Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
File: T7OmmWT36W2ws1gTKPAG28oaupc.cer (raw, json)
Hash identifier: Xli4RndOv8bWMBUH83/kZjQgPZrzBk1yX+VbKSYFBmA=
Subject key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2E2F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 26 Aug 2024 01:57:24 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 17417
IP: 61.56.64.0/19
IP: 61.247.160.0/20
IP: 113.21.160.0/19
IP: 210.67.96.0/20
IP: 2403:ee00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 11:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11823 (0x2e2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 26 01:57:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7c:48:21:88:32:d0:36:53:83:c4:d1:02:87:
d6:36:7d:bb:86:e8:39:a1:3e:26:57:ac:6f:ea:ff:
c8:e3:d9:27:08:f9:a3:c8:c1:9e:5e:a0:70:0a:93:
01:fd:ce:43:62:28:61:b8:31:6b:ee:aa:8a:ad:30:
40:96:25:9d:a5:3d:15:45:16:89:9e:a9:19:66:39:
95:33:81:c4:de:9e:ae:12:b6:a2:a4:9b:6f:d4:2d:
c6:f7:cc:fa:d6:3f:6a:3c:b5:1d:f9:99:db:7a:36:
8f:44:c2:6f:d3:58:2a:ca:ae:b6:f3:36:22:a2:69:
34:8e:24:38:36:80:74:69:22:64:5a:e6:8f:5c:fd:
bf:dc:ba:fc:16:34:7d:3d:25:53:ae:be:68:f9:e4:
c7:9e:03:75:f8:9f:43:33:f2:8d:3f:3f:8a:c8:52:
64:24:a9:72:c5:00:0b:44:11:f0:f5:d9:32:af:bf:
32:35:b6:15:46:f7:8b:9c:c9:25:7a:0e:09:b5:68:
f8:89:26:9c:00:37:9a:ca:9f:2e:4d:98:26:b3:ac:
60:74:10:a8:ac:74:b0:b1:63:d7:04:82:35:60:35:
14:f8:bb:90:3c:aa:d1:e0:31:5f:80:7b:8e:2c:ab:
1b:d6:3f:5f:3a:17:8e:f6:86:eb:c6:02:22:93:72:
df:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17417
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/19
61.247.160.0/20
113.21.160.0/19
210.67.96.0/20
IPv6:
2403:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
50:31:6e:de:68:24:23:0f:cf:66:f0:10:33:17:b5:a6:a1:f9:
f0:43:ee:a4:51:fa:05:b9:6e:d0:d8:d9:cc:c8:9f:ec:9a:58:
5c:3c:95:e6:a5:27:db:68:9b:ea:c3:cb:7a:e8:d5:cc:32:a7:
e2:16:4b:76:71:98:0e:77:c1:e7:90:ee:14:c5:fa:20:89:0a:
cc:01:c8:d0:33:e9:0c:a8:48:1b:83:21:b8:7e:b9:06:c8:3f:
11:e1:14:29:58:7e:12:a6:b5:24:80:06:1c:35:50:8a:6c:91:
ae:b7:00:90:f0:25:c4:29:1b:02:fa:c7:90:22:1a:41:1b:05:
16:0d:08:b8:9a:f8:b1:3a:4f:cc:e2:ea:5e:51:aa:e2:dc:87:
53:86:f7:64:7f:4a:9d:76:d2:3c:3a:97:38:a1:9c:51:f9:ec:
f5:be:e3:ef:f6:4c:e8:62:ac:82:a9:63:5e:18:04:47:5e:89:
01:68:64:ca:c4:a4:9d:5d:7f:eb:d8:3c:a4:b8:db:a5:6e:6e:
1f:2e:21:ec:41:42:a8:67:32:8f:2f:3c:1d:e9:72:e8:61:b2:
33:4e:03:de:3f:ea:58:01:a6:39:8c:44:a4:47:3d:1b:3b:30:
0b:0f:b1:29:9b:fb:89:5e:27:4b:ba:2a:d0:7f:9f:97:cc:67:
a2:b0:b8:9f
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgICLi8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTcyNFoXDTI1MDgyNjAxNTcwM1owMzEx
MC8GA1UEAxMoNEZCM0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5
NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMR8SCGIMtA2U4PE0QKH
1jZ9u4boOaE+Jlesb+r/yOPZJwj5o8jBnl6gcAqTAf3OQ2IoYbgxa+6qiq0wQJYl
naU9FUUWiZ6pGWY5lTOBxN6erhK2oqSbb9QtxvfM+tY/ajy1HfmZ23o2j0TCb9NY
KsqutvM2IqJpNI4kODaAdGkiZFrmj1z9v9y6/BY0fT0lU66+aPnkx54DdfifQzPy
jT8/ishSZCSpcsUAC0QR8PXZMq+/MjW2FUb3i5zJJXoOCbVo+IkmnAA3msqfLk2Y
JrOsYHQQqKx0sLFj1wSCNWA1FPi7kDyq0eAxX4B7jiyrG9Y/XzoXjvaG68YCIpNy
3zsCAwEAAaOCAowwggKIMB0GA1UdDgQWBBRPs6aZZPfpbbCzWBMo8Abbyhq6lzAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF
hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzBX
BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0RZWE5FVC9UN09tbVdUMzZXMndzMWdUS1BBRzI4b2F1cGMubWZ0MDEGCCsGAQUF
BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBkGCCsG
AQUFBwEIAQH/BAowCKAGMAQCAkQJMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAY
AwQFPThAAwQEPfegAwQFcRWgAwQE0kNgMA0EAgACMAcDBQAkA+4AMA0GCSqGSIb3
DQEBCwUAA4IBAQBQMW7eaCQjD89m8BAzF7WmofnwQ+6kUfoFuW7Q2NnMyJ/smlhc
PJXmpSfbaJvqw8t66NXMMqfiFkt2cZgOd8HnkO4UxfogiQrMAcjQM+kMqEgbgyG4
frkGyD8R4RQpWH4SprUkgAYcNVCKbJGutwCQ8CXEKRsC+seQIhpBGwUWDQi4mvix
Ok/M4upeUari3IdThvdkf0qddtI8Opc4oZxR+ez1vuPv9kzoYqyCqWNeGARHXokB
aGTKxKSdXX/r2DykuNulbm4fLiHsQUKoZzKPLzwd6XLoYbIzTgPeP+pYAaY5jESk
Rz0bOzALD7Epm/uJXidLuirQf5+XzGeisLif
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:40 2024 by rpki-client on console-ams.rpki-client.org