Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/WRxbA8l84P4-x44jxoVveSwg1AQ.cer
File: WRxbA8l84P4-x44jxoVveSwg1AQ.cer (raw, json)
Hash identifier: 8YkkdFDWCV104PH26vxxGl+N4AKAi1xlMSWmoMoK3Ek=
Subject key identifier: 59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CA7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 03:08:02 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 63719
IP: 45.255.152.0/22
IP: 103.232.144.0/22
IP: 2401:2780::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51835 (0xca7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 03:08:02 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=591C5B03C97CE0FE3EC78E23C6856F792C20D404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:98:ad:fa:6a:51:e5:d8:9e:9d:1c:d3:cd:73:
aa:54:b0:78:0c:e0:e9:a9:68:4c:c9:9b:09:b2:c5:
a8:0a:05:fb:46:2e:29:37:0d:2d:c3:a1:79:a4:10:
bb:53:00:c7:de:61:9d:80:4a:16:a3:ac:ff:75:23:
40:a9:5a:b7:99:2c:0d:b7:9d:61:df:82:d4:e7:e7:
ba:bd:7b:50:a5:02:30:67:7a:f6:37:27:31:25:28:
81:ab:91:49:95:22:6a:f0:e7:58:a2:ee:1a:48:55:
b9:da:20:48:05:dc:e2:1c:ee:22:51:6c:5d:7b:8d:
95:17:a0:0c:b9:a6:a5:63:28:a2:96:e2:7e:5a:d9:
9a:10:39:b4:27:8a:28:7f:76:26:4d:9e:c0:43:9f:
aa:47:96:48:af:fe:7c:be:6d:a3:36:6a:33:89:5a:
cb:82:03:2c:8d:d7:a2:68:88:c1:46:9f:91:db:b5:
54:44:22:3e:09:7e:e1:98:5a:e4:e1:0b:99:c4:ac:
b0:85:55:46:6d:74:5c:42:f4:47:72:6e:b3:62:33:
f0:37:4f:40:8b:f8:66:9c:fb:68:6b:ce:5f:82:dd:
5e:35:27:20:10:8c:a1:32:8e:cb:e8:3c:38:93:a2:
0e:ac:e3:4f:5c:c7:11:94:f4:0a:4c:d9:72:00:e3:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63719
sbgp-ipAddrBlock: critical
IPv4:
45.255.152.0/22
103.232.144.0/22
IPv6:
2401:2780::/32
Signature Algorithm: sha256WithRSAEncryption
a2:73:3e:bc:4c:b1:61:9f:55:38:e6:15:36:e4:a1:1b:6c:49:
64:f5:70:47:fd:98:64:ef:4e:a7:87:12:52:71:77:b4:d4:96:
b5:62:27:73:6a:50:7b:71:58:f7:e8:d0:e5:3d:a1:a7:39:20:
1e:f4:8e:b6:55:96:24:a3:e8:50:c9:b0:fa:e1:d4:fe:24:41:
09:f8:08:a8:7e:b4:05:99:11:54:60:b8:95:3d:81:0f:e9:69:
19:4b:03:76:51:a1:50:1a:c4:ce:63:bb:1f:4e:78:14:1e:72:
e2:b3:bb:9f:6f:25:f9:ea:dc:fb:3d:ad:00:a6:9a:3f:75:a5:
66:c3:a3:45:e0:f7:62:97:06:2d:99:95:73:d3:21:5f:a3:36:
81:d0:99:2d:04:b8:5e:d8:32:8d:b7:44:e3:61:71:08:ef:29:
2c:56:4f:01:67:46:9d:04:b9:d4:4f:e0:23:c3:ae:68:c2:09:
ce:2e:e3:53:13:5d:a4:9f:a5:57:23:d8:f2:41:a0:31:77:a2:
7f:31:72:7a:78:0b:ed:e9:d5:ee:56:c6:48:b8:b1:8f:8d:ff:
8d:5e:7e:f3:99:43:13:44:d6:08:3c:53:72:2f:98:fd:47:6c:
76:a1:b8:85:9e:f9:1d:82:06:e1:21:f9:25:3a:62:a8:8e:4e:
77:e5:b9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:20:56 2025 by rpki-client