Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
File: g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer (raw, json)
Hash identifier: EIM46MRdyPmEhUo2aKWHrPDkj8l4qsr6FhO4hEgTOYY=
Subject key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CB1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 03:11:42 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 56282
AS: 58997 -- 58998
AS: 63569
IP: 14.102.180.0/22
IP: 45.252.120.0/22
IP: 45.252.128.0/22
IP: 45.252.140.0/22
IP: 45.252.148.0/22
IP: 45.252.164.0 -- 45.252.179.255
IP: 45.254.160.0/22
IP: 45.254.168.0/21
IP: 45.255.168.0/22
IP: 45.255.192.0/20
IP: 45.255.212.0/22
IP: 103.17.40.0/22
IP: 103.26.0.0/22
IP: 103.64.240.0 -- 103.65.7.255
IP: 103.65.76.0 -- 103.65.95.255
IP: 103.65.100.0 -- 103.65.115.255
IP: 103.221.144.0 -- 103.221.155.255
IP: 103.221.160.0 -- 103.221.179.255
IP: 103.222.152.0 -- 103.222.163.255
IP: 103.227.76.0 -- 103.227.83.255
IP: 103.231.64.0/21
IP: 103.235.220.0 -- 103.235.255.255
IP: 103.237.0.0/20
IP: 103.243.252.0/22
IP: 103.249.252.0/22
IP: 114.66.64.0/20
IP: 114.67.0.0/18
IP: 150.129.192.0/22
IP: 163.47.4.0/22
IP: 163.53.40.0/22
IP: 163.53.88.0 -- 163.53.139.255
IP: 202.20.126.0/24
IP: 202.27.12.0/24
IP: 202.27.14.0/24
IP: 202.36.226.0/24
IP: 202.44.97.0/24
IP: 202.52.33.0 -- 202.52.34.255
IP: 202.52.47.0/24
IP: 202.52.143.0/24
IP: 202.53.140.0/24
IP: 202.53.143.0/24
IP: 202.59.1.0/24
IP: 202.59.240.0/24
IP: 202.61.123.0/24
IP: 202.61.127.0/24
IP: 202.63.80.0/24
IP: 202.63.253.0/24
IP: 202.74.36.0/24
IP: 202.74.42.0/24
IP: 202.74.52.0/24
IP: 202.84.22.0/24
IP: 202.89.119.0/24
IP: 202.90.37.0/24
IP: 202.90.193.0/24
IP: 202.90.205.0/24
IP: 202.94.74.0/24
IP: 202.94.81.0/24
IP: 202.125.109.0/24
IP: 202.129.208.0/24
IP: 202.130.39.0/24
IP: 202.146.186.0/24
IP: 202.151.33.0/24
IP: 203.185.189.0/24
IP: 203.191.5.0/24
IP: 203.191.133.0/24
IP: 203.201.182.0/24
IP: 211.155.80.0/20
IP: 2406:4d00::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51995 (0xcb1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 03:11:42 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4a:1a:f1:ae:04:1c:ce:f2:d7:8f:55:ce:dd:
df:ad:a5:b1:cc:27:20:6a:13:70:b2:67:4a:3c:a9:
f4:90:cd:3a:9d:ec:5a:50:b3:e4:53:87:49:32:59:
32:15:7d:76:e8:fa:57:27:e3:12:61:2b:41:84:79:
0b:58:6f:7e:03:a0:a8:9c:22:fc:12:58:a1:0f:ce:
9c:0b:ee:a7:78:64:dc:d8:af:60:a8:cb:f1:af:77:
25:13:2b:95:f3:fb:7e:fd:7e:13:82:20:7b:5b:25:
6f:2f:4b:5e:3e:0f:56:9b:54:35:14:d0:bb:06:2e:
26:6d:53:8a:d2:83:5e:04:42:8c:bd:01:f6:e8:49:
86:30:3d:7a:ec:6c:09:66:fb:6d:69:6c:7c:9c:e4:
