Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
File: HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer (raw, json)
Hash identifier: kaB9sxKUuFHU2wVqItlDEp+vrdTLDzmif2V05NCKhac=
Subject key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2F8F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 26 Aug 2024 02:23:36 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 150755
IP: 203.175.104.0/23
IP: 2401:4e60::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 11:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12175 (0x2f8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 26 02:23:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1C7073A6066C765842FDF07169E43518A0BB0235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1f:c6:f7:bb:53:e0:0e:f2:e3:6e:2d:0c:30:
65:41:74:4e:26:80:89:44:2f:2b:2e:cd:6e:68:7f:
bc:47:53:fa:f7:60:be:0e:d4:34:59:35:e5:ae:1b:
d0:2e:85:b3:66:cb:e4:23:0b:9a:92:29:03:32:61:
2c:70:79:a4:20:5b:8d:96:c4:f7:1b:63:70:dd:2d:
6b:2e:41:f9:79:6c:06:c0:c9:b7:48:1b:fa:a6:eb:
72:80:01:b1:90:6c:82:35:6c:6e:4e:af:8f:24:73:
94:44:d4:38:e8:3e:69:0c:9d:ff:70:f6:14:87:36:
4d:a9:31:48:42:db:29:93:ca:eb:6a:af:e2:d4:e9:
19:b7:d4:1d:80:90:7a:01:2c:21:37:fd:f8:b3:89:
9f:41:10:95:29:e9:64:49:8e:50:c7:1d:56:43:18:
4a:11:77:61:60:3b:a0:48:0c:ad:7d:c1:49:51:6b:
a0:2c:80:ce:50:6d:e2:35:34:aa:b6:c1:db:a6:f2:
d8:de:9b:3b:84:42:76:d0:e9:bd:4f:a3:76:39:51:
f5:96:59:e2:32:3a:88:23:1a:b2:64:0c:4e:7e:06:
3b:d5:7f:d9:c0:01:bb:8d:4d:fa:93:20:a5:cb:2a:
42:95:bd:86:1b:0d:59:e3:38:b8:df:c5:8d:e4:af:
a6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150755
sbgp-ipAddrBlock: critical
IPv4:
203.175.104.0/23
IPv6:
2401:4e60::/32
Signature Algorithm: sha256WithRSAEncryption
1e:9b:b5:e6:8f:28:e6:ac:e3:cb:9d:12:1a:5d:18:6f:a0:24:
21:6e:3a:77:ba:9e:41:2f:88:6f:39:ca:50:55:c6:70:63:dc:
68:84:62:59:8e:fb:5e:3b:d0:88:a1:d8:22:a8:9b:62:87:73:
2b:9d:de:2c:92:44:d5:18:03:34:39:5f:ec:54:f3:6a:52:ff:
18:92:f7:f6:35:f4:95:76:02:05:23:55:d2:06:93:35:2d:75:
59:da:e8:37:46:97:5c:7d:7a:67:b6:0f:c3:8c:c2:d6:fd:62:
f2:34:39:c1:56:b6:e4:4c:f0:a2:03:24:2c:d0:e6:9f:55:77:
ba:dd:fe:20:1c:0b:1c:0a:d7:a6:b0:c6:32:97:ee:67:38:e9:
ba:b5:db:c9:3a:d9:85:45:5b:a6:d1:29:61:c7:d3:34:c9:d4:
3f:87:c7:05:9d:fb:1b:b4:67:60:d5:04:0b:62:81:86:e3:68:
2d:e8:91:12:f4:eb:2c:3a:77:4b:84:54:3c:22:63:be:b3:88:
0f:65:77:da:b8:42:6d:30:5f:8e:37:59:9e:84:3e:48:f1:6c:
e2:1e:bb:54:4c:fd:21:0b:4e:af:ec:8c:4b:8d:b2:bf:9a:f1:
f0:dc:f3:7c:37:b5:5b:1e:99:f4:95:bb:e6:66:bd:5e:1d:ab:
8c:b7:0f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:32 2024 by rpki-client on console-ams.rpki-client.org