Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer
File: rzr00B8M0Fbw4_aYgAsiOu53PSA.cer (raw, json)
Hash identifier: kKp2HI2AljtxzVVrip6bScgk7Nj/VibNbCTsUcmlVbQ=
Subject key identifier: AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: EBF8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Wed 11 Mar 2026 19:58:43 +0000
Certificate not after: Sat 09 Jan 2027 08:23:18 +0000
Subordinate resources: AS: 37965
AS: 55988
AS: 58857
IP: 43.247.44.0 -- 43.247.51.255
IP: 103.13.124.0/22
IP: 103.26.240.0/22
IP: 222.126.128.0/17
IP: 2401:2a00::/32
IP: 2407:5500::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60408 (0xebf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Mar 11 19:58:43 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:95:f5:82:ef:7d:02:6a:80:18:5c:d8:46:
2d:92:3b:1b:2a:a8:34:3c:72:14:db:81:d9:e5:95:
77:9d:40:17:3b:40:0f:8f:77:b5:50:f9:c8:db:53:
54:c4:e3:4b:d3:36:f2:02:56:ba:43:d8:9e:08:bb:
6c:37:bd:64:59:98:04:82:e4:34:66:f4:8c:ba:2e:
b0:9b:5a:70:0a:f6:38:ec:d0:3b:c9:ee:9c:01:d9:
24:d7:01:38:75:ce:e5:86:4a:57:f3:5b:10:12:58:
a1:9f:08:cb:2c:7e:0b:c4:55:30:60:11:ef:f4:a8:
80:22:71:88:e6:af:cb:0b:b6:7c:22:73:04:0e:cc:
14:84:06:94:ee:0b:1c:8f:27:03:8d:79:fd:4c:a5:
e1:4f:7c:35:e2:4b:1e:1e:b8:3d:21:be:ce:7d:95:
15:c6:55:44:14:60:bd:88:14:ce:69:14:c6:e7:cc:
b8:dd:ae:f2:ff:f5:9f:86:4d:b4:5d:7d:76:ca:31:
da:eb:88:a6:a0:8d:23:78:d6:a2:80:f6:4d:c2:22:
31:8f:20:7a:d2:09:18:59:c0:03:25:2c:9f:dc:94:
21:1a:3e:ce:a3:ed:29:5b:24:42:fa:c1:bb:60:0f:
e6:51:97:8d:23:2a:c3:c5:55:8c:5f:eb:d1:df:91:
12:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37965
55988
58857
sbgp-ipAddrBlock: critical
IPv4:
43.247.44.0-43.247.51.255
103.13.124.0/22
103.26.240.0/22
222.126.128.0/17
IPv6:
2401:2a00::/32
2407:5500::/32
Signature Algorithm: sha256WithRSAEncryption
86:28:d3:73:3f:ea:eb:24:da:89:0c:ad:b4:af:ee:71:7b:ec:
85:d6:75:d7:2d:a3:fa:83:c7:dc:ca:1d:02:b8:1e:c0:6c:ca:
b3:9e:fc:26:5c:9c:b1:80:56:30:8e:cb:f9:ee:4b:32:fe:0f:
cb:25:85:92:0e:78:16:19:6b:5a:65:82:1b:38:23:0f:92:e5:
50:ab:82:73:9e:98:99:ac:ca:df:40:63:37:3c:67:6b:9d:0c:
45:1a:80:1d:08:34:cc:63:ca:26:56:b8:93:ed:16:0c:22:c6:
52:35:d4:1d:0d:84:e5:4c:e4:5a:73:eb:33:d0:f1:3b:28:13:
1a:68:c1:30:d1:3e:81:e9:6e:36:77:ba:a6:8c:f6:7f:21:f9:
8f:93:b9:08:60:c9:36:50:92:b5:18:55:db:5b:05:02:64:5b:
25:1a:48:c4:9c:30:bb:73:c8:7f:36:45:6e:f6:31:c1:5a:9d:
b4:f1:b8:a3:02:0e:72:61:26:ca:54:ac:08:7f:fc:fe:b1:d0:
59:c0:d8:dd:39:43:51:08:68:13:d5:c0:98:46:4e:fc:45:0a:
91:52:2e:b9:7b:a9:af:7d:73:6a:bf:87:38:f9:f3:7a:a5:b9:
d7:76:e7:f0:ca:fc:65:a5:47:0f:b4:a1:83:9e:65:6a:ad:bd:
81:02:81:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 05:23:51 2026 by rpki-client