Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
File: H31if-NqLr9pgJvIR7VDO_Q-N-g.cer (raw, json)
Hash identifier: SpAzU8iS8G3Ex9XCfqWAeh1fowWsBwX7XMKbuvx7tb4=
Subject key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 348F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:04 +0000
Certificate not after: Fri 26 Dec 2025 15:30:27 +0000
Subordinate resources: AS: 152619
IP: 2401:e3e0::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 18:08:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13455 (0x348f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Feb 10 14:29:04 2025 GMT
Not After : Dec 26 15:30:27 2025 GMT
Subject: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1b:7d:5d:be:c6:e7:95:b1:3e:7e:62:ee:68:
c2:b5:e0:6f:ca:12:7f:d3:22:69:60:91:f7:db:f9:
b4:6c:68:a0:61:a5:8d:f5:1e:cc:d5:a7:c8:bd:cc:
b8:11:52:7a:ac:b5:e8:c4:79:13:24:46:e2:a9:67:
b4:5b:c6:9d:eb:9b:1f:34:f6:5f:00:14:7b:b9:31:
c7:8c:d7:07:5d:74:c4:87:80:ff:2f:03:19:6d:ec:
f6:fc:e7:d6:b4:9b:ef:1d:f5:b1:ec:e0:b9:a0:30:
76:15:58:51:ee:e9:00:8b:02:c3:c4:6d:07:fa:c3:
f9:ff:b9:0a:40:a4:c8:b4:9b:c2:03:07:96:9c:d2:
31:93:06:63:2a:0a:0f:e7:d2:d0:78:4c:7c:ee:b8:
ca:df:ba:6c:f2:bb:92:35:ce:a5:64:ff:cb:43:de:
92:49:35:ea:34:60:fc:b4:78:e5:2f:4d:4e:94:c0:
5d:16:6c:b7:8e:6a:94:00:70:44:19:28:89:cc:d5:
49:79:f0:62:ed:9a:f6:8b:43:fb:33:79:1d:5b:1d:
9f:1d:f3:5b:7a:7e:95:cb:ff:1d:21:09:91:08:e7:
4e:12:df:71:80:86:17:7b:b6:61:9c:0a:1a:cb:a2:
be:b4:9a:28:45:25:e3:3c:99:9c:b9:3e:9d:13:de:
02:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152619
sbgp-ipAddrBlock: critical
IPv6:
2401:e3e0::/32
Signature Algorithm: sha256WithRSAEncryption
8e:5f:bc:bf:43:f0:fd:47:af:02:d8:0e:df:8d:ca:bb:30:4e:
c1:06:a1:6e:f9:fc:d2:23:60:db:59:9e:ec:18:7a:5c:68:6f:
7c:64:e3:ef:8a:4a:9d:11:e9:7e:e3:94:13:ef:5b:3d:d7:2d:
35:05:69:e4:e3:32:26:02:ac:dd:0e:e1:09:b9:c4:67:38:24:
41:82:6f:6a:c4:55:8b:b8:53:a9:72:39:ed:b0:87:1a:23:78:
c9:e7:99:c4:c1:c5:96:1e:ac:bc:1d:f7:dc:d3:22:58:d3:c2:
52:cf:54:b3:4e:fa:88:be:62:4e:20:e3:78:0e:c6:a4:84:90:
c0:6c:02:ad:df:ef:ff:14:a4:11:00:aa:16:76:c5:98:0a:bf:
29:13:13:2c:84:4a:b3:2a:c5:32:c2:09:3f:6c:40:96:d6:28:
a3:46:78:17:3a:3c:66:1f:99:ff:94:01:78:7f:c8:86:37:44:
fd:20:8a:5c:75:d3:e9:06:ee:35:53:3e:ad:1c:40:17:3c:e2:
ba:46:0f:31:2e:10:6c:61:e5:68:b0:e2:7a:4c:40:c6:cb:b3:
29:fe:e6:26:92:c9:37:cb:ff:9d:48:18:d9:bf:3e:a5:4c:04:
b6:5b:93:38:53:f0:29:06:59:e7:66:71:d0:72:91:79:53:25:
f1:2f:1e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 16:34:09 2025 by rpki-client