$ rpki-client -vvf rpki.co/repo/AS945/1/AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.cer File: AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.cer (raw, json) Hash identifier: gF69ZVkiQfa3ghjmy1lXUpBDQmomuYNn3EknKLOHGyA= Subject key identifier: AE:12:47:2D:A1:E0:AF:D2:B0:E9:D5:DC:6F:4E:DE:16:C4:D1:11:CF Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6 Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6 Certificate serial: 3AEC835E2073A6874492ABD5BA3F1A58DFBAA3C5 Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 25 Apr 2024 06:08:50 +0000 Certificate not after: Thu 24 Apr 2025 06:13:50 +0000 Subordinate resources: IP: 2a12:dd47:3300::/40 Validation: OK Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 05 May 2024 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ec:83:5e:20:73:a6:87:44:92:ab:d5:ba:3f:1a:58:df:ba:a3:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6 Validity Not Before: Apr 25 06:08:50 2024 GMT Not After : Apr 24 06:13:50 2025 GMT Subject: CN=AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:0a:1a:9f:16:1f:5e:ef:c5:85:a0:e2:34: 17:27:7d:de:11:4e:04:9a:b6:78:49:01:a9:fb:e0: 92:fc:ce:d4:c2:c0:22:46:9b:b1:31:e0:cb:83:ff: 10:ce:b1:6d:3a:84:cd:0f:75:b7:ff:7b:40:3c:0a: 56:25:b5:50:bd:8b:34:f2:2f:4f:dd:8a:6e:03:29: 56:a1:ec:c1:04:e4:47:70:7f:98:ac:6a:e0:f9:10: f1:b0:0a:00:9a:39:82:10:96:2b:c9:1c:63:aa:30: 95:c8:80:3b:8f:83:58:61:7c:09:e4:1b:a1:02:b8: 3f:ce:99:fb:73:84:31:99:6f:9e:f7:d3:5d:6a:67: 28:1f:bd:ef:c2:88:b6:b7:3c:8b:bd:9e:5f:96:5a: d7:be:6b:cc:61:f5:fe:2b:b9:88:d0:42:71:c5:f5: bd:ad:e4:50:57:7a:03:54:07:ba:2e:11:4d:f5:f2: f5:a8:b8:0c:dd:16:d9:8a:ac:28:14:42:fc:66:c5: 82:a8:b6:ff:f0:77:0c:9b:c3:d9:41:05:27:16:dd: 45:1c:87:9b:20:7c:aa:c2:36:20:44:fb:f5:c6:96: ce:3f:09:a6:f8:7b:58:99:34:4e:9b:53:07:fe:58: c1:74:0b:3f:78:71:f0:f0:83:71:55:e8:61:bd:03: a0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AE:12:47:2D:A1:E0:AF:D2:B0:E9:D5:DC:6F:4E:DE:16:C4:D1:11:CF X509v3 Authority Key Identifier: keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl Authority Information Access: CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/2/AE12472DA1E0AFD2B0E9D5DC6F4EDE16C4D111CF.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:3300::/40 Signature Algorithm: sha256WithRSAEncryption c4:49:fc:85:16:06:5b:40:ca:ea:61:45:20:67:fe:94:7a:54: b0:e6:ae:65:85:ed:ee:f9:16:5d:6b:cf:26:60:af:74:9f:6e: ae:96:1b:70:25:f1:23:fb:22:5d:60:af:e3:3e:18:b8:7d:f7: 5f:33:09:0f:bc:8d:59:cf:39:bf:ec:35:00:61:b2:8e:df:99: 97:b6:ef:d3:49:95:c0:78:b5:ea:6a:15:c1:89:c2:f7:79:f3: a4:c3:18:e8:63:ca:99:e4:27:23:d3:0f:f0:63:9c:15:68:e7: