Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
File: ngWjfokKtd79OHX80DVmocqs5DE.cer (raw, json)
Hash identifier: B3ivNdLA9YGKgXG342PEUBo0MlkJRcR8as0eRymk1fE=
Subject key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BCBD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:57:26 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 63620
IP: 59.153.116.0/22
IP: 103.70.220.0/22
IP: 2406:3d80::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48317 (0xbcbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:57:26 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:15:29:be:e7:b7:8f:0d:c3:33:e7:0c:41:75:
95:3b:f7:8a:7b:aa:b9:92:6f:8d:9f:71:ca:e9:5e:
45:30:b2:54:92:a2:dc:12:80:f1:b5:67:8b:63:a0:
31:f8:f9:ae:ee:bb:bb:55:8b:f8:cc:82:1d:9f:2d:
2e:95:41:3a:1a:c3:57:0e:82:3b:f3:c0:51:b6:ef:
fc:61:3b:b2:6f:70:ee:79:bf:ae:ee:fd:f8:42:de:
8d:f8:80:9f:83:2e:86:a2:b0:36:51:f0:74:38:ef:
fe:ed:08:e2:3f:90:50:d1:b8:94:8b:ad:f2:08:8d:
50:32:22:e1:e9:b8:f7:ca:7c:af:f5:08:dc:17:ad:
c8:9f:66:fa:3e:47:68:bf:7c:05:69:7d:3f:fd:62:
50:99:9d:dd:79:dc:22:db:4a:9e:a9:fb:eb:b4:87:
ee:da:d3:cb:2b:35:2e:c7:1e:38:8c:a1:1a:3f:44:
62:67:ac:dd:c8:14:d1:f0:24:0c:43:f6:fb:a8:34:
a1:f9:c9:c6:66:19:e8:0f:b6:d9:22:e3:2a:39:f4:
01:cc:09:19:96:93:c2:a6:68:dd:3b:97:11:c3:8f:
25:22:25:7e:75:dc:06:2e:e4:74:a8:9c:70:01:a6:
c4:81:19:45:ad:9b:2d:20:db:79:fb:98:d5:2f:3b:
45:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63620
sbgp-ipAddrBlock: critical
IPv4:
59.153.116.0/22
103.70.220.0/22
IPv6:
2406:3d80::/32
Signature Algorithm: sha256WithRSAEncryption
29:ca:d2:e7:1a:da:19:d1:40:df:f9:69:5a:1c:91:72:40:e6:
61:f4:2e:f7:0b:2e:17:ca:7a:96:fb:53:61:00:be:e5:3c:5d:
e8:95:e4:2d:d3:2f:ab:d5:d6:b3:30:9e:03:ab:6a:79:4b:44:
62:54:e1:83:cb:e0:25:a2:47:67:f5:dc:67:5f:55:0e:11:f0:
43:c5:90:97:6a:64:0b:c9:6c:31:e2:28:07:8e:24:a5:d9:b4:
59:d4:ac:6e:71:b2:16:0f:51:00:1b:60:bb:ab:20:f6:77:8b:
77:9d:9e:52:5a:1a:f1:49:5f:bd:c8:16:22:6b:fa:6b:fa:d5:
1f:41:65:20:03:58:49:98:7a:7f:a2:dc:76:23:df:46:49:6f:
af:7c:a6:0f:92:6d:7b:d5:6a:41:4e:57:c4:2d:bc:1e:d2:10:
c8:da:7d:44:97:3b:03:3e:5e:34:1e:86:68:b6:2b:67:86:9c:
b4:16:31:92:9d:c1:16:d5:a0:05:60:81:26:90:aa:6b:6f:d4:
76:78:48:cc:a8:23:44:a3:0e:fc:ca:87:8b:69:0a:65:40:35:
1d:a8:ea:0c:cd:4c:29:4d:8f:17:4c:a5:13:8d:c7:8c:05:ce:
5c:89:fd:45:7f:8c:16:7d:6e:ae:8a:c6:29:7d:21:31:39:96:
91:6e:8c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:43:28 2024 by rpki-client on console-fra.rpki-client.org