Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/C7QIGsAzL4pZC_jNRxaWEh3-WjA.cer
File: C7QIGsAzL4pZC_jNRxaWEh3-WjA.cer (raw, json)
Hash identifier: /x/Dfc5CxJxqnhw+xTQomT8hUY0Cu8Hw+bDsV1F5zzo=
Subject key identifier: 0B:B4:08:1A:C0:33:2F:8A:59:0B:F8:CD:47:16:96:12:1D:FE:5A:30
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1938
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIOUSHIN/C7QIGsAzL4pZC_jNRxaWEh3-WjA.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIOUSHIN/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:27 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.131.128.0/22
IP: 2403:ca40::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6456 (0x1938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0BB4081AC0332F8A590BF8CD471696121DFE5A30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:46:54:b8:50:e7:34:92:d5:16:af:4d:9c:de:
de:f5:aa:9d:7e:0f:64:0b:bc:9f:5a:fd:67:d9:33:
71:db:11:5e:8d:f1:a3:58:06:f2:b9:8e:50:ba:df:
56:2e:18:99:6d:db:3a:c9:b2:b0:79:a4:38:6a:70:
63:48:a7:38:c1:57:e7:16:c4:ea:ba:e3:e9:b8:d9:
08:34:45:bb:ae:d5:0e:0f:54:b4:04:ad:9f:0d:82:
e4:7a:a8:ac:f0:f8:02:81:0b:30:76:f5:a8:c8:51:
f3:b3:37:44:0a:c3:02:ed:b4:d0:12:7e:53:51:20:
d4:59:36:14:69:72:f4:87:db:3b:45:3c:a5:c6:d4:
6e:46:12:79:da:01:cc:e5:41:90:1f:22:c2:05:0a:
9b:cc:ad:56:69:68:98:49:80:55:71:db:63:5a:26:
4e:4f:36:d9:b3:1e:be:2a:7b:5e:ab:94:74:d5:9b:
27:0a:f2:72:82:f0:fb:76:9b:30:6e:95:89:c5:9f:
b4:29:5f:6f:90:8d:78:0e:63:c9:4e:f5:3d:7d:a0:
ac:18:e2:20:5a:73:c9:6a:fd:be:c6:b9:b4:89:42:
a7:79:23:fd:3f:e5:f2:8a:7d:9b:88:4e:29:fe:f1:
97:65:87:6e:e3:77:b1:c5:7e:f8:b0:1b:42:9d:65:
c6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B4:08:1A:C0:33:2F:8A:59:0B:F8:CD:47:16:96:12:1D:FE:5A:30
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIOUSHIN/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIOUSHIN/C7QIGsAzL4pZC_jNRxaWEh3-WjA.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.128.0/22
IPv6:
2403:ca40::/32
Signature Algorithm: sha256WithRSAEncryption
82:c0:53:e4:37:16:2c:73:38:65:f8:c6:f2:e6:9e:7b:74:97:
01:ae:b3:8f:e3:74:e5:03:29:b3:b1:33:19:78:f3:ba:bc:e6:
0b:95:17:d2:89:3f:ac:8e:46:07:49:6b:d2:46:54:69:20:5c:
b7:7f:c1:9f:60:1a:e5:ea:9c:9b:61:a5:7b:63:f4:92:e5:97:
d2:6e:e3:ba:e1:cb:cb:3b:93:51:64:7d:61:67:d1:19:ab:93:
52:0e:0b:4b:bc:f4:23:45:fb:5d:ed:4b:1e:f2:fe:34:8e:6f:
a8:b9:b7:23:cf:c7:bc:07:40:f6:5f:21:8b:2a:d2:1a:6b:8f:
c7:64:f2:c7:5c:e4:64:50:03:fd:8b:f9:38:d4:21:63:0a:ff:
37:5b:cb:ae:df:42:96:44:b0:88:b9:42:a7:4d:f3:23:6c:ee:
87:2f:8a:d0:2d:d8:2c:d9:14:5f:23:29:83:5d:47:a2:a7:63:
97:f3:b7:af:b3:f0:0e:35:6b:0e:e1:7a:d2:5a:8a:b5:86:1f:
f4:52:7e:5d:08:da:11:a4:eb:71:e2:0f:39:d9:60:15:cd:d6:
45:45:de:7f:87:01:95:e8:fc:f4:c3:10:3a:54:87:32:21:f9:
6a:41:24:a1:3d:3a:3c:ec:35:a8:a2:d5:d9:c0:41:78:5b:c4:
4b:c6:49:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org