Certificate
$ rpki-client -vvf rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer
File: 9788ACA0CB104D300847BED012FAF8E3269E8A01.cer (raw, json)
Hash identifier: GbMiUk4MjwpwwHJ680SWF7Sdh3Le9Y2+cvZ9r+RJ6ow=
Subject key identifier: 97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 6B3BAEA56FB5BD7DC312F8C098ACC892C9DCA8B6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Manifest: rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.mft
caRepository: rsync://rpki.co/repo/John/1/
Notify URL: https://rrdp.rpki.co/rrdp/notification.xml
Certificate not before: Tue 23 Apr 2024 08:00:11 +0000
Certificate not after: Tue 22 Apr 2025 08:05:11 +0000
Subordinate resources: IP: 2a12:dd47:3e00::/40
IP: 2a12:dd47:df00::/44
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:3b:ae:a5:6f:b5:bd:7d:c3:12:f8:c0:98:ac:c8:92:c9:dc:a8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Apr 23 08:00:11 2024 GMT
Not After : Apr 22 08:05:11 2025 GMT
Subject: CN=9788ACA0CB104D300847BED012FAF8E3269E8A01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ea:02:af:d6:37:85:13:fc:de:f8:8f:83:8b:
73:c6:ef:a4:5e:34:ad:80:48:18:7d:c2:75:ff:62:
0a:f1:14:81:1a:33:f3:d0:4c:1a:ac:1b:46:a0:39:
d5:b6:0e:95:83:fd:b6:4d:2f:b5:b0:cf:42:35:3d:
a5:4e:2f:8f:0e:67:4f:02:7f:05:b3:ea:d0:36:d4:
aa:c2:70:66:ac:db:81:a2:1d:b1:0e:0b:c8:3e:a5:
6c:75:a5:6c:d3:12:24:f7:28:b8:85:c6:ae:ba:47:
02:00:18:5d:28:74:eb:41:dd:ac:cc:b0:db:4d:1a:
0c:c5:58:75:01:5c:cc:a6:30:c2:36:58:cc:0d:af:
07:09:85:fd:3d:a4:a8:d9:16:03:6a:90:c0:02:23:
33:c5:14:c9:b5:0a:31:72:50:fa:1b:1a:78:1d:4c:
72:64:d7:a7:10:b3:b1:35:80:4d:84:ef:f3:bb:55:
e6:a9:95:05:8b:fd:ee:d0:44:99:8a:f2:0c:f2:ce:
8f:f1:d2:0a:a3:77:32:be:1f:ff:3c:37:b1:b8:08:
e1:38:59:6b:71:b9:32:35:b7:f4:87:e2:68:8c:3a:
a2:f8:ed:76:ec:bb:6a:d3:78:bf:8f:fd:cd:4d:5e:
8c:10:f7:7e:3a:aa:2a:ed:1a:45:46:46:f6:a7:48:
85:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.co/repo/John/1/
RPKI Manifest - URI:rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.mft
RPKI Notify - URI:https://rrdp.rpki.co/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:3e00::/40
2a12:dd47:df00::/44
Signature Algorithm: sha256WithRSAEncryption
c2:ba:af:6a:fd:dc:0f:5b:9d:0a:6d:f7:e7:1c:44:9d:15:75:
7b:12:b7:f2:fe:3f:ee:af:65:f6:4a:80:84:83:8f:45:b0:4b:
15:ff:8f:f7:db:66:9f:a1:57:b6:af:c0:8e:aa:3f:28:b4:4e:
9c:10:f7:74:81:a8:91:73:98:1c:9a:49:9d:86:10:dd:72:02:
c1:89:46:de:6b:63:da:64:c7:3f:86:19:73:01:6a:bf:a0:bb:
