAQcBAf8EJTAjMBIE
AgABMAwDBAIt/5gDBAJn6JAwDQQCAAIwBwMFACQBJ4AwDQYJKoZIhvcNAQELBQAD
ggEBAKfQSsgGl+LRERDjrTK6IIiisGT1/jc9r8juonrQpUUoIE2l4lruaQBKAaVf
h+kN07CvZ+25kL2DEBPeH6tBMvyxc93S6uqJmQq2oK/qyrAVnad5R9Y0O+4TudUe
40QQxnR2l9pXEbpxFI1M8MCLCMZjUdNPSzNAdi+IIrzgY+S0fwXfXDYRvH9vqqOL
1l5RKN218yC2DqYuwKLLjYcOzTqgnsp2IU5/Ky9HWh/fdKU8kfsS+hQ4kBCwQA6h
yir4A6c9NQtXLPeMb6z8Lq7wWFeY16K3r7QqvdhP9+YCndRkvk8T8gE3dLj49TyX
ZiLZl5rDsnGvkQLcRnMj3uw8Olc=
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:01:41 2025 by rpki-client