Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/aGGW3gPV2jAP80-5M56yqPE90pc.cer
File: aGGW3gPV2jAP80-5M56yqPE90pc.cer (raw, json)
Hash identifier: bmb8EVmuDxMo/w0QvksnrjDoWy1NfwiD7VKFz5hHmrQ=
Subject key identifier: 68:61:96:DE:03:D5:DA:30:0F:F3:4F:B9:33:9E:B2:A8:F1:3D:D2:97
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 290A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/aGGW3gPV2jAP80-5M56yqPE90pc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 01 Sep 2023 03:11:28 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 131605
IP: 103.222.248.0/22
IP: 2401:85c0::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 May 2024 07:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10506 (0x290a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 1 03:11:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=686196DE03D5DA300FF34FB9339EB2A8F13DD297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dc:33:32:65:7f:cb:d2:6c:37:91:80:46:e4:
3f:7e:1f:89:d6:c0:26:a4:ad:c7:86:84:45:e6:b2:
eb:6d:96:49:66:f9:f2:85:89:2f:0e:14:80:ef:25:
04:1f:23:c0:52:31:bc:f4:22:ff:20:e5:17:9c:eb:
31:e8:f6:37:80:c6:67:db:1b:f5:1f:2c:54:c1:9b:
77:b2:59:c8:1d:1d:42:f4:f0:6e:af:d3:92:24:bf:
b9:b3:71:19:2f:95:a8:4c:df:7f:f7:df:0a:2d:2f:
43:70:0c:31:ac:27:61:d0:4c:89:f4:9b:67:cc:ca:
41:02:62:43:63:d4:5b:9a:61:29:2c:73:29:51:de:
30:d6:85:8f:b6:8e:e2:35:ea:63:03:72:6d:73:3e:
75:e0:bf:a9:b9:79:de:7b:c0:d2:8d:3b:b0:53:c7:
83:c1:d9:2c:5a:39:be:97:3f:ca:ca:45:b4:65:07:
06:45:e1:9f:fe:a4:2e:c4:71:c5:33:d1:5e:f9:8d:
bc:0e:72:35:67:42:17:ea:78:e8:e4:6b:92:33:3e:
ab:20:c2:82:1d:b9:c1:fa:2e:bf:ce:0d:d2:40:98:
a6:b6:61:0d:ae:21:20:0b:8b:90:54:02:8c:d6:d2:
30:83:a7:db:30:d9:b7:86:80:e4:2e:38:f7:91:a7:
2b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:61:96:DE:03:D5:DA:30:0F:F3:4F:B9:33:9E:B2:A8:F1:3D:D2:97
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/aGGW3gPV2jAP80-5M56yqPE90pc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131605
sbgp-ipAddrBlock: critical
IPv4:
103.222.248.0/22
IPv6:
2401:85c0::/32
Signature Algorithm: sha256WithRSAEncryption
16:b8:59:46:fa:4e:a4:96:95:42:69:8c:04:ce:d5:36:ae:e9:
91:1f:13:a4:06:11:de:85:78:df:98:42:3c:1a:ef:49:84:d7:
f4:01:6f:53:35:4b:aa:c9:e8:ad:32:87:f8:4d:98:e3:c4:7e:
65:a1:40:75:31:22:25:1a:ac:2f:d2:57:b2:6b:d7:93:81:9e:
e1:ee:23:31:00:6f:4a:a4:fd:f1:4f:48:ca:c5:13:8d:04:f5:
ca:7a:47:a7:0f:78:47:96:7e:dd:30:a5:a8:86:35:ac:3d:9c:
0d:05:24:01:6d:dc:c7:b5:5e:30:da:4f:bf:94:13:0e:e1:41:
bd:46:4e:4d:c9:46:49:70:61:62:bf:c2:29:2a:31:5f:59:55:
bb:b7:22:28:07:ad:41:8e:9d:df:28:94:66:fb:f7:36:66:f6:
05:38:85:db:56:92:79:f5:59:be:41:cf:f9:54:e4:b9:32:f7:
92:56:20:e1:23:80:c4:e7:85:63:7a:ab:c5:3a:f3:22:93:3c:
0a:77:0f:6c:c8:9d:cd:d5:64:97:4a:d9:ef:e4:70:28:83:1a:
90:e9:55:e1:bd:02:57:8d:39:0d:3d:0f:1a:c1:b4:0c:84:a0:
8b:e4:f6:e1:80:07:e3:f2:fe:30:b6:39:a1:7f:ae:bf:c6:25:
43:b2:b2:7b
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgICKQowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEyOFoXDTI0MDgzMTAzMTA1M1owMzEx
MC8GA1UEAxMoNjg2MTk2REUwM0Q1REEzMDBGRjM0RkI5MzM5RUIyQThGMTNERDI5
NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTcMzJlf8vSbDeRgEbk
P34fidbAJqStx4aEReay622WSWb58oWJLw4UgO8lBB8jwFIxvPQi/yDlF5zrMej2
N4DGZ9sb9R8sVMGbd7JZyB0dQvTwbq/TkiS/ubNxGS+VqEzff/ffCi0vQ3AMMawn
YdBMifSbZ8zKQQJiQ2PUW5phKSxzKVHeMNaFj7aO4jXqYwNybXM+deC/qbl53nvA
0o07sFPHg8HZLFo5vpc/yspFtGUHBkXhn/6kLsRxxTPRXvmNvA5yNWdCF+p46ORr
kjM+qyDCgh25wfouv84N0kCYprZhDa4hIAuLkFQCjNbSMIOn2zDZt4aA5C4495Gn
K2cCAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBRoYZbeA9XaMA/zT7kznrKo8T3SlzAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF
hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFJDTE9VRC8w
WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9EUkNMT1VEL2FHR1czZ1BWMmpBUDgwLTVNNTZ5cVBFOTBwYy5tZnQwMQYIKwYB
BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGgYI
KwYBBQUHAQgBAf8ECzAJoAcwBQIDAgIVMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA
ATAGAwQCZ974MA0EAgACMAcDBQAkAYXAMA0GCSqGSIb3DQEBCwUAA4IBAQAWuFlG
+k6klpVCaYwEztU2rumRHxOkBhHehXjfmEI8Gu9JhNf0AW9TNUuqyeitMof4TZjj
xH5loUB1MSIlGqwv0leya9eTgZ7h7iMxAG9KpP3xT0jKxRONBPXKekenD3hHln7d
MKWohjWsPZwNBSQBbdzHtV4w2k+/lBMO4UG9Rk5NyUZJcGFiv8IpKjFfWVW7tyIo
B61Bjp3fKJRm+/c2ZvYFOIXbVpJ59Vm+Qc/5VOS5MveSViDhI4DE54VjeqvFOvMi
kzwKdw9syJ3N1WSXStnv5HAogxqQ6VXhvQJXjTkNPQ8awbQMhKCL5PbhgAfj8v4w
tjmhf66/xiVDsrJ7
-----END CERTIFICATE-----
Generated at Tue May 21 08:01:41 2024 by rpki-client on console-fra.rpki-client.org