Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.cer (raw, json)
Hash identifier: zVQTGggoStDii4aEpgaT8azFZUSUu5S179vPlWo9Rmo=
Subject key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2B52
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 05 Feb 2024 09:25:40 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 18180
AS: 18417 -- 18418
AS: 131621
IP: 61.67.112.0 -- 61.67.121.255
IP: 101.101.101.0/24
IP: 101.102.103.0/24
IP: 103.235.88.0/23
IP: 119.75.240.0 -- 119.75.244.255
IP: 150.242.100.0/22
IP: 182.173.0.0/22
IP: 203.119.3.0/24
IP: 203.119.94.0/24
IP: 2001:dc1::/32
IP: 2001:de4::/48
IP: 2001:44f0::/32
IP: 2404:178::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 04 May 2024 23:41:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11090 (0x2b52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Feb 5 09:25:40 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:31:45:f2:52:a6:8d:d4:53:d3:e9:75:22:
79:53:cd:54:21:5c:a0:fc:f2:04:38:e8:f6:69:4d:
f6:5b:98:8a:b3:55:13:2f:d5:99:8e:1d:e1:80:f5:
ea:ef:98:65:da:3b:51:cc:c1:11:79:37:db:dc:7e:
72:b6:3b:a6:d7:ca:1c:8b:05:d3:f2:ce:15:fa:32:
bd:9c:dd:da:b3:17:af:c5:62:ed:72:77:e7:fc:09:
27:9b:37:90:18:34:c1:30:25:b2:f3:a9:de:78:5c:
46:be:88:ae:fe:7d:9b:2d:af:aa:33:4e:dc:7e:47:
8e:19:f8:7b:86:36:05:07:b6:c5:4c:5e:67:e2:21:
82:11:9e:0e:42:9b:05:4e:44:8f:f5:71:3c:f8:63:
bd:a6:24:83:4f:a4:16:55:6b:fa:1a:61:a1:68:ab:
9e:45:b1:92:01:4f:b2:85:a0:0d:a6:20:90:26:30:
a6:28:1f:ac:01:ae:ac:52:13:8e:87:2e:bb:d8:b9:
e2:75:20:81:a8:f3:46:91:68:a5:e9:cd:d7:8d:fa:
0f:7f:3d:17:fb:f2:32:38:62:1d:f7:e8:78:bf:ff:
b8:a0:58:0d:f2:3d:18:a3:8c:f8:00:05:f1:61:0b:
37:8a:43:7d:ab:56:6a:3a:32:4d:47:1e:31:15:d3:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18180
18417-18418
131621
sbgp-ipAddrBlock: critical
IPv4:
61.67.112.0-61.67.121.255
101.101.101.0/24
101.102.103.0/24
103.235.88.0/23
119.75.240.0-119.75.244.255
150.242.100.0/22
182.173.0.0/22
203.119.3.0/24
203.119.94.0/24
IPv6:
2001:dc1::/32
2001:de4::/48
2001:44f0::/32
2404:178::/32
Signature Algorithm: sha256WithRSAEncryption
03:8b:3a:4b:cb:3d:a2:b4:e0:29:6c:e1:68:fb:bd:e8:1b:06:
a7:3b:cf:77:27:e7:59:bd:0b:b9:42:b0:4e:bb:a0:ce:d3:96:
e8:88:14:fa:a8:68:12:76:33:a9:6b:6b:19:14:f8:19:43:9f:
49:56:95:5f:1f:d7:ad:51:e3:0d:9c:95:b7:1e:cb:b0:3f:ee:
8c:d0:1f:ee:e6:4d:14:b6:0f:05:92:e9:50:0f:e9:8d:c3:35:
16:5c:cd:59:90:17:fa:16:c4:21:28:45:ad:b2:8f:88:e8:e6:
42:ed:d9:90:34:8c:1e:3a:7d:65:b9:2f:60:9c:8d:69:f3:3c:
fa:c9:10:52:dc:39:ac:48:47:f7:01:6b:81:16:52:02:ac:7d:
bb:ee:12:4b:bb:4f:a9:12:19:b4:6a:5c:b1:f6:a9:59:1b:2e:
5b:5a:32:97:73:86:12:95:0b:1e:3a:b9:b6:5b:eb:84:08:cb:
49:6f:73:a0:12:60:a8:d7:01:81:22:e1:99:15:8b:e8:1b:ba:
1f:1f:56:6a:0c:e1:3c:b4:d5:75:97:37:43:f9:21:cf:18:ca:
53:c3:a3:18:40:de:a4:d4:d2:c7:11:22:da:d4:c2:fa:16:dc:
44:2b:c9:62:bd:93:87:54:bf:24:81:d6:88:3e:c6:ef:4b:03:
f5:70:20:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 17:13:47 2024 by rpki-client on console-fra.rpki-client.org