55:45:cf:f7:0e:11:13:fe:9f:ab:d1:f5:51:1e:d3:72:97:77:
d1:5d:92:a5:39:99:48:fa:f8:e0:82:df:66:85:39:c2:a0:f4:
e5:d3:36:1a:5d:6c:0f:e7:7d:e6:3b:d6:fa:16:1e:86:87:b4:
3e:76:e2:d9:e8:d4:7c:62:0c:2a:bf:e1:46:1e:95:16:bc:d2:
7d:e5:99:2c:23:5b:9c:e8:9a:81:52:01:c8:b2:a1:7d:ea:61:
06:d0:c2:cb:94:1f:26:dc:b7:dd:01:ec:7a:b6:ae:d8:b6:9e:
29:37:ff:40:f1:e9:4d:52:ff:e4:b1:32:de:fc:6b:5e:37:eb:
21:ee:6f:5e:f9:a6:76:0b:87:29:f1:5b:48:69:99:e5:24:b1:
7f:99:35:eb:43:ee:55:8c:b9:0f:22:1a:83:fe:2d:79:ae:5d:
a6:32:b1:1d
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUazuupW+1vX3DEvjAmKzIksncqLYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjYwNDI4OUM3RTM5RTA4RTFBRTEyNTVDRUU3M0MwNUJG
RDk5RjNFNjAeFw0yNDA0MjMwODAwMTFaFw0yNTA0MjIwODA1MTFaMDMxMTAvBgNV
BAMTKDk3ODhBQ0EwQ0IxMDREMzAwODQ3QkVEMDEyRkFGOEUzMjY5RThBMDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC46gKv1jeFE/ze+I+Di3PG76Re
NK2ASBh9wnX/YgrxFIEaM/PQTBqsG0agOdW2DpWD/bZNL7Wwz0I1PaVOL48OZ08C
fwWz6tA21KrCcGas24GiHbEOC8g+pWx1pWzTEiT3KLiFxq66RwIAGF0odOtB3azM
sNtNGgzFWHUBXMymMMI2WMwNrwcJhf09pKjZFgNqkMACIzPFFMm1CjFyUPobGngd
THJk16cQs7E1gE2E7/O7VeaplQWL/e7QRJmK8gzyzo/x0gqjdzK+H/88N7G4COE4
WWtxuTI1t/SH4miMOqL47Xbsu2rTeL+P/c1NXowQ9346qirtGkVGRvanSIV/AgMB
AAGjggI5MIICNTAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSXiKygyxBNMAhH
vtAS+vjjJp6KATAfBgNVHSMEGDAWgBRmBCicfjngjhrhJVzuc8Bb/Znz5jAOBgNV
HQ8BAf8EBAMCAQYwWgYDVR0fBFMwUTBPoE2gS4ZJcnN5bmM6Ly9ycGtpLmNvL3Jl
cG8vQVM5NDUvMS82NjA0Mjg5QzdFMzlFMDhFMUFFMTI1NUNFRTczQzA1QkZEOTlG
M0U2LmNybDBlBggrBgEFBQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vZGV2
LnR3L3Jwa2kvQXVndXN0LzUvNjYwNDI4OUM3RTM5RTA4RTFBRTEyNTVDRUU3M0Mw
NUJGRDk5RjNFNi5jZXIwgcgGCCsGAQUFBwELBIG7MIG4MCgGCCsGAQUFBzAFhhxy
c3luYzovL3Jwa2kuY28vcmVwby9Kb2huLzEvMFQGCCsGAQUFBzAKhkhyc3luYzov
L3Jwa2kuY28vcmVwby9Kb2huLzEvOTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJG
QUY4RTMyNjlFOEEwMS5tZnQwNgYIKwYBBQUHMA2GKmh0dHBzOi8vcnJkcC5ycGtp
LmNvL3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKhLdRz4DBwQqEt1H3wAw
DQYJKoZIhvcNAQELBQADggEBAMK6r2r93A9bnQpt9+ccRJ0VdXsSt/L+P+6vZfZK
gISDj0WwSxX/j/fbZp+hV7avwI6qPyi0TpwQ93SBqJFzmByaSZ2GEN1yAsGJRt5r
Y9pkxz+GGXMBar+gu1VFz/cOERP+n6vR9VEe03KXd9FdkqU5mUj6+OCC32aFOcKg
9OXTNhpdbA/nfeY71voWHoaHtD524tno1HxiDCq/4UYelRa80n3lmSwjW5zomoFS
AciyoX3qYQbQwsuUHybct90B7Hq2rti2nik3/0Dx6U1S/+SxMt78a1436yHub175
pnYLhynxW0hpmeUksX+ZNetD7lWMuQ8iGoP+LXmuXaYysR0=
-----END CERTIFICATE-----
Generated at Thu May 2 15:01:42 2024 by rpki-client on console-ams.rpki-client.org