Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
File: 7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer (raw, json)
Hash identifier: M5CSkF247XZpb7PaCpaE69z52ibfiM10LRkTumi/U6M=
Subject key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 35A9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:16 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 7539
AS: 9681
AS: 18183
AS: 18414
IP: 103.160.220.0/23
IP: 211.73.64.0/19
IP: 211.79.48.0/20
IP: 2001:c58::/32
IP: 2001:e10::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 17:37:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13737 (0x35a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Feb 10 14:29:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:8b:57:c2:5f:18:1e:d8:93:64:bf:79:8b:
4b:3a:20:5b:68:9e:93:df:f6:a0:9e:ef:48:3b:0b:
72:0a:42:af:2b:3a:63:f6:99:ff:d0:c3:98:c9:9c:
08:5c:b8:76:32:4c:e7:00:4c:75:6b:f7:78:70:a9:
bf:28:f7:ad:24:68:fb:92:a3:57:53:1e:f8:b9:64:
65:53:fd:68:fa:d5:8f:64:74:a1:72:dc:5b:85:8c:
bb:89:62:18:66:eb:aa:1e:69:7b:5e:34:b7:3f:1c:
97:f2:07:eb:47:5d:27:e7:e9:fa:85:be:00:91:41:
7b:18:e5:40:4a:59:09:0c:b4:80:f6:8b:75:2b:50:
47:06:1f:5f:51:85:90:e4:ca:9b:20:94:df:71:53:
24:db:1a:35:00:35:10:93:09:7f:fd:a1:79:8a:1e:
2e:05:89:a9:0b:96:34:3e:72:c4:bc:ac:7c:c3:21:
25:73:14:2c:96:e8:67:c3:3e:68:fc:4f:26:e9:ba:
01:1f:31:db:69:eb:57:82:5a:35:ca:b2:74:bd:8d:
79:61:ec:52:5b:14:e2:04:e0:59:0a:0b:b1:a0:48:
c3:43:e9:71:41:3b:41:2f:3d:2d:93:d6:70:9d:83:
18:90:c8:77:1e:91:40:a4:18:fe:e3:b9:1f:d2:71:
a0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7539
9681
18183
18414
sbgp-ipAddrBlock: critical
IPv4:
103.160.220.0/23
211.73.64.0/19
211.79.48.0/20
IPv6:
2001:c58::/32
2001:e10::/32
Signature Algorithm: sha256WithRSAEncryption
67:8e:85:f4:dd:4b:2f:52:ed:c2:fa:9b:6e:b6:8f:ab:87:3d:
12:3c:2a:af:ae:1a:14:1d:ed:82:a3:3e:95:45:af:73:54:b7:
56:a0:2d:f6:79:a2:fd:21:99:17:63:6b:bd:51:74:1f:3e:28:
7e:56:89:00:08:bf:1a:c4:fe:7a:b5:01:b5:da:e6:8c:ae:90:
33:01:75:f6:c5:6a:d8:6f:a6:c5:8d:df:38:66:b0:bb:82:6d:
b9:f2:53:c7:f1:0a:5b:b7:52:58:76:b0:a4:39:a0:55:c5:47:
93:09:cb:f4:6a:59:c7:75:11:37:95:2f:91:72:37:67:08:64:
71:43:d2:89:a6:ca:95:4b:3a:c2:04:39:88:fe:69:96:31:1a:
42:57:d8:9a:1d:83:cb:52:04:64:eb:1e:52:2e:21:1c:e8:4a:
96:ca:e2:b8:f7:82:60:b2:c3:4b:ce:2a:22:c2:cd:67:38:1a:
2e:05:79:88:43:d8:b5:c6:39:77:35:9e:ab:51:20:2b:e2:19:
76:ac:11:6c:56:4a:15:c4:bd:a0:10:b6:21:2e:8d:37:ed:b7:
c6:06:77:a6:44:5e:61:4c:aa:d7:c1:90:c9:77:5b:c4:67:00:
8f:8c:29:a4:79:2d:43:f5:02:ba:87:d6:d7:12:1e:5c:15:5e:
85:7d:b8:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 14:31:57 2025 by rpki-client