Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/WRxbA8l84P4-x44jxoVveSwg1AQ.cer
File: WRxbA8l84P4-x44jxoVveSwg1AQ.cer (raw, json)
Hash identifier: hz4k1WdoYbt8ipLMHrQdmoGBneIzQ1SrGTSH+aDwtsE=
Subject key identifier: 59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CD39
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 03 Apr 2025 08:08:08 +0000
Certificate not after: Fri 03 Apr 2026 08:00:09 +0000
Subordinate resources: AS: 63719
IP: 45.255.152.0/22
IP: 103.232.144.0/22
IP: 2401:2780::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 26 Apr 2025 12:08:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52537 (0xcd39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Apr 3 08:08:08 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=591C5B03C97CE0FE3EC78E23C6856F792C20D404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:98:ad:fa:6a:51:e5:d8:9e:9d:1c:d3:cd:73:
aa:54:b0:78:0c:e0:e9:a9:68:4c:c9:9b:09:b2:c5:
a8:0a:05:fb:46:2e:29:37:0d:2d:c3:a1:79:a4:10:
bb:53:00:c7:de:61:9d:80:4a:16:a3:ac:ff:75:23:
40:a9:5a:b7:99:2c:0d:b7:9d:61:df:82:d4:e7:e7:
ba:bd:7b:50:a5:02:30:67:7a:f6:37:27:31:25:28:
81:ab:91:49:95:22:6a:f0:e7:58:a2:ee:1a:48:55:
b9:da:20:48:05:dc:e2:1c:ee:22:51:6c:5d:7b:8d:
95:17:a0:0c:b9:a6:a5:63:28:a2:96:e2:7e:5a:d9:
9a:10:39:b4:27:8a:28:7f:76:26:4d:9e:c0:43:9f:
aa:47:96:48:af:fe:7c:be:6d:a3:36:6a:33:89:5a:
cb:82:03:2c:8d:d7:a2:68:88:c1:46:9f:91:db:b5:
54:44:22:3e:09:7e:e1:98:5a:e4:e1:0b:99:c4:ac:
b0:85:55:46:6d:74:5c:42:f4:47:72:6e:b3:62:33:
f0:37:4f:40:8b:f8:66:9c:fb:68:6b:ce:5f:82:dd:
5e:35:27:20:10:8c:a1:32:8e:cb:e8:3c:38:93:a2:
0e:ac:e3:4f:5c:c7:11:94:f4:0a:4c:d9:72:00:e3:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63719
sbgp-ipAddrBlock: critical
IPv4:
45.255.152.0/22
103.232.144.0/22
IPv6:
2401:2780::/32
Signature Algorithm: sha256WithRSAEncryption
9d:bc:a0:6a:3a:6a:ba:28:7f:8e:e6:ea:82:00:86:fd:46:7f:
99:01:41:08:5c:2a:68:10:ad:b0:f2:60:83:70:8a:97:f4:03:
03:eb:1c:80:f5:09:a5:0b:31:ec:18:8b:f3:35:cb:39:4f:bc:
42:56:94:9b:c8:83:f6:f3:ac:9c:63:b9:ba:a0:f1:be:d4:29:
7e:e4:97:ba:85:b0:32:41:33:f1:72:f6:58:56:93:89:d8:f7:
3a:be:92:0d:c2:5c:be:32:90:bf:33:69:48:a1:4c:0b:3a:0f:
9a:25:12:07:61:2d:b5:38:d8:39:af:fe:58:10:8e:d5:cd:ce:
dc:25:29:a6:71:c5:e6:ed:29:dd:2c:65:5a:92:4f:f3:0a:e1:
b8:6d:de:87:0c:35:84:5e:63:14:fe:02:cb:0e:bd:cf:bf:fb:
12:15:51:a5:5c:9a:3e:ca:dd:2a:dd:e7:74:cb:86:2b:eb:82:
0b:dc:4c:69:4c:c6:ae:97:30:a1:56:65:29:73:0a:07:89:6a:
ee:9b:7e:b0:22:1e:3f:06:0e:f3:0c:e8:2a:8a:1d:68:0c:1d:
ab:9d:a2:81:19:51:07:bb:f0:41:aa:53:27:49:fd:ed:89:3c:
0d:f2:36:26:cc:87:44:a8:2a:5d:f9:6a:a9:a6:55:ca:10:a7:
d1:18:54:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:22:13 2025 by rpki-client