Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
File: aXl73o0FgfopnY4UIO0pV8Qgigc.cer (raw, json)
Hash identifier: DE2q35bFfzcDmf1WAf8zMHNWT0F+NJXWjLOpxnSukxU=
Subject key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2E19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 26 Aug 2024 01:57:23 +0000
Certificate not after: Tue 26 Aug 2025 01:57:03 +0000
Subordinate resources: AS: 17710
IP: 61.57.224.0/20
IP: 103.234.80.0/22
IP: 150.107.64.0/22
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 22 Nov 2024 11:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11801 (0x2e19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 26 01:57:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:0a:88:24:71:1d:3a:1a:2d:06:48:23:23:
0d:4b:ed:58:51:1c:ba:9c:93:a6:64:b7:ab:47:10:
44:9e:3b:31:08:d5:3d:80:e6:be:f6:79:41:a6:a4:
07:8d:dd:6b:f0:85:a4:5a:14:d3:95:e4:e3:cb:30:
01:c0:f8:61:1f:a4:c1:8b:47:7c:8c:7d:f1:46:a9:
fa:12:63:cd:8b:60:58:ea:ee:9a:e9:4e:c4:1c:67:
87:75:fb:c3:b9:c9:78:ff:1c:f7:9a:73:fd:16:88:
14:c0:0f:d1:b8:70:d9:17:76:60:f3:2f:0f:7d:44:
61:45:cd:d3:a8:4b:1f:3a:cb:b7:4d:54:ae:0e:95:
ea:38:be:1a:86:ba:22:32:41:a5:b7:01:5c:db:62:
9e:7a:71:72:32:83:57:b9:84:44:85:32:45:87:fd:
ab:d5:6b:45:36:f5:19:d1:d6:71:d9:4a:f4:7d:67:
8a:4c:f3:08:6c:a1:e7:e2:61:94:87:46:ba:9a:5c:
bc:93:62:24:13:5a:34:44:1e:88:74:80:d1:35:77:
ea:b1:b4:0c:a7:9a:9d:4f:b7:fe:1e:f2:a9:be:85:
d1:98:51:e3:c1:d7:ba:8d:8b:7a:24:ea:b8:f5:5d:
b0:0e:f6:1e:c2:d4:40:19:0a:03:0e:c7:65:45:b6:
e5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17710
sbgp-ipAddrBlock: critical
IPv4:
61.57.224.0/20
103.234.80.0/22
150.107.64.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:60:99:2d:9e:0c:9f:fd:62:e4:e2:46:2f:88:1a:20:51:cc:
9c:f2:70:0f:55:42:1d:18:d2:83:2a:3b:05:10:9b:fd:29:a1:
4c:61:9c:88:6c:a7:7e:d7:84:68:b5:74:32:c8:5d:48:d3:49:
18:7e:c0:37:38:33:ef:76:d1:ba:32:39:59:f9:6e:19:41:19:
fb:56:c9:e1:b5:7c:8d:db:ed:ff:e5:9d:0e:b5:22:e3:bb:56:
c9:74:80:fb:0f:fc:da:09:ab:21:3b:48:1d:d8:c5:52:73:f1:
f0:46:0d:ef:1d:7f:c4:84:69:15:01:e9:8a:08:c8:80:13:ae:
5d:27:2c:6d:a9:73:f1:81:5c:68:a7:71:c4:7e:a3:f4:d9:26:
76:a3:09:fb:45:b4:59:5f:71:78:52:4a:ce:b1:f9:43:34:18:
fd:cf:68:c0:a6:18:c4:73:32:08:8b:bf:69:9d:23:50:ef:d1:
85:04:77:a2:f4:37:bf:f3:35:22:12:b7:e6:cd:c9:66:d6:3f:
ff:14:fc:fe:63:72:49:ef:ba:cb:cf:9a:03:ee:74:6f:6f:e5:
a1:a1:d3:6d:b8:24:d5:0b:d0:73:ec:2d:d2:14:0a:10:6a:ae:
44:86:69:66:9b:e2:ab:85:63:3b:b3:86:40:e9:6f:bd:4c:4d:
c8:8a:30:cb
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgICLhkwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTcyM1oXDTI1MDgyNjAxNTcwM1owMzEx
MC8GA1UEAxMoNjk3OTdCREU4RDA1ODFGQTI5OUQ4RTE0MjBFRDI5NTdDNDIwOEEw
NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK+CogkcR06Gi0GSCMj
DUvtWFEcupyTpmS3q0cQRJ47MQjVPYDmvvZ5QaakB43da/CFpFoU05Xk48swAcD4
YR+kwYtHfIx98Uap+hJjzYtgWOrumulOxBxnh3X7w7nJeP8c95pz/RaIFMAP0bhw
2Rd2YPMvD31EYUXN06hLHzrLt01Urg6V6ji+Goa6IjJBpbcBXNtinnpxcjKDV7mE
RIUyRYf9q9VrRTb1GdHWcdlK9H1nikzzCGyh5+JhlIdGuppcvJNiJBNaNEQeiHSA
0TV36rG0DKeanU+3/h7yqb6F0ZhR48HXuo2LeiTquPVdsA72HsLUQBkKAw7HZUW2
5WsCAwEAAaOCAncwggJzMB0GA1UdDgQWBBRpeXvejQWB+imdjhQg7SlXxCCKBzAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF
hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVULzBX
BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1BJSU5FVC9hWGw3M28wRmdmb3BuWTRVSU8wcFY4UWdpZ2MubWZ0MDEGCCsGAQUF
BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBkGCCsG
AQUFBwEIAQH/BAowCKAGMAQCAkUuMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATAS
AwQEPTngAwQCZ+pQAwQClmtAMA0GCSqGSIb3DQEBCwUAA4IBAQCKYJktngyf/WLk
4kYviBogUcyc8nAPVUIdGNKDKjsFEJv9KaFMYZyIbKd+14RotXQyyF1I00kYfsA3
ODPvdtG6MjlZ+W4ZQRn7VsnhtXyN2+3/5Z0OtSLju1bJdID7D/zaCashO0gd2MVS
c/HwRg3vHX/EhGkVAemKCMiAE65dJyxtqXPxgVxop3HEfqP02SZ2own7RbRZX3F4
UkrOsflDNBj9z2jAphjEczIIi79pnSNQ79GFBHei9De/8zUiErfmzclm1j//FPz+
Y3JJ77rLz5oD7nRvb+WhodNtuCTVC9Bz7C3SFAoQaq5Ehmlmm+KrhWM7s4ZA6W+9
TE3IijDL
-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:43 2024 by rpki-client on console-fra.rpki-client.org