Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
File: g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer (raw, json)
Hash identifier: b86eHsbCOlszn43W6cs+8GkEJM7OiJrCFPWTIeYY9hQ=
Subject key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: E327
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 23 Oct 2025 03:13:43 +0000
Certificate not after: Fri 23 Oct 2026 03:01:03 +0000
Subordinate resources: AS: 56282
IP: 14.102.180.0/22
IP: 45.252.120.0/22
IP: 45.252.128.0/22
IP: 45.252.140.0/22
IP: 45.252.148.0/22
IP: 45.252.164.0 -- 45.252.179.255
IP: 45.254.160.0/22
IP: 45.254.168.0/21
IP: 45.255.168.0/22
IP: 45.255.192.0/20
IP: 45.255.212.0/22
IP: 103.17.40.0/22
IP: 103.26.0.0/22
IP: 103.64.240.0 -- 103.65.7.255
IP: 103.65.76.0 -- 103.65.95.255
IP: 103.65.100.0 -- 103.65.115.255
IP: 103.221.144.0 -- 103.221.155.255
IP: 103.221.160.0 -- 103.221.179.255
IP: 103.222.152.0 -- 103.222.163.255
IP: 103.227.76.0 -- 103.227.83.255
IP: 103.231.64.0/21
IP: 103.235.220.0 -- 103.235.255.255
IP: 103.237.0.0/20
IP: 103.243.252.0/22
IP: 103.249.252.0/22
IP: 114.66.64.0/20
IP: 114.67.0.0/18
IP: 150.129.192.0/22
IP: 163.47.4.0/22
IP: 163.53.40.0/22
IP: 163.53.88.0 -- 163.53.139.255
IP: 202.20.126.0/24
IP: 202.27.12.0/24
IP: 202.27.14.0/24
IP: 202.36.226.0/24
IP: 202.44.97.0/24
IP: 202.52.33.0 -- 202.52.34.255
IP: 202.52.47.0/24
IP: 202.52.143.0/24
IP: 202.53.140.0/24
IP: 202.53.143.0/24
IP: 202.59.1.0/24
IP: 202.59.240.0/24
IP: 202.61.123.0/24
IP: 202.61.127.0/24
IP: 202.63.80.0/24
IP: 202.63.253.0/24
IP: 202.74.36.0/24
IP: 202.74.42.0/24
IP: 202.74.52.0/24
IP: 202.84.22.0/24
IP: 202.89.119.0/24
IP: 202.90.37.0/24
IP: 202.90.193.0/24
IP: 202.90.205.0/24
IP: 202.94.74.0/24
IP: 202.94.81.0/24
IP: 202.125.109.0/24
IP: 202.129.208.0/24
IP: 202.130.39.0/24
IP: 202.146.186.0/24
IP: 202.151.33.0/24
IP: 203.185.189.0/24
IP: 203.191.5.0/24
IP: 203.191.133.0/24
IP: 203.201.182.0/24
IP: 211.155.80.0/20
IP: 2406:4d00::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Oct 2025 16:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58151 (0xe327)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 23 03:13:43 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4a:1a:f1:ae:04:1c:ce:f2:d7:8f:55:ce:dd:
df:ad:a5:b1:cc:27:20:6a:13:70:b2:67:4a:3c:a9:
f4:90:cd:3a:9d:ec:5a:50:b3:e4:53:87:49:32:59:
32:15:7d:76:e8:fa:57:27:e3:12:61:2b:41:84:79:
0b:58:6f:7e:03:a0:a8:9c:22:fc:12:58:a1:0f:ce:
9c:0b:ee:a7:78:64:dc:d8:af:60:a8:cb:f1:af:77:
25:13:2b:95:f3:fb:7e:fd:7e:13:82:20:7b:5b:25:
6f:2f:4b:5e:3e:0f:56:9b:54:35:14:d0:bb:06:2e:
26:6d:53:8a:d2:83:5e:04:42:8c:bd:01:f6:e8:49:
