Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/a4jHJ_Pdtea-nh1B1wa9cFtiNyo.cer
File: a4jHJ_Pdtea-nh1B1wa9cFtiNyo.cer (raw, json)
Hash identifier: OpezyUYO7UzH+X4BgwIAPWLbVsNxqK4ka4VyVORCoGA=
Subject key identifier: 6B:88:C7:27:F3:DD:B5:E6:BE:9E:1D:41:D7:06:BD:70:5B:62:37:2A
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1FD1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/FGLIFE/a4jHJ_Pdtea-nh1B1wa9cFtiNyo.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/FGLIFE/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Wed 29 Sep 2021 02:44:42 +0000
Certificate not after: Thu 29 Sep 2022 02:36:22 +0000
Subordinate resources: IP: 103.125.156.0/22
IP: 2403:f6c0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8145 (0x1fd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 02:44:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6B88C727F3DDB5E6BE9E1D41D706BD705B62372A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e9:82:1a:3a:a8:5b:a7:43:23:7e:4a:f6:78:
85:26:d0:f0:50:42:67:d0:da:1a:36:e5:e1:2a:93:
ef:8e:07:c1:4e:f0:94:94:d1:d2:72:07:1b:f7:0e:
77:b3:ff:a8:7a:62:ce:56:d3:06:eb:1e:a9:a3:55:
3a:63:26:2f:34:ce:63:7b:50:e3:07:3b:5d:6a:2f:
a5:4a:1b:f0:a1:dc:c5:36:97:50:98:25:da:d2:a5:
97:d0:8d:8c:07:a5:88:fb:8d:29:5f:69:32:52:51:
d0:8e:bb:f0:aa:ac:c2:36:dd:3e:c3:f2:2b:60:24:
44:3a:fa:80:41:f7:31:28:32:c2:13:5e:f1:32:76:
12:6e:cc:e6:3c:06:3e:dc:fb:83:a6:7e:62:d6:d6:
e4:63:96:dc:d6:a8:d1:db:0c:6f:cd:46:4d:f8:f7:
66:d5:71:37:bd:96:91:b8:69:b8:0f:b6:9c:83:1a:
f3:2e:d0:23:96:24:c8:5f:41:56:aa:f5:7f:87:10:
50:27:ef:28:da:b6:cb:c7:05:09:bb:28:b1:51:44:
d0:ab:30:3d:6e:f1:5e:d6:3e:5b:de:46:ed:0f:3c:
fc:57:76:09:49:3d:36:e3:3d:e8:86:a7:0a:80:19:
bd:67:25:4a:50:24:8c:42:b0:b8:99:a8:e5:93:52:
44:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:88:C7:27:F3:DD:B5:E6:BE:9E:1D:41:D7:06:BD:70:5B:62:37:2A
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FGLIFE/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FGLIFE/a4jHJ_Pdtea-nh1B1wa9cFtiNyo.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.156.0/22
IPv6:
2403:f6c0::/32
Signature Algorithm: sha256WithRSAEncryption
74:af:bd:f6:39:09:35:a1:49:b8:52:b3:cc:9e:07:10:4d:c2:
21:4a:1d:ea:f1:2d:72:49:99:f7:b9:dd:7a:32:3e:7d:e0:27:
c4:06:e0:d0:f5:ba:62:96:c3:2e:d8:42:a9:c6:88:a7:85:f5:
f0:b5:1a:57:f3:43:79:3b:77:64:88:93:6c:48:7c:68:c1:6c:
ab:d2:a6:21:83:80:a3:0b:b1:4b:e2:15:2d:87:f3:2d:2a:33:
3f:c6:39:c4:b5:a7:11:6a:a7:c7:53:b0:43:71:f8:54:ee:d7:
82:7b:93:74:af:08:1b:00:ba:e0:29:a8:0f:b1:dc:d7:75:5e:
4a:a4:86:72:1e:4e:61:09:ba:08:e7:0a:ab:b6:b4:bf:bd:f0:
cb:88:58:db:bd:ac:42:cd:d9:a9:4f:47:bf:b6:94:5e:46:17:
e7:7b:a3:f1:dd:a3:ac:e8:bb:70:8c:1e:31:3f:17:74:7f:3c:
a0:da:00:77:86:3d:88:43:70:fa:43:bc:f0:39:0d:25:21:6b:
a4:fa:d1:d9:80:4b:75:ae:10:93:86:a7:b2:19:f7:e1:6d:60:
8a:5d:c8:63:09:ac:1c:fd:75:31:03:2e:6d:8a:44:95:69:73:
1a:60:38:c8:66:25:4c:d3:76:6e:31:bf:54:9c:01:3a:81:3c:
51:25:bc:eb
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgICH9EwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIxMDkyOTAyNDQ0MloXDTIyMDkyOTAyMzYyMlowMzEx
MC8GA1UEAxMoNkI4OEM3MjdGM0REQjVFNkJFOUUxRDQxRDcwNkJENzA1QjYyMzcy
QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALfpgho6qFunQyN+SvZ4
hSbQ8FBCZ9DaGjbl4SqT744HwU7wlJTR0nIHG/cOd7P/qHpizlbTBuseqaNVOmMm
LzTOY3tQ4wc7XWovpUob8KHcxTaXUJgl2tKll9CNjAeliPuNKV9pMlJR0I678Kqs
wjbdPsPyK2AkRDr6gEH3MSgywhNe8TJ2Em7M5jwGPtz7g6Z+YtbW5GOW3Nao0dsM
b81GTfj3ZtVxN72WkbhpuA+2nIMa8y7QI5YkyF9BVqr1f4cQUCfvKNq2y8cFCbso
sVFE0KswPW7xXtY+W95G7Q88/Fd2CUk9NuM96IanCoAZvWclSlAkjEKwuJmo5ZNS
RGUCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBRriMcn89215r6eHUHXBr1wW2I3KjAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF
hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkdMSUZFLzBX
BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0ZHTElGRS9hNGpISl9QZHRlYS1uaDFCMXdhOWNGdGlOeW8ubWZ0MDEGCCsGAQUF
BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG
AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ32cMA0EAgACMAcDBQAkA/bAMA0GCSqG
SIb3DQEBCwUAA4IBAQB0r732OQk1oUm4UrPMngcQTcIhSh3q8S1ySZn3ud16Mj59
4CfEBuDQ9bpilsMu2EKpxoinhfXwtRpX80N5O3dkiJNsSHxowWyr0qYhg4CjC7FL
4hUth/MtKjM/xjnEtacRaqfHU7BDcfhU7teCe5N0rwgbALrgKagPsdzXdV5KpIZy
Hk5hCboI5wqrtrS/vfDLiFjbvaxCzdmpT0e/tpReRhfne6Px3aOs6LtwjB4xPxd0
fzyg2gB3hj2IQ3D6Q7zwOQ0lIWuk+tHZgEt1rhCThqeyGffhbWCKXchjCawc/XUx
Ay5tikSVaXMaYDjIZiVM03ZuMb9UnAE6gTxRJbzr
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org