Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.cer (raw, json)
Hash identifier: 8ijHklqVRskuKJN66n7BVXOk62vMzFzF4Tebc4gogMg=
Subject key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2FCB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Thu 29 Aug 2024 06:44:30 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 18180
AS: 18417 -- 18418
AS: 131621
IP: 61.67.112.0 -- 61.67.121.255
IP: 101.101.101.0/24
IP: 101.102.103.0/24
IP: 103.235.88.0/23
IP: 119.75.240.0 -- 119.75.244.255
IP: 150.242.100.0/22
IP: 182.173.0.0 -- 182.173.13.255
IP: 203.119.3.0/24
IP: 203.119.94.0/24
IP: 2001:dc1::/32
IP: 2001:de4::/48
IP: 2001:44f0::/32
IP: 2404:178::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 11:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12235 (0x2fcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 29 06:44:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:31:45:f2:52:a6:8d:d4:53:d3:e9:75:22:
79:53:cd:54:21:5c:a0:fc:f2:04:38:e8:f6:69:4d:
f6:5b:98:8a:b3:55:13:2f:d5:99:8e:1d:e1:80:f5:
ea:ef:98:65:da:3b:51:cc:c1:11:79:37:db:dc:7e:
72:b6:3b:a6:d7:ca:1c:8b:05:d3:f2:ce:15:fa:32:
bd:9c:dd:da:b3:17:af:c5:62:ed:72:77:e7:fc:09:
27:9b:37:90:18:34:c1:30:25:b2:f3:a9:de:78:5c:
46:be:88:ae:fe:7d:9b:2d:af:aa:33:4e:dc:7e:47:
8e:19:f8:7b:86:36:05:07:b6:c5:4c:5e:67:e2:21:
82:11:9e:0e:42:9b:05:4e:44:8f:f5:71:3c:f8:63:
bd:a6:24:83:4f:a4:16:55:6b:fa:1a:61:a1:68:ab:
9e:45:b1:92:01:4f:b2:85:a0:0d:a6:20:90:26:30:
a6:28:1f:ac:01:ae:ac:52:13:8e:87:2e:bb:d8:b9:
e2:75:20:81:a8:f3:46:91:68:a5:e9:cd:d7:8d:fa:
0f:7f:3d:17:fb:f2:32:38:62:1d:f7:e8:78:bf:ff:
b8:a0:58:0d:f2:3d:18:a3:8c:f8:00:05:f1:61:0b:
37:8a:43:7d:ab:56:6a:3a:32:4d:47:1e:31:15:d3:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18180
18417-18418
131621
sbgp-ipAddrBlock: critical
IPv4:
61.67.112.0-61.67.121.255
101.101.101.0/24
101.102.103.0/24
103.235.88.0/23
119.75.240.0-119.75.244.255
150.242.100.0/22
182.173.0.0-182.173.13.255
203.119.3.0/24
203.119.94.0/24
IPv6:
2001:dc1::/32
2001:de4::/48
2001:44f0::/32
2404:178::/32
Signature Algorithm: sha256WithRSAEncryption
7d:35:47:88:ab:cc:a9:e4:ed:00:b2:2f:7a:d3:f8:b5:80:d8:
da:44:26:26:19:b3:39:05:0a:34:fc:8a:86:16:d0:42:fe:bc:
5e:b9:2b:b4:d1:2a:e7:bb:27:da:ec:6f:03:14:93:56:1a:61:
42:4a:aa:e9:d5:3a:b6:58:6d:89:3e:15:24:80:c4:e2:75:c5:
5c:35:e8:6b:9f:62:a3:76:d8:70:06:c4:8c:43:57:35:24:0c:
f7:b6:21:1b:9b:b0:ba:55:b0:e3:6f:5e:bc:8e:55:d0:72:94:
f5:ee:b2:59:43:d6:08:ac:ed:f3:9d:7a:10:12:cf:78:91:17:
3d:d5:f3:42:d1:85:49:d9:78:30:40:37:12:f0:9d:3b:41:be:
ff:8d:c9:f0:81:d7:a6:1c:53:1c:25:0b:90:cd:c5:26:0c:d5:
57:77:fc:63:0e:8d:bb:78:5e:0c:d3:8a:51:31:c5:46:9f:10:
90:6d:92:6e:8c:cd:83:16:99:24:b4:1b:79:e4:42:33:bd:6e:
fc:ff:fb:7e:a9:a9:b1:ed:94:84:69:cb:00:7a:fc:e6:6d:5f:
09:89:2f:83:5f:7b:58:f6:8b:7e:d4:ba:e9:35:db:de:fe:ca:
bd:ef:f3:27:9a:73:f0:0c:cb:12:2c:a9:6e:ef:f4:71:68:aa:
9c:69:5a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:22 2024 by rpki-client on console-fra.rpki-client.org