Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer
File: f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer (raw, json)
Hash identifier: aNycbKFafls1QKCesfivUL77pWc+IS5c8EFLuDpfFoE=
Subject key identifier: 7F:91:8C:F2:65:03:D1:F9:BC:FA:77:DC:0A:A5:92:A5:7D:DF:82:45
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BABB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:48:52 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 151295
IP: 103.74.80.0/22
IP: 103.216.136.0/22
IP: 157.119.252.0/22
IP: 2401:7660::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47803 (0xbabb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:48:52 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=7F918CF26503D1F9BCFA77DC0AA592A57DDF8245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:72:d7:fe:ae:be:9d:ab:e5:92:15:af:51:
a9:e4:d2:63:e1:a8:47:9f:ba:3c:ff:64:6c:29:19:
a6:82:df:8a:74:bf:d7:b1:aa:05:93:6e:ef:6f:a9:
90:59:e2:db:71:e1:74:4d:ff:2d:9b:f2:dc:de:2e:
7c:6e:8e:67:a7:2f:15:d0:c2:db:96:f3:69:7b:3a:
fa:93:43:51:73:d5:c7:a8:6d:35:79:40:75:15:e1:
77:3f:3a:0f:10:e7:66:43:a3:82:e2:3a:cc:ed:40:
b6:19:a8:da:33:0c:ed:3b:e4:70:76:be:85:66:db:
2d:20:51:a3:fc:45:58:46:f2:e0:f0:59:32:ff:2c:
2e:dc:3d:9f:86:e4:73:5e:e8:21:55:a0:ac:e0:64:
ab:e5:99:17:6d:bc:aa:f4:7c:31:c0:44:96:b4:4e:
11:63:dd:da:47:dc:dd:cc:31:8b:5c:16:2f:5b:74:
3e:a6:88:34:09:fc:be:7a:1a:51:ce:48:d8:af:72:
00:2a:6f:7d:79:3d:13:99:5f:4f:9e:c4:62:82:f3:
26:16:23:0a:74:40:7d:0d:77:94:dd:cb:a4:11:94:
2a:43:53:9f:ff:25:00:52:10:cf:4b:8f:83:fe:5b:
d0:c5:35:49:b0:9a:69:d3:ab:05:ad:58:1c:8d:b4:
a3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:91:8C:F2:65:03:D1:F9:BC:FA:77:DC:0A:A5:92:A5:7D:DF:82:45
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151295
sbgp-ipAddrBlock: critical
IPv4:
103.74.80.0/22
103.216.136.0/22
157.119.252.0/22
IPv6:
2401:7660::/32
Signature Algorithm: sha256WithRSAEncryption
68:40:70:42:74:c9:bc:32:da:64:6b:c3:a6:8e:f9:21:8b:e2:
f6:ff:b1:d4:47:f7:17:37:e9:03:60:0a:f0:24:14:da:29:cd:
8f:57:fd:3f:46:b0:20:e8:de:5e:1d:62:1c:30:f9:0d:1d:cc:
5a:cd:09:2c:2b:f2:d7:bc:4f:ef:88:b3:ad:78:68:18:49:4d:
7f:1a:3e:2b:2f:65:41:2f:b5:6b:cc:2a:7c:63:7b:b5:fb:5d:
79:83:7d:80:1b:78:35:5d:32:66:d3:3e:75:2c:6e:36:90:c9:
8f:ba:32:24:d8:79:6e:af:a2:3a:86:58:70:c4:6b:63:05:a7:
2a:51:2c:39:d3:ab:70:c4:8a:21:5f:9f:5c:1d:5f:4d:e8:17:
5b:25:94:72:3f:c7:63:74:7c:9e:47:ea:04:a3:6a:f8:73:70:
93:59:8b:71:4a:6e:c3:82:a8:44:de:4f:3b:f7:1e:0f:e5:30:
52:8e:35:28:9d:fe:f5:cf:f2:49:6e:35:26:48:51:c2:fb:15:
9b:64:41:d9:fa:19:6f:1e:72:20:03:3e:93:68:7b:fd:9e:49:
12:6c:99:ac:1c:67:f4:75:82:f3:b5:1e:71:8d:7c:a7:6b:3b:
99:ac:ec:a4:e6:01:86:0e:db:9b:b9:83:4b:c3:bc:31:4b:10:
07:8f:7d:ef
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIDALq7MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjQ4NTJaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKDdGOTE4Q0YyNjUwM0QxRjlCQ0ZBNzdEQzBBQTU5MkE1N0RERjgy
NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDETHLX/q6+navlkhWv
Uank0mPhqEefujz/ZGwpGaaC34p0v9exqgWTbu9vqZBZ4ttx4XRN/y2b8tzeLnxu
jmenLxXQwtuW82l7OvqTQ1Fz1ceobTV5QHUV4Xc/Og8Q52ZDo4LiOsztQLYZqNoz
DO075HB2voVm2y0gUaP8RVhG8uDwWTL/LC7cPZ+G5HNe6CFVoKzgZKvlmRdtvKr0
fDHARJa0ThFj3dpH3N3MMYtcFi9bdD6miDQJ/L56GlHOSNivcgAqb315PROZX0+e
xGKC8yYWIwp0QH0Nd5Tdy6QRlCpDU5//JQBSEM9Lj4P+W9DFNUmwmmnTqwWtWByN
tKPRAgMBAAGjggKMMIICiDAdBgNVHQ4EFgQUf5GM8mUD0fm8+nfcCqWSpX3fgkUw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy
NTUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMzI1NS9mNUdNOG1VRDBmbTgtbmZjQ3FXU3BYM2Zna1UubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO/zA6BggrBgEFBQcBBwEB/wQrMCkw
GAQCAAEwEgMEAmdKUAMEAmfYiAMEAp13/DANBAIAAjAHAwUAJAF2YDANBgkqhkiG
9w0BAQsFAAOCAQEAaEBwQnTJvDLaZGvDpo75IYvi9v+x1Ef3FzfpA2AK8CQU2inN
j1f9P0awIOjeXh1iHDD5DR3MWs0JLCvy17xP74izrXhoGElNfxo+Ky9lQS+1a8wq
fGN7tftdeYN9gBt4NV0yZtM+dSxuNpDJj7oyJNh5bq+iOoZYcMRrYwWnKlEsOdOr
cMSKIV+fXB1fTegXWyWUcj/HY3R8nkfqBKNq+HNwk1mLcUpuw4KoRN5PO/ceD+Uw
Uo41KJ3+9c/ySW41JkhRwvsVm2RB2foZbx5yIAM+k2h7/Z5JEmyZrBxn9HWC87Ue
cY18p2s7mazspOYBhg7bm7mDS8O8MUsQB4997w==
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:14:40 2024 by rpki-client on console-ams.rpki-client.org