Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/crr3PPKkws49Q9mLyvxhk4ndaG4.cer
File: crr3PPKkws49Q9mLyvxhk4ndaG4.cer (raw, json)
Hash identifier: 68zi7aFIkSHldP9HUeT13eyPtjqkXqIi/Gu/eI2II7c=
Subject key identifier: 72:BA:F7:3C:F2:A4:C2:CE:3D:43:D9:8B:CA:FC:61:93:89:DD:68:6E
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BE38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/591/crr3PPKkws49Q9mLyvxhk4ndaG4.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/591/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 17 Oct 2024 07:11:04 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 63614
IP: 27.0.164.0/22
IP: 43.227.140.0/22
IP: 45.127.144.0/21
IP: 103.25.24.0/22
IP: 103.79.192.0/21
IP: 103.79.208.0/22
IP: 103.196.88.0/21
IP: 114.113.224.0/20
IP: 122.115.32.0/19
IP: 2400:3f40::/32
IP: 2400:3fc0::/32
IP: 2400:4540::/32
IP: 2402:9f80::/32
IP: 2402:e880::/32
IP: 2402:e980::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48696 (0xbe38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 17 07:11:04 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=72BAF73CF2A4C2CE3D43D98BCAFC619389DD686E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:34:ce:e4:6c:7d:6b:b9:22:eb:da:57:60:39:
62:43:78:e0:c1:d0:e9:d0:22:e2:33:d0:1f:f5:5a:
98:05:43:a2:c7:3c:61:66:e7:3a:ad:4f:d7:50:24:
ba:3c:1b:ba:f6:1d:57:b8:02:41:a7:bc:a5:cc:26:
ba:23:db:87:d3:5c:0f:84:e0:a9:cb:e8:17:2e:20:
55:31:d5:13:5c:99:70:91:a1:11:17:6c:85:3c:f0:
32:ad:56:70:02:4f:d6:e4:7f:cc:3d:e2:fa:5a:44:
5f:53:60:09:0d:89:26:d0:73:4a:fa:26:29:da:54:
e1:c0:b5:ce:3d:a0:c7:54:ee:9e:5d:68:f0:40:46:
29:b2:31:ef:e4:7f:19:f9:b0:de:d8:67:29:c1:ab:
ac:5d:b9:2f:82:1c:74:10:ee:12:97:d7:32:a3:d8:
9b:56:79:9e:f2:c0:49:16:02:48:6d:e6:be:f7:e0:
ed:1f:d8:5e:60:0f:10:5c:23:15:bf:f4:a8:3c:d0:
34:e2:51:5b:6d:8f:55:24:76:0f:cf:59:64:fb:56:
19:c0:77:f8:f6:94:e2:22:1e:8b:3e:05:ef:a7:12:
b2:79:46:a6:2a:cd:97:69:79:fb:3b:6d:47:75:03:
d1:af:e9:79:f9:fb:b1:83:dd:9e:8d:ab:a2:62:66:
dc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BA:F7:3C:F2:A4:C2:CE:3D:43:D9:8B:CA:FC:61:93:89:DD:68:6E
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/591/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/591/crr3PPKkws49Q9mLyvxhk4ndaG4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63614
sbgp-ipAddrBlock: critical
IPv4:
27.0.164.0/22
43.227.140.0/22
45.127.144.0/21
103.25.24.0/22
103.79.192.0/21
103.79.208.0/22
103.196.88.0/21
114.113.224.0/20
122.115.32.0/19
IPv6:
2400:3f40::/32
2400:3fc0::/32
2400:4540::/32
2402:9f80::/32
2402:e880::/32
