Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Qty_z23hLDWIJdzDaE8XkG_wEOk.cer
File: Qty_z23hLDWIJdzDaE8XkG_wEOk.cer (raw, json)
Hash identifier: 7QdhoD1J5o8pGDYjbnpLgpsxaH2WiYXE0rDVxaQqZO0=
Subject key identifier: 42:DC:BF:CF:6D:E1:2C:35:88:25:DC:C3:68:4F:17:90:6F:F0:10:E9
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1954
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOREMOTE/Qty_z23hLDWIJdzDaE8XkG_wEOk.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOREMOTE/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:28 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.122.160.0/22
IP: 2403:91c0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6484 (0x1954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42DCBFCF6DE12C358825DCC3684F17906FF010E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:95:06:69:50:20:82:07:7e:04:35:76:19:fd:
4e:93:54:4a:30:62:b7:37:67:06:f9:84:cd:f1:86:
18:70:d1:3f:b4:ee:27:8a:96:6a:62:3f:c4:78:24:
6a:22:c1:59:78:a9:e6:de:0c:6e:b0:98:29:d0:35:
5a:c2:ea:c3:3c:cf:e1:75:3a:51:f3:87:10:bf:5e:
2f:73:ae:f0:5a:d5:a3:4c:be:96:c3:10:bd:db:24:
69:a9:c4:82:2f:55:bf:75:fc:d6:97:58:ab:65:92:
38:98:4f:40:63:5a:ab:1d:29:2a:fb:7a:b5:56:91:
03:34:fe:55:a5:d0:bc:fc:75:2a:56:b1:8e:c6:59:
a9:56:08:c1:5f:69:0b:38:ef:45:0a:d5:93:a8:99:
1d:8b:02:ee:a8:d1:14:aa:dd:5e:d9:80:76:b3:89:
59:5a:3f:a0:7f:f4:29:40:25:7b:07:aa:6a:c6:c8:
9d:69:3c:60:24:7d:2a:97:b3:20:b1:2b:07:50:76:
af:58:1b:5a:86:e8:82:b5:ee:72:ba:86:27:53:bc:
42:0f:18:0f:3b:0d:d9:1e:cb:0a:35:b8:27:af:42:
b7:be:c2:20:1c:6e:9c:15:95:82:0e:17:09:3b:64:
0b:60:cd:fa:7e:7e:0d:e7:3c:7a:00:d3:28:b4:d5:
13:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DC:BF:CF:6D:E1:2C:35:88:25:DC:C3:68:4F:17:90:6F:F0:10:E9
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOREMOTE/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOREMOTE/Qty_z23hLDWIJdzDaE8XkG_wEOk.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.160.0/22
IPv6:
2403:91c0::/32
Signature Algorithm: sha256WithRSAEncryption
36:54:63:6d:06:c1:5c:67:4a:ff:b0:a0:4b:5b:97:f9:ec:89:
d5:18:a4:c1:40:8c:71:80:f2:6f:c6:b5:73:a8:4b:3c:a9:d5:
36:ae:69:73:f7:d4:da:6a:82:22:aa:73:87:67:43:e9:a9:cd:
85:35:8a:78:25:bc:1b:28:c5:b2:aa:23:3d:31:06:f5:22:d3:
f7:86:96:4e:fd:89:5b:ec:79:af:e0:01:18:c3:79:af:e7:9d:
8c:00:2e:10:e4:0f:2d:a1:d6:54:21:8b:54:6e:19:6c:fd:57:
09:50:99:80:8d:96:f1:a2:68:1c:84:49:26:cd:81:c2:c5:cc:
fd:d7:0b:a2:97:75:1d:00:28:35:6f:d3:d1:ee:14:50:eb:34:
f2:f7:54:61:5f:90:f6:e2:6f:a5:fe:59:53:47:e5:6d:2a:c3:
79:f5:b0:d4:cc:85:89:33:ea:09:78:fe:34:c5:f5:96:88:2e:
6b:f0:3d:f6:fe:dd:26:4e:98:d8:84:b6:56:a0:81:96:11:79:
e2:34:dc:4b:3c:21:fd:fe:c8:26:66:66:90:d8:3e:d6:ca:31:
3b:4a:d6:aa:d3:09:81:73:96:c0:4b:6d:28:40:eb:e7:ff:bb:
04:3e:df:54:f4:7d:02:b5:51:b5:db:65:03:f3:25:d5:a3:e6:
ab:60:f9:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org