Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer
File: erbi9MRXMdA8J66v3WCGEYcbQjw.cer (raw, json)
Hash identifier: rfGrefzUQWniux21+vSsJygtXr4xOU3a43o8otZ2mo0=
Subject key identifier: 7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BC5D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:55:54 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 59066
IP: 43.224.160.0/22
IP: 103.43.192.0/22
Validation: Failed, certificate revoked on Mon 04 Nov 2024 01:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48221 (0xbc5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:55:54 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:f4:c7:51:32:d9:0a:08:0d:64:9a:3c:c9:
65:a7:ef:38:f7:84:b6:ca:ad:b3:69:b5:a5:a4:07:
a6:10:68:79:ab:58:4f:ec:06:1b:37:eb:0a:fd:d4:
cd:58:f0:f9:ab:10:b7:2a:91:37:fb:74:c5:90:c6:
78:c9:e4:2a:3b:06:40:ee:7b:c1:be:50:8d:16:75:
74:db:01:07:26:25:ad:2b:bc:08:aa:86:01:3b:6c:
91:ba:48:e6:e4:de:43:61:40:b7:9b:42:b3:56:ed:
ce:3c:72:94:b6:d7:2f:59:a9:18:43:c2:6e:cb:01:
08:c5:a8:e0:f9:ba:11:f1:4a:e6:78:83:fc:60:8e:
9d:8e:b1:78:aa:14:62:dc:6a:85:3f:71:54:6c:e9:
0f:2b:d0:2a:39:7a:04:ad:3f:06:3c:f4:dc:90:89:
f9:dc:2e:5d:2f:09:9b:d9:f8:bf:17:96:e3:b1:57:
1c:2f:00:96:9f:a6:04:72:1a:96:38:6c:0f:47:58:
62:d1:c6:00:22:36:14:69:6c:b0:09:04:50:06:f6:
c4:f0:53:87:84:9a:cd:21:67:8b:6f:5c:77:f2:1e:
d1:6e:7a:e5:85:3a:fd:fa:29:69:2b:80:2e:2f:b9:
2b:6f:3d:ce:ac:66:6b:3b:34:cd:00:87:53:30:fc:
2c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59066
sbgp-ipAddrBlock: critical
IPv4:
43.224.160.0/22
103.43.192.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:8a:ab:18:90:36:0b:55:56:2c:5d:3f:df:ee:f3:18:fc:8c:
de:09:de:ed:b3:48:aa:5a:e4:a1:6a:10:ea:fe:e4:fb:e9:e8:
cb:82:96:e9:f3:52:4b:42:ad:4a:e2:ab:86:ca:5b:e6:ce:74:
cd:ac:28:4d:ac:de:c3:67:8a:f7:ce:16:7d:c0:ae:ca:dc:24:
7c:9d:b3:b3:98:23:54:37:66:58:10:a3:ef:77:1a:60:b5:80:
97:69:bd:90:5c:01:b1:b9:2c:e3:16:17:67:92:a9:25:b3:2e:
62:96:06:bb:9a:5e:35:9c:11:de:ea:3c:78:7d:6b:e6:76:6d:
75:56:8e:96:20:f5:89:bf:f5:4d:fd:a9:d8:1f:5c:5e:3b:a8:
bb:d1:c1:f5:44:fc:72:69:10:6b:11:84:b3:ae:bb:b0:11:dd:
af:85:93:87:01:28:d2:ba:79:37:5f:7f:2f:84:ce:37:8b:b4:
e6:3c:d4:5b:c2:59:78:9b:60:9d:07:ff:76:07:9b:ce:fb:87:
29:62:5b:b8:04:59:77:3d:e9:21:e9:66:bc:a6:84:aa:fe:35:
99:56:3c:e7:da:c9:bb:ab:2b:3d:6c:06:7e:6b:f0:ac:31:52:
9c:cc:2f:2d:94:84:34:7d:00:ad:b8:e1:ef:6a:de:f0:5b:e5:
bc:c4:36:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 05:09:26 2024 by rpki-client on console-ams.rpki-client.org