Certificate
$ rpki-client -vvf dev.tw/rpki/August/1/A5B1E05036940FBC80C2944856DC1168E62E2364.cer
File: A5B1E05036940FBC80C2944856DC1168E62E2364.cer (raw, json)
Hash identifier: fZFIK8T7D4KbHtCe+9QhVruiBC5MIYwIgw/cuB7Me7c=
Subject key identifier: A5:B1:E0:50:36:94:0F:BC:80:C2:94:48:56:DC:11:68:E6:2E:23:64
Authority key identifier: 44:2C:35:4A:48:3A:8B:70:D8:39:D3:F7:98:CD:87:06:84:F0:21:86
Certificate issuer: /CN=442c354a483a8b70d839d3f798cd870684f02186
Certificate serial: 1CD390F9C67D3F5F108006CA13739101869728BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RCw1Skg6i3DYOdP3mM2HBoTwIYY.cer
Manifest: rsync://dev.tw/rpki/AS945/5/A5B1E05036940FBC80C2944856DC1168E62E2364.mft
caRepository: rsync://dev.tw/rpki/AS945/5/
Notify URL: https://dev.tw/rpki/notification.xml
Certificate not before: Mon 25 Nov 2024 20:22:44 +0000
Certificate not after: Mon 24 Nov 2025 20:27:44 +0000
Subordinate resources: IP: 185.0.19.0/24
IP: 185.155.75.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:d3:90:f9:c6:7d:3f:5f:10:80:06:ca:13:73:91:01:86:97:28:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=442c354a483a8b70d839d3f798cd870684f02186
Validity
Not Before: Nov 25 20:22:44 2024 GMT
Not After : Nov 24 20:27:44 2025 GMT
Subject: CN=A5B1E05036940FBC80C2944856DC1168E62E2364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8c:7f:7e:04:88:54:ee:b0:12:71:1c:24:07:
f4:33:47:1f:a8:76:8b:d0:81:d2:eb:d4:11:ac:46:
46:05:cb:ba:3f:44:17:9c:ad:c3:63:7f:eb:ca:c5:
7f:7b:82:af:ad:07:5b:9a:7c:56:1c:2d:c0:41:9f:
b0:26:39:11:3b:a4:3a:92:ab:57:82:ff:4b:b9:e9:
4c:22:0c:92:21:29:6c:e1:99:76:f4:8b:7c:87:10:
98:6b:70:0c:02:32:8c:bb:de:c7:61:70:b9:c2:c6:
0e:e2:d9:f5:f6:7e:13:60:7e:bf:95:25:05:a4:d2:
60:bb:e9:32:47:6f:05:9d:da:7e:92:24:1a:7e:4c:
69:fe:08:0f:14:e4:02:9e:e9:44:57:83:de:a6:d0:
4f:73:4b:63:80:c5:46:ce:68:16:19:c6:ac:ec:c3:
af:1b:83:b7:4e:69:8d:3d:6b:38:22:d3:14:8f:00:
97:bc:c2:56:75:5f:22:b5:23:ac:3b:2e:f3:3d:98:
fa:61:77:e8:a5:88:68:7f:cc:df:a7:08:53:da:d8:
1d:19:cf:ba:78:6f:8e:82:3c:95:c1:6b:f5:be:0b:
30:42:60:47:7a:fb:1f:fe:a1:3e:6b:45:b1:fc:52:
71:07:74:5f:0a:5b:e9:6d:32:da:a5:96:bc:d2:6f:
73:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
A5:B1:E0:50:36:94:0F:BC:80:C2:94:48:56:DC:11:68:E6:2E:23:64
X509v3 Authority Key Identifier:
keyid:44:2C:35:4A:48:3A:8B:70:D8:39:D3:F7:98:CD:87:06:84:F0:21:86
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RCw1Skg6i3DYOdP3mM2HBoTwIYY.cer
Subject Information Access:
CA Repository - URI:rsync://dev.tw/rpki/AS945/5/
RPKI Manifest - URI:rsync://dev.tw/rpki/AS945/5/A5B1E05036940FBC80C2944856DC1168E62E2364.mft
RPKI Notify - URI:https://dev.tw/rpki/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.19.0/24
185.155.75.0/24
Signature Algorithm: sha256WithRSAEncryption
81:c2:8f:10:ba:bc:4b:89:2b:27:63:3b:aa:e6:a5:1a:9a:3d:
36:4d:a0:3e:cf:07:3a:65:45:8a:2c:68:57:32:fc:d8:de:6f:
33:53:ab:0b:74:58:2d:e9:01:ab:55:ee:8a:c5:f5:b6:f6:4d:
9a:cd:c6:16:2a:3f:e5:1d:a3:14:0c:d5:98:6b:44:dd:0a:2a:
da:25:7a:a9:48:d2:be:bd:e2:55:41:c9:7f:c2:bc:a4:20:c6:
c9:cf:76:a5:d8:bb:9b:13:72:7e:7e:59:78:d6:a1:63:ca:c9:
a2:54:24:58:49:f9:e7:58:8a:92:3a:f9:2e:71:d9:93:c1:2a:
aa:a0:61:5b:92:83:f5:26:c1:49:a4:11:b3:e9:a5:08:5c:c9:
a0:cf:33:5c:a0:43:fc:b7:c0:7e:4c:3b:78:0f:d8:38:87:5c:
40:54:f3:b8:4f:0b:be:40:fa:e9:2f:f9:4a:fa:d0:2f:16:ec:
12:80:1d:9a:37:8f:11:ab:28:10:e6:66:c1:d0:6f:85:ed:ca:
69:bf:29:54:6a:06:3d:be:c9:ca:b5:db:7c:7f:af:6e:9e:8b:
1b:eb:34:88:61:de:b4:86:a4:81:30:8b:a9:c5:f3:f8:e3:d0:
84:8e:11:80:a6:6c:24:e7:60:44:68:72:1e:ed:e1:79:87:10:
71:bd:f5:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:02 2025 by rpki-client