Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
File: UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer (raw, json)
Hash identifier: 5EmDJUuqrgQVAkZHNWyAh/kq/7ff0ZMzChEW0zDY/uA=
Subject key identifier: 52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 28CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 01 Sep 2023 03:11:25 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 24157
IP: 1.200.0.0/16
IP: 43.255.88.0/22
IP: 43.255.180.0/22
IP: 103.5.32.0/22
IP: 103.239.60.0/22
IP: 110.50.128.0/18
IP: 112.78.64.0/19
IP: 116.89.128.0/20
IP: 180.217.0.0/16
IP: 202.144.208.0/20
IP: 2401:7080::/32
IP: 2403:c300::/32
Validation: Failed, certificate revoked on Fri 22 Dec 2023 07:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10444 (0x28cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 1 03:11:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8f:7f:53:d6:cc:ba:41:f8:3c:fc:ad:bc:56:
95:f5:ab:c5:18:02:a3:15:69:e5:c2:8b:b0:02:40:
a7:ae:9d:38:ce:4e:15:f3:bc:11:9c:3d:5d:53:ba:
25:aa:56:5b:fa:09:9d:35:9e:86:7f:af:d6:8c:9c:
15:67:69:f5:47:4d:c6:f2:f8:b8:6e:65:9e:66:09:
b0:d6:0c:e0:f6:6d:59:29:b8:01:f2:ea:d5:f6:85:
ad:de:41:7b:81:6c:47:f5:a2:9f:3c:98:7a:c3:50:
fa:f8:25:8c:a8:4f:6d:88:18:a6:b2:e3:f5:1d:1f:
7c:9f:d9:76:70:4f:db:e3:74:0c:2b:a0:ac:51:bb:
a1:83:ac:db:2c:eb:b6:55:e7:24:bb:f3:fb:a2:12:
b5:db:9b:7f:3c:c5:48:76:42:19:f1:52:0e:02:c6:
ba:b4:92:b2:c6:4f:66:78:07:7a:45:ad:9f:dc:9f:
bf:79:ab:52:1f:65:7f:5c:f8:2d:4f:e3:0e:89:67:
ea:bd:c6:b8:e3:c7:9b:09:20:eb:9c:81:5d:af:18:
28:fb:d4:76:d5:2e:60:87:f5:61:7a:98:26:c1:94:
46:60:9e:f6:66:74:3c:b2:31:c6:b9:3b:04:38:4c:
7f:6c:ad:90:03:7c:60:95:af:8b:4e:3f:b2:b1:75:
40:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24157
sbgp-ipAddrBlock: critical
IPv4:
1.200.0.0/16
43.255.88.0/22
43.255.180.0/22
103.5.32.0/22
103.239.60.0/22
110.50.128.0/18
112.78.64.0/19
116.89.128.0/20
180.217.0.0/16
202.144.208.0/20
IPv6:
2401:7080::/32
2403:c300::/32
Signature Algorithm: sha256WithRSAEncryption
2c:4a:66:ad:bc:33:32:e6:03:43:4a:45:0d:ab:18:b5:f1:9f:
57:b4:13:77:92:5b:df:d1:ce:8f:fd:8b:91:fa:aa:b0:dc:82:
2c:ed:25:bf:d0:18:5f:e1:cd:69:38:d9:d4:33:06:6a:d1:8b:
8e:67:13:b9:92:05:55:2b:bb:7b:03:2a:03:ac:36:a5:84:7f:
b5:b1:33:ac:5a:20:4b:a1:14:94:b2:7a:80:3e:0a:c0:83:df:
fe:4f:ab:66:23:84:ef:8a:da:9b:c4:f2:77:73:1b:a7:b3:47:
e3:dd:0b:6d:fc:a8:f5:7e:10:9e:2e:00:e3:95:cf:ef:ea:aa:
fe:c4:e9:30:f4:3e:12:9f:62:53:e4:df:57:e5:6a:0f:a4:15:
84:c7:bb:52:0f:6d:38:9d:13:b7:3f:6c:9e:4b:81:40:c0:b4:
42:27:cd:86:49:c5:d6:1b:45:a6:c5:45:3c:71:0b:c0:b2:e5:
e1:cd:5b:bc:7b:e5:88:0e:32:ba:0e:d8:2e:2b:b6:d3:b6:d7:
d3:02:13:bb:d5:a6:c3:cb:aa:19:39:e5:f5:4e:cf:a5:e1:14:
aa:63:27:be:6a:40:11:30:e3:23:ff:75:9a:1d:d6:3f:bc:e8:
36:98:3f:6e:2d:da:98:1a:9a:ab:7d:4f:b8:97:8d:5e:63:10:
8c:bf:8b:36
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgICKMwwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEyNVoXDTI0MDgzMTAzMTA1M1owMzEx
MC8GA1UEAxMoNTJBM0YwMTk4MDA5ODAzQjUxNjVERTVFQ0I2MUZENDUxMjQ2Q0ZB
QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMePf1PWzLpB+Dz8rbxW
lfWrxRgCoxVp5cKLsAJAp66dOM5OFfO8EZw9XVO6JapWW/oJnTWehn+v1oycFWdp
9UdNxvL4uG5lnmYJsNYM4PZtWSm4AfLq1faFrd5Be4FsR/WinzyYesNQ+vgljKhP
bYgYprLj9R0ffJ/ZdnBP2+N0DCugrFG7oYOs2yzrtlXnJLvz+6IStdubfzzFSHZC
GfFSDgLGurSSssZPZngHekWtn9yfv3mrUh9lf1z4LU/jDoln6r3GuOPHmwkg65yB
Xa8YKPvUdtUuYIf1YXqYJsGURmCe9mZ0PLIxxrk7BDhMf2ytkAN8YJWvi04/srF1
QNECAwEAAaOCArEwggKtMB0GA1UdDgQWBBRSo/AZgAmAO1Fl3l7LYf1FEkbPqzAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdIGCCsGAQUFBwELBIHFMIHCMDYGCCsGAQUFBzAF
hipyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklCTy8wVQYI
KwYBBQUHMAqGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9W
SUJPL1VxUHdHWUFKZ0R0UlpkNWV5Mkg5UlJKR3o2cy5tZnQwMQYIKwYBBQUHMA2G
JWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGQYIKwYBBQUH
AQgBAf8ECjAIoAYwBAICXl0waQYIKwYBBQUHAQcBAf8EWjBYMEAEAgABMDoDAwAB
yAMEAiv/WAMEAiv/tAMEAmcFIAMEAmfvPAMEBm4ygAMEBXBOQAMEBHRZgAMDALTZ
AwQEypDQMBQEAgACMA4DBQAkAXCAAwUAJAPDADANBgkqhkiG9w0BAQsFAAOCAQEA
LEpmrbwzMuYDQ0pFDasYtfGfV7QTd5Jb39HOj/2LkfqqsNyCLO0lv9AYX+HNaTjZ
1DMGatGLjmcTuZIFVSu7ewMqA6w2pYR/tbEzrFogS6EUlLJ6gD4KwIPf/k+rZiOE
74ram8Tyd3Mbp7NH490Lbfyo9X4Qni4A45XP7+qq/sTpMPQ+Ep9iU+TfV+VqD6QV
hMe7Ug9tOJ0Ttz9snkuBQMC0QifNhknF1htFpsVFPHELwLLl4c1bvHvliA4yug7Y
Liu207bX0wITu9Wmw8uqGTnl9U7PpeEUqmMnvmpAETDjI/91mh3WP7zoNpg/bi3a
mBqaq31PuJeNXmMQjL+LNg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org