Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
File: g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer (raw, json)
Hash identifier: nxQDom5O4xO1snLQ2fG9Wpm7rCczpF16564hzv0ZFFg=
Subject key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BCA7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:57:00 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 56282
AS: 58997 -- 58998
AS: 63569
IP: 14.102.180.0/22
IP: 45.252.120.0/22
IP: 45.252.128.0/22
IP: 45.252.140.0/22
IP: 45.252.148.0/22
IP: 45.252.164.0 -- 45.252.179.255
IP: 45.254.160.0/22
IP: 45.254.168.0/21
IP: 45.255.168.0/22
IP: 45.255.192.0/20
IP: 45.255.212.0/22
IP: 103.17.40.0/22
IP: 103.26.0.0/22
IP: 103.64.240.0 -- 103.65.7.255
IP: 103.65.76.0 -- 103.65.95.255
IP: 103.65.100.0 -- 103.65.115.255
IP: 103.221.144.0 -- 103.221.155.255
IP: 103.221.160.0 -- 103.221.179.255
IP: 103.222.152.0 -- 103.222.163.255
IP: 103.227.76.0 -- 103.227.83.255
IP: 103.231.64.0/21
IP: 103.235.220.0 -- 103.235.255.255
IP: 103.237.0.0/20
IP: 103.243.252.0/22
IP: 103.249.252.0/22
IP: 114.66.64.0/20
IP: 114.67.0.0/18
IP: 150.129.192.0/22
IP: 163.47.4.0/22
IP: 163.53.40.0/22
IP: 163.53.88.0 -- 163.53.139.255
IP: 202.20.126.0/24
IP: 202.27.12.0/24
IP: 202.27.14.0/24
IP: 202.36.226.0/24
IP: 202.44.97.0/24
IP: 202.52.33.0 -- 202.52.34.255
IP: 202.52.47.0/24
IP: 202.52.143.0/24
IP: 202.53.140.0/24
IP: 202.53.143.0/24
IP: 202.59.1.0/24
IP: 202.59.240.0/24
IP: 202.61.123.0/24
IP: 202.61.127.0/24
IP: 202.63.80.0/24
IP: 202.63.253.0/24
IP: 202.74.36.0/24
IP: 202.74.42.0/24
IP: 202.74.52.0/24
IP: 202.84.22.0/24
IP: 202.89.119.0/24
IP: 202.90.37.0/24
IP: 202.90.193.0/24
IP: 202.90.205.0/24
IP: 202.94.74.0/24
IP: 202.94.81.0/24
IP: 202.125.109.0/24
IP: 202.129.208.0/24
IP: 202.130.39.0/24
IP: 202.146.186.0/24
IP: 202.151.33.0/24
IP: 203.185.189.0/24
IP: 203.191.5.0/24
IP: 203.191.133.0/24
IP: 203.201.182.0/24
IP: 211.155.80.0/20
IP: 2406:4d00::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48295 (0xbca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:57:00 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4a:1a:f1:ae:04:1c:ce:f2:d7:8f:55:ce:dd:
df:ad:a5:b1:cc:27:20:6a:13:70:b2:67:4a:3c:a9:
f4:90:cd:3a:9d:ec:5a:50:b3:e4:53:87:49:32:59:
32:15:7d:76:e8:fa:57:27:e3:12:61:2b:41:84:79:
0b:58:6f:7e:03:a0:a8:9c:22:fc:12:58:a1:0f:ce:
9c:0b:ee:a7:78:64:dc:d8:af:60:a8:cb:f1:af:77:
25:13:2b:95:f3:fb:7e:fd:7e:13:82:20:7b:5b:25:
