Certificate
$ rpki-client -vvf rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
File: A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer (raw, json)
Hash identifier: NPM1GAO9Xl3NLFJJiet0RR7z3M+4g5yxlUYbXuDCS6s=
Subject key identifier: A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 40C6C519026DB96F715602364A2AD0F0DF0A877C
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Manifest: rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.mft
caRepository: rsync://rpki.co/repo/Riffi/1/
Notify URL: https://rrdp.rpki.co/rrdp/notification.xml
Certificate not before: Tue 23 Apr 2024 04:02:54 +0000
Certificate not after: Tue 22 Apr 2025 04:07:54 +0000
Subordinate resources: IP: 2a12:dd47:8046::/48
IP: 2a12:dd47:8700::/40
IP: 2a12:dd47:d000::/40
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:c6:c5:19:02:6d:b9:6f:71:56:02:36:4a:2a:d0:f0:df:0a:87:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Apr 23 04:02:54 2024 GMT
Not After : Apr 22 04:07:54 2025 GMT
Subject: CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:95:1d:ca:f2:de:9a:52:4a:9e:8b:ba:56:16:
ad:7e:f7:6a:54:42:38:0f:1c:a7:55:89:d1:76:bb:
20:65:eb:8d:a3:3e:52:f0:7c:8c:3e:3d:05:4a:88:
ce:e3:85:01:64:7d:ab:52:b6:17:32:e5:80:cb:9a:
d3:d8:21:f3:77:7b:ab:55:10:ba:5a:95:1a:d9:cc:
79:c2:06:d1:7d:f9:b1:b1:29:62:a3:15:6b:a3:2c:
91:98:16:6d:a5:1e:fe:62:78:54:4c:0a:fe:78:ff:
12:21:1c:aa:23:20:e7:16:52:e1:ea:4f:0c:88:2b:
5e:eb:44:8d:25:58:e1:ca:2f:de:9f:9f:d2:92:77:
51:38:b6:fd:91:4f:65:ca:8c:22:dc:b5:f0:e4:b3:
ea:7f:c4:a2:f4:99:e2:b7:28:32:16:0a:37:c0:00:
cc:df:80:52:08:bb:73:82:21:4e:03:f9:39:c6:60:
ff:a1:b2:84:a0:21:db:c1:82:f5:78:5b:a4:47:01:
ab:ef:75:4e:b8:e1:ec:a9:f2:8f:27:43:ed:8e:82:
c7:d0:48:07:87:b5:32:56:51:93:48:6b:ce:c0:3a:
15:73:89:bd:39:18:f0:e7:1e:11:4d:1b:7b:1c:e1:
6b:4c:d0:2a:73:d3:86:1b:db:fb:11:15:fa:34:5f:
a6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.co/repo/Riffi/1/
RPKI Manifest - URI:rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.mft
RPKI Notify - URI:https://rrdp.rpki.co/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8046::/48
2a12:dd47:8700::/40
2a12:dd47:d000::/40
Signature Algorithm: sha256WithRSAEncryption
c2:0f:f2:ad:a7:fd:51:3a:a0:bf:af:c0:d7:bd:7e:3a:db:70:
c0:16:f4:ed:6c:be:97:42:fa:5e:85:0f:b8:f6:35:de:d8:04:
0b:82:96:82:13:d3:22:df:26:58:9b:37:4b:88:5e:58:45:2d:
15:a9:06:8e:8a:c7:40:3f:4b:d5:a6:88:77:bb:27:f4:20:f3:
3c:d6:69:d8:d6:78:2b:c7:e9:5f:ae:68:a0:d7:81:08:cc:87:
ff:ab:94:09:1c:fc:05:5c:9d:8f:e1:ab:cf:e5:b9:55:d1:7c:
98:81:ae:c4:d3:9a:28:c5:ac:7f:b5:48:50:8a:0a:06:22:63:
83:a5:2a:62:b3:d3:32:bd:20:98:4e:e7:4f:0e:74:c8:6d:d4:
93:a0:f7:71:f7:81:1a:dc:bd:c8:79:c3:e1:fe:20:e1:b1:c2:
28:1f:09:61:8f:ad:42:6f:60:3c:58:02:90:1d:4f:4d:fd:94:
a3:ba:b5:95:e0:11:eb:05:13:7c:2e:d6:61:62:26:70:14:0f:
52:e6:54:65:1f:c7:34:45:86:4b:f7:f2:56:c4:fb:06:20:81:
ed:c0:6e:05:c7:f9:93:df:49:cb:f7:d1:91:c4:58:72:35:86:
01:69:8a:45:26:c7:13:89:dc:0b:0e:17:94:6c:3a:a3:f7:be:
8e:92:d8:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:40:11 2024 by rpki-client on console-fra.rpki-client.org