Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/rvnRXVUWBDHU9wnoqjo61bzM1uU.cer
File: rvnRXVUWBDHU9wnoqjo61bzM1uU.cer (raw, json)
Hash identifier: hB9z/LnSCyLC9I0eCBL/E37ylNh4ZfqijAtBgNmHVhM=
Subject key identifier: AE:F9:D1:5D:55:16:04:31:D4:F7:09:E8:AA:3A:3A:D5:BC:CC:D6:E5
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: BBC7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/rvnRXVUWBDHU9wnoqjo61bzM1uU.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:52:44 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: IP: 103.20.128.0/22
IP: 103.64.160.0 -- 103.64.207.255
IP: 103.64.224.0/20
IP: 103.213.144.0/20
IP: 103.223.144.0 -- 103.223.175.255
IP: 103.223.192.0/18
IP: 103.255.68.0/22
IP: 119.80.192.0 -- 119.80.203.255
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 14:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48071 (0xbbc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Sep 27 02:52:44 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=AEF9D15D55160431D4F709E8AA3A3AD5BCCCD6E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:99:82:01:cb:36:e1:12:49:42:37:01:3e:
cb:06:40:84:1e:67:0f:08:5c:1a:72:e2:74:8d:85:
f3:52:27:06:26:75:76:f8:74:af:1a:1b:d1:cf:2b:
d0:6c:93:81:f3:a1:00:d9:05:ca:d2:bb:ff:40:5b:
03:53:5e:b0:7a:83:39:ef:7f:e3:57:d9:3b:7a:12:
9b:05:63:ec:cc:d4:c2:1f:13:fd:85:24:52:86:90:
a6:1e:b2:cb:09:b3:df:aa:0d:e7:50:7e:63:89:1b:
79:a3:26:ef:62:d6:26:90:0b:93:66:19:8a:bc:78:
34:63:9f:c4:da:26:5c:7d:33:59:1d:cc:c8:3f:e3:
4b:f6:99:c1:28:dc:cf:52:42:96:e2:b2:13:1e:19:
ce:26:61:f5:88:e9:95:c7:3f:81:2a:b6:8d:91:3e:
26:a5:d2:b6:94:a9:6b:22:95:a1:79:4f:4d:76:62:
d8:27:06:e9:6a:86:78:e6:e6:73:dd:7e:04:52:dd:
28:78:49:82:c1:ba:2f:9c:d7:25:73:02:e6:18:93:
db:5f:a7:df:8a:51:ff:5a:c9:64:c7:3a:ca:ba:9c:
c4:08:c8:e9:87:c5:8b:9e:4d:ad:16:61:e3:52:ef:
ca:ca:2f:89:d1:0e:49:32:87:03:98:a0:6f:54:1d:
01:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F9:D1:5D:55:16:04:31:D4:F7:09:E8:AA:3A:3A:D5:BC:CC:D6:E5
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/rvnRXVUWBDHU9wnoqjo61bzM1uU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.128.0/22
103.64.160.0-103.64.207.255
103.64.224.0/20
103.213.144.0/20
103.223.144.0-103.223.175.255
103.223.192.0/18
103.255.68.0/22
119.80.192.0-119.80.203.255
Signature Algorithm: sha256WithRSAEncryption
5f:06:77:c5:69:4d:7a:23:d3:4f:ee:21:df:bb:72:27:bf:ce:
ae:68:63:48:0b:e1:d5:54:3c:e5:cc:81:7c:23:18:d4:cd:6a:
18:ff:ab:c3:5c:28:55:39:fe:31:76:f1:df:79:b4:f8:ae:d2:
b6:33:fb:7a:64:e7:35:97:10:15:d1:68:59:00:84:c5:5a:7c:
02:c0:98:25:e6:24:f8:51:bc:9c:f2:05:80:0c:f4:a7:63:f3:
2d:0f:f1:b8:3b:bb:99:09:6b:45:ed:8f:0a:45:26:c3:e5:ce:
c9:a9:89:3a:56:75:22:b0:fd:fb:0c:f9:b6:ab:0a:f3:46:ef:
b5:aa:8f:a3:f6:5a:6a:60:ca:86:d9:52:3a:d1:d8:fd:9c:97:
12:fc:79:24:8e:04:6c:7b:cd:0a:b9:af:d6:dd:04:1d:2f:dc:
21:69:95:62:0b:2b:91:d3:6a:46:7a:ba:86:6f:a2:9f:c9:26:
3b:8c:0a:4b:a7:b3:29:44:35:83:11:f4:f9:e4:cc:bf:eb:ee:
81:9e:01:29:87:b6:b2:dc:06:2c:20:a1:4f:ec:f9:4e:a0:8e:
66:f8:45:68:8e:ea:a8:a6:a7:90:52:88:f7:41:23:d1:74:ea:
29:cf:00:1a:1c:0b:82:cf:92:d2:11:42:76:e1:d6:61:2d:5f:
95:83:b9:a3
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgIDALvHMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNDA5MjcwMjUyNDRaFw0yNTA5MjcwMjQwMTRaMDMx
MTAvBgNVBAMTKEFFRjlEMTVENTUxNjA0MzFENEY3MDlFOEFBM0EzQUQ1QkNDQ0Q2
RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQE5mCAcs24RJJQjcB
PssGQIQeZw8IXBpy4nSNhfNSJwYmdXb4dK8aG9HPK9Bsk4HzoQDZBcrSu/9AWwNT
XrB6gznvf+NX2Tt6EpsFY+zM1MIfE/2FJFKGkKYesssJs9+qDedQfmOJG3mjJu9i
1iaQC5NmGYq8eDRjn8TaJlx9M1kdzMg/40v2mcEo3M9SQpbishMeGc4mYfWI6ZXH
P4Eqto2RPial0raUqWsilaF5T012YtgnBulqhnjm5nPdfgRS3Sh4SYLBui+c1yVz
AuYYk9tfp9+KUf9ayWTHOsq6nMQIyOmHxYueTa0WYeNS78rKL4nRDkkyhwOYoG9U
HQHpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrvnRXVUWBDHU9wnoqjo61bzM1uUw
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF
BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzUx
MC8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy
RTNEMDAwMC81MTAvcnZuUlhWVVdCREhVOXdub3FqbzYxYnpNMXVVLm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDBh
BggrBgEFBQcBBwEB/wRSMFAwTgQCAAEwSAMEAmcUgDAMAwQFZ0CgAwQEZ0DAAwQE
Z0DgAwQEZ9WQMAwDBARn35ADBARn36ADBAZn38ADBAJn/0QwDAMEBndQwAMEAndQ
yDANBgkqhkiG9w0BAQsFAAOCAQEAXwZ3xWlNeiPTT+4h37tyJ7/OrmhjSAvh1VQ8
5cyBfCMY1M1qGP+rw1woVTn+MXbx33m0+K7StjP7emTnNZcQFdFoWQCExVp8AsCY
JeYk+FG8nPIFgAz0p2PzLQ/xuDu7mQlrRe2PCkUmw+XOyamJOlZ1IrD9+wz5tqsK
80bvtaqPo/ZaamDKhtlSOtHY/ZyXEvx5JI4EbHvNCrmv1t0EHS/cIWmVYgsrkdNq
Rnq6hm+in8kmO4wKS6ezKUQ1gxH0+eTMv+vugZ4BKYe2stwGLCChT+z5TqCOZvhF
aI7qqKankFKI90Ej0XTqKc8AGhwLgs+S0hFCduHWYS1flYO5ow==
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:14:41 2024 by rpki-client on console-ams.rpki-client.org