Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/lYKgcoBf9Ix0Ixu0Mtla3iJWuIY.cer
File: lYKgcoBf9Ix0Ixu0Mtla3iJWuIY.cer (raw, json)
Hash identifier: XCn0PTCEhyWxWr3SvqNi6zzaS8gi61TwI4AD8PYwyRw=
Subject key identifier: 95:82:A0:72:80:5F:F4:8C:74:23:1B:B4:32:D9:5A:DE:22:56:B8:86
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: 789F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/lYKgcoBf9Ix0Ixu0Mtla3iJWuIY.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Wed 09 Jun 2021 19:59:34 +0000
Certificate not after: Fri 27 May 2022 04:59:52 +0000
Subordinate resources: AS: 137797
IP: 103.116.120.0/22
IP: 2402:f9c0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30879 (0x789f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Jun 9 19:59:34 2021 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=9582A072805FF48C74231BB432D95ADE2256B886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:bd:75:bb:c9:56:7f:37:16:1e:80:49:c7:7b:
2f:08:b5:41:8a:e9:bf:95:32:46:26:3e:b4:13:0f:
6a:2c:76:b9:93:56:3f:c6:2b:74:31:47:9c:dd:d4:
0f:73:11:45:77:31:53:8e:fb:2a:9f:1a:0e:26:83:
01:c0:cc:c9:a1:a9:dc:b0:c7:32:eb:1c:89:bf:9c:
e0:97:09:be:d6:60:6e:1e:05:23:4b:5e:90:f9:e9:
2f:e5:94:d2:1c:71:a7:62:f1:4d:ce:1a:de:a4:96:
c8:41:9a:5e:4b:59:25:f0:7c:1e:4a:73:3b:18:05:
73:62:2d:d5:49:bd:b3:09:76:75:f9:0e:b3:92:90:
ce:f9:60:c7:ab:c8:91:f9:db:27:e3:3c:36:16:c0:
a1:48:86:c4:db:de:b3:9d:d4:77:d5:b6:eb:22:2c:
00:4e:64:07:b1:d1:ad:08:37:39:ed:1c:a6:8f:86:
4f:b7:b7:d5:18:4b:c9:db:f6:d7:05:67:c1:ae:fa:
21:6d:77:b3:51:64:08:ff:8d:16:97:49:21:5a:32:
8d:ad:cd:5f:01:5d:98:97:70:5c:37:d1:92:53:59:
98:32:15:d3:2f:b9:62:24:42:16:e2:d9:4a:3b:48:
20:80:71:ec:c0:ac:bf:e4:08:46:c8:a2:6c:d0:2e:
7a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:82:A0:72:80:5F:F4:8C:74:23:1B:B4:32:D9:5A:DE:22:56:B8:86
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2739/lYKgcoBf9Ix0Ixu0Mtla3iJWuIY.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137797
sbgp-ipAddrBlock: critical
IPv4:
103.116.120.0/22
IPv6:
2402:f9c0::/32
Signature Algorithm: sha256WithRSAEncryption
17:ae:2e:1c:23:40:83:cc:35:e2:fe:2d:eb:84:f9:73:bc:56:
c8:21:62:d3:a8:cc:28:23:4b:c0:aa:36:7e:cd:ee:64:5f:48:
be:e3:9e:ae:f9:e6:66:f5:89:a6:c7:0a:5e:3d:22:b9:7a:8d:
dc:18:5f:60:60:d9:9d:32:1d:ba:75:f5:b8:b4:a3:88:00:06:
0f:5e:c1:e3:73:ab:6d:72:5d:2b:b0:58:9b:de:e0:f6:74:57:
0d:6c:fb:34:80:5c:54:38:24:40:d2:a3:c8:67:35:cd:91:8b:
e0:a7:b6:bc:9a:38:6c:a8:03:89:aa:01:68:8f:7d:16:9a:86:
89:dd:42:d3:63:b0:96:4f:6e:60:5a:8e:44:03:a2:be:5c:77:
10:c9:82:78:3c:8a:bd:45:8f:0a:06:71:0f:f2:72:59:a2:65:
63:ee:ee:ae:fe:01:39:e1:ce:f3:1e:f7:e6:75:71:1a:c4:c1:
12:2f:f5:07:70:f2:3f:cf:28:66:03:59:17:27:b7:72:8d:ab:
9f:8c:11:26:b5:f1:94:9a:ac:b4:6f:f5:e4:70:72:02:c5:c5:
68:6e:76:48:7b:dd:9d:07:12:81:91:21:ef:c9:3f:c1:33:7b:
b0:0e:72:7e:da:07:5a:22:bc:e1:1b:9d:a7:6e:e2:6b:b9:b4:
6c:ad:cd:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:25 2023 by rpki-client on console-fra.rpki-client.org