Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
File: 7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer (raw, json)
Hash identifier: DJKjzgMTaQ1ICNMimCbzx91C6pmJ3yVktca5k8L3fBM=
Subject key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2BCD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Sun 12 May 2024 23:54:38 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 7539
AS: 9681
AS: 18183
AS: 18414
IP: 103.160.220.0/23
IP: 211.73.64.0/19
IP: 211.79.48.0/20
IP: 2001:c58::/32
IP: 2001:e10::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 May 2024 07:26:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11213 (0x2bcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: May 12 23:54:38 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:8b:57:c2:5f:18:1e:d8:93:64:bf:79:8b:
4b:3a:20:5b:68:9e:93:df:f6:a0:9e:ef:48:3b:0b:
72:0a:42:af:2b:3a:63:f6:99:ff:d0:c3:98:c9:9c:
08:5c:b8:76:32:4c:e7:00:4c:75:6b:f7:78:70:a9:
bf:28:f7:ad:24:68:fb:92:a3:57:53:1e:f8:b9:64:
65:53:fd:68:fa:d5:8f:64:74:a1:72:dc:5b:85:8c:
bb:89:62:18:66:eb:aa:1e:69:7b:5e:34:b7:3f:1c:
97:f2:07:eb:47:5d:27:e7:e9:fa:85:be:00:91:41:
7b:18:e5:40:4a:59:09:0c:b4:80:f6:8b:75:2b:50:
47:06:1f:5f:51:85:90:e4:ca:9b:20:94:df:71:53:
24:db:1a:35:00:35:10:93:09:7f:fd:a1:79:8a:1e:
2e:05:89:a9:0b:96:34:3e:72:c4:bc:ac:7c:c3:21:
25:73:14:2c:96:e8:67:c3:3e:68:fc:4f:26:e9:ba:
01:1f:31:db:69:eb:57:82:5a:35:ca:b2:74:bd:8d:
79:61:ec:52:5b:14:e2:04:e0:59:0a:0b:b1:a0:48:
c3:43:e9:71:41:3b:41:2f:3d:2d:93:d6:70:9d:83:
18:90:c8:77:1e:91:40:a4:18:fe:e3:b9:1f:d2:71:
a0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7539
9681
18183
18414
sbgp-ipAddrBlock: critical
IPv4:
103.160.220.0/23
211.73.64.0/19
211.79.48.0/20
IPv6:
2001:c58::/32
2001:e10::/32
Signature Algorithm: sha256WithRSAEncryption
76:fc:18:40:ef:8d:3f:6d:2e:b0:32:35:98:91:2c:93:69:f1:
bd:16:be:ab:eb:70:51:a2:88:8c:5a:80:65:86:3a:79:06:5b:
31:b0:03:47:76:39:42:35:23:77:99:4d:d2:84:19:28:0a:75:
4d:e0:8c:87:18:a0:ba:a4:77:d7:3e:34:b8:c6:bc:5a:e4:92:
dd:e0:ea:b5:01:ee:3c:65:7c:2d:32:99:7b:55:c9:11:e8:69:
4e:80:8d:81:69:fc:0c:50:e8:5d:f5:e3:3a:e9:38:4f:a6:8c:
fd:29:d1:13:cd:ba:cf:3d:83:20:d2:01:24:73:f0:d6:06:93:
75:a4:4b:ca:b6:0a:d8:f9:b7:dd:09:05:ac:4f:e4:18:9c:5d:
67:9f:46:d9:fc:22:fd:1e:9c:b7:89:62:92:42:56:e9:f4:59:
50:ce:d8:c4:dd:54:ee:8f:6b:4e:3a:a5:6a:d5:30:c8:6a:49:
5d:d8:70:ae:13:a6:cd:d2:e4:e7:a5:4f:6b:dd:24:5e:d1:bc:
00:56:a0:39:d4:f4:6f:fa:f4:36:98:a2:9c:ef:2a:a6:8e:a5:
de:a2:45:16:d8:88:d4:f9:42:9a:0a:5e:15:9e:5c:7a:7c:a0:
0f:de:56:57:72:1e:4e:d4:e0:ea:5a:c6:cd:b9:fd:85:5e:2b:
eb:ec:c5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:34:25 2024 by rpki-client on console-fra.rpki-client.org