Certificate
$ rpki-client -vvf rpki.co/repo/AS945/1/AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.cer
File: AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.cer (raw, json)
Hash identifier: gF69ZVkiQfa3ghjmy1lXUpBDQmomuYNn3EknKLOHGyA=
Subject key identifier: AE:12:47:2D:A1:E0:AF:D2:B0:E9:D5:DC:6F:4E:DE:16:C4:D1:11:CF
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 3AEC835E2073A6874492ABD5BA3F1A58DFBAA3C5
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 25 Apr 2024 06:08:50 +0000
Certificate not after: Thu 24 Apr 2025 06:13:50 +0000
Subordinate resources: IP: 2a12:dd47:3300::/40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ec:83:5e:20:73:a6:87:44:92:ab:d5:ba:3f:1a:58:df:ba:a3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Apr 25 06:08:50 2024 GMT
Not After : Apr 24 06:13:50 2025 GMT
Subject: CN=AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9b:0a:1a:9f:16:1f:5e:ef:c5:85:a0:e2:34:
17:27:7d:de:11:4e:04:9a:b6:78:49:01:a9:fb:e0:
92:fc:ce:d4:c2:c0:22:46:9b:b1:31:e0:cb:83:ff:
10:ce:b1:6d:3a:84:cd:0f:75:b7:ff:7b:40:3c:0a:
56:25:b5:50:bd:8b:34:f2:2f:4f:dd:8a:6e:03:29:
56:a1:ec:c1:04:e4:47:70:7f:98:ac:6a:e0:f9:10:
f1:b0:0a:00:9a:39:82:10:96:2b:c9:1c:63:aa:30:
95:c8:80:3b:8f:83:58:61:7c:09:e4:1b:a1:02:b8:
3f:ce:99:fb:73:84:31:99:6f:9e:f7:d3:5d:6a:67:
28:1f:bd:ef:c2:88:b6:b7:3c:8b:bd:9e:5f:96:5a:
d7:be:6b:cc:61:f5:fe:2b:b9:88:d0:42:71:c5:f5:
bd:ad:e4:50:57:7a:03:54:07:ba:2e:11:4d:f5:f2:
f5:a8:b8:0c:dd:16:d9:8a:ac:28:14:42:fc:66:c5:
82:a8:b6:ff:f0:77:0c:9b:c3:d9:41:05:27:16:dd:
45:1c:87:9b:20:7c:aa:c2:36:20:44:fb:f5:c6:96:
ce:3f:09:a6:f8:7b:58:99:34:4e:9b:53:07:fe:58:
c1:74:0b:3f:78:71:f0:f0:83:71:55:e8:61:bd:03:
a0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AE:12:47:2D:A1:E0:AF:D2:B0:E9:D5:DC:6F:4E:DE:16:C4:D1:11:CF
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:3300::/40
Signature Algorithm: sha256WithRSAEncryption
c4:49:fc:85:16:06:5b:40:ca:ea:61:45:20:67:fe:94:7a:54:
b0:e6:ae:65:85:ed:ee:f9:16:5d:6b:cf:26:60:af:74:9f:6e:
ae:96:1b:70:25:f1:23:fb:22:5d:60:af:e3:3e:18:b8:7d:f7:
5f:33:09:0f:bc:8d:59:cf:39:bf:ec:35:00:61:b2:8e:df:99:
97:b6:ef:d3:49:95:c0:78:b5:ea:6a:15:c1:89:c2:f7:79:f3:
a4:c3:18:e8:63:ca:99:e4:27:23:d3:0f:f0:63:9c:15:68:e7:
a4:37:cc:39:0d:4e:96:de:3a:c1:11:2a:c9:82:e4:e9:46:1c:
17:ec:48:01:9d:cf:48:e2:72:bb:1e:1f:aa:c4:18:14:9a:49:
9f:69:98:a0:9b:04:30:e3:da:c5:83:35:1c:10:d8:f1:cc:a4:
5b:69:08:96:b2:e8:12:89:ea:1c:a7:ab:db:16:44:88:e8:33:
b2:ba:b0:4f:a2:37:32:e3:b3:92:64:ce:03:8e:21:c6:69:59:
42:ac:eb:19:83:f1:78:46:11:28:e0:f9:de:a6:7f:e3:74:34:
e7:84:e5:ec:9a:c8:39:b7:3e:a8:4d:b0:ff:47:5a:9f:02:e7:
94:a8:99:aa:4e:15:05:5b:b5:34:61:ef:e0:65:cf:2f:64:6f:
62:bb:b7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 06:05:19 2024 by rpki-client on console-fra.rpki-client.org