Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/WRxbA8l84P4-x44jxoVveSwg1AQ.cer
File: WRxbA8l84P4-x44jxoVveSwg1AQ.cer (raw, json)
Hash identifier: F5q5n1JA8Sr3QqApLKW12IOmjsLcPhBp4gmRiv2WmKo=
Subject key identifier: 59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: E147
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 23 Oct 2025 03:07:01 +0000
Certificate not after: Fri 23 Oct 2026 03:01:03 +0000
Subordinate resources: AS: 63719
IP: 45.255.152.0/22
IP: 103.232.144.0/22
IP: 2401:2780::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 05 Nov 2025 23:43:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57671 (0xe147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 23 03:07:01 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=591C5B03C97CE0FE3EC78E23C6856F792C20D404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:98:ad:fa:6a:51:e5:d8:9e:9d:1c:d3:cd:73:
aa:54:b0:78:0c:e0:e9:a9:68:4c:c9:9b:09:b2:c5:
a8:0a:05:fb:46:2e:29:37:0d:2d:c3:a1:79:a4:10:
bb:53:00:c7:de:61:9d:80:4a:16:a3:ac:ff:75:23:
40:a9:5a:b7:99:2c:0d:b7:9d:61:df:82:d4:e7:e7:
ba:bd:7b:50:a5:02:30:67:7a:f6:37:27:31:25:28:
81:ab:91:49:95:22:6a:f0:e7:58:a2:ee:1a:48:55:
b9:da:20:48:05:dc:e2:1c:ee:22:51:6c:5d:7b:8d:
95:17:a0:0c:b9:a6:a5:63:28:a2:96:e2:7e:5a:d9:
9a:10:39:b4:27:8a:28:7f:76:26:4d:9e:c0:43:9f:
aa:47:96:48:af:fe:7c:be:6d:a3:36:6a:33:89:5a:
cb:82:03:2c:8d:d7:a2:68:88:c1:46:9f:91:db:b5:
54:44:22:3e:09:7e:e1:98:5a:e4:e1:0b:99:c4:ac:
b0:85:55:46:6d:74:5c:42:f4:47:72:6e:b3:62:33:
f0:37:4f:40:8b:f8:66:9c:fb:68:6b:ce:5f:82:dd:
5e:35:27:20:10:8c:a1:32:8e:cb:e8:3c:38:93:a2:
0e:ac:e3:4f:5c:c7:11:94:f4:0a:4c:d9:72:00:e3:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:5B:03:C9:7C:E0:FE:3E:C7:8E:23:C6:85:6F:79:2C:20:D4:04
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/756/WRxbA8l84P4-x44jxoVveSwg1AQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63719
sbgp-ipAddrBlock: critical
IPv4:
45.255.152.0/22
103.232.144.0/22
IPv6:
2401:2780::/32
Signature Algorithm: sha256WithRSAEncryption
26:9b:84:03:d2:d3:f3:2e:31:2a:d2:47:51:a6:09:9c:61:05:
a8:11:9d:70:29:26:72:7f:ee:78:f3:c7:9f:f3:3a:6e:9b:37:
ff:b1:b8:ba:c5:e8:78:dc:34:28:3f:69:fa:2e:dd:93:d5:c4:
ba:d2:02:e6:1b:f0:65:7e:1c:9c:60:d5:e0:62:db:e8:28:f0:
9c:f5:77:2a:e0:1e:99:b7:3a:61:8c:91:7e:46:99:8f:0b:74:
3a:4f:6c:b6:de:87:75:b1:1d:1e:77:18:36:34:3e:27:ed:62:
1b:80:3c:e8:84:52:78:af:01:aa:c7:87:89:85:3e:db:1a:c5:
e8:dd:0a:6a:a0:52:40:94:be:d9:8c:60:90:a7:c1:17:c1:e7:
46:62:18:b4:eb:b0:de:2f:96:82:12:cb:4c:f6:70:3d:81:6d:
b9:39:69:cb:e4:01:94:a2:aa:bb:85:4b:69:fb:33:fe:c8:24:
15:a2:1c:24:f7:c0:7d:5f:20:89:dd:cd:1d:fa:62:b9:a1:7e:
b1:dd:1f:bb:5d:a4:a5:a3:c4:d5:4b:89:e7:85:a4:ba:3f:21:
1f:4b:5c:3e:f6:b1:24:85:ff:83:9f:6e:c4:7d:62:f6:16:c7:
ae:4f:88:d9:6a:f5:93:7c:76:77:a6:b3:f5:e5:0c:a4:7f:e2:
c6:96:0f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 21:44:48 2025 by rpki-client