Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/tw-ay_EAFGtabH5NDOLP3_sXgA0.cer
File: tw-ay_EAFGtabH5NDOLP3_sXgA0.cer (raw, json)
Hash identifier: f/IMo4NQhKphdUXBqKJdga/9b2f4VryxawzW2elatxY=
Subject key identifier: B7:0F:9A:CB:F1:00:14:6B:5A:6C:7E:4D:0C:E2:CF:DF:FB:17:80:0D
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CE51
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/tw-ay_EAFGtabH5NDOLP3_sXgA0.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 03 Apr 2025 08:13:57 +0000
Certificate not after: Fri 03 Apr 2026 08:00:09 +0000
Subordinate resources: AS: 38372
IP: 112.73.0.0/16
IP: 119.38.128.0/18
IP: 120.31.0.0/16
IP: 2402:3240::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 26 Apr 2025 12:08:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52817 (0xce51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Apr 3 08:13:57 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=B70F9ACBF100146B5A6C7E4D0CE2CFDFFB17800D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:41:aa:38:3d:a1:9b:02:92:ba:2f:6b:e0:85:
4a:46:1e:62:f3:b6:c3:c0:9d:a0:a6:1c:ed:bb:2d:
5c:30:ec:cd:e2:dc:3b:99:01:63:31:9f:11:17:b7:
f1:92:40:21:4a:b4:dd:20:17:1b:3d:d4:b2:d3:41:
cd:3e:e5:65:19:d0:24:0e:15:26:c9:bf:35:47:aa:
ae:ef:98:86:5c:98:b0:5d:c5:62:45:31:7e:13:74:
c4:35:97:e3:19:f5:38:51:60:83:0d:39:fa:a0:ae:
3f:ae:20:f2:8e:f1:71:38:73:c8:75:f7:68:3a:08:
13:75:cf:14:cf:4c:b9:04:a0:03:5b:ab:88:76:3c:
22:c8:a6:31:c5:92:c7:c1:fb:15:8c:0d:8f:b7:87:
0a:27:2c:4f:7a:ff:0e:0d:1e:4b:61:4a:72:01:a2:
e3:f1:4b:12:05:62:bf:e4:8e:e0:6b:6d:35:99:aa:
4b:8f:8e:af:e3:73:8a:a2:8a:65:90:21:fc:15:1c:
fc:c4:d3:3f:41:64:87:da:4b:d6:3f:36:ac:89:70:
4c:3b:b5:0b:39:72:0d:08:16:97:4d:a2:4e:71:d3:
45:d6:fd:2e:81:89:d5:85:e1:3a:a6:9b:f1:cf:49:
65:8a:f8:0e:bd:ab:46:a7:a9:1d:cf:e3:e7:50:fb:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0F:9A:CB:F1:00:14:6B:5A:6C:7E:4D:0C:E2:CF:DF:FB:17:80:0D
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/tw-ay_EAFGtabH5NDOLP3_sXgA0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38372
sbgp-ipAddrBlock: critical
IPv4:
112.73.0.0/16
119.38.128.0/18
120.31.0.0/16
IPv6:
2402:3240::/32
Signature Algorithm: sha256WithRSAEncryption
86:5c:4b:55:06:9b:f3:e1:47:ee:5f:ad:e7:3a:ae:5f:f7:2a:
ce:94:ef:96:ab:2a:63:b8:75:7c:1e:89:dd:3d:85:53:ac:5e:
29:cc:98:19:48:b9:74:21:f8:3d:3b:95:4a:83:ba:fc:25:82:
03:9e:be:b9:8c:89:3c:66:57:56:fc:84:b2:43:e1:fa:66:6e:
bd:5e:e7:7f:7a:88:09:c4:31:e6:fc:de:e2:22:da:90:9f:e8:
f3:31:fc:bd:63:b4:91:dd:ee:4d:27:9e:50:75:a6:93:44:af:
85:ad:8d:57:8f:3d:5d:72:4f:5e:24:11:34:4e:b8:fd:65:7b:
1d:47:4a:d3:18:cb:97:f0:81:eb:a8:90:32:ff:6e:45:97:b0:
64:c4:df:9b:69:e8:07:7f:26:98:8b:c9:71:a9:e4:16:39:5b:
65:f9:a7:97:cc:9a:fa:51:72:c8:cf:f4:ff:ee:72:f0:7f:7a:
a3:7f:b4:0b:a5:50:a6:9c:c5:96:91:4f:f0:93:6f:88:5b:3d:
97:3d:b5:d1:e2:aa:6f:ea:e8:32:a5:b2:39:d9:54:99:bd:fe:
94:b7:8c:7d:75:2a:b5:35:4f:31:2c:b4:86:65:68:b4:2b:64:
b7:51:1b:6b:df:24:bd:8b:55:5b:6e:a7:d0:c7:59:83:79:b1:
99:4f:3a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:15:04 2025 by rpki-client