Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
File: aXl73o0FgfopnY4UIO0pV8Qgigc.cer (raw, json)
Hash identifier: wkH8vraq3Ur/ZLVFlNgyypZSrS/yNEIvDl8+fsduCF4=
Subject key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2954
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 01 Sep 2023 03:11:32 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 17710
IP: 61.57.224.0/20
IP: 103.234.80.0/22
IP: 150.107.64.0/22
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 May 2024 07:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10580 (0x2954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 1 03:11:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:0a:88:24:71:1d:3a:1a:2d:06:48:23:23:
0d:4b:ed:58:51:1c:ba:9c:93:a6:64:b7:ab:47:10:
44:9e:3b:31:08:d5:3d:80:e6:be:f6:79:41:a6:a4:
07:8d:dd:6b:f0:85:a4:5a:14:d3:95:e4:e3:cb:30:
01:c0:f8:61:1f:a4:c1:8b:47:7c:8c:7d:f1:46:a9:
fa:12:63:cd:8b:60:58:ea:ee:9a:e9:4e:c4:1c:67:
87:75:fb:c3:b9:c9:78:ff:1c:f7:9a:73:fd:16:88:
14:c0:0f:d1:b8:70:d9:17:76:60:f3:2f:0f:7d:44:
61:45:cd:d3:a8:4b:1f:3a:cb:b7:4d:54:ae:0e:95:
ea:38:be:1a:86:ba:22:32:41:a5:b7:01:5c:db:62:
9e:7a:71:72:32:83:57:b9:84:44:85:32:45:87:fd:
ab:d5:6b:45:36:f5:19:d1:d6:71:d9:4a:f4:7d:67:
8a:4c:f3:08:6c:a1:e7:e2:61:94:87:46:ba:9a:5c:
bc:93:62:24:13:5a:34:44:1e:88:74:80:d1:35:77:
ea:b1:b4:0c:a7:9a:9d:4f:b7:fe:1e:f2:a9:be:85:
d1:98:51:e3:c1:d7:ba:8d:8b:7a:24:ea:b8:f5:5d:
b0:0e:f6:1e:c2:d4:40:19:0a:03:0e:c7:65:45:b6:
e5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17710
sbgp-ipAddrBlock: critical
IPv4:
61.57.224.0/20
103.234.80.0/22
150.107.64.0/22
Signature Algorithm: sha256WithRSAEncryption
97:40:e1:13:ab:07:78:bf:69:a5:43:e2:c2:16:0b:72:f0:1e:
26:f9:b5:18:96:e7:40:5a:04:7a:b6:bb:bd:13:6b:43:a2:9d:
7a:2d:8a:3c:0a:ff:c4:34:d6:12:1f:4e:eb:34:90:a6:76:9c:
3b:b4:69:02:6b:8d:42:01:7c:a2:51:78:e8:62:eb:fe:17:10:
51:19:45:1c:92:c4:ba:e6:a3:f6:c4:70:38:73:8d:b9:e8:12:
4e:83:3e:6a:70:4b:d2:30:2d:d0:1f:59:0b:b6:37:f2:d9:32:
eb:40:e9:25:b2:03:2d:fa:89:f9:15:8e:e9:ee:f9:e6:79:31:
34:1c:1a:89:cd:ef:ae:66:1f:af:b8:b7:87:2c:b0:c9:8d:21:
51:52:cf:f1:d9:20:0e:96:47:dc:62:74:16:d6:75:af:02:e2:
36:8f:31:bd:ec:ea:4b:36:71:ad:1e:36:7b:b3:09:8a:1a:40:
d3:5e:51:78:ba:71:47:dd:f3:9e:3a:28:ee:1a:63:a1:21:16:
4e:e1:e9:19:32:65:5d:48:40:17:9a:da:6f:ad:1a:58:da:d7:
65:4d:2f:1e:2b:02:4c:d2:b6:f8:40:d3:49:58:62:00:57:12:
e1:e4:99:9d:80:ed:52:bb:1c:c6:f6:c1:c5:cc:2b:a4:ca:2e:
6f:14:6a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 08:01:41 2024 by rpki-client on console-fra.rpki-client.org