Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
File: ngWjfokKtd79OHX80DVmocqs5DE.cer (raw, json)
Hash identifier: 2xDyYn9uIVxYBxPiu7vCfdE77XGzkj0pd3NSlWig7MQ=
Subject key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: AF8B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 01 Feb 2024 01:24:28 +0000
Certificate not after: Fri 31 Jan 2025 01:13:46 +0000
Subordinate resources: AS: 63620
IP: 59.153.116.0/22
IP: 103.70.220.0/22
IP: 2406:3d80::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 May 2024 05:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44939 (0xaf8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Feb 1 01:24:28 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:15:29:be:e7:b7:8f:0d:c3:33:e7:0c:41:75:
95:3b:f7:8a:7b:aa:b9:92:6f:8d:9f:71:ca:e9:5e:
45:30:b2:54:92:a2:dc:12:80:f1:b5:67:8b:63:a0:
31:f8:f9:ae:ee:bb:bb:55:8b:f8:cc:82:1d:9f:2d:
2e:95:41:3a:1a:c3:57:0e:82:3b:f3:c0:51:b6:ef:
fc:61:3b:b2:6f:70:ee:79:bf:ae:ee:fd:f8:42:de:
8d:f8:80:9f:83:2e:86:a2:b0:36:51:f0:74:38:ef:
fe:ed:08:e2:3f:90:50:d1:b8:94:8b:ad:f2:08:8d:
50:32:22:e1:e9:b8:f7:ca:7c:af:f5:08:dc:17:ad:
c8:9f:66:fa:3e:47:68:bf:7c:05:69:7d:3f:fd:62:
50:99:9d:dd:79:dc:22:db:4a:9e:a9:fb:eb:b4:87:
ee:da:d3:cb:2b:35:2e:c7:1e:38:8c:a1:1a:3f:44:
62:67:ac:dd:c8:14:d1:f0:24:0c:43:f6:fb:a8:34:
a1:f9:c9:c6:66:19:e8:0f:b6:d9:22:e3:2a:39:f4:
01:cc:09:19:96:93:c2:a6:68:dd:3b:97:11:c3:8f:
25:22:25:7e:75:dc:06:2e:e4:74:a8:9c:70:01:a6:
c4:81:19:45:ad:9b:2d:20:db:79:fb:98:d5:2f:3b:
45:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63620
sbgp-ipAddrBlock: critical
IPv4:
59.153.116.0/22
103.70.220.0/22
IPv6:
2406:3d80::/32
Signature Algorithm: sha256WithRSAEncryption
13:8f:98:7f:a0:57:e7:6f:87:3c:75:2b:b7:a9:7d:3d:51:31:
78:fb:cb:29:35:98:b5:44:c4:09:3e:e6:86:2e:c5:a2:5e:d0:
ab:13:82:3b:32:fa:58:97:54:45:67:76:ab:0b:34:d7:e4:ca:
6e:1f:34:fe:13:be:03:ce:e5:c6:19:41:bf:17:17:df:a4:92:
6e:d4:58:45:4b:4f:cc:8c:0a:4f:d4:8c:e4:13:f7:42:c3:9a:
93:0a:f0:53:9d:a8:c3:39:ad:0a:ec:97:8d:4e:69:82:20:ba:
ef:23:8d:fa:96:6a:c0:7c:90:e4:b9:de:49:24:8f:66:c1:d6:
1a:69:0e:05:e7:95:5c:9c:44:73:85:3b:29:60:a8:e0:bc:4f:
de:cf:0e:3e:cf:38:73:08:8f:97:dc:bd:95:7f:d4:1a:fa:1f:
f7:08:64:5c:e1:7d:da:55:f1:95:d3:66:bc:17:a7:40:a3:4f:
41:c1:93:97:83:26:f7:19:f5:ef:d5:50:71:24:eb:1f:67:78:
6a:39:9f:a0:c5:dd:5c:ec:af:0c:b5:80:0e:50:42:4d:81:ff:
7c:c3:0a:f3:a6:3a:22:56:d8:18:8f:dd:f8:01:0c:45:19:85:
7f:2e:8e:a2:c9:da:a9:86:dc:ab:61:b1:56:a9:29:0a:eb:47:
62:45:f9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:06:24 2024 by rpki-client on console-fra.rpki-client.org