Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/_70kcyBFw5hrQE607oXp9AdJ-ms.cer
File: _70kcyBFw5hrQE607oXp9AdJ-ms.cer (raw, json)
Hash identifier: SYR53LFWaDhrE3bcMOvpAiRaHxnmSLaAsBN+tMjVDOE=
Subject key identifier: FF:BD:24:73:20:45:C3:98:6B:40:4E:B4:EE:85:E9:F4:07:49:FA:6B
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BB79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3217/_70kcyBFw5hrQE607oXp9AdJ-ms.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3217/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:51:32 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: IP: 103.134.232.0/23
IP: 2400:fb60::/32
Validation: Failed, certificate revoked on Wed 23 Oct 2024 05:07:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47993 (0xbb79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:51:32 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=FFBD24732045C3986B404EB4EE85E9F40749FA6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:e8:2d:1e:3d:d2:b1:aa:d1:3a:73:1f:a5:
7f:67:5d:db:6b:4f:fe:33:d2:eb:55:c1:31:6b:c1:
e8:88:44:f1:44:47:33:fa:5c:b0:aa:5c:cb:5f:7c:
fb:08:d3:ef:45:5b:c5:6a:0c:ed:cf:11:2d:3a:4c:
aa:eb:40:cc:fd:bb:53:c1:c0:ef:a8:6b:02:e8:70:
e7:9f:6f:c2:d1:e9:c7:b8:22:8f:45:0d:9f:85:c0:
af:3d:e6:a1:d9:21:30:d4:26:a8:5f:45:00:f3:af:
87:cb:20:a1:8c:2e:1f:be:82:e4:46:2e:8f:a6:d2:
4a:21:66:9e:8f:84:36:63:2d:fe:25:cc:a0:44:c4:
b0:58:bb:02:14:77:33:5b:79:b8:bf:aa:72:b1:5e:
e3:7b:f7:e5:c2:1a:6e:ed:cb:e4:9c:e8:75:db:9c:
d9:21:5b:57:82:92:bc:75:af:9e:72:40:d6:dc:55:
62:99:da:c6:46:09:49:0f:89:03:1d:a9:0b:17:cd:
a7:71:2b:6a:b6:2a:55:8b:24:d5:01:bd:4c:13:79:
8f:ba:ec:bf:d4:6a:d4:f6:e6:af:59:19:c1:40:55:
f2:8b:76:64:6b:aa:a3:95:38:5f:59:5b:77:98:94:
45:8a:be:36:42:d7:0b:b4:5f:db:72:eb:8e:54:81:
5f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BD:24:73:20:45:C3:98:6B:40:4E:B4:EE:85:E9:F4:07:49:FA:6B
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3217/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3217/_70kcyBFw5hrQE607oXp9AdJ-ms.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.134.232.0/23
IPv6:
2400:fb60::/32
Signature Algorithm: sha256WithRSAEncryption
2c:79:55:46:88:48:6f:95:25:50:45:50:14:ef:76:03:ca:fd:
b0:fa:3c:1d:a0:d0:c1:4b:b8:d0:16:6b:0e:37:94:5d:8e:bd:
45:e3:69:24:21:ab:29:57:2e:b5:49:fb:16:f1:1c:77:c7:65:
55:7b:66:7e:f5:8f:df:51:ad:5b:36:9c:81:0d:76:41:f8:d0:
9b:05:f3:b2:bd:f1:d1:c9:16:aa:9d:63:ad:fe:52:49:d1:8c:
83:30:a2:4f:b3:37:1b:b7:09:a8:38:4b:89:d1:aa:d7:50:93:
58:67:3b:f3:b5:a5:5f:b8:61:c9:fe:e8:43:35:1f:dc:3a:d6:
ea:64:4a:46:cb:7f:6d:9f:c7:b6:52:39:99:e0:a1:4c:7c:c7:
dd:4a:56:9d:57:91:d8:68:59:01:d8:bb:6d:d0:f8:ca:9f:58:
f0:a9:24:1b:1c:48:92:5c:2a:5c:67:38:cf:3d:9b:6e:52:5b:
e4:b5:b3:fe:e1:d1:76:53:cb:d7:a6:4f:2a:ca:13:d1:30:7b:
97:af:90:07:b5:7e:4a:c5:63:5c:f0:44:b8:cd:73:cd:82:2a:
13:e6:64:67:94:ac:af:30:51:a4:31:d8:05:3f:24:d2:d2:fd:
70:d3:a1:b8:45:68:e0:7a:7b:e4:38:60:74:aa:2b:c2:a2:d1:
c9:83:fb:7e
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIDALt5MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjUxMzJaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKEZGQkQyNDczMjA0NUMzOTg2QjQwNEVCNEVFODVFOUY0MDc0OUZB
NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzcugtHj3SsarROnMf
pX9nXdtrT/4z0utVwTFrweiIRPFERzP6XLCqXMtffPsI0+9FW8VqDO3PES06TKrr
QMz9u1PBwO+oawLocOefb8LR6ce4Io9FDZ+FwK895qHZITDUJqhfRQDzr4fLIKGM
Lh++guRGLo+m0kohZp6PhDZjLf4lzKBExLBYuwIUdzNbebi/qnKxXuN79+XCGm7t
y+Sc6HXbnNkhW1eCkrx1r55yQNbcVWKZ2sZGCUkPiQMdqQsXzadxK2q2KlWLJNUB
vUwTeY+67L/UatT25q9ZGcFAVfKLdmRrqqOVOF9ZW3eYlEWKvjZC1wu0X9ty645U
gV+FAgMBAAGjggJkMIICYDAdBgNVHQ4EFgQU/70kcyBFw5hrQE607oXp9AdJ+msw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy
MTcvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMzIxNy9fNzBrY3lCRnc1aHJRRTYwN29YcDlBZEotbXMubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ4boMA0EAgACMAcDBQAkAPtg
MA0GCSqGSIb3DQEBCwUAA4IBAQAseVVGiEhvlSVQRVAU73YDyv2w+jwdoNDBS7jQ
FmsON5Rdjr1F42kkIaspVy61SfsW8Rx3x2VVe2Z+9Y/fUa1bNpyBDXZB+NCbBfOy
vfHRyRaqnWOt/lJJ0YyDMKJPszcbtwmoOEuJ0arXUJNYZzvztaVfuGHJ/uhDNR/c
OtbqZEpGy39tn8e2UjmZ4KFMfMfdSladV5HYaFkB2Ltt0PjKn1jwqSQbHEiSXCpc
ZzjPPZtuUlvktbP+4dF2U8vXpk8qyhPRMHuXr5AHtX5KxWNc8ES4zXPNgioT5mRn
lKyvMFGkMdgFPyTS0v1w06G4RWjgenvkOGB0qivCotHJg/t+
-----END CERTIFICATE-----
Generated at Wed Oct 23 06:22:42 2024 by rpki-client on console-ams.rpki-client.org