Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/5XpAfDA6nwu_MurqRMt2tTfUj7A.cer
File: 5XpAfDA6nwu_MurqRMt2tTfUj7A.cer (raw, json)
Hash identifier: MPB/hX7bE+F/SuGiy8XjELY1wm+Jx4tS3lzqDTsWkrU=
Subject key identifier: E5:7A:40:7C:30:3A:9F:0B:BF:32:EA:EA:44:CB:76:B5:37:D4:8F:B0
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1884
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUNCHENG/5XpAfDA6nwu_MurqRMt2tTfUj7A.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUNCHENG/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:18 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.137.64.0/23
IP: 2404:ab40::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6276 (0x1884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E57A407C303A9F0BBF32EAEA44CB76B537D48FB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:59:f1:ad:19:90:58:37:ef:4d:98:3a:6f:
a1:85:14:ed:cf:81:74:57:df:9b:8f:90:2b:a4:22:
1b:6f:08:05:d6:4a:e0:e0:64:3a:cc:7d:23:1a:16:
86:53:70:b7:b4:59:6e:12:96:6a:48:29:8c:0f:3b:
80:d0:df:da:58:fb:de:49:79:6f:99:70:56:b8:8c:
ec:4a:cb:20:e3:a8:ce:94:d9:48:ba:d9:e7:b4:90:
0c:9a:5a:79:3b:e7:ea:5a:ad:7d:09:d9:32:1b:34:
f2:95:3d:20:3f:88:56:d4:6e:44:c1:4a:fd:49:30:
a8:fc:9d:ea:fb:fb:0e:a0:76:c0:61:5f:ca:fa:69:
22:94:ec:97:c8:53:e1:cc:08:f5:82:2d:03:6b:9c:
ab:b5:7e:0e:25:f1:7d:a5:f1:1b:d0:79:d9:16:99:
d1:60:fd:dd:97:2f:d3:ba:15:b7:d6:12:a4:2c:71:
bf:da:93:8c:94:c5:9b:41:61:3d:ac:bf:ab:d3:68:
87:20:b1:b1:4c:9e:46:4c:f2:76:54:42:a1:97:75:
b0:e1:71:75:0e:f7:5d:a8:c5:1d:a7:e3:cb:b6:f0:
2f:10:a5:fa:12:f1:d5:d4:a3:df:a0:3a:3b:69:65:
ff:84:9a:19:a6:a1:09:86:e9:ab:af:74:59:3b:96:
2f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7A:40:7C:30:3A:9F:0B:BF:32:EA:EA:44:CB:76:B5:37:D4:8F:B0
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUNCHENG/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUNCHENG/5XpAfDA6nwu_MurqRMt2tTfUj7A.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.64.0/23
IPv6:
2404:ab40::/32
Signature Algorithm: sha256WithRSAEncryption
4b:04:13:f2:6a:81:2e:77:1f:06:bf:af:fb:9a:65:9e:96:e0:
08:73:ff:ff:11:b8:ec:34:bb:e3:8b:d6:26:f7:b0:e4:5b:c7:
ab:e2:09:2d:34:53:7c:f1:b2:0c:e8:17:a4:3c:8b:9e:18:6b:
9d:ee:ab:b8:ed:1d:0f:9e:9f:0e:6f:56:51:84:32:4a:1f:a2:
1d:09:a3:8b:80:fd:a9:40:30:34:a6:52:6d:18:f4:41:7e:10:
32:6f:19:bf:49:68:ff:ac:7b:08:00:a9:31:b4:00:26:72:0a:
ec:f0:33:99:fa:e9:39:bc:df:5b:56:9f:18:89:27:7c:12:7a:
22:79:53:16:0c:f9:22:22:45:57:0a:72:76:14:4e:a7:e3:81:
8f:19:5a:2d:ff:6e:26:52:cb:5f:39:b8:38:42:55:67:aa:86:
f0:de:c1:e5:7f:8c:0a:f0:7f:95:b7:8d:98:14:12:01:9c:b6:
9f:a2:39:3b:17:dc:6f:ae:03:98:93:99:68:78:4d:bc:5f:f1:
ff:5c:20:e3:24:e9:8e:b3:0e:a2:c8:b2:4d:56:d3:78:ce:30:
be:27:5b:e3:a8:26:ef:78:9c:8d:71:f3:ac:ba:3e:0a:5d:8e:
82:43:72:70:15:f9:7d:9a:f4:b4:09:66:aa:38:b8:24:4b:d9:
28:a8:ab:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org