a4:37:cc:39:0d:4e:96:de:3a:c1:11:2a:c9:82:e4:e9:46:1c: 17:ec:48:01:9d:cf:48:e2:72:bb:1e:1f:aa:c4:18:14:9a:49: 9f:69:98:a0:9b:04:30:e3:da:c5:83:35:1c:10:d8:f1:cc:a4: 5b:69:08:96:b2:e8:12:89:ea:1c:a7:ab:db:16:44:88:e8:33: b2:ba:b0:4f:a2:37:32:e3:b3:92:64:ce:03:8e:21:c6:69:59: 42:ac:eb:19:83:f1:78:46:11:28:e0:f9:de:a6:7f:e3:74:34: e7:84:e5:ec:9a:c8:39:b7:3e:a8:4d:b0:ff:47:5a:9f:02:e7: 94:a8:99:aa:4e:15:05:5b:b5:34:61:ef:e0:65:cf:2f:64:6f: 62:bb:b7:60 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOuyDXiBzpodEkqvVuj8aWN+6o8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjYwNDI4OUM3RTM5RTA4RTFBRTEyNTVDRUU3M0MwNUJG RDk5RjNFNjAeFw0yNDA0MjUwNjA4NTBaFw0yNTA0MjQwNjEzNTBaMDMxMTAvBgNV BAMTKEFFMTI0NzJEQTFFMEFGRDJCMEU5RDVEQzZGNEVERTE2QzREMTExQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mwoanxYfXu/FhaDiNBcnfd4R TgSatnhJAan74JL8ztTCwCJGm7Ex4MuD/xDOsW06hM0Pdbf/e0A8ClYltVC9izTy L0/dim4DKVah7MEE5Edwf5isauD5EPGwCgCaOYIQlivJHGOqMJXIgDuPg1hhfAnk G6ECuD/OmftzhDGZb573011qZygfve/CiLa3PIu9nl+WWte+a8xh9f4ruYjQQnHF 9b2t5FBXegNUB7ouEU318vWouAzdFtmKrCgUQvxmxYKotv/wdwybw9lBBScW3UUc h5sgfKrCNiBE+/XGls4/Cab4e1iZNE6bUwf+WMF0Cz94cfDwg3FV6GG9A6B1AgMB AAGjggKoMIICpDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSuEkctoeCv0rDp 1dxvTt4WxNERzzAfBgNVHSMEGDAWgBRmBCicfjngjhrhJVzuc8Bb/Znz5jAOBgNV HQ8BAf8EBAMCAQYwWgYDVR0fBFMwUTBPoE2gS4ZJcnN5bmM6Ly9ycGtpLmNvL3Jl cG8vQVM5NDUvMS82NjA0Mjg5QzdFMzlFMDhFMUFFMTI1NUNFRTczQzA1QkZEOTlG M0U2LmNybDBlBggrBgEFBQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vZGV2 LnR3L3Jwa2kvQXVndXN0LzUvNjYwNDI4OUM3RTM5RTA4RTFBRTEyNTVDRUU3M0Mw NUJGRDk5RjNFNi5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAF hlNyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Mx MjgyNzFlLWMyNjktNDk1NC04N2RiLWQxODRkZjE3Zjg1Yy8yLzCBiwYIKwYBBQUH MAqGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv YzEyODI3MWUtYzI2OS00OTU0LTg3ZGItZDE4NGRmMTdmODVjLzIvQUUxMjQ3MkRB MUUwQUZEMkIwRTlENURDNkY0RURFMTZDNEQxMTFDRi5tZnQwPAYIKwYBBQUHMA2G MGh0dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnht bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAKhLdRzMwDQYJKoZIhvcNAQELBQADggEBAMRJ/IUWBltAyuphRSBn /pR6VLDmrmWF7e75Fl1rzyZgr3Sfbq6WG3Al8SP7Il1gr+M+GLh9918zCQ+8jVnP Ob/sNQBhso7fmZe279NJlcB4tepqFcGJwvd586TDGOhjypnkJyPTD/BjnBVo56Q3 zDkNTpbeOsERKsmC5OlGHBfsSAGdz0jicrseH6rEGBSaSZ9pmKCbBDDj2sWDNRwQ 2PHMpFtpCJay6BKJ6hynq9sWRIjoM7K6sE+iNzLjs5JkzgOOIcZpWUKs6xmD8XhG ESjg+d6mf+N0NOeE5eyayDm3PqhNsP9HWp8C55SomapOFQVbtTRh7+Blzy9kb2K7 t2A= -----END CERTIFICATE-----Generated at Sat May 4 20:40:11 2024 by rpki-client on console-fra.rpki-client.org