2402:e980::/32
Signature Algorithm: sha256WithRSAEncryption
06:3c:7b:56:db:0f:6c:a8:96:3a:76:80:92:0b:05:2b:81:f1:
95:d1:d6:6f:43:c4:5d:f9:2a:cf:40:c2:d0:38:4f:db:f3:c6:
b5:59:8e:39:bb:ec:1c:57:80:57:92:03:de:0c:c4:d6:ab:23:
e8:24:b7:09:7c:6b:dd:7b:6f:4c:85:60:00:b7:20:e8:52:b7:
6d:66:d7:89:60:37:75:26:62:6d:3c:97:5e:83:f1:9a:53:87:
ac:0d:46:a6:56:b5:0f:c2:25:55:24:83:c6:00:8b:9f:bd:14:
d0:d8:c2:81:10:0d:16:c4:27:81:29:8d:ef:51:ce:85:18:ed:
78:27:da:e5:6a:8f:36:7a:5c:0d:40:2b:2b:85:64:01:b9:1a:
51:5e:d0:22:68:90:e1:42:84:23:44:90:0b:1f:a9:b6:af:8e:
16:b6:d2:50:4b:ea:f8:03:9b:01:f9:8a:08:c8:be:f2:23:89:
82:e3:43:05:a9:41:30:9e:f5:9a:4c:83:38:c2:e8:6e:8d:1a:
f3:95:30:e8:7c:ef:79:29:df:cd:b0:e0:75:c5:5a:8f:d0:4b:
26:61:b7:6a:1b:7e:ac:09:57:68:c5:21:cf:af:ce:d7:f0:8c:
71:4a:f2:bf:9d:77:4a:0f:57:2b:fe:e3:18:fe:cc:15:8d:27:
08:9c:fd:55
-----BEGIN CERTIFICATE-----
MIIFzjCCBLagAwIBAgIDAL44MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDEwMTcwNzExMDRaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKDcyQkFGNzNDRjJBNEMyQ0UzRDQzRDk4QkNBRkM2MTkzODlERDY4
NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmNM7kbH1ruSLr2ldg
OWJDeODB0OnQIuIz0B/1WpgFQ6LHPGFm5zqtT9dQJLo8G7r2HVe4AkGnvKXMJroj
24fTXA+E4KnL6BcuIFUx1RNcmXCRoREXbIU88DKtVnACT9bkf8w94vpaRF9TYAkN
iSbQc0r6JinaVOHAtc49oMdU7p5daPBARimyMe/kfxn5sN7YZynBq6xduS+CHHQQ
7hKX1zKj2JtWeZ7ywEkWAkht5r734O0f2F5gDxBcIxW/9Kg80DTiUVttj1Ukdg/P
WWT7VhnAd/j2lOIiHos+Be+nErJ5RqYqzZdpefs7bUd1A9Gv6Xn5+7GD3Z6Nq6Ji
ZtzfAgMBAAGjggLSMIICzjAdBgNVHQ4EFgQUcrr3PPKkws49Q9mLyvxhk4ndaG4w
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF
BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzU5
MS8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy
RTNEMDAwMC81OTEvY3JyM1BQS2t3czQ5UTltTHl2eGhrNG5kYUc0Lm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa
BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA+H4wgYEGCCsGAQUFBwEHAQH/BHIwcDA8
BAIAATA2AwQCGwCkAwQCK+OMAwQDLX+QAwQCZxkYAwQDZ0/AAwQCZ0/QAwQDZ8RY
AwQEcnHgAwQFenMgMDAEAgACMCoDBQAkAD9AAwUAJAA/wAMFACQARUADBQAkAp+A
AwUAJALogAMFACQC6YAwDQYJKoZIhvcNAQELBQADggEBAAY8e1bbD2yoljp2gJIL
BSuB8ZXR1m9DxF35Ks9AwtA4T9vzxrVZjjm77BxXgFeSA94MxNarI+gktwl8a917
b0yFYAC3IOhSt21m14lgN3UmYm08l16D8ZpTh6wNRqZWtQ/CJVUkg8YAi5+9FNDY
woEQDRbEJ4Epje9RzoUY7Xgn2uVqjzZ6XA1AKyuFZAG5GlFe0CJokOFChCNEkAsf
qbavjha20lBL6vgDmwH5igjIvvIjiYLjQwWpQTCe9ZpMgzjC6G6NGvOVMOh873kp
382w4HXFWo/QSyZht2obfqwJV2jFIc+vztfwjHFK8r+dd0oPVyv+4xj+zBWNJwic
/VU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:42:28 2024 by rpki-client on console-ams.rpki-client.org