Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/hPLNDLUaQjf34fOuhRnjzCZEi38.cer
File: hPLNDLUaQjf34fOuhRnjzCZEi38.cer (raw, json)
Hash identifier: ynfiPbV/Lf1qwyqc3i+8OJyUzBhrpcMF193cR1HY1T8=
Subject key identifier: 84:F2:CD:0C:B5:1A:42:37:F7:E1:F3:AE:85:19:E3:CC:26:44:8B:7F
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BB5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/415/hPLNDLUaQjf34fOuhRnjzCZEi38.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/415/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:51:10 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 45080
IP: 49.239.0.0 -- 49.239.61.255
IP: 2406:dd00::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47967 (0xbb5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:51:10 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=84F2CD0CB51A4237F7E1F3AE8519E3CC26448B7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:72:15:9b:0d:2a:43:86:03:5c:d2:80:8b:10:
31:3d:ae:58:5e:1c:33:fa:65:b8:f9:23:08:90:28:
3c:ec:41:43:c7:66:5d:d0:13:2a:2f:ed:31:48:67:
7b:38:3c:19:a0:d9:e3:08:19:d4:08:1c:a3:fa:72:
1b:42:96:19:d6:70:c3:54:ad:a1:55:ae:b5:ed:74:
f0:ab:d8:aa:51:79:f7:e9:17:aa:33:a1:f3:15:5e:
41:91:81:3b:3d:b3:b5:77:eb:4c:d0:24:ba:bc:24:
bc:a5:3a:f5:36:a8:b4:51:90:a3:e7:8e:e0:c3:dc:
20:71:58:c0:e2:fc:13:38:3a:88:82:82:32:75:85:
37:c7:ad:88:c7:64:8d:7b:4b:35:01:fc:70:0f:97:
9d:77:d4:7e:f5:74:d6:d3:55:43:7b:53:08:47:6c:
ed:d9:9e:04:29:c6:20:da:3b:0c:98:e4:3b:77:32:
6d:a6:2e:24:c2:e7:08:a6:5a:77:c9:3b:9f:cf:ea:
de:2c:88:78:8a:5c:77:43:9d:e6:0d:68:d5:d1:10:
db:bf:22:3c:4f:0e:13:c4:95:49:d0:4a:4a:5e:e5:
d6:9e:51:50:c0:b8:79:11:d2:5c:d6:47:73:a0:65:
ab:6a:0e:3d:63:53:e3:73:3b:10:a9:05:4c:14:99:
ac:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F2:CD:0C:B5:1A:42:37:F7:E1:F3:AE:85:19:E3:CC:26:44:8B:7F
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/415/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/415/hPLNDLUaQjf34fOuhRnjzCZEi38.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45080
sbgp-ipAddrBlock: critical
IPv4:
49.239.0.0-49.239.61.255
IPv6:
2406:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
6c:9d:e4:d4:39:97:00:e5:b9:b7:ae:fa:f5:78:22:2b:8d:a1:
cb:c7:70:5d:67:74:47:2d:c2:14:fc:f5:4b:ea:71:a7:ac:92:
a1:4d:49:1c:1e:90:74:e4:be:48:79:e2:7e:24:bd:b1:71:41:
70:3f:9d:8f:06:10:ff:e4:c8:cf:60:c3:22:de:84:bd:f8:26:
8c:b7:25:fd:41:5d:20:04:ee:c7:96:ea:ca:75:df:11:58:67:
df:e4:f2:9d:93:55:83:83:f0:86:e1:5c:8d:95:0b:d5:bd:18:
5e:48:0c:ec:b0:06:3e:b7:e7:03:78:df:73:49:00:88:4a:40:
28:77:4c:0d:bd:50:89:90:8c:ff:a2:0b:4a:bb:f5:97:24:7e:
2b:e7:b9:80:a7:4a:7f:05:13:f1:e4:9b:3d:5f:fd:f0:ee:be:
aa:f2:33:ca:26:3f:7b:19:f1:83:49:ca:6e:c6:80:2f:d1:29:
5f:14:67:2e:9a:9a:c4:14:7b:d8:4d:29:dd:d0:5b:81:3c:7d:
b1:f0:0b:2e:91:b9:67:2e:33:05:5c:2e:0c:d4:f6:ad:94:b6:
b2:86:18:73:43:f3:75:eb:ac:35:ee:d2:9c:bb:2b:bd:9e:71:
a2:8f:a3:c0:6a:de:57:84:68:97:5a:b8:ec:b9:e0:6f:ae:cb:
5b:d6:df:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:42:28 2024 by rpki-client on console-ams.rpki-client.org