6f:2f:4b:5e:3e:0f:56:9b:54:35:14:d0:bb:06:2e:
26:6d:53:8a:d2:83:5e:04:42:8c:bd:01:f6:e8:49:
86:30:3d:7a:ec:6c:09:66:fb:6d:69:6c:7c:9c:e4:
94:80:89:5f:82:3c:70:50:99:ab:dd:5d:8f:53:5e:
36:37:0c:d1:bb:57:ee:c9:e4:46:99:0f:08:dd:4e:
c8:02:08:51:3c:4c:58:2e:0a:c3:1f:7b:28:50:8a:
11:5a:a5:40:75:01:96:26:08:ca:46:c9:79:00:bb:
02:d3:7d:e5:c5:22:c5:86:7d:2e:82:38:50:cd:5c:
44:31:e8:eb:e4:32:99:3f:05:29:9c:49:9a:ad:a2:
82:1e:72:72:ef:ed:a0:72:85:75:50:d7:35:19:cc:
b3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56282
58997-58998
63569
sbgp-ipAddrBlock: critical
IPv4:
14.102.180.0/22
45.252.120.0/22
45.252.128.0/22
45.252.140.0/22
45.252.148.0/22
45.252.164.0-45.252.179.255
45.254.160.0/22
45.254.168.0/21
45.255.168.0/22
45.255.192.0/20
45.255.212.0/22
103.17.40.0/22
103.26.0.0/22
103.64.240.0-103.65.7.255
103.65.76.0-103.65.95.255
103.65.100.0-103.65.115.255
103.221.144.0-103.221.155.255
103.221.160.0-103.221.179.255
103.222.152.0-103.222.163.255
103.227.76.0-103.227.83.255
103.231.64.0/21
103.235.220.0-103.235.255.255
103.237.0.0/20
103.243.252.0/22
103.249.252.0/22
114.66.64.0/20
114.67.0.0/18
150.129.192.0/22
163.47.4.0/22
163.53.40.0/22
163.53.88.0-163.53.139.255
202.20.126.0/24
202.27.12.0/24
202.27.14.0/24
202.36.226.0/24
202.44.97.0/24
202.52.33.0-202.52.34.255
202.52.47.0/24
202.52.143.0/24
202.53.140.0/24
202.53.143.0/24
202.59.1.0/24
202.59.240.0/24
202.61.123.0/24
202.61.127.0/24
202.63.80.0/24
202.63.253.0/24
202.74.36.0/24
202.74.42.0/24
202.74.52.0/24
202.84.22.0/24
202.89.119.0/24
202.90.37.0/24
202.90.193.0/24
202.90.205.0/24
202.94.74.0/24
202.94.81.0/24
202.125.109.0/24
202.129.208.0/24
202.130.39.0/24
202.146.186.0/24
202.151.33.0/24
203.185.189.0/24
203.191.5.0/24
203.191.133.0/24
203.201.182.0/24
211.155.80.0/20
IPv6:
2406:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
1c:20:92:7e:eb:12:e5:4c:3e:32:8f:39:d5:bc:e4:d0:41:cb:
ef:fd:79:a8:f5:30:76:6b:62:01:80:05:0e:42:57:91:3c:4d:
6e:e4:1a:f5:3c:09:f1:37:f5:ab:31:ee:a4:3b:82:f7:dc:77:
4e:7c:51:f0:f4:1a:1f:2f:c2:c3:97:c3:f1:bf:1d:cc:f0:0f:
58:26:c3:db:76:b1:7f:4d:8d:38:5d:b6:11:5b:3b:6e:e2:01:
49:0a:b4:32:bc:0b:66:82:22:9b:b2:e4:f3:a5:5a:f0:b0:aa:
1c:dc:8f:0c:75:46:c6:b7:ee:b8:03:3b:10:71:0b:98:f6:f3:
18:dd:9b:33:fe:04:dc:69:71:3b:d1:d2:1f:ca:38:92:61:f3:
7d:fb:10:e4:11:e8:9d:13:45:35:76:7c:b2:aa:0a:ef:f7:58:
87:f1:28:49:4e:cf:f2:b2:b5:57:66:2e:f5:cc:b5:61:0d:24:
