Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
File: dK8EAv71bDShktHSGF5vtUaqcCw.cer (raw, json)
Hash identifier: yKf88foyjMpp0RrkIDtS8Sp5cCZ/uw3T9U1r9+ogVfw=
Subject key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3645
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:22 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 63910
IP: 103.130.236.0/23
IP: 2400:f420::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 17:37:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13893 (0x3645)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Feb 10 14:29:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:22:43:65:a5:72:7d:7a:76:f8:b0:ad:25:ce:
ca:b3:c3:96:15:87:fe:cb:3b:95:ee:9b:2c:16:ce:
f5:a8:ca:ad:17:5f:f1:f3:70:8b:28:b4:42:38:e8:
e3:a2:9e:69:7d:7a:57:4d:90:be:1e:b6:06:ca:20:
e6:da:0f:66:16:74:8a:9d:5a:92:da:7e:cd:dd:29:
89:56:47:dc:02:ea:40:d8:2e:4d:f3:a2:ff:3c:cc:
27:1c:42:a2:c4:1b:81:4e:6e:8c:b8:33:74:02:c3:
b9:cb:32:76:51:89:2d:f8:fe:2e:4a:a4:5b:11:7d:
43:dd:a4:c5:a2:77:74:b8:4c:20:38:80:56:ca:4e:
bc:1a:f4:08:3c:43:fc:75:43:c0:6d:9f:8c:52:91:
52:5a:5c:0d:5d:b8:7a:dc:74:af:08:46:fb:df:ba:
e6:fa:b0:79:1b:2a:e8:a7:cf:e6:40:35:31:cf:35:
fe:ff:8f:3f:3f:bb:5e:e5:25:c0:8d:eb:f7:8d:28:
21:de:f6:c9:f5:fd:05:b5:aa:5b:f9:51:e2:c6:c1:
a0:2d:aa:4e:1e:b5:0f:0b:fa:95:47:d5:90:05:d0:
0e:00:24:d3:ee:74:aa:7e:87:fc:9c:7a:19:e7:02:
48:2f:60:fa:d4:a1:30:f5:63:44:31:0e:8a:ee:d4:
5f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63910
sbgp-ipAddrBlock: critical
IPv4:
103.130.236.0/23
IPv6:
2400:f420::/32
Signature Algorithm: sha256WithRSAEncryption
04:fe:04:50:c7:d5:92:41:52:ac:d2:5e:d0:e9:dd:86:5c:5c:
7b:da:b9:18:29:9e:03:32:80:b4:c6:24:61:ec:2d:91:9e:74:
cd:08:99:e3:1a:65:24:b6:0b:ec:df:f7:1e:7b:23:ce:9e:4b:
d0:13:2d:0a:22:e6:71:95:7b:d0:4e:b1:5f:4f:57:f2:c0:26:
1e:69:56:2d:9f:c1:25:11:12:4b:cd:00:11:12:42:72:a8:4f:
bc:19:c6:64:e2:02:a9:47:42:3f:57:c4:ff:21:dd:1a:26:ec:
d7:01:85:42:d8:be:91:43:f3:75:4e:21:2a:ff:31:f8:f1:13:
5a:2a:1b:76:4f:91:0a:9f:71:60:c5:71:87:12:c3:1e:38:4b:
28:b6:94:1d:c3:96:df:ab:0f:6a:19:a5:e8:4c:d1:aa:f5:7b:
a7:83:62:5a:ca:18:d9:74:ad:bf:3b:6a:07:c6:59:60:46:27:
b0:e2:f2:ce:35:88:f0:50:76:35:91:1e:27:e4:5c:c5:96:0f:
97:1e:ae:7e:e0:c4:d5:35:58:0c:b5:df:f1:75:6d:d0:f5:17:
e5:49:94:ab:98:4d:7d:f4:fa:12:82:8a:0c:7d:e3:8d:b3:39:
e7:46:36:d6:e6:28:2d:79:0d:74:d8:c9:a5:f7:ee:e1:20:1f:
88:d8:52:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 14:29:22 2025 by rpki-client