Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/tw-ay_EAFGtabH5NDOLP3_sXgA0.cer
File: tw-ay_EAFGtabH5NDOLP3_sXgA0.cer (raw, json)
Hash identifier: by2kgHbD5SIkwFGw8unC66EWi2Uiixz30k5JUwFLvUQ=
Subject key identifier: B7:0F:9A:CB:F1:00:14:6B:5A:6C:7E:4D:0C:E2:CF:DF:FB:17:80:0D
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: D9F0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/tw-ay_EAFGtabH5NDOLP3_sXgA0.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Sun 03 Aug 2025 09:17:50 +0000
Certificate not after: Mon 03 Aug 2026 08:44:40 +0000
Subordinate resources: AS: 38372
IP: 112.73.0.0/16
IP: 119.38.128.0/18
IP: 120.31.0.0/16
IP: 2402:3240::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 Aug 2025 07:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55792 (0xd9f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Aug 3 09:17:50 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=B70F9ACBF100146B5A6C7E4D0CE2CFDFFB17800D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:41:aa:38:3d:a1:9b:02:92:ba:2f:6b:e0:85:
4a:46:1e:62:f3:b6:c3:c0:9d:a0:a6:1c:ed:bb:2d:
5c:30:ec:cd:e2:dc:3b:99:01:63:31:9f:11:17:b7:
f1:92:40:21:4a:b4:dd:20:17:1b:3d:d4:b2:d3:41:
cd:3e:e5:65:19:d0:24:0e:15:26:c9:bf:35:47:aa:
ae:ef:98:86:5c:98:b0:5d:c5:62:45:31:7e:13:74:
c4:35:97:e3:19:f5:38:51:60:83:0d:39:fa:a0:ae:
3f:ae:20:f2:8e:f1:71:38:73:c8:75:f7:68:3a:08:
13:75:cf:14:cf:4c:b9:04:a0:03:5b:ab:88:76:3c:
22:c8:a6:31:c5:92:c7:c1:fb:15:8c:0d:8f:b7:87:
0a:27:2c:4f:7a:ff:0e:0d:1e:4b:61:4a:72:01:a2:
e3:f1:4b:12:05:62:bf:e4:8e:e0:6b:6d:35:99:aa:
4b:8f:8e:af:e3:73:8a:a2:8a:65:90:21:fc:15:1c:
fc:c4:d3:3f:41:64:87:da:4b:d6:3f:36:ac:89:70:
4c:3b:b5:0b:39:72:0d:08:16:97:4d:a2:4e:71:d3:
45:d6:fd:2e:81:89:d5:85:e1:3a:a6:9b:f1:cf:49:
65:8a:f8:0e:bd:ab:46:a7:a9:1d:cf:e3:e7:50:fb:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0F:9A:CB:F1:00:14:6B:5A:6C:7E:4D:0C:E2:CF:DF:FB:17:80:0D
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/tw-ay_EAFGtabH5NDOLP3_sXgA0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38372
sbgp-ipAddrBlock: critical
IPv4:
112.73.0.0/16
119.38.128.0/18
120.31.0.0/16
IPv6:
2402:3240::/32
Signature Algorithm: sha256WithRSAEncryption
05:b3:29:65:a2:43:b0:79:89:7c:e8:77:17:c6:53:00:af:51:
d0:33:b1:f9:84:57:bf:1d:20:c1:65:78:33:36:81:c9:7f:39:
af:8f:b1:bd:2f:92:13:40:0e:2c:0e:4b:94:c0:fe:54:39:d6:
9c:ae:b0:93:4d:52:9f:7f:13:b0:05:ac:95:31:9d:0c:8d:67:
34:3b:8b:0b:a3:88:bc:ab:5f:a9:71:42:a8:d3:fc:95:ad:7f:
a3:5e:5b:a7:25:01:e9:d7:45:45:47:9d:d3:66:dc:c5:1e:ad:
1d:48:b6:a8:35:d2:28:ec:4f:64:11:aa:99:44:b5:78:94:10:
bd:0a:1d:89:b3:69:63:26:40:20:13:81:72:51:31:f0:55:2a:
67:69:43:1d:22:8b:b0:5c:43:cd:cf:b3:6f:f2:d8:8a:59:53:
ef:c7:7f:5b:bf:b2:ee:d8:2a:02:4a:7e:d6:25:47:ec:b4:1f:
b2:27:84:14:3c:a4:e3:82:63:2b:18:68:c3:a8:a6:66:1e:fa:
07:e3:d0:0c:d9:60:b1:89:62:bc:1d:63:34:a2:d8:bd:d4:73:
34:e0:05:37:90:11:aa:fb:77:28:ba:8f:f8:33:77:20:40:47:
84:b7:ff:08:0c:36:1f:4f:41:8e:92:9e:55:a0:e3:f3:15:cd:
b8:03:ad:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:57:04 2025 by rpki-client