94:80:89:5f:82:3c:70:50:99:ab:dd:5d:8f:53:5e:
36:37:0c:d1:bb:57:ee:c9:e4:46:99:0f:08:dd:4e:
c8:02:08:51:3c:4c:58:2e:0a:c3:1f:7b:28:50:8a:
11:5a:a5:40:75:01:96:26:08:ca:46:c9:79:00:bb:
02:d3:7d:e5:c5:22:c5:86:7d:2e:82:38:50:cd:5c:
44:31:e8:eb:e4:32:99:3f:05:29:9c:49:9a:ad:a2:
82:1e:72:72:ef:ed:a0:72:85:75:50:d7:35:19:cc:
b3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56282
58997-58998
63569
sbgp-ipAddrBlock: critical
IPv4:
14.102.180.0/22
45.252.120.0/22
45.252.128.0/22
45.252.140.0/22
45.252.148.0/22
45.252.164.0-45.252.179.255
45.254.160.0/22
45.254.168.0/21
45.255.168.0/22
45.255.192.0/20
45.255.212.0/22
103.17.40.0/22
103.26.0.0/22
103.64.240.0-103.65.7.255
103.65.76.0-103.65.95.255
103.65.100.0-103.65.115.255
103.221.144.0-103.221.155.255
103.221.160.0-103.221.179.255
103.222.152.0-103.222.163.255
103.227.76.0-103.227.83.255
103.231.64.0/21
103.235.220.0-103.235.255.255
103.237.0.0/20
103.243.252.0/22
103.249.252.0/22
114.66.64.0/20
114.67.0.0/18
150.129.192.0/22
163.47.4.0/22
163.53.40.0/22
163.53.88.0-163.53.139.255
202.20.126.0/24
202.27.12.0/24
202.27.14.0/24
202.36.226.0/24
202.44.97.0/24
202.52.33.0-202.52.34.255
202.52.47.0/24
202.52.143.0/24
202.53.140.0/24
202.53.143.0/24
202.59.1.0/24
202.59.240.0/24
202.61.123.0/24
202.61.127.0/24
202.63.80.0/24
202.63.253.0/24
202.74.36.0/24
202.74.42.0/24
202.74.52.0/24
202.84.22.0/24
202.89.119.0/24
202.90.37.0/24
202.90.193.0/24
202.90.205.0/24
202.94.74.0/24
202.94.81.0/24
202.125.109.0/24
202.129.208.0/24
202.130.39.0/24
202.146.186.0/24
202.151.33.0/24
203.185.189.0/24
203.191.5.0/24
203.191.133.0/24
203.201.182.0/24
211.155.80.0/20
IPv6:
2406:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
5d:35:4e:ce:61:b2:1e:6f:b8:36:4b:e5:b6:ac:09:e8:db:09:
75:b4:11:4f:bc:72:69:e5:ff:79:df:b9:30:5c:87:a6:37:ec:
40:a1:d0:82:d4:a7:b9:76:64:19:09:f4:52:cb:d4:4c:42:ce:
91:2f:19:1e:5c:10:e9:93:a5:12:cc:42:c8:58:fa:a3:84:b0:
ef:b3:1e:8e:e1:f6:88:57:92:16:c3:a6:f3:fe:0e:47:7f:3f:
6a:7e:42:92:b4:3b:b7:b6:9d:66:82:8d:13:bf:9a:22:45:4c:
3a:71:da:cb:ff:be:0d:1e:2c:b2:c0:22:92:68:95:6d:9f:3c:
52:af:32:3b:cb:0d:82:13:9f:1f:7f:07:35:1a:88:a7:ca:5f:
e0:3b:7c:34:64:02:7e:98:a0:b7:65:91:12:2a:e1:73:7b:38:
58:c0:65:98:c5:9f:33:53:cf:70:ff:21:ab:32:a0:91:21:b7:
74:b4:1c:04:b1:7c:0c:9b:d7:3a:0a:15:6f:fb:c0:7b:47:ed:
95:fe:cd:bc:e1:9b:c4:6d:84:e8:57:19:a6:d5:8e:c8:28:b8:
88:28:f4:64:02:31:e4:6b:46:40:89:ba:e6:5e:e2:81:d2:95:
fe:fd:fa:a7:1a:d3:e4:e3:a2:11:8e:19:f6:5e:c3:6d:10:c2:
e9:5c:d9:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:17:48 2025 by rpki-client