Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.cer (raw, json)
Hash identifier: jM1WLYpzXXxSVvYOIgOSG/+N/2LMCo6im+HdAmG5cyc=
Subject key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3723
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Wed 05 Mar 2025 07:28:07 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 18180
AS: 18417 -- 18418
AS: 131621
IP: 61.67.112.0 -- 61.67.121.255
IP: 101.101.101.0/24
IP: 101.102.103.0/24
IP: 103.235.88.0/23
IP: 119.75.240.0/21
IP: 122.128.80.0/24
IP: 122.252.160.0/24
IP: 150.242.100.0/22
IP: 182.173.0.0 -- 182.173.14.255
IP: 203.91.0.0/24
IP: 203.119.3.0/24
IP: 203.119.94.0/24
IP: 2001:dc1::/32
IP: 2001:de4::/48
IP: 2001:44f0::/32
IP: 2404:178::/32
IP: 2407:3d00::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14115 (0x3723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000
Validity
Not Before: Mar 5 07:28:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:31:45:f2:52:a6:8d:d4:53:d3:e9:75:22:
79:53:cd:54:21:5c:a0:fc:f2:04:38:e8:f6:69:4d:
f6:5b:98:8a:b3:55:13:2f:d5:99:8e:1d:e1:80:f5:
ea:ef:98:65:da:3b:51:cc:c1:11:79:37:db:dc:7e:
72:b6:3b:a6:d7:ca:1c:8b:05:d3:f2:ce:15:fa:32:
bd:9c:dd:da:b3:17:af:c5:62:ed:72:77:e7:fc:09:
27:9b:37:90:18:34:c1:30:25:b2:f3:a9:de:78:5c:
46:be:88:ae:fe:7d:9b:2d:af:aa:33:4e:dc:7e:47:
8e:19:f8:7b:86:36:05:07:b6:c5:4c:5e:67:e2:21:
82:11:9e:0e:42:9b:05:4e:44:8f:f5:71:3c:f8:63:
bd:a6:24:83:4f:a4:16:55:6b:fa:1a:61:a1:68:ab:
9e:45:b1:92:01:4f:b2:85:a0:0d:a6:20:90:26:30:
a6:28:1f:ac:01:ae:ac:52:13:8e:87:2e:bb:d8:b9:
e2:75:20:81:a8:f3:46:91:68:a5:e9:cd:d7:8d:fa:
0f:7f:3d:17:fb:f2:32:38:62:1d:f7:e8:78:bf:ff:
b8:a0:58:0d:f2:3d:18:a3:8c:f8:00:05:f1:61:0b:
37:8a:43:7d:ab:56:6a:3a:32:4d:47:1e:31:15:d3:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18180
18417-18418
131621
sbgp-ipAddrBlock: critical
IPv4:
61.67.112.0-61.67.121.255
101.101.101.0/24
101.102.103.0/24
103.235.88.0/23
119.75.240.0/21
122.128.80.0/24
122.252.160.0/24
150.242.100.0/22
182.173.0.0-182.173.14.255
203.91.0.0/24
203.119.3.0/24
203.119.94.0/24
IPv6:
2001:dc1::/32
2001:de4::/48
2001:44f0::/32
2404:178::/32
2407:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
4d:a4:c7:34:c3:65:52:fc:40:a2:47:3b:49:9c:b5:d5:f6:55:
80:2a:e7:f8:75:c1:d7:0b:2b:f0:52:9b:06:4c:6d:73:c9:6c:
de:cc:7a:47:8f:0a:91:ff:71:83:9f:e3:fc:02:25:cc:ed:db:
f4:0d:92:ec:93:36:51:1a:6a:18:06:3b:49:ef:ca:5f:d1:fb:
29:d2:a6:b3:13:b5:5a:17:fa:84:80:fc:a6:ea:ad:21:09:14:
f2:35:f8:10:7f:5a:85:16:37:5f:06:98:28:43:3f:56:f8:b7:
ca:28:87:a7:e6:f7:50:06:01:9a:03:b8:8c:96:b7:ac:81:6e:
fa:95:cb:0f:39:2b:72:8b:4f:1f:4e:9c:5e:91:4c:ec:fc:1d:
8b:8c:08:01:b2:a2:11:67:70:1b:d3:5e:1e:ad:f3:ac:30:12:
5f:2f:e6:ca:4c:25:d4:48:cb:5c:fa:b2:47:37:b4:fa:58:5c:
6d:fc:c4:c9:ab:c2:5f:e4:83:c4:7c:7b:97:cc:87:9e:ca:f7:
6d:75:e6:ff:be:a8:3c:df:6b:17:a8:ef:c5:ed:19:8f:c5:76:
90:d0:54:21:8b:e2:00:ce:7f:e0:29:da:06:17:df:ea:26:ae:
a9:f4:68:d4:b8:2b:7e:89:8d:ca:17:b4:12:16:2c:3e:23:51:
4b:03:df:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:02:10 2025 by rpki-client