Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/b-yuhG9BvMOyThMnuiHCMFPhHAM.cer
File: b-yuhG9BvMOyThMnuiHCMFPhHAM.cer (raw, json)
Hash identifier: V4BBxCAIdgK8r6INC90qTnG4LaU6cJe/zYjhY7tFpPo=
Subject key identifier: 6F:EC:AE:84:6F:41:BC:C3:B2:4E:13:27:BA:21:C2:30:53:E1:1C:03
Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743
Certificate serial: 19BD
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKIS/b-yuhG9BvMOyThMnuiHCMFPhHAM.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKIS/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:26 +0000
Certificate not after: Fri 09 Jan 2026 15:30:29 +0000
Subordinate resources: IP: 161.248.132.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6589 (0x19bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000
Validity
Not Before: Feb 10 14:29:26 2025 GMT
Not After : Jan 9 15:30:29 2026 GMT
Subject: CN=6FECAE846F41BCC3B24E1327BA21C23053E11C03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d9:11:99:eb:b8:9c:02:de:0f:8e:b2:17:4a:
37:32:4e:91:04:37:71:44:93:c9:92:a6:01:01:07:
8a:38:41:e6:74:7b:a0:10:07:85:51:aa:45:24:47:
8e:a0:8d:6c:26:b2:fb:4c:f2:5f:3e:b4:ff:6c:35:
b5:12:86:32:d2:25:3e:21:06:a7:e6:09:11:84:2e:
53:47:93:c5:62:b7:b7:64:64:6a:5c:e0:01:0f:d8:
54:a4:72:80:4b:d5:17:f6:e7:0d:92:db:ea:4b:ba:
4f:9e:44:f6:e2:a5:ed:91:33:01:3b:a0:2d:d3:17:
48:c9:b4:1f:a4:35:a8:dd:7e:9e:39:4f:7f:b0:b2:
25:52:c8:19:67:05:31:4f:a7:09:e4:da:76:22:35:
11:f7:be:55:17:5b:e0:64:7a:fb:8f:fc:57:d6:86:
02:4d:93:68:b9:d2:85:66:6c:aa:68:57:6d:3f:2e:
bb:a2:41:06:5f:b4:4d:c8:1b:79:7e:05:8d:85:f7:
1c:5e:e1:08:e8:3b:4e:8b:c1:33:75:2e:c2:1f:3f:
ce:9c:8a:58:dd:27:bd:1c:52:85:a7:2b:bf:ff:ec:
6a:5d:e1:8a:8c:63:eb:de:55:b2:7b:6a:d0:45:ed:
d1:e5:c2:1e:fb:2b:c9:3a:90:41:5b:4b:75:55:62:
15:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EC:AE:84:6F:41:BC:C3:B2:4E:13:27:BA:21:C2:30:53:E1:1C:03
X509v3 Authority Key Identifier:
keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKIS/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKIS/b-yuhG9BvMOyThMnuiHCMFPhHAM.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.132.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:7f:cb:fa:b5:97:8a:37:4e:48:34:8e:d9:2d:e6:e2:17:5b:
34:4c:d4:f8:fd:74:77:80:c4:c2:bb:52:9e:90:8e:74:33:ba:
b0:8e:65:38:46:3d:48:6f:58:76:49:2b:6d:26:5d:2d:ee:66:
29:36:a8:f6:c0:ce:5d:d3:f9:1f:9d:27:4a:8a:32:a9:3d:d2:
8b:ad:f3:0d:c2:cc:bc:d0:b3:45:b2:05:fe:3a:8e:70:60:06:
4a:ba:26:e1:1a:a4:aa:8e:24:0c:33:ed:af:0c:a0:ee:06:62:
00:25:9e:66:97:5c:3d:e6:20:c0:23:ac:a3:53:45:31:01:1a:
7b:f7:9e:52:d5:ca:ba:f0:1d:be:c1:f6:d8:5f:0b:a3:55:43:
72:c8:ed:88:e0:a7:6d:99:b0:84:ec:f5:9f:a4:6a:18:ba:4f:
00:db:c4:eb:5c:21:be:ee:26:d2:b7:38:51:bf:d7:22:fd:29:
19:fa:70:c6:bd:cb:bc:9c:c4:1b:e1:21:e8:30:fd:26:d1:97:
d7:9b:f6:59:69:3b:89:15:8a:ab:48:aa:89:1e:89:60:39:d3:
4b:4c:9e:1e:98:3e:87:51:3a:17:5a:55:c1:ee:41:a8:29:c8:
39:f4:fe:07:f8:eb:12:8a:2e:f9:d0:81:0e:e4:e4:d1:99:44:
5a:cb:b2:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:38 2025 by rpki-client