$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.cer File: 64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.cer (raw, json) Hash identifier: DMtdrF8ZWZlpns0Wj20pqeFCJelC7+Gl6i/ZlCHcRSU= Subject key identifier: 64:EF:7C:64:F4:E7:2C:C0:73:0D:D0:DA:80:D3:C3:67:CB:78:5E:67 Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 58458D006E6576932B498CA1E0B1F84EB406574E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Manifest: rsync://dev.tw/rpki/August/12/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.mft caRepository: rsync://dev.tw/rpki/August/12/ Notify URL: https://dev.tw/rpki/notification.xml Certificate not before: Sun 15 Oct 2023 03:29:15 +0000 Certificate not after: Sun 13 Oct 2024 03:34:15 +0000 Subordinate resources: IP: 104.37.42.0/23 Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 23:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:45:8d:00:6e:65:76:93:2b:49:8c:a1:e0:b1:f8:4e:b4:06:57:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Oct 15 03:29:15 2023 GMT Not After : Oct 13 03:34:15 2024 GMT Subject: CN=64EF7C64F4E72CC0730DD0DA80D3C367CB785E67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f4:88:ef:e2:c0:f5:a6:1f:08:77:1a:48:3c: 7a:a6:0b:d8:ac:1b:13:e2:d8:82:e8:f2:9e:e8:60: fd:b4:86:7f:74:63:55:86:40:7d:bf:0f:72:f3:1b: 34:1f:68:a3:b5:f0:93:a8:7b:1c:2d:3e:a4:08:7d: c9:b4:1d:3b:4e:b8:5e:e7:5d:4e:47:ef:35:66:4b: 59:6c:b1:a4:76:c2:fc:d9:00:06:9d:44:48:a8:cc: ab:bc:26:f1:31:6f:74:7a:b0:33:27:b2:74:e3:91: 32:a8:de:52:34:52:16:c5:67:a3:9f:ea:ca:8c:34: 05:91:98:22:99:dc:4f:8b:f1:ee:4f:b3:86:fe:2f: b5:bc:c9:68:e7:0a:d2:54:bf:d9:f0:a1:d7:0f:93: bd:5c:e8:a6:40:4a:4b:e9:67:38:26:04:f2:27:b9: cf:f8:05:5b:c4:6f:a7:85:98:30:b6:83:ae:16:d6: 0f:a1:09:a5:e1:36:11:f7:7a:e3:22:4e:f8:a0:52: 3b:0d:e8:4d:84:6e:34:8c:5f:0f:1c:11:bb:09:77: 3b:bc:94:8f:0f:91:0e:63:23:6a:06:18:68:8a:01: ee:ef:f5:b0:a8:f7:c5:1f:54:e1:a0:35:f5:7b:03: 38:18:f2:89:b7:46:ca:51:c6:ec:96:a2:9e:10:5a: 2a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:EF:7C:64:F4:E7:2C:C0:73:0D:D0:DA:80:D3:C3:67:CB:78:5E:67 X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: CA Repository - URI:rsync://dev.tw/rpki/August/12/ RPKI Manifest - URI:rsync://dev.tw/rpki/August/12/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.mft RPKI Notify - URI:https://dev.tw/rpki/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.37.42.0/23 Signature Algorithm: sha256WithRSAEncryption 90:73:7d:74:f4:15:6a:b4:32:ca:e9:ea:7d:fc:15:8d:0d:e1: b1:94:7f:7d:e5:be:91:e7:af:0f:78:45:0c:65:f3:9f:54:af: bf:c5:a3:ba:81:12:c4:af:3a:c3:ba:a3:d0:c4:b8:0e:93:99: 62:5f:b8:2d:df:90:00:1d:31:93:c1:14:27:15:bc:c6:6b:4d: da:98:0b:b0:3f:f8:1d:01:59:79:2b:d3:b0:fc:81:15:70:2f: 