Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/aGGW3gPV2jAP80-5M56yqPE90pc.cer
File: aGGW3gPV2jAP80-5M56yqPE90pc.cer (raw, json)
Hash identifier: sYwINpiMlE20tZc0zcsIfWDA7K7qCmd75ISOBIN2FuY=
Subject key identifier: 68:61:96:DE:03:D5:DA:30:0F:F3:4F:B9:33:9E:B2:A8:F1:3D:D2:97
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2EA7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/aGGW3gPV2jAP80-5M56yqPE90pc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 26 Aug 2024 01:57:30 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 131605
IP: 103.222.248.0/22
IP: 2401:85c0::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 11:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11943 (0x2ea7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 26 01:57:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=686196DE03D5DA300FF34FB9339EB2A8F13DD297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dc:33:32:65:7f:cb:d2:6c:37:91:80:46:e4:
3f:7e:1f:89:d6:c0:26:a4:ad:c7:86:84:45:e6:b2:
eb:6d:96:49:66:f9:f2:85:89:2f:0e:14:80:ef:25:
04:1f:23:c0:52:31:bc:f4:22:ff:20:e5:17:9c:eb:
31:e8:f6:37:80:c6:67:db:1b:f5:1f:2c:54:c1:9b:
77:b2:59:c8:1d:1d:42:f4:f0:6e:af:d3:92:24:bf:
b9:b3:71:19:2f:95:a8:4c:df:7f:f7:df:0a:2d:2f:
43:70:0c:31:ac:27:61:d0:4c:89:f4:9b:67:cc:ca:
41:02:62:43:63:d4:5b:9a:61:29:2c:73:29:51:de:
30:d6:85:8f:b6:8e:e2:35:ea:63:03:72:6d:73:3e:
75:e0:bf:a9:b9:79:de:7b:c0:d2:8d:3b:b0:53:c7:
83:c1:d9:2c:5a:39:be:97:3f:ca:ca:45:b4:65:07:
06:45:e1:9f:fe:a4:2e:c4:71:c5:33:d1:5e:f9:8d:
bc:0e:72:35:67:42:17:ea:78:e8:e4:6b:92:33:3e:
ab:20:c2:82:1d:b9:c1:fa:2e:bf:ce:0d:d2:40:98:
a6:b6:61:0d:ae:21:20:0b:8b:90:54:02:8c:d6:d2:
30:83:a7:db:30:d9:b7:86:80:e4:2e:38:f7:91:a7:
2b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:61:96:DE:03:D5:DA:30:0F:F3:4F:B9:33:9E:B2:A8:F1:3D:D2:97
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DRCLOUD/aGGW3gPV2jAP80-5M56yqPE90pc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131605
sbgp-ipAddrBlock: critical
IPv4:
103.222.248.0/22
IPv6:
2401:85c0::/32
Signature Algorithm: sha256WithRSAEncryption
16:80:73:3c:ec:a8:5f:55:46:44:20:d4:25:c9:fe:71:89:73:
db:3f:42:f2:32:46:c4:72:91:6d:ad:6f:57:5c:c2:b5:7b:32:
52:f5:4e:34:25:ea:b8:d3:ac:85:3b:c4:bb:84:ff:40:18:2a:
95:54:e7:df:4d:bf:c6:63:29:84:b9:44:2a:e8:33:f6:b1:23:
ad:ab:7d:55:02:16:98:f4:32:b8:16:b3:3d:6a:c5:b0:7e:b7:
fb:32:02:81:97:65:9e:55:2e:71:fa:77:76:1e:8d:b8:10:e7:
f9:68:b0:01:3d:c6:2c:62:d0:40:78:af:f2:b1:8c:c3:2e:6a:
f0:6c:4e:8f:29:60:4a:0a:8d:e0:05:8f:7d:3d:18:cd:51:49:
b3:7c:46:51:b7:7f:b0:a1:7a:0f:20:9b:f9:a7:45:71:09:06:
0f:b5:5d:81:ea:f4:2d:15:98:e5:0e:d5:e6:df:a8:c2:30:3f:
69:cf:41:7c:ac:40:9d:22:b2:d9:60:b1:3d:2e:25:1d:fb:45:
ca:25:ae:8a:32:c8:44:47:91:c0:c8:fa:4a:66:5b:c3:0d:31:
f8:40:67:b9:92:80:28:fd:a1:29:1d:6c:7e:b7:f2:ce:27:f4:
cf:ba:ec:30:e3:f8:c5:f2:29:8e:30:b3:e7:c9:5c:af:18:db:
8c:b8:d4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:49 2024 by rpki-client on console-ams.rpki-client.org