Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0WMQ80N4paQ8ryRXIOLpRZQv2tI.cer
File: 0WMQ80N4paQ8ryRXIOLpRZQv2tI.cer (raw, json)
Hash identifier: ZOcPPFY9Y7MntHj3+JMo8Iczl0li/+9Z2vm0znKhlvI=
Subject key identifier: D1:63:10:F3:43:78:A5:A4:3C:AF:24:57:20:E2:E9:45:94:2F:DA:D2
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 19A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/POINT/0WMQ80N4paQ8ryRXIOLpRZQv2tI.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/POINT/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:32 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.125.180.0/22
IP: 2403:f840::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6562 (0x19a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D16310F34378A5A43CAF245720E2E945942FDAD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6c:95:b0:00:7e:75:b9:c2:c4:10:70:fc:02:
2d:e0:02:b8:3c:7f:c4:a0:86:c4:ef:63:25:2e:e6:
6e:f1:da:1d:4a:31:63:63:83:ea:f5:53:6c:4f:c5:
b6:f8:7f:aa:11:ce:ec:7e:d5:bb:ed:f7:22:75:70:
c9:a8:ad:fb:7e:be:c0:f7:7d:c1:22:97:9a:a9:2e:
81:d4:6e:0f:d2:f9:5d:05:6d:c4:4b:c5:ba:5c:ec:
3e:ac:c9:8b:ca:ac:20:75:9b:d9:78:3c:a2:99:54:
8e:4d:f3:58:a5:bf:04:94:d3:82:53:29:10:0c:b2:
a6:67:88:6f:30:b6:dd:71:f2:1b:3b:b4:fb:99:e2:
4d:2e:f2:09:dc:16:24:7d:5c:f5:f3:b2:b3:98:2b:
22:75:57:df:5f:67:fe:92:63:7e:71:9b:cc:b1:98:
95:bc:ac:b7:a8:86:be:f6:e5:e1:a9:e4:f0:ba:a2:
08:10:73:b2:84:a9:33:e2:d9:b1:fe:31:1b:de:d1:
f1:ed:c0:2a:9b:34:dd:5a:32:89:e7:32:de:0f:75:
1c:3c:d3:26:b0:cc:49:10:5f:5c:2f:69:50:00:41:
97:2d:64:19:d4:9b:ae:86:21:bc:54:f6:ed:10:f2:
17:81:42:81:0b:f5:f6:c7:12:5e:ba:42:b5:5a:3f:
c3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:63:10:F3:43:78:A5:A4:3C:AF:24:57:20:E2:E9:45:94:2F:DA:D2
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/POINT/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/POINT/0WMQ80N4paQ8ryRXIOLpRZQv2tI.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.180.0/22
IPv6:
2403:f840::/32
Signature Algorithm: sha256WithRSAEncryption
46:06:5d:5c:73:75:9c:3f:bf:bc:43:77:a9:a1:68:ad:6b:41:
fc:ea:03:4f:b7:e7:7d:a8:7c:3c:0c:fb:42:da:c2:85:18:fe:
f0:3b:7d:43:ea:8f:1e:73:15:f5:06:82:5e:c3:b5:53:83:56:
77:36:4c:8d:38:07:38:a6:c5:fd:7f:bb:ad:ce:64:7a:59:4e:
af:1e:da:24:f6:41:38:4d:a9:b1:70:ad:4c:6f:6b:29:d7:cc:
02:05:44:34:54:09:fd:9b:cf:e8:fb:86:cc:fc:6e:a8:d6:6a:
30:da:87:a1:c1:25:98:78:7c:b2:8d:df:90:fc:e9:6e:2e:98:
1b:94:a9:c6:66:79:6a:50:a9:b4:38:c4:cb:18:f5:42:83:de:
a5:07:fd:ee:80:44:29:6b:77:ed:eb:2a:43:7e:88:81:e9:41:
fa:ab:9a:2d:3c:a5:a5:d5:a4:d7:47:b5:fa:a4:29:ce:14:d2:
a2:9e:21:9d:9b:37:e4:63:9d:89:11:e6:15:84:81:5a:8a:28:
c5:c9:f6:b9:f2:b7:18:3f:1c:3e:0c:cb:13:c7:8c:96:63:b8:
f2:df:e6:79:dc:5a:43:90:5f:d0:fa:75:bf:f5:09:c3:b4:26:
c9:3d:c7:f8:b9:29:bf:52:f0:f3:d6:26:73:f9:92:cd:e3:d2:
f0:dd:aa:a0
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgICGaIwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIwMDkyOTA5NTMzMloXDTIxMDkyOTA5NTEyM1owMzEx
MC8GA1UEAxMoRDE2MzEwRjM0Mzc4QTVBNDNDQUYyNDU3MjBFMkU5NDU5NDJGREFE
MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMxslbAAfnW5wsQQcPwC
LeACuDx/xKCGxO9jJS7mbvHaHUoxY2OD6vVTbE/Ftvh/qhHO7H7Vu+33InVwyait
+36+wPd9wSKXmqkugdRuD9L5XQVtxEvFulzsPqzJi8qsIHWb2Xg8oplUjk3zWKW/
BJTTglMpEAyypmeIbzC23XHyGzu0+5niTS7yCdwWJH1c9fOys5grInVX319n/pJj
fnGbzLGYlbyst6iGvvbl4ank8LqiCBBzsoSpM+LZsf4xG97R8e3AKps03Voyiecy
3g91HDzTJrDMSRBfXC9pUABBly1kGdSbroYhvFT27RDyF4FCgQv19scSXrpCtVo/
w7cCAwEAAaOCAl0wggJZMB0GA1UdDgQWBBTRYxDzQ3ilpDyvJFcg4ulFlC/a0jAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF
hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE9JTlQvMFYG
CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UE9JTlQvMFdNUTgwTjRwYVE4cnlSWElPTHBSWlF2MnRJLm1mdDAxBggrBgEFBQcw
DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAuBggrBgEF
BQcBBwEB/wQfMB0wDAQCAAEwBgMEAmd9tDANBAIAAjAHAwUAJAP4QDANBgkqhkiG
9w0BAQsFAAOCAQEARgZdXHN1nD+/vEN3qaForWtB/OoDT7fnfah8PAz7QtrChRj+
8Dt9Q+qPHnMV9QaCXsO1U4NWdzZMjTgHOKbF/X+7rc5kellOrx7aJPZBOE2psXCt
TG9rKdfMAgVENFQJ/ZvP6PuGzPxuqNZqMNqHocElmHh8so3fkPzpbi6YG5SpxmZ5
alCptDjEyxj1QoPepQf97oBEKWt37esqQ36IgelB+quaLTylpdWk10e1+qQpzhTS
op4hnZs35GOdiRHmFYSBWoooxcn2ufK3GD8cPgzLE8eMlmO48t/medxaQ5Bf0Pp1
v/UJw7QmyT3H+Lkpv1Lw89Ymc/mSzePS8N2qoA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org