Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/tw-ay_EAFGtabH5NDOLP3_sXgA0.cer
File: tw-ay_EAFGtabH5NDOLP3_sXgA0.cer (raw, json)
Hash identifier: QDqqAxO7y2L2gBgF/CDEBIhNw0zqsH4uxkal/YwC9t8=
Subject key identifier: B7:0F:9A:CB:F1:00:14:6B:5A:6C:7E:4D:0C:E2:CF:DF:FB:17:80:0D
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: E2E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/tw-ay_EAFGtabH5NDOLP3_sXgA0.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 23 Oct 2025 03:12:50 +0000
Certificate not after: Fri 23 Oct 2026 03:01:03 +0000
Subordinate resources: AS: 38372
IP: 112.73.0.0/16
IP: 119.38.128.0/18
IP: 120.31.0.0/16
IP: 2402:3240::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 05 Nov 2025 14:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58083 (0xe2e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 23 03:12:50 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=B70F9ACBF100146B5A6C7E4D0CE2CFDFFB17800D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:41:aa:38:3d:a1:9b:02:92:ba:2f:6b:e0:85:
4a:46:1e:62:f3:b6:c3:c0:9d:a0:a6:1c:ed:bb:2d:
5c:30:ec:cd:e2:dc:3b:99:01:63:31:9f:11:17:b7:
f1:92:40:21:4a:b4:dd:20:17:1b:3d:d4:b2:d3:41:
cd:3e:e5:65:19:d0:24:0e:15:26:c9:bf:35:47:aa:
ae:ef:98:86:5c:98:b0:5d:c5:62:45:31:7e:13:74:
c4:35:97:e3:19:f5:38:51:60:83:0d:39:fa:a0:ae:
3f:ae:20:f2:8e:f1:71:38:73:c8:75:f7:68:3a:08:
13:75:cf:14:cf:4c:b9:04:a0:03:5b:ab:88:76:3c:
22:c8:a6:31:c5:92:c7:c1:fb:15:8c:0d:8f:b7:87:
0a:27:2c:4f:7a:ff:0e:0d:1e:4b:61:4a:72:01:a2:
e3:f1:4b:12:05:62:bf:e4:8e:e0:6b:6d:35:99:aa:
4b:8f:8e:af:e3:73:8a:a2:8a:65:90:21:fc:15:1c:
fc:c4:d3:3f:41:64:87:da:4b:d6:3f:36:ac:89:70:
4c:3b:b5:0b:39:72:0d:08:16:97:4d:a2:4e:71:d3:
45:d6:fd:2e:81:89:d5:85:e1:3a:a6:9b:f1:cf:49:
65:8a:f8:0e:bd:ab:46:a7:a9:1d:cf:e3:e7:50:fb:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0F:9A:CB:F1:00:14:6B:5A:6C:7E:4D:0C:E2:CF:DF:FB:17:80:0D
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/tw-ay_EAFGtabH5NDOLP3_sXgA0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38372
sbgp-ipAddrBlock: critical
IPv4:
112.73.0.0/16
119.38.128.0/18
120.31.0.0/16
IPv6:
2402:3240::/32
Signature Algorithm: sha256WithRSAEncryption
81:e2:d2:fe:e3:a1:1a:fe:82:60:73:24:e4:70:83:43:9e:24:
18:2c:85:4d:de:77:fa:18:5b:43:31:b4:9e:aa:59:0f:f3:20:
c5:33:9c:16:63:68:73:7e:aa:49:17:98:9c:c6:a7:43:b1:0b:
03:d7:a9:2c:2a:f7:c5:cd:bc:fb:f8:db:c0:a1:22:15:c2:e6:
31:82:95:5f:f2:e2:ec:18:93:2d:67:f6:73:fa:b4:c2:7c:f4:
03:80:89:07:50:f3:01:83:eb:27:df:3e:3f:1e:83:72:7f:75:
64:39:3e:b9:63:9c:51:08:5f:69:f6:cf:0b:d8:21:42:3e:ed:
63:06:e1:cc:9e:8d:8f:82:62:cd:52:35:90:18:20:03:c8:f5:
19:0e:71:04:c2:b5:a9:2c:11:27:6d:3c:f1:54:bf:ed:13:f6:
0a:f8:79:96:02:05:24:28:ab:26:28:51:7c:0b:48:43:e8:5a:
7e:45:6e:7a:0f:2a:0d:82:ec:59:14:c0:f8:c7:1b:53:39:ae:
8e:d3:83:17:7f:b2:fd:a4:c5:a6:6e:17:24:77:b9:af:b4:13:
ca:b2:8a:51:c8:a2:8f:a8:3a:e8:2a:54:9f:42:3d:97:c3:bd:
a6:06:9f:f0:39:20:07:03:e9:11:ed:54:c0:c5:9d:07:ee:c7:
9a:d2:bf:49
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgIDAOLjMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTEwMjMwMzEyNTBaFw0yNjEwMjMwMzAxMDNaMDMx
MTAvBgNVBAMTKEI3MEY5QUNCRjEwMDE0NkI1QTZDN0U0RDBDRTJDRkRGRkIxNzgw
MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaQao4PaGbApK6L2vg
hUpGHmLztsPAnaCmHO27LVww7M3i3DuZAWMxnxEXt/GSQCFKtN0gFxs91LLTQc0+
5WUZ0CQOFSbJvzVHqq7vmIZcmLBdxWJFMX4TdMQ1l+MZ9ThRYIMNOfqgrj+uIPKO
8XE4c8h192g6CBN1zxTPTLkEoANbq4h2PCLIpjHFksfB+xWMDY+3hwonLE96/w4N
HkthSnIBouPxSxIFYr/kjuBrbTWZqkuPjq/jc4qiimWQIfwVHPzE0z9BZIfaS9Y/
NqyJcEw7tQs5cg0IFpdNok5x00XW/S6BidWF4Tqmm/HPSWWK+A69q0anqR3P4+dQ
+8CTAgMBAAGjggKKMIIChjAdBgNVHQ4EFgQUtw+ay/EAFGtabH5NDOLP3/sXgA0w
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMz
NDUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMzM0NS90dy1heV9FQUZHdGFiSDVORE9MUDNfc1hnQTAubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCV5DA4BggrBgEFBQcBBwEB/wQpMCcw
FgQCAAEwEAMDAHBJAwQGdyaAAwMAeB8wDQQCAAIwBwMFACQCMkAwDQYJKoZIhvcN
AQELBQADggEBAIHi0v7joRr+gmBzJORwg0OeJBgshU3ed/oYW0MxtJ6qWQ/zIMUz
nBZjaHN+qkkXmJzGp0OxCwPXqSwq98XNvPv428ChIhXC5jGClV/y4uwYky1n9nP6
tMJ89AOAiQdQ8wGD6yffPj8eg3J/dWQ5PrljnFEIX2n2zwvYIUI+7WMG4cyejY+C
Ys1SNZAYIAPI9RkOcQTCtaksESdtPPFUv+0T9gr4eZYCBSQoqyYoUXwLSEPoWn5F
bnoPKg2C7FkUwPjHG1M5ro7Tgxd/sv2kxaZuFyR3ua+0E8qyilHIoo+oOugqVJ9C
PZfDvaYGn/A5IAcD6RHtVMDFnQfux5rSv0k=
-----END CERTIFICATE-----
Generated at Wed Nov 5 11:46:24 2025 by rpki-client