Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/rvnRXVUWBDHU9wnoqjo61bzM1uU.cer
File: rvnRXVUWBDHU9wnoqjo61bzM1uU.cer (raw, json)
Hash identifier: eowGyCdGPBzeOtjhmrhPnJ+kdw2xo4fUvUh3bnu9tmk=
Subject key identifier: AE:F9:D1:5D:55:16:04:31:D4:F7:09:E8:AA:3A:3A:D5:BC:CC:D6:E5
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CDD1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/rvnRXVUWBDHU9wnoqjo61bzM1uU.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 03 Apr 2025 08:10:58 +0000
Certificate not after: Fri 03 Apr 2026 08:00:09 +0000
Subordinate resources: IP: 103.64.160.0 -- 103.64.207.255
IP: 103.64.224.0/20
IP: 103.213.144.0/20
IP: 103.223.144.0 -- 103.223.175.255
IP: 103.223.192.0/18
IP: 119.80.192.0 -- 119.80.203.255
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 04 Apr 2025 04:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52689 (0xcdd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Apr 3 08:10:58 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=AEF9D15D55160431D4F709E8AA3A3AD5BCCCD6E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:99:82:01:cb:36:e1:12:49:42:37:01:3e:
cb:06:40:84:1e:67:0f:08:5c:1a:72:e2:74:8d:85:
f3:52:27:06:26:75:76:f8:74:af:1a:1b:d1:cf:2b:
d0:6c:93:81:f3:a1:00:d9:05:ca:d2:bb:ff:40:5b:
03:53:5e:b0:7a:83:39:ef:7f:e3:57:d9:3b:7a:12:
9b:05:63:ec:cc:d4:c2:1f:13:fd:85:24:52:86:90:
a6:1e:b2:cb:09:b3:df:aa:0d:e7:50:7e:63:89:1b:
79:a3:26:ef:62:d6:26:90:0b:93:66:19:8a:bc:78:
34:63:9f:c4:da:26:5c:7d:33:59:1d:cc:c8:3f:e3:
4b:f6:99:c1:28:dc:cf:52:42:96:e2:b2:13:1e:19:
ce:26:61:f5:88:e9:95:c7:3f:81:2a:b6:8d:91:3e:
26:a5:d2:b6:94:a9:6b:22:95:a1:79:4f:4d:76:62:
d8:27:06:e9:6a:86:78:e6:e6:73:dd:7e:04:52:dd:
28:78:49:82:c1:ba:2f:9c:d7:25:73:02:e6:18:93:
db:5f:a7:df:8a:51:ff:5a:c9:64:c7:3a:ca:ba:9c:
c4:08:c8:e9:87:c5:8b:9e:4d:ad:16:61:e3:52:ef:
ca:ca:2f:89:d1:0e:49:32:87:03:98:a0:6f:54:1d:
01:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F9:D1:5D:55:16:04:31:D4:F7:09:E8:AA:3A:3A:D5:BC:CC:D6:E5
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/rvnRXVUWBDHU9wnoqjo61bzM1uU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.64.160.0-103.64.207.255
103.64.224.0/20
103.213.144.0/20
103.223.144.0-103.223.175.255
103.223.192.0/18
119.80.192.0-119.80.203.255
Signature Algorithm: sha256WithRSAEncryption
86:2f:d1:dc:d3:c2:2b:13:53:43:26:81:f8:bb:e0:3a:71:ec:
29:df:ff:d6:9c:78:92:76:27:27:c2:5a:32:39:f7:ca:35:5c:
e6:e3:a6:5d:13:60:8b:8c:63:44:98:2a:d9:6e:3c:02:19:91:
80:26:58:66:2a:f1:a5:48:73:47:42:8b:a2:52:35:0d:74:18:
47:47:b0:b1:e3:7c:49:1d:17:64:74:e7:28:b4:6e:b9:bd:46:
c7:fa:71:91:d8:1e:a0:1c:76:73:fd:ed:ed:9c:9c:9a:3e:e1:
c2:71:de:6c:ae:fb:33:2f:2d:3b:dd:ab:1f:47:fc:c1:07:04:
25:74:a5:45:14:9a:12:6f:25:dc:ba:1c:42:4a:af:83:54:3b:
1a:21:f0:fb:2f:43:b3:da:12:db:52:16:d7:80:ff:41:f4:1d:
c8:a4:ff:3a:e1:85:df:2f:47:31:c8:87:22:00:2e:7f:44:8e:
a4:a5:67:2d:e7:8c:4f:6e:f2:84:f6:c5:d2:91:77:16:96:1e:
c8:86:95:ba:cf:a7:77:84:82:97:d1:fe:48:9b:c1:14:5b:1a:
93:69:b0:31:54:b4:e1:47:40:50:a1:47:32:5d:db:52:b3:72:
e6:43:a6:de:e6:cc:1a:d6:bc:f6:49:e5:1b:f4:a2:9e:56:9e:
89:bc:9c:0a
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgIDAM3RMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTA0MDMwODEwNThaFw0yNjA0MDMwODAwMDlaMDMx
MTAvBgNVBAMTKEFFRjlEMTVENTUxNjA0MzFENEY3MDlFOEFBM0EzQUQ1QkNDQ0Q2
RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQE5mCAcs24RJJQjcB
PssGQIQeZw8IXBpy4nSNhfNSJwYmdXb4dK8aG9HPK9Bsk4HzoQDZBcrSu/9AWwNT
XrB6gznvf+NX2Tt6EpsFY+zM1MIfE/2FJFKGkKYesssJs9+qDedQfmOJG3mjJu9i
1iaQC5NmGYq8eDRjn8TaJlx9M1kdzMg/40v2mcEo3M9SQpbishMeGc4mYfWI6ZXH
P4Eqto2RPial0raUqWsilaF5T012YtgnBulqhnjm5nPdfgRS3Sh4SYLBui+c1yVz
AuYYk9tfp9+KUf9ayWTHOsq6nMQIyOmHxYueTa0WYeNS78rKL4nRDkkyhwOYoG9U
HQHpAgMBAAGjggKJMIIChTAdBgNVHQ4EFgQUrvnRXVUWBDHU9wnoqjo61bzM1uUw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF
BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzUx
MC8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy
RTNEMDAwMC81MTAvcnZuUlhWVVdCREhVOXdub3FqbzYxYnpNMXVVLm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDBV
BggrBgEFBQcBBwEB/wRGMEQwQgQCAAEwPDAMAwQFZ0CgAwQEZ0DAAwQEZ0DgAwQE
Z9WQMAwDBARn35ADBARn36ADBAZn38AwDAMEBndQwAMEAndQyDANBgkqhkiG9w0B
AQsFAAOCAQEAhi/R3NPCKxNTQyaB+LvgOnHsKd//1px4knYnJ8JaMjn3yjVc5uOm
XRNgi4xjRJgq2W48AhmRgCZYZirxpUhzR0KLolI1DXQYR0ewseN8SR0XZHTnKLRu
ub1Gx/pxkdgeoBx2c/3t7Zycmj7hwnHebK77My8tO92rH0f8wQcEJXSlRRSaEm8l
3LocQkqvg1Q7GiHw+y9Ds9oS21IW14D/QfQdyKT/OuGF3y9HMciHIgAuf0SOpKVn
LeeMT27yhPbF0pF3FpYeyIaVus+nd4SCl9H+SJvBFFsak2mwMVS04UdAUKFHMl3b
UrNy5kOm3ubMGta89knlG/SinlaeibycCg==
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:19:50 2025 by rpki-client