86:30:3d:7a:ec:6c:09:66:fb:6d:69:6c:7c:9c:e4:
94:80:89:5f:82:3c:70:50:99:ab:dd:5d:8f:53:5e:
36:37:0c:d1:bb:57:ee:c9:e4:46:99:0f:08:dd:4e:
c8:02:08:51:3c:4c:58:2e:0a:c3:1f:7b:28:50:8a:
11:5a:a5:40:75:01:96:26:08:ca:46:c9:79:00:bb:
02:d3:7d:e5:c5:22:c5:86:7d:2e:82:38:50:cd:5c:
44:31:e8:eb:e4:32:99:3f:05:29:9c:49:9a:ad:a2:
82:1e:72:72:ef:ed:a0:72:85:75:50:d7:35:19:cc:
b3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56282
sbgp-ipAddrBlock: critical
IPv4:
14.102.180.0/22
45.252.120.0/22
45.252.128.0/22
45.252.140.0/22
45.252.148.0/22
45.252.164.0-45.252.179.255
45.254.160.0/22
45.254.168.0/21
45.255.168.0/22
45.255.192.0/20
45.255.212.0/22
103.17.40.0/22
103.26.0.0/22
103.64.240.0-103.65.7.255
103.65.76.0-103.65.95.255
103.65.100.0-103.65.115.255
103.221.144.0-103.221.155.255
103.221.160.0-103.221.179.255
103.222.152.0-103.222.163.255
103.227.76.0-103.227.83.255
103.231.64.0/21
103.235.220.0-103.235.255.255
103.237.0.0/20
103.243.252.0/22
103.249.252.0/22
114.66.64.0/20
114.67.0.0/18
150.129.192.0/22
163.47.4.0/22
163.53.40.0/22
163.53.88.0-163.53.139.255
202.20.126.0/24
202.27.12.0/24
202.27.14.0/24
202.36.226.0/24
202.44.97.0/24
202.52.33.0-202.52.34.255
202.52.47.0/24
202.52.143.0/24
202.53.140.0/24
202.53.143.0/24
202.59.1.0/24
202.59.240.0/24
202.61.123.0/24
202.61.127.0/24
202.63.80.0/24
202.63.253.0/24
202.74.36.0/24
202.74.42.0/24
202.74.52.0/24
202.84.22.0/24
202.89.119.0/24
202.90.37.0/24
202.90.193.0/24
202.90.205.0/24
202.94.74.0/24
202.94.81.0/24
202.125.109.0/24
202.129.208.0/24
202.130.39.0/24
202.146.186.0/24
202.151.33.0/24
203.185.189.0/24
203.191.5.0/24
203.191.133.0/24
203.201.182.0/24
211.155.80.0/20
IPv6:
2406:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
27:a4:d9:8c:cd:75:af:28:1f:32:eb:ec:7f:66:2c:aa:e2:c5:
86:76:45:2b:eb:e1:08:bc:c1:6a:d5:1d:ca:35:de:cb:e2:96:
28:b0:2f:ce:05:87:a4:1c:f1:e6:99:33:03:6e:34:7f:56:a3:
ba:07:53:70:34:3f:c6:5d:e6:10:82:5f:b3:02:31:95:f9:2d:
a1:c9:84:09:bc:5c:c0:bd:7b:fc:c7:b9:6b:d4:1a:28:0e:09:
12:4a:27:71:1a:da:9d:1f:8b:b9:56:b2:41:08:e5:b7:78:96:
81:a9:13:cc:01:ba:f1:54:12:39:06:cc:1e:a3:7c:73:bb:57:
1b:11:06:4b:a7:3e:9f:ba:b0:98:78:4b:d2:5a:71:69:e9:a9:
f4:25:b7:98:16:5c:44:3f:3b:a3:bd:24:db:46:0c:8a:6b:1b:
e7:cc:ec:64:8b:c1:54:d3:39:34:75:e3:1a:70:ec:57:2a:f5:
b4:02:23:d3:a9:bf:05:d8:ca:82:ed:c1:02:11:fd:e3:d5:4a:
b1:58:a1:23:f6:3b:21:de:de:b7:64:82:d9:cb:dd:7b:21:f4:
74:10:49:fa:30:0a:46:e8:0a:c9:5d:03:4f:51:c7:b0:48:5f:
da:28:36:91:d9:84:ac:cc:30:54:d8:34:90:5c:3a:0f:c3:7a:
7f:82:e8:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 13:04:25 2025 by rpki-client