88:27:be:8d:8c:f1:09:d5:27:c0:f5:d2:17:4f:3a:7e:6e:1c:
2c:63:9b:7f:a0:6b:dd:05:f6:0b:21:e6:e8:e6:2a:48:52:d6:
81:4a:a0:f4:e0:2e:17:ca:08:e7:33:e3:4b:a6:75:f3:7e:0d:
d7:b3:fa:98:78:73:41:30:86:31:d3:0c:c3:a9:9b:fe:0d:e8:
20:6f:c8:66
-----BEGIN CERTIFICATE-----
MIIHeDCCBmCgAwIBAgIDALynMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjU3MDBaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKDgzRTc3RjM3QjNCOTM4NTA4MzVCQUEzMEVFOEZDMTJENTVGODcw
NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHShrxrgQczvLXj1XO
3d+tpbHMJyBqE3CyZ0o8qfSQzTqd7FpQs+RTh0kyWTIVfXbo+lcn4xJhK0GEeQtY
b34DoKicIvwSWKEPzpwL7qd4ZNzYr2Coy/GvdyUTK5Xz+379fhOCIHtbJW8vS14+
D1abVDUU0LsGLiZtU4rSg14EQoy9AfboSYYwPXrsbAlm+21pbHyc5JSAiV+CPHBQ
mavdXY9TXjY3DNG7V+7J5EaZDwjdTsgCCFE8TFguCsMfeyhQihFapUB1AZYmCMpG
yXkAuwLTfeXFIsWGfS6COFDNXEQx6OvkMpk/BSmcSZqtooIecnLv7aByhXVQ1zUZ
zLMFAgMBAAGjggR8MIIEeDAdBgNVHQ4EFgQUg+d/N7O5OFCDW6ow7o/BLVX4cFQw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF
BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzU2
MS8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy
RTNEMDAwMC81NjEvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAr
BggrBgEFBQcBCAEB/wQcMBqgGDAWAgMA29owCgIDAOZ1AgMA5nYCAwD4UTCCAhkG
CCsGAQUFBwEHAQH/BIICCDCCAgQwggHxBAIAATCCAekDBAIOZrQDBAIt/HgDBAIt
/IADBAIt/IwDBAIt/JQwDAMEAi38pAMEAi38sAMEAi3+oAMEAy3+qAMEAi3/qAME
BC3/wAMEAi3/1AMEAmcRKAMEAmcaADAMAwQEZ0DwAwQDZ0EAMAwDBAJnQUwDBAVn
QUAwDAMEAmdBZAMEAmdBcDAMAwQEZ92QAwQCZ92YMAwDBAVn3aADBAJn3bAwDAME
A2femAMEAmfeoDAMAwQCZ+NMAwQCZ+NQAwQDZ+dAMAsDBAJn69wDAwJn6AMEBGft
AAMEAmfz/AMEAmf5/AMEBHJCQAMEBnJDAAMEApaBwAMEAqMvBAMEAqM1KDAMAwQD
ozVYAwQCozWIAwQAyhR+AwQAyhsMAwQAyhsOAwQAyiTiAwQAyixhMAwDBADKNCED
BADKNCIDBADKNC8DBADKNI8DBADKNYwDBADKNY8DBADKOwEDBADKO/ADBADKPXsD
BADKPX8DBADKP1ADBADKP/0DBADKSiQDBADKSioDBADKSjQDBADKVBYDBADKWXcD
BADKWiUDBADKWsEDBADKWs0DBADKXkoDBADKXlEDBADKfW0DBADKgdADBADKgicD
BADKkroDBADKlyEDBADLub0DBADLvwUDBADLv4UDBADLybYDBATTm1AwDQQCAAIw
BwMFACQGTQAwDQYJKoZIhvcNAQELBQADggEBABwgkn7rEuVMPjKPOdW85NBBy+/9
eaj1MHZrYgGABQ5CV5E8TW7kGvU8CfE39asx7qQ7gvfcd058UfD0Gh8vwsOXw/G/
HczwD1gmw9t2sX9NjThdthFbO27iAUkKtDK8C2aCIpuy5POlWvCwqhzcjwx1Rsa3
7rgDOxBxC5j28xjdmzP+BNxpcTvR0h/KOJJh8337EOQR6J0TRTV2fLKqCu/3WIfx
KElOz/KytVdmLvXMtWENJIgnvo2M8QnVJ8D10hdPOn5uHCxjm3+ga90F9gsh5ujm
KkhS1oFKoPTgLhfKCOcz40umdfN+Ddez+ph4c0EwhjHTDMOpm/4N6CBvyGY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:42:28 2024 by rpki-client on console-ams.rpki-client.org