Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer
File: TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer (raw, json)
Hash identifier: mB86JZHvVwEhr6740toPC/lD46AHH4fmCGy24PzUPSM=
Subject key identifier: 4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: D035
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Mon 21 Apr 2025 19:36:32 +0000
Certificate not after: Fri 03 Apr 2026 08:00:09 +0000
Subordinate resources: AS: 59039
IP: 61.8.160.0/20
IP: 103.13.196.0/22
IP: 124.108.8.0/21
IP: 2405:7d40::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 26 Apr 2025 12:08:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53301 (0xd035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Apr 21 19:36:32 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=4DD36955B4E7A00CA1FA6EDCDA84AA0730FD26AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:ed:ac:d8:09:8a:57:eb:28:b8:87:12:20:
50:60:ac:1e:a6:8b:75:27:9f:be:88:18:90:22:38:
e1:0f:e6:8d:ff:81:d3:b2:da:87:85:45:52:73:7e:
ad:bc:6e:22:d0:eb:cb:04:60:38:df:24:38:d2:be:
40:34:6f:81:67:e1:34:a9:4a:5b:60:72:b6:d9:20:
12:f6:28:c6:6b:e2:3c:18:5e:c4:4c:ab:9b:af:5a:
a3:a6:3c:59:df:11:00:3f:84:f2:1a:8d:af:b8:39:
95:22:34:99:db:a3:82:00:21:63:4f:92:36:ae:35:
1c:1b:1b:09:55:40:80:a7:bc:c5:4e:a8:08:8a:44:
34:88:32:92:3c:26:a1:a7:d4:9f:75:81:e4:2a:96:
cc:0b:e7:90:d2:fb:d3:4e:50:82:55:6c:8d:6d:20:
41:41:a3:8d:87:b2:21:f7:1e:9d:be:63:01:83:f4:
77:7d:fc:ce:7a:db:b3:24:c2:ef:f3:01:e8:0b:ee:
69:ea:ba:3b:a8:e5:3e:e1:dc:f9:4e:92:e7:d7:57:
6a:89:1a:7c:fb:84:98:20:3f:3f:79:2c:80:4e:31:
02:8b:d1:43:34:d8:b5:fc:cc:c0:ac:ef:28:2a:fc:
e2:44:b0:0b:88:6e:3b:da:84:eb:9c:c7:0e:7b:c0:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59039
sbgp-ipAddrBlock: critical
IPv4:
61.8.160.0/20
103.13.196.0/22
124.108.8.0/21
IPv6:
2405:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
8a:b7:1d:32:79:90:ae:0c:88:84:96:07:80:33:ed:5b:7a:fb:
e2:c1:2e:53:81:d7:69:44:77:05:25:09:8c:65:29:50:03:5f:
ee:4e:41:ee:4c:0e:51:23:40:9b:90:37:24:e6:96:8a:c9:cd:
b6:ab:b9:61:7c:39:ab:1e:91:8c:47:76:91:a5:f1:d2:b0:bb:
1e:99:e7:60:0c:13:63:e0:bc:b7:c3:2c:97:89:a0:3c:54:a1:
73:4a:db:f7:3c:21:37:8a:96:70:51:12:81:f1:9a:d9:4f:cf:
8c:58:0b:85:f5:3e:87:42:83:b6:34:6b:78:b5:02:ff:c6:15:
67:7c:d2:6d:96:9b:98:0b:43:e0:85:f6:a8:8b:5f:c0:34:96:
bf:a3:73:7e:8c:4f:33:4d:03:75:e1:bf:40:c4:f7:bc:ad:13:
6f:88:35:0e:cd:76:e4:d0:07:28:f9:52:74:7a:89:b6:a9:2d:
f1:c9:d1:39:39:99:bf:44:89:9e:e5:e8:ff:ed:55:66:23:da:
1d:71:05:6c:d9:c5:72:af:df:72:d6:90:ed:53:99:2c:fd:79:
cf:b5:4f:59:0f:7e:f4:ce:e2:c8:d8:08:88:6c:43:ff:13:95:
d7:57:c5:38:5e:5f:3f:0b:d4:f9:7c:5b:b2:a7:0d:b7:74:94:
35:cc:6a:73
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIDANA1MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTA0MjExOTM2MzJaFw0yNjA0MDMwODAwMDlaMDMx
MTAvBgNVBAMTKDRERDM2OTU1QjRFN0EwMENBMUZBNkVEQ0RBODRBQTA3MzBGRDI2
QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEuu2s2AmKV+souIcS
IFBgrB6mi3Unn76IGJAiOOEP5o3/gdOy2oeFRVJzfq28biLQ68sEYDjfJDjSvkA0
b4Fn4TSpSltgcrbZIBL2KMZr4jwYXsRMq5uvWqOmPFnfEQA/hPIaja+4OZUiNJnb
o4IAIWNPkjauNRwbGwlVQICnvMVOqAiKRDSIMpI8JqGn1J91geQqlswL55DS+9NO
UIJVbI1tIEFBo42HsiH3Hp2+YwGD9Hd9/M5627Mkwu/zAegL7mnqujuo5T7h3PlO
kufXV2qJGnz7hJggPz95LIBOMQKL0UM02LX8zMCs7ygq/OJEsAuIbjvahOucxw57
wAyRAgMBAAGjggKMMIICiDAdBgNVHQ4EFgQUTdNpVbTnoAyh+m7c2oSqBzD9Jq4w
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIy
MDMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMjIwMy9UZE5wVmJUbm9BeWgtbTdjMm9TcUJ6RDlKcTQubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDmnzA6BggrBgEFBQcBBwEB/wQrMCkw
GAQCAAEwEgMEBD0IoAMEAmcNxAMEA3xsCDANBAIAAjAHAwUAJAV9QDANBgkqhkiG
9w0BAQsFAAOCAQEAircdMnmQrgyIhJYHgDPtW3r74sEuU4HXaUR3BSUJjGUpUANf
7k5B7kwOUSNAm5A3JOaWisnNtqu5YXw5qx6RjEd2kaXx0rC7HpnnYAwTY+C8t8Ms
l4mgPFShc0rb9zwhN4qWcFESgfGa2U/PjFgLhfU+h0KDtjRreLUC/8YVZ3zSbZab
mAtD4IX2qItfwDSWv6NzfoxPM00DdeG/QMT3vK0Tb4g1Ds125NAHKPlSdHqJtqkt
8cnROTmZv0SJnuXo/+1VZiPaHXEFbNnFcq/fctaQ7VOZLP15z7VPWQ9+9M7iyNgI
iGxD/xOV11fFOF5fPwvU+XxbsqcNt3SUNcxqcw==
-----END CERTIFICATE-----
Generated at Sat Apr 26 08:05:01 2025 by rpki-client