Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/5y39j0IkDsmjE7QXjebg1RKos_w.cer
File: 5y39j0IkDsmjE7QXjebg1RKos_w.cer (raw, json)
Hash identifier: XVZFfA55uHroCmBSDqqcSpoUx1kbq02mLXDPetlW6Rw=
Subject key identifier: E7:2D:FD:8F:42:24:0E:C9:A3:13:B4:17:8D:E6:E0:D5:12:A8:B3:FC
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1940
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TLG/5y39j0IkDsmjE7QXjebg1RKos_w.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TLG/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:27 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.127.136.0/22
IP: 2404:2140::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6464 (0x1940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E72DFD8F42240EC9A313B4178DE6E0D512A8B3FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:19:9c:2d:a6:bf:e9:17:49:d7:19:f4:96:38:
36:08:e9:bd:13:28:20:dd:3b:3a:85:db:07:13:5e:
e3:79:c4:ff:a0:94:a2:62:9c:60:f9:77:f0:ec:00:
43:53:d0:12:9d:1b:7e:88:2b:fb:b0:3e:b9:83:8c:
90:80:84:3e:2b:89:60:ee:5a:ff:16:6c:85:71:54:
54:70:a5:f2:2b:b4:df:c2:14:dc:6e:2d:0b:d9:e6:
91:65:7e:f5:b0:70:a1:71:af:d1:b8:fd:96:74:da:
f6:c2:81:6d:7e:5d:74:c0:bf:cf:52:7f:67:46:36:
00:b8:0c:47:de:62:be:14:fe:76:f1:5d:d8:cd:55:
87:72:9e:6b:b3:f2:b9:a8:9a:8a:eb:35:d1:bc:78:
00:15:3b:cb:eb:86:c7:ce:04:ee:ca:c6:bf:d0:2d:
02:d7:c7:a2:74:16:3c:c8:40:3e:ea:ad:f2:db:34:
e3:ef:82:17:ad:c6:ab:85:5f:a8:43:1b:cc:7b:04:
60:97:5e:60:94:cd:67:a5:39:07:f1:fa:08:cc:68:
73:bf:ca:17:00:6f:87:5c:2f:4e:47:d6:a6:78:fa:
e7:4b:33:b4:fb:1d:85:27:a4:bf:6e:c0:7d:86:6b:
90:22:dd:47:a4:7a:bb:06:0f:61:4c:9c:48:03:c4:
14:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2D:FD:8F:42:24:0E:C9:A3:13:B4:17:8D:E6:E0:D5:12:A8:B3:FC
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TLG/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TLG/5y39j0IkDsmjE7QXjebg1RKos_w.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.136.0/22
IPv6:
2404:2140::/32
Signature Algorithm: sha256WithRSAEncryption
49:e0:c5:d0:02:9c:69:a1:dc:d0:7e:a9:15:4f:a9:65:0d:0d:
1c:ac:1e:a8:2b:84:ee:90:23:99:84:90:95:0f:4b:90:35:ba:
3a:3d:4c:be:d1:c3:76:93:79:c7:b5:f1:22:1f:22:f6:7c:70:
55:3e:e7:37:81:53:02:00:e4:04:04:19:d9:c4:68:1c:34:96:
19:f4:8d:af:1c:d8:db:00:7b:15:bc:06:7b:e5:3e:cb:0c:54:
2e:56:f0:01:04:79:58:f5:78:bd:3f:14:e5:4b:7e:ac:1c:1c:
cf:5e:09:bc:4c:6c:f4:93:c2:f3:68:68:6e:90:ac:82:6d:78:
1e:3c:87:95:94:c0:4b:ff:9a:96:2f:5e:a9:39:2a:5d:ec:be:
f6:44:22:fa:52:fd:f1:e4:44:54:6d:84:26:d2:2e:d6:15:96:
98:37:1a:e4:68:f1:55:2c:00:a5:ad:d9:21:13:7a:db:67:0e:
7b:a8:ad:d9:7c:1c:03:38:9c:48:d1:3d:17:63:fb:71:dc:3e:
37:5a:10:28:74:30:da:12:44:ea:a5:9d:3e:51:74:77:99:d9:
b9:b6:0f:cb:ac:79:b8:0d:ba:b3:99:8f:fc:65:c6:e5:e6:5b:
5a:9e:3e:e6:85:a2:5f:d2:91:18:64:17:57:27:80:ab:d0:53:
fd:1a:9a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org