Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XSqgPgIczXUVOoxDsxvJTJYsKYc.cer
File: XSqgPgIczXUVOoxDsxvJTJYsKYc.cer (raw, json)
Hash identifier: eoFqjKuDvRIKakOdyx+evewU/RzbAcfV52hiuGxiS08=
Subject key identifier: 5D:2A:A0:3E:02:1C:CD:75:15:3A:8C:43:B3:1B:C9:4C:96:2C:29:87
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1D02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASITSNOC/XSqgPgIczXUVOoxDsxvJTJYsKYc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASITSNOC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Wed 27 Jan 2021 09:56:23 +0000
Certificate not after: Thu 27 Jan 2022 09:47:16 +0000
Subordinate resources: IP: 103.130.252.0/22
IP: 202.169.160.0/20
IP: 2403:c240::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7426 (0x1d02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Jan 27 09:56:23 2021 GMT
Not After : Jan 27 09:47:16 2022 GMT
Subject: CN=5D2AA03E021CCD75153A8C43B31BC94C962C2987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b7:eb:e7:ba:c0:18:fc:10:49:b7:ce:a3:82:
c5:c1:c9:c9:af:02:73:e4:8a:b0:67:3e:cb:aa:cd:
59:b6:f3:16:37:b4:df:13:fe:fe:d2:4d:3b:9d:4a:
e2:4e:d9:57:49:af:dc:9e:69:22:47:55:42:4d:ef:
db:29:28:33:29:ae:36:ac:72:bb:83:a3:30:62:87:
17:30:d0:70:bf:93:55:0f:5d:ac:c0:ce:47:32:f6:
92:c3:21:37:d9:3e:74:58:63:02:f2:ae:8a:ae:bc:
6b:31:61:59:71:1c:c1:16:a9:80:68:04:1b:5b:8f:
52:8e:3e:fe:bb:fa:1b:03:3c:2b:8d:c3:64:c7:4d:
05:cd:80:00:3c:1a:7d:ff:7b:f9:84:3c:99:82:fe:
46:50:6f:32:9d:c2:b0:11:ce:5f:f4:a1:84:78:9e:
34:b3:5c:40:1d:77:50:1e:3f:f2:0d:34:ce:36:84:
e7:fd:93:36:ac:c5:c5:1a:15:7c:0a:e0:b5:0a:d8:
b0:e1:7d:df:e7:19:41:11:68:61:fc:ce:ba:90:11:
be:6c:ef:e4:89:fc:a1:a3:0b:e5:f1:55:c2:32:a3:
99:65:3f:3a:da:d4:db:d2:95:02:22:a1:32:8d:67:
d8:bb:a4:96:4a:a8:cc:91:0f:d9:1a:42:4c:7f:e0:
18:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2A:A0:3E:02:1C:CD:75:15:3A:8C:43:B3:1B:C9:4C:96:2C:29:87
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASITSNOC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASITSNOC/XSqgPgIczXUVOoxDsxvJTJYsKYc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.252.0/22
202.169.160.0/20
IPv6:
2403:c240::/32
Signature Algorithm: sha256WithRSAEncryption
93:3c:7c:5c:8e:ba:dc:85:6c:43:be:44:e4:93:7c:26:44:84:
74:fe:01:3d:76:d8:81:c3:3d:ed:f9:14:4d:94:e1:9b:3a:19:
39:a7:df:86:60:1d:e4:e8:5e:e8:b2:43:03:51:cd:23:51:e0:
4c:a6:ef:bb:56:45:2f:38:c6:89:d4:86:68:2e:5f:42:62:a1:
42:43:0d:96:0b:57:a9:cc:5e:83:66:fb:16:71:05:e0:c1:e1:
2a:c6:52:b6:28:8f:bd:9c:af:63:42:57:ff:23:11:0a:28:d9:
48:3e:5e:10:db:a2:d9:63:b1:c1:84:b3:ec:c6:00:6b:39:53:
d1:6d:bd:ba:88:85:b3:9c:69:20:df:b4:ec:77:52:4a:83:b3:
c0:f1:d9:09:11:01:f4:01:79:74:89:47:6e:a0:8c:5d:42:8b:
8f:8b:bf:a0:b9:27:16:5c:4d:3e:9f:da:11:da:c1:5b:9b:83:
91:87:24:1b:bb:ef:c6:48:31:5a:7c:87:c1:bb:f0:bc:78:42:
b8:a8:11:28:69:54:b7:37:d7:5a:5e:ba:89:8d:a3:de:74:7d:
98:85:7e:ed:d0:d8:78:32:56:4e:34:17:22:0b:19:4a:a3:97:
92:30:6b:63:d4:e2:91:08:14:79:2f:92:4a:ff:05:ff:87:e1:
8e:e5:4f:2e
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgICHQIwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIxMDEyNzA5NTYyM1oXDTIyMDEyNzA5NDcxNlowMzEx
MC8GA1UEAxMoNUQyQUEwM0UwMjFDQ0Q3NTE1M0E4QzQzQjMxQkM5NEM5NjJDMjk4
NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJ236+e6wBj8EEm3zqOC
xcHJya8Cc+SKsGc+y6rNWbbzFje03xP+/tJNO51K4k7ZV0mv3J5pIkdVQk3v2yko
MymuNqxyu4OjMGKHFzDQcL+TVQ9drMDORzL2ksMhN9k+dFhjAvKuiq68azFhWXEc
wRapgGgEG1uPUo4+/rv6GwM8K43DZMdNBc2AADwaff97+YQ8mYL+RlBvMp3CsBHO
X/ShhHieNLNcQB13UB4/8g00zjaE5/2TNqzFxRoVfArgtQrYsOF93+cZQRFoYfzO
upARvmzv5In8oaML5fFVwjKjmWU/OtrU29KVAiKhMo1n2LuklkqozJEP2RpCTH/g
GN0CAwEAAaOCAmkwggJlMB0GA1UdDgQWBBRdKqA+AhzNdRU6jEOzG8lMliwphzAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF
hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJVFNOT0Mv
MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQVNJVFNOT0MvWFNxZ1BnSWN6WFVWT294RHN4dkpUSllzS1ljLm1mdDAxBggr
BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAmeC/AMEBMqpoDANBAIAAjAHAwUA
JAPCQDANBgkqhkiG9w0BAQsFAAOCAQEAkzx8XI663IVsQ75E5JN8JkSEdP4BPXbY
gcM97fkUTZThmzoZOaffhmAd5Ohe6LJDA1HNI1HgTKbvu1ZFLzjGidSGaC5fQmKh
QkMNlgtXqcxeg2b7FnEF4MHhKsZStiiPvZyvY0JX/yMRCijZSD5eENui2WOxwYSz
7MYAazlT0W29uoiFs5xpIN+07HdSSoOzwPHZCREB9AF5dIlHbqCMXUKLj4u/oLkn
FlxNPp/aEdrBW5uDkYckG7vvxkgxWnyHwbvwvHhCuKgRKGlUtzfXWl66iY2j3nR9
mIV+7dDYeDJWTjQXIgsZSqOXkjBrY9TikQgUeS+SSv8F/4fhjuVPLg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org