Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/5jxaFbfOkAMBCPStOOVB5s21vv4.cer
File: 5jxaFbfOkAMBCPStOOVB5s21vv4.cer (raw, json)
Hash identifier: iEcem0WqHRzjIHcIwJ9v232Z1aOB7SYGhly3yoQdc4Q=
Subject key identifier: E6:3C:5A:15:B7:CE:90:03:01:08:F4:AD:38:E5:41:E6:CD:B5:BE:FE
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2A49
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/5jxaFbfOkAMBCPStOOVB5s21vv4.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 31 Oct 2023 07:10:01 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: IP: 2403:b2c0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10825 (0x2a49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Oct 31 07:10:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E63C5A15B7CE90030108F4AD38E541E6CDB5BEFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:61:25:d8:3c:ec:cd:fb:14:ad:d9:80:dd:
f9:52:3d:4d:a3:15:ae:1d:0d:8b:58:7c:a2:92:20:
a3:50:7f:cd:0a:4d:ea:d3:e5:eb:be:88:ed:d4:37:
fb:d0:38:33:54:d7:1a:94:ec:0d:24:f5:65:23:83:
d2:c4:80:7c:61:c0:f4:76:03:42:96:e1:38:b5:b9:
a7:ee:75:e0:df:01:f8:34:af:76:00:2f:f6:4f:46:
07:37:6b:67:f9:6c:35:bf:6c:20:1b:cd:a1:ad:68:
c2:26:8d:52:6b:f2:df:98:77:a5:37:65:17:dd:06:
c2:49:8a:98:2f:1b:f7:a1:4f:73:61:df:20:97:70:
82:1c:d0:6e:56:d9:05:95:2f:c1:b7:d3:d9:fd:3c:
66:3a:b0:1d:ee:31:9a:8a:03:4c:3c:50:2f:eb:a7:
5f:90:d0:27:30:a7:7c:3c:5b:92:0f:ab:b0:9f:18:
a9:ec:06:cd:1e:4f:af:71:ae:16:7b:6f:3d:a5:f8:
9c:2b:93:98:c2:62:e4:0c:2f:72:b5:23:80:8f:5c:
b1:42:e7:72:22:10:26:4b:b3:0c:33:f8:c9:d8:b5:
bb:1d:95:5f:ff:8d:73:ed:a8:1e:37:07:f1:50:67:
3a:fe:23:e2:8d:79:3b:81:a6:cc:5d:fe:c5:59:63:
c1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3C:5A:15:B7:CE:90:03:01:08:F4:AD:38:E5:41:E6:CD:B5:BE:FE
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/5jxaFbfOkAMBCPStOOVB5s21vv4.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b2c0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:1d:73:8c:d6:55:8b:8c:65:83:ce:12:f8:3e:b3:36:1f:88:
f1:24:8d:b0:a0:d8:e6:84:96:16:4d:6f:f6:90:f8:0a:81:4b:
71:75:34:8e:19:e3:ab:91:df:42:f9:52:f1:d3:61:84:61:6a:
93:cb:57:19:60:69:6a:1d:59:a6:79:8c:a1:4f:58:55:f0:fc:
fd:13:11:2b:6d:ad:e7:4b:1b:d8:a1:fd:8f:c9:d8:66:a4:a4:
39:83:c9:6b:c2:52:20:49:bc:84:a7:37:ef:1b:46:db:cd:02:
02:27:f2:97:24:d3:8f:a6:f3:94:14:b9:9b:38:b3:af:b3:85:
05:aa:5c:ca:da:fe:3c:26:8f:9a:5a:ce:3a:ab:dd:2b:7c:be:
f2:a1:b8:b7:be:bf:2e:59:03:3a:06:f5:bc:60:19:d6:b4:fa:
4e:29:29:39:67:a5:98:1a:aa:fe:29:b9:24:f7:a2:2d:45:e4:
d7:7f:fc:91:c4:85:c6:16:b3:76:d1:d5:8b:aa:4e:b8:d3:89:
be:12:67:66:bd:40:32:bb:95:be:df:7d:f2:2f:21:e2:aa:47:
4d:a1:72:ab:df:ea:b7:24:95:12:b9:a5:28:41:84:d2:30:d0:
06:57:c7:f7:26:13:b5:2f:a6:e2:03:e6:ad:b5:23:4c:34:31:
c2:22:a0:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 06:46:01 2023 by rpki-client on console-fra.rpki-client.org