Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/YLPIasbP0CN84cnspVtYB15oi9A.cer
File: YLPIasbP0CN84cnspVtYB15oi9A.cer (raw, json)
Hash identifier: 3JnlVT0pk6IO8Q6st+THwW/kXhKy/mtyyRV5DFCNJ9E=
Subject key identifier: 60:B3:C8:6A:C6:CF:D0:23:7C:E1:C9:EC:A5:5B:58:07:5E:68:8B:D0
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BB59
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3213/YLPIasbP0CN84cnspVtYB15oi9A.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3213/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:51:05 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: IP: 202.38.8.0/21
Validation: Failed, certificate revoked on Fri 21 Mar 2025 02:58:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47961 (0xbb59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Sep 27 02:51:05 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=60B3C86AC6CFD0237CE1C9ECA55B58075E688BD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:81:69:2a:48:97:9b:7a:ec:d4:2f:57:b3:47:
9c:dd:22:b7:c6:1d:c5:c9:00:9a:e2:bd:db:89:d7:
49:40:33:00:29:7f:31:e9:98:dd:e6:b8:35:09:5a:
a4:0a:19:c1:f5:6f:01:54:f1:f6:ac:01:7f:34:92:
69:99:01:8a:da:ea:09:82:72:5b:34:d4:e8:89:3d:
96:39:35:ef:c7:bf:44:97:d1:d6:40:1b:48:7c:13:
83:6b:d5:5d:db:33:1e:9a:85:21:4b:0d:5d:ad:34:
30:33:eb:37:21:6e:cc:ed:ca:94:a4:f9:67:c4:5d:
32:ef:ac:62:33:aa:05:8b:a7:ab:4a:f9:70:03:c8:
57:f9:19:87:c2:31:88:24:27:50:24:9b:d8:8d:6b:
9b:f6:23:ad:71:2b:59:85:0a:89:72:f7:f6:10:b2:
0f:92:70:27:d8:e1:a0:63:bc:a2:f7:ff:4e:08:91:
f9:04:0b:59:29:89:8b:1a:60:a6:d0:d7:71:9f:b3:
4c:3a:fc:e8:3e:78:ae:bd:4e:2a:e3:78:71:e1:f9:
b3:84:f2:10:7d:00:03:04:8b:db:1e:92:76:3b:38:
f1:a8:f1:71:5a:e5:f1:b6:fc:1d:e4:4c:71:f4:1d:
30:f9:ec:30:31:6a:fb:f7:49:19:40:05:3d:eb:98:
2b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B3:C8:6A:C6:CF:D0:23:7C:E1:C9:EC:A5:5B:58:07:5E:68:8B:D0
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3213/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3213/YLPIasbP0CN84cnspVtYB15oi9A.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.38.8.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:61:3e:49:29:e0:1d:e3:5b:0c:c9:e1:3d:ea:ab:51:89:ad:
13:64:87:9c:81:97:32:82:df:50:58:2e:61:0f:dc:41:bf:cb:
70:29:b4:b7:d0:cc:e8:d7:9f:c7:1d:9d:3e:a7:9c:c7:5c:3c:
a5:77:35:db:47:e1:49:04:a3:ad:85:e3:c1:51:52:c4:72:c4:
e2:e3:57:b8:67:86:a7:8a:43:c0:87:66:1b:32:3b:8f:8f:41:
4e:f0:74:99:dc:64:39:35:74:e3:e3:6d:b2:46:88:b8:9c:45:
36:aa:d0:e8:59:bf:27:e8:4f:7d:7e:76:be:ab:10:ba:72:9b:
9f:03:f0:f1:15:26:55:46:10:d9:53:07:4b:4f:8c:dc:49:2e:
a6:68:75:ff:df:d6:0e:40:7a:3d:5a:02:38:08:c3:16:ee:70:
5c:47:83:4a:50:20:f6:30:22:4c:2a:80:23:2d:fe:b6:5c:f9:
16:1e:17:cd:10:ae:87:1c:da:07:f4:28:17:f4:91:95:d5:96:
01:37:31:62:26:eb:3e:f6:b7:ed:8f:32:8d:28:19:25:bc:6a:
61:71:10:8d:4b:68:b2:54:bf:ba:07:a1:2f:26:ad:58:0d:13:
b0:68:42:b7:6f:37:2e:19:db:1b:59:db:95:7d:a9:e4:d7:ce:
10:f7:41:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:19:44 2025 by rpki-client