26:cc:46:a5:d1:9d:45:0e:0d:0c:dc:b7:cf:4b:a5:69:9b:0b: 1d:0b:0b:50:d3:27:9d:76:e5:e1:b1:23:a9:cd:82:72:fb:e4: c1:22:2f:14:9f:8e:00:4f:30:19:d4:14:e5:e2:e9:ab:9d:22: 58:57:fe:ed:25:4c:37:a4:53:14:f9:cd:67:5c:a7:ac:88:9a: d1:c9:2a:96:e8:6c:e0:69:f3:90:a7:23:fe:b5:e3:28:0f:c1: 86:8f:2f:a7:c0:2e:7a:f9:aa:ae:11:b4:5a:55:32:97:d5:43: b0:ef:5c:21:c5:1b:95:3c:ea:c3:89:5c:ef:71:92:76:25:f1: a6:1f:b4:29:18:96:1c:27:3e:30:92:ce:a1:98:f7:39:92:c6: 35:e6:55:b8:67:0a:12:4c:43:3c:3d:7e:08:db:1a:99:a3:cf: 6c:4e:66:09 -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgIUWEWNAG5ldpMrSYyh4LH4TrQGV04wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjMxMDE1MDMyOTE1WhcNMjQxMDEzMDMzNDE1 WjAzMTEwLwYDVQQDEyg2NEVGN0M2NEY0RTcyQ0MwNzMwREQwREE4MEQzQzM2N0NC Nzg1RTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfSI7+LA9aYf CHcaSDx6pgvYrBsT4tiC6PKe6GD9tIZ/dGNVhkB9vw9y8xs0H2ijtfCTqHscLT6k CH3JtB07Trhe511OR+81ZktZbLGkdsL82QAGnURIqMyrvCbxMW90erAzJ7J045Ey qN5SNFIWxWejn+rKjDQFkZgimdxPi/HuT7OG/i+1vMlo5wrSVL/Z8KHXD5O9XOim QEpL6Wc4JgTyJ7nP+AVbxG+nhZgwtoOuFtYPoQml4TYR93rjIk74oFI7DehNhG40 jF8PHBG7CXc7vJSPD5EOYyNqBhhoigHu7/WwqPfFH1ThoDX1ewM4GPKJt0bKUcbs lqKeEFoqiwIDAQABo4ICxzCCAsMwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQU ZO98ZPTnLMBzDdDagNPDZ8t4XmcwHwYDVR0jBBgwFoAUfsm10iUIwCMcFdq9r1E1 mQtmv+0wDgYDVR0PAQH/BAQDAgEGMGYGA1UdHwRfMF0wW6BZoFeGVXJzeW5jOi8v cmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdMYWlyLzAvN0VDOUI1RDIyNTA4QzAy MzFDMTVEQUJEQUY1MTM1OTkwQjY2QkZFRC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHj MIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5 L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3 ZDMvMDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzM5MDY1YWNj LWJlZWQtNDExNS1iYzZjLTYzZGUyMzJmMmEwNC8wMmJhM2Y1MjU0Yjg4NjgxZWM2 YzU0NTBhMzg3MTc0NzljMDU4OWI5OTU2YzUxZTM1MS5jZXIwgcYGCCsGAQUFBwEL BIG5MIG2MCoGCCsGAQUFBzAFhh5yc3luYzovL2Rldi50dy9ycGtpL0F1Z3VzdC8x Mi8wVgYIKwYBBQUHMAqGSnJzeW5jOi8vZGV2LnR3L3Jwa2kvQXVndXN0LzEyLzY0 RUY3QzY0RjRFNzJDQzA3MzBERDBEQTgwRDNDMzY3Q0I3ODVFNjcubWZ0MDAGCCsG AQUFBzANhiRodHRwczovL2Rldi50dy9ycGtpL25vdGlmaWNhdGlvbi54bWwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWglKjANBgkqhkiG9w0BAQsFAAOCAQEAkHN9dPQVarQyyunqffwVjQ3hsZR/ feW+keevD3hFDGXzn1Svv8WjuoESxK86w7qj0MS4DpOZYl+4Ld+QAB0xk8EUJxW8 xmtN2pgLsD/4HQFZeSvTsPyBFXAvJsxGpdGdRQ4NDNy3z0ulaZsLHQsLUNMnnXbl 4bEjqc2CcvvkwSIvFJ+OAE8wGdQU5eLpq50iWFf+7SVMN6RTFPnNZ1ynrIia0ckq luhs4GnzkKcj/rXjKA/Bho8vp8AuevmqrhG0WlUyl9VDsO9cIcUblTzqw4lc73GS diXxph+0KRiWHCc+MJLOoZj3OZLGNeZVuGcKEkxDPD1+CNsamaPPbE5mCQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:13:29 2024 by rpki-client on console-ams.rpki-client.org