Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/tS8PP_c3H_HOnYI-lUn8EVixaio.cer
File: tS8PP_c3H_HOnYI-lUn8EVixaio.cer (raw, json)
Hash identifier: P1wJvVeO+DQiWmjP8UE+rpUAA7MzvOdAienWhs94PvY=
Subject key identifier: B5:2F:0F:3F:F7:37:1F:F1:CE:9D:82:3E:95:49:FC:11:58:B1:6A:2A
Authority key identifier: D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11
Certificate issuer: /CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11
Certificate serial: 379F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/tS8PP_c3H_HOnYI-lUn8EVixaio.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 27 Sep 2024 02:51:17 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: IP: 157.66.42.0/23
Validation: Failed, certificate revoked on Fri 21 Mar 2025 02:57:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14239 (0x379f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Sep 27 02:51:17 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=B52F0F3FF7371FF1CE9D823E9549FC1158B16A2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7c:06:8a:f8:54:06:09:16:4c:32:ce:68:fe:
8d:bd:85:6e:94:51:9d:1f:33:27:a0:26:eb:24:3f:
65:6d:fb:60:af:06:27:38:d3:7f:b9:76:28:9c:c2:
80:18:e1:2c:8a:fa:7e:0b:61:86:85:c6:20:a6:47:
a8:ac:b9:93:aa:05:2e:82:83:44:0f:7c:fd:1b:8b:
ed:b6:16:bc:ac:45:2e:ba:3f:c7:fa:a8:1f:47:4a:
ae:15:24:6c:28:57:ea:5e:e3:d0:c0:d8:4a:9a:a3:
1e:92:cf:60:53:bb:0c:06:31:2d:f4:f2:57:4c:fd:
91:42:ce:b1:df:f7:42:b7:9f:88:e7:1f:13:be:ef:
3b:12:83:ac:d7:48:bd:62:ce:d3:ac:b7:ab:68:92:
56:2f:62:d7:f8:60:75:5b:af:ed:ff:67:90:e7:78:
59:a8:ad:81:db:03:bb:ce:4a:46:52:e1:18:74:17:
07:51:f6:22:2d:d9:4e:aa:d4:c9:5f:c6:81:89:cc:
fb:17:f2:5e:a5:8c:e3:ac:d1:49:9c:bd:19:45:8c:
de:4a:bd:51:96:6c:f4:4a:58:92:42:6d:65:fb:9b:
36:35:a0:91:b2:51:80:bd:ae:91:16:55:ad:3d:1a:
11:ff:89:ce:3a:17:6f:49:4e:f5:05:4a:ed:ca:ee:
ce:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2F:0F:3F:F7:37:1F:F1:CE:9D:82:3E:95:49:FC:11:58:B1:6A:2A
X509v3 Authority Key Identifier:
keyid:D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/tS8PP_c3H_HOnYI-lUn8EVixaio.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.42.0/23
Signature Algorithm: sha256WithRSAEncryption
53:12:7a:a4:25:9f:b6:01:fb:f5:00:87:9c:44:7c:23:bb:c9:
4f:21:26:a5:6d:53:28:59:18:c8:8a:9f:19:e3:e8:9e:05:47:
d8:00:12:99:6c:4d:a1:60:3c:c5:2d:6d:46:28:ea:d0:8b:66:
9f:b6:de:b1:be:03:8f:26:da:ee:b8:fc:99:74:4b:5e:14:48:
97:ce:5c:e7:78:1e:28:74:17:33:3a:b1:6c:e0:f7:10:e6:2b:
99:8e:36:88:62:27:4f:c6:07:d7:d7:ad:dc:41:d7:6a:3e:6c:
c9:f9:3b:8e:a1:87:0a:c6:b7:b4:c1:3c:1e:f6:b5:61:83:a6:
57:b7:30:b0:8d:be:f6:5f:9e:c9:d4:63:37:68:75:25:bd:53:
e0:24:60:a2:f3:3c:8a:1e:37:82:10:05:23:1b:0f:35:57:26:
7b:2c:2c:19:09:54:9f:06:9d:a5:10:ae:aa:db:65:fc:08:e8:
37:5a:a4:74:a5:f7:c0:42:2d:c9:ba:3b:92:2c:b0:86:97:2a:
da:dc:8a:5c:51:f1:24:f4:c0:ff:6c:40:95:00:ad:2f:04:ce:
c2:75:48:8f:c0:5a:99:4d:3b:38:c6:62:c8:e7:a1:45:d8:41:
c1:de:87:d6:4d:02:32:a4:66:73:5f:bf:c2:06:2e:03:ec:77:
07:d1:37:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:13:44 2025 by rpki-client