Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
File: T7OmmWT36W2ws1gTKPAG28oaupc.cer (raw, json)
Hash identifier: 8+Q5pqq1N2sI83BbPgf784Z/zvx/Jhn7E0CxyukuxuY=
Subject key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 28EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 01 Sep 2023 03:11:27 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 17417
IP: 61.56.64.0/19
IP: 61.247.160.0/20
IP: 113.21.160.0/19
IP: 210.67.96.0/20
IP: 2403:ee00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 May 2024 01:18:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10478 (0x28ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 1 03:11:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7c:48:21:88:32:d0:36:53:83:c4:d1:02:87:
d6:36:7d:bb:86:e8:39:a1:3e:26:57:ac:6f:ea:ff:
c8:e3:d9:27:08:f9:a3:c8:c1:9e:5e:a0:70:0a:93:
01:fd:ce:43:62:28:61:b8:31:6b:ee:aa:8a:ad:30:
40:96:25:9d:a5:3d:15:45:16:89:9e:a9:19:66:39:
95:33:81:c4:de:9e:ae:12:b6:a2:a4:9b:6f:d4:2d:
c6:f7:cc:fa:d6:3f:6a:3c:b5:1d:f9:99:db:7a:36:
8f:44:c2:6f:d3:58:2a:ca:ae:b6:f3:36:22:a2:69:
34:8e:24:38:36:80:74:69:22:64:5a:e6:8f:5c:fd:
bf:dc:ba:fc:16:34:7d:3d:25:53:ae:be:68:f9:e4:
c7:9e:03:75:f8:9f:43:33:f2:8d:3f:3f:8a:c8:52:
64:24:a9:72:c5:00:0b:44:11:f0:f5:d9:32:af:bf:
32:35:b6:15:46:f7:8b:9c:c9:25:7a:0e:09:b5:68:
f8:89:26:9c:00:37:9a:ca:9f:2e:4d:98:26:b3:ac:
60:74:10:a8:ac:74:b0:b1:63:d7:04:82:35:60:35:
14:f8:bb:90:3c:aa:d1:e0:31:5f:80:7b:8e:2c:ab:
1b:d6:3f:5f:3a:17:8e:f6:86:eb:c6:02:22:93:72:
df:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17417
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/19
61.247.160.0/20
113.21.160.0/19
210.67.96.0/20
IPv6:
2403:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
35:91:9c:c3:b8:04:ba:99:2a:5d:3e:84:8e:6c:8c:aa:aa:59:
69:85:5d:eb:78:43:b2:ac:38:83:f7:cb:b6:b9:60:be:a5:3c:
ac:83:48:0d:c0:cf:40:b6:21:6c:31:56:7c:82:f8:72:00:26:
80:e9:0c:ff:ac:fc:63:f9:e1:5c:3d:98:0c:be:22:4d:61:2f:
b1:df:b4:8a:05:ce:f6:7f:f7:a6:cf:e6:f6:0d:c1:45:62:a5:
a7:8f:1e:6b:31:f1:ce:78:5f:e8:14:3a:c6:4a:84:82:7a:db:
a7:b0:24:0f:2d:76:2e:53:a6:be:da:3f:9d:c5:f9:b9:12:03:
56:b4:65:05:d5:cc:b8:25:d7:b6:6f:25:9f:81:ca:af:b2:f9:
6e:75:31:b1:2b:39:69:79:23:82:f6:5f:10:f8:6b:9f:11:48:
e0:79:3d:ef:ed:44:89:6f:ca:62:25:cd:b1:11:c9:fe:f7:db:
98:2e:28:0a:79:54:d9:bb:b0:cc:7b:d7:30:12:da:15:5c:ee:
c5:fd:3a:e0:07:bd:21:ad:14:ce:0b:0a:6c:92:88:ae:6c:8c:
e5:0e:9c:0a:32:dd:d9:b4:4b:be:fd:36:51:01:bd:fc:45:cd:
e9:c0:b2:b7:da:8d:70:3f:ca:be:14:7d:ad:31:15:a5:f3:70:
98:2f:8a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 02:03:21 2024 by rpki-client on console-fra.rpki-client.org