Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/dMDJeRe3KGTsKyPcp5omRApwZok.cer
File: dMDJeRe3KGTsKyPcp5omRApwZok.cer (raw, json)
Hash identifier: WWj+VYFxBaoUF/IowQ2zO0eaXCqSqQ5jpWp1krZ2Lbg=
Subject key identifier: 74:C0:C9:79:17:B7:28:64:EC:2B:23:DC:A7:9A:26:44:0A:70:66:89
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1846
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/OCTON/dMDJeRe3KGTsKyPcp5omRApwZok.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/OCTON/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:51:25 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.133.244.0/22
IP: 2404:56c0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6214 (0x1846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:51:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=74C0C97917B72864EC2B23DCA79A26440A706689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a9:4c:75:ae:02:cd:1d:92:5a:3c:c7:e3:36:
48:3f:14:df:12:95:c9:43:97:98:1b:0a:ab:35:3d:
10:09:8b:c1:d3:e0:74:e5:c7:e6:52:52:12:1d:7d:
45:96:e0:b1:96:c5:7e:10:97:97:47:f6:28:42:d6:
6d:31:92:7d:f2:23:eb:74:b3:e2:a6:5a:1e:e4:05:
5b:25:49:11:1e:aa:1e:56:be:52:0d:cb:bb:8b:00:
f7:c1:f0:e9:2f:c8:8b:06:c2:6e:2f:70:ae:94:b3:
6a:fb:72:06:c5:8c:eb:bb:9f:23:52:1d:aa:d4:2e:
82:05:55:c6:99:61:24