Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer
File: 6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer (raw, json)
Hash identifier: 7ixjjCQpyi2yR4ocv8wnaBPb66fReX5kMnyhrdYxEcs=
Subject key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6
Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743
Certificate serial: 19F5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:28 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: IP: 157.15.32.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6645 (0x19f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000
Validity
Not Before: Feb 10 14:29:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EAB250D058FACBEB3EA0D16B53865061339074B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:20:c6:ac:63:58:1d:d4:1d:c6:a6:9b:d0:5c:
41:66:59:65:7d:15:2a:85:8c:6d:42:40:a0:69:28:
e5:c5:c7:2c:10:a4:30:f1:4c:a9:e5:00:ad:32:09:
7c:ce:0b:ba:59:8d:99:82:3f:c7:1b:ac:42:ef:3b:
ce:6f:b3:ed:04:13:0b:e6:9a:26:91:ca:c6:9b:a5:
db:dc:77:b9:b3:36:8d:db:86:81:01:23:cb:b7:c0:
81:96:c7:1a:08:82:59:0a:99:2f:71:c2:d9:b4:69:
b8:92:0d:89:b1:89:b6:04:30:23:74:13:dd:7e:76:
66:29:e0:5b:8f:52:e9:b7:5e:b7:db:e3:d5:1e:c4:
17:9c:15:3d:8c:a8:a8:75:9e:1d:4f:68:79:36:9d:
d5:b6:fe:c8:71:f4:60:40:59:1c:70:b5:8e:42:0c:
9c:48:dc:de:21:1d:cd:97:5d:56:a0:2d:7d:b4:b4:
a2:58:52:62:c6:01:30:3c:2d:4f:27:ef:93:10:82:
c1:59:4d:b2:4a:0a:6b:9d:e3:e3:3d:52:be:51:f6:
be:40:b1:ee:bf:31:2c:3b:5d:47:c0:88:ce:2b:92:
dc:ee:a2:b1:35:a0:99:61:e6:6a:7e:86:83:08:e4:
a9:2e:10:25:35:95:d9:bd:5f:1f:35:08:cd:46:c5:
d4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6
X509v3 Authority Key Identifier:
keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.32.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:19:66:76:c4:23:7d:47:30:e5:6a:16:e1:d2:b0:15:39:d5:
9c:09:73:3f:56:04:b0:2c:a5:89:1e:33:ba:3a:75:cf:0c:c3:
a9:b4:fb:9f:1a:3c:c2:bf:3c:7f:3a:0e:f4:8a:7c:d3:79:69:
97:b8:97:dc:44:8b:79:f5:cc:60:0f:f7:33:cc:ba:03:b0:b4:
a8:da:a8:ef:c0:1b:e7:73:7f:ed:f0:2a:90:1f:05:02:a7:be:
4e:81:34:f8:1e:69:ac:4d:6b:56:37:ff:c9:20:fc:06:dd:5e:
e2:c9:dc:17:c2:6d:d8:61:86:46:7e:45:4c:c5:ed:bd:b6:be:
c6:2e:cf:07:e5:ec:35:1f:f4:92:a7:98:58:80:65:59:39:c0:
06:88:6b:6d:77:f6:a7:71:3d:16:5c:dd:90:ca:32:fa:c7:5b:
77:3a:11:c7:b5:92:a0:09:61:eb:c5:c4:ed:94:8f:30:03:02:
b8:ff:af:cb:79:01:3a:e8:9e:94:2e:64:9b:94:3f:94:d0:59:
00:f1:9e:99:a3:8a:97:2f:8f:35:da:8a:65:34:90:89:a7:e9:
56:4b:b0:40:4d:10:90:d8:7f:78:85:30:f7:c2:38:49:f7:9a:
f2:91:e9:9c:0d:3a:24:54:59:99:44:91:7c:5f:c7:cb:7b:0a:
f1:82:1c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:51 2025 by rpki-client