Certificate
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer
File: 02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer (raw, json)
Hash identifier: 4IFjM6W0OXcr0sLP8CqOx0vjTLy+BNOaG3QTPqRnf74=
Subject key identifier: 02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Certificate issuer: /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial: 0F1393FD407069C778132A844C83C6E62F33350B
Authority info access: rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Manifest: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft
caRepository: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/
Notify URL: https://repo.kagl.me/rpki/notification.xml
Certificate not before: Thu 20 Jun 2024 23:50:35 +0000
Certificate not after: Thu 19 Jun 2025 23:55:35 +0000
Subordinate resources: IP: 2a12:dd47:8600::/40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:13:93:fd:40:70:69:c7:78:13:2a:84:4c:83:c6:e6:2f:33:35:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Validity
Not Before: Jun 20 23:50:35 2024 GMT
Not After : Jun 19 23:55:35 2025 GMT
Subject: CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:32:cf:4f:a5:9f:c7:fc:7d:75:0c:bf:95:4e:
de:92:ca:61:bc:42:98:f6:b7:0a:97:56:ff:1c:c2:
da:fd:6f:9d:23:a9:dc:a0:9f:06:8c:c8:df:01:21:
76:bb:4e:ab:39:6b:0c:83:77:fd:4b:72:81:6e:d3:
b9:7a:ba:4a:0b:2c:7d:3c:9c:b2:63:3c:fe:a6:26:
bd:c5:91:d6:63:f7:dc:93:b4:46:c2:64:3e:f3:37:
97:b3:04:de:67:68:2a:1d:1f:05:d9:a9:54:b8:46:
b3:b7:c8:ad:d3:e1:46:69:0c:16:96:1b:e1:1e:79:
8d:21:f2:48:a6:06:d0:32:0b:50:b7:9a:56:ba:cb:
82:11:17:65:c0:de:70:6e:2f:07:87:37:07:b0:99:
a5:0b:c6:a8:38:ce:8a:76:a3:92:e6:ba:45:6e:ce:
c6:dd:6f:c4:2b:8c:57:e3:2a:05:14:03:6f:ea:d0:
7a:5f:17:26:f4:67:6e:69:71:55:38:78:e6:d5:5a:
02:11:27:5a:96:dc:92:dd:7c:8c:c7:81:c8:11:cd:
fc:f4:a0:52:42:0e:a8:fc:06:0d:bb:50:ee:72:c9:
8c:85:af:9e:97:91:1c:44:14:30:4a:f0:24:e1:f9:
82:0a:0c:fb:0b:3d:62:9a:f6:7b:c8:fe:9c:f1:f8:
e0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3
X509v3 Authority Key Identifier:
keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject Information Access:
CA Repository - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/
RPKI Manifest - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft
RPKI Notify - URI:https://repo.kagl.me/rpki/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8600::/40
Signature Algorithm: sha256WithRSAEncryption
66:96:86:81:88:e7:50:55:1f:1b:97:f8:ec:17:d8:c5:15:be:
14:37:7b:c1:d3:c4:23:f2:d0:4f:8c:ae:2b:dc:65:d3:b5:e3:
c5:8f:cd:f4:f9:af:df:7e:1a:44:98:dd:08:1a:7c:ea:89:ba:
02:e4:34:2d:b4:d8:96:d2:3c:aa:14:b8:37:78:41:e5:40:6c:
ac:76:27:14:da:da:ce:ab:1c:4b:59:5d:d5:f9:19:87:90:df:
5a:2a:d8:b7:b8:6e:13:4d:ce:a4:ec:06:ba:57:17:dd:81:c4:
f8:40:e6:03:e8:4c:4a:3e:2c:dc:4c:04:b4:58:8b:aa:3a:ae:
cb:bb:b5:73:80:27:89:9d:dc:13:2f:37:0e:c1:09:26:f6:29:
77:af:4f:2a:3f:3d:70:05:0d:36:62:39:ff:40:0c:21:4f:44:
8b:6e:14:df:d5:eb:8b:04:7b:8a:39:d2:3e:8e:35:70:84:e5:
c1:c7:d7:4c:8c:02:8f:36:01:85:3b:e1:0b:e0:52:59:db:21:
62:af:4a:c6:8c:11:9a:47:f5:44:22:a2:a8:0c:48:67:d1:75:
a7:6e:c0:c8:de:e2:12:e8:8c:44:33:36:53:d1:e2:74:ca:35:
91:24:3f:6b:83:42:2b:9a:d3:14:1d:cd:a9:af:13:12:74:96:
83:f8:01:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:41:24 2025 by rpki-client