Certificate
$ rpki-client -vvf rpki.co/repo/AS945/1/96495E25A01953ACA1A500125DE32FD2CAD7B989.cer
File: 96495E25A01953ACA1A500125DE32FD2CAD7B989.cer (raw, json)
Hash identifier: PqWn88iuPkWnHKpAbrhYcHuh03zspdakg9D6arfkm4g=
Subject key identifier: 96:49:5E:25:A0:19:53:AC:A1:A5:00:12:5D:E3:2F:D2:CA:D7:B9:89
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 55D7F39DE8DA9522B6199F0F15F6E0631149E067
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Manifest: rsync://rpki.co/repo/Mlgt/1/96495E25A01953ACA1A500125DE32FD2CAD7B989.mft
caRepository: rsync://rpki.co/repo/Mlgt/1/
Notify URL: https://rrdp.rpki.co/rrdp/notification.xml
Certificate not before: Tue 23 Apr 2024 03:57:57 +0000
Certificate not after: Tue 22 Apr 2025 04:02:57 +0000
Subordinate resources: IP: 2a12:dd47:3f00::/40
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:d7:f3:9d:e8:da:95:22:b6:19:9f:0f:15:f6:e0:63:11:49:e0:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Apr 23 03:57:57 2024 GMT
Not After : Apr 22 04:02:57 2025 GMT
Subject: CN=96495E25A01953ACA1A500125DE32FD2CAD7B989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d7:99:02:bd:94:fc:0a:7a:6a:5e:4e:41:f1:
78:6d:21:f9:2c:fb:c5:6a:8f:b0:82:d2:80:e8:3a:
50:5e:a2:fc:03:f2:a2:80:f8:3b:73:41:5c:da:11:
12:5c:fe:0e:5f:7a:e5:01:5a:d1:1a:8e:d4:05:5a:
76:73:59:58:27:c9:70:dd:ff:27:d7:8d:59:fd:90:
52:cd:04:45:99:07:26:87:97:10:1b:d8:e5:c6:9c:
f4:f8:cb:95:35:47:57:65:b3:0b:7c:46:6a:0f:91:
51:34:88:da:eb:a8:f6:5d:6a:4f:22:02:10:d3:a4:
7b:30:b0:36:fb:2e:db:25:6a:b1:85:a3:07:28:41:
35:8d:80:eb:f2:1e:d9:14:55:eb:2a:c8:fc:28:dd:
a9:31:ce:b0:b6:c7:c0:6a:10:38:e4:20:e5:f1:79:
2f:c4:54:7f:ad:4b:58:00:0f:7a:62:c9:cc:1b:7a:
f8:5d:5e:10:6d:fc:a1:37:d0:e8:91:7b:63:3d:fa:
ce:d4:36:fe:1d:e0:89:c3:ed:34:f2:c3:d3:47:bf:
c1:b6:79:47:ac:c2:d7:65:0e:ea:1a:ad:cc:1b:76:
69:9d:27:db:d8:13:e1:39:97:cb:b7:fa:99:75:0a:
18:9c:55:46:0c:1f:e8:8f:98:ea:0b:21:8c:59:90:
0f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
96:49:5E:25:A0:19:53:AC:A1:A5:00:12:5D:E3:2F:D2:CA:D7:B9:89
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.co/repo/Mlgt/1/
RPKI Manifest - URI:rsync://rpki.co/repo/Mlgt/1/96495E25A01953ACA1A500125DE32FD2CAD7B989.mft
RPKI Notify - URI:https://rrdp.rpki.co/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:3f00::/40
Signature Algorithm: sha256WithRSAEncryption
d7:9b:25:23:09:ac:ea:b8:87:46:b0:fa:94:1c:63:b3:2c:a6:
16:35:d3:90:31:59:31:c0:66:6e:06:ca:0a:b4:76:30:4a:2e:
a3:2c:b0:19:d0:ca:45:1b:18:70:67:c5:9d:a6:0e:3c:0a:3a:
ac:c2:f1:93:28:3b:07:16:ba:0b:a9:a4:49:a6:e3:16:a8:15:
bf:28:46:72:22:4e:4f:6c:49:e8:7a:22:2d:0a:2d:d7:a4:51:
9e:d1:f9:c1:d2:60:f2:ab:0d:f4:57:b9:77:f0:3b:03:f2:5a:
c9:07:f3:57:58:43:1a:e5:bf:40:8f:ef:47:a8:8a:0e:16:ae:
06:ba:de:20:c3:5c:30:27:38:98:92:67:70:44:f0:86:b3:56:
3f:96:e3:0c:6c:15:60:82:fd:20:75:0d:55:51:06:6c:87:8f:
1b:d6:a7:d9:11:a0:6b:dd:20:a8:ea:46:1f:3a:95:13:7e:ef:
d3:41:45:5d:54:70:ec:24:6f:1b:8a:28:24:17:f7:49:c6:a5:
9a:9e:5e:ef:fe:04:f4:5a:f4:17:37:ec:e9:75:69:70:31:5b:
dd:25:46:9e:90:89:90:ce:86:9c:dd:2a:3d:b0:bd:f9:f0:01:
e0:c2:1f:89:78:5f:79:c0:6f:91:01:4c:57:ef:5a:a0:c4:01:
1a:66:e3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:40:11 2024 by rpki-client on console-fra.rpki-client.org