Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
File: dK8EAv71bDShktHSGF5vtUaqcCw.cer (raw, json)
Hash identifier: z5YsWi2wM06U+J6jYJnnueGh5A6JB48v1yKSHf+jzmc=
Subject key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 298E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 01 Sep 2023 03:18:35 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 63910
IP: 103.130.236.0/23
IP: 2400:f420::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 May 2024 07:26:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10638 (0x298e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 1 03:18:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:22:43:65:a5:72:7d:7a:76:f8:b0:ad:25:ce:
ca:b3:c3:96:15:87:fe:cb:3b:95:ee:9b:2c:16:ce:
f5:a8:ca:ad:17:5f:f1:f3:70:8b:28:b4:42:38:e8:
e3:a2:9e:69:7d:7a:57:4d:90:be:1e:b6:06:ca:20:
e6:da:0f:66:16:74:8a:9d:5a:92:da:7e:cd:dd:29:
89:56:47:dc:02:ea:40:d8:2e:4d:f3:a2:ff:3c:cc:
27:1c:42:a2:c4:1b:81:4e:6e:8c:b8:33:74:02:c3:
b9:cb:32:76:51:89:2d:f8:fe:2e:4a:a4:5b:11:7d:
43:dd:a4:c5:a2:77:74:b8:4c:20:38:80:56:ca:4e:
bc:1a:f4:08:3c:43:fc:75:43:c0:6d:9f:8c:52:91:
52:5a:5c:0d:5d:b8:7a:dc:74:af:08:46:fb:df:ba:
e6:fa:b0:79:1b:2a:e8:a7:cf:e6:40:35:31:cf:35:
fe:ff:8f:3f:3f:bb:5e:e5:25:c0:8d:eb:f7:8d:28:
21:de:f6:c9:f5:fd:05:b5:aa:5b:f9:51:e2:c6:c1:
a0:2d:aa:4e:1e:b5:0f:0b:fa:95:47:d5:90:05:d0:
0e:00:24:d3:ee:74:aa:7e:87:fc:9c:7a:19:e7:02:
48:2f:60:fa:d4:a1:30:f5:63:44:31:0e:8a:ee:d4:
5f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63910
sbgp-ipAddrBlock: critical
IPv4:
103.130.236.0/23
IPv6:
2400:f420::/32
Signature Algorithm: sha256WithRSAEncryption
22:e6:b0:ec:bb:ba:e3:78:dd:3a:bd:e4:85:a5:6e:4b:98:43:
98:00:77:c3:0d:dd:ef:e1:6e:1c:f4:44:39:1f:2d:fe:8e:92:
dc:66:21:f0:c3:e8:09:11:19:fe:5b:0d:cb:91:57:42:34:d8:
7e:78:ca:58:af:78:7f:c5:8b:cb:02:fa:b6:a4:ca:d6:52:94:
1f:d1:53:8f:4c:04:52:b2:2d:66:74:84:00:04:ae:75:b3:3c:
58:1f:b4:c0:a1:de:75:0d:49:75:a0:21:92:6e:d2:de:2a:9e:
c6:3d:35:ba:bd:6b:00:88:5d:67:56:1a:9a:1f:64:58:72:bd:
77:3f:d7:db:9a:87:ce:72:83:2e:d8:1c:02:94:4c:8a:7e:be:
60:7c:f8:c3:ad:16:32:96:60:37:37:3a:dd:dd:07:92:ec:6b:
82:70:a6:5e:64:18:a6:b7:3a:d7:c3:07:b4:39:ed:9f:7f:77:
e7:4a:83:38:46:4c:14:35:fa:4a:b1:69:84:13:38:3b:8b:3f:
67:27:66:58:83:9c:8f:81:8d:85:e1:9a:2e:c4:9e:c9:93:5a:
b4:d4:79:68:81:b0:a6:e8:0a:65:57:b9:90:39:33:fd:a1:6c:
dd:e2:5f:bd:b3:2d:8f:cf:f1:7c:fc:d7:d6:1f:c9:5e:17:a7:
77:24:17:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:19:46 2024 by rpki-client on console-fra.rpki-client.org