Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
File: -FjQAAx8RqmGsuuWgV8GriaTqdA.cer (raw, json)
Hash identifier: z/XPYi8FOdw394vcNdauZxrYwnkHzJT7f6J9d4N8r54=
Subject key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743
Certificate serial: 19F9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:28 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: IP: 159.117.64.0/19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6649 (0x19f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000
Validity
Not Before: Feb 10 14:29:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b9:b7:1a:31:cd:db:ed:15:50:f5:73:3a:b9:
20:60:3b:a6:2d:c4:01:0f:48:49:d7:3f:61:1b:fe:
22:b1:30:63:1d:dd:85:05:89:2f:5d:9e:65:09:54:
05:7a:65:17:8f:14:c0:88:ee:b5:70:cd:dd:83:dc:
ef:42:d8:6a:1a:fe:a0:75:19:b4:fb:fb:46:49:19:
52:e3:54:2c:3c:f1:cb:78:29:b6:d3:6d:92:e7:1c:
6e:81:cc:57:36:a7:78:c2:9f:be:7d:cf:5c:11:51:
35:34:83:09:d7:26:2d:e4:c1:35:d4:61:fb:fc:6c:
c7:ea:76:42:2f:12:3c:bf:ac:0e:f0:e5:84:90:30:
2a:38:9c:a1:34:dd:eb:d7:6d:14:cb:f3:94:40:45:
c0:e2:8d:b6:d0:f5:cb:80:30:06:58:c6:35:58:01:
d5:3e:2d:70:4c:5b:3d:c4:d6:75:f4:53:a0:ea:74:
d6:a7:27:6f:4b:7e:02:d3:f1:16:58:d3:a1:8a:0d:
7e:fa:6c:36:2b:12:40:cb:7a:77:81:a6:4f:83:fd:
d8:b9:22:be:2f:fd:9d:07:41:6b:71:29:7b:b9:87:
1b:e8:49:6c:4b:2e:f0:ac:8e:49:5a:19:70:37:1e:
d8:f1:3f:60:41:69:b2:e6:39:0c:3a:ca:4f:16:0e:
c2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
X509v3 Authority Key Identifier:
keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
159.117.64.0/19
Signature Algorithm: sha256WithRSAEncryption
bf:82:ae:2a:04:8c:01:97:97:c0:2e:50:ec:f4:0a:73:5f:f8:
66:a9:51:cc:53:13:f7:26:8c:dd:2b:bd:eb:d3:5b:56:fa:f6:
21:e0:d9:71:93:83:83:f6:37:55:57:3b:d7:18:18:74:2e:0b:
29:01:00:ca:5d:9e:fc:03:27:66:3b:95:55:30:1c:c8:b2:35:
a6:4d:44:b6:9d:3d:61:99:29:3c:25:0f:2d:b6:08:62:01:9e:
d0:79:52:ad:26:d8:b9:42:99:e0:6f:55:cb:d3:ca:4c:39:8f:
a0:c9:f6:1a:45:e8:40:08:de:1a:86:10:81:9c:20:ce:2d:a7:
d2:44:24:43:f9:8b:f3:b0:e1:4d:d2:48:92:04:63:9c:cf:25:
72:2c:a0:98:4a:6d:61:6f:cc:39:af:b2:65:39:ea:84:6a:1b:
67:fd:7b:45:d4:d7:33:ad:e7:19:09:d6:f6:f9:97:49:ab:df:
ce:4e:a2:a4:24:7b:8c:94:84:c1:25:49:6e:37:f4:3b:13:e9:
33:e2:4b:5b:39:3f:9d:99:56:d6:8a:be:25:96:79:18:18:90:
78:15:60:fa:df:dc:2f:3b:3e:a5:b9:7a:96:20:dc:5c:fc:3e:
eb:c4:9f:c6:bd:98:ac:0f:a7:ad:8e:f6:91:eb:3d:96:a4:54:
17:65:da:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:57:04 2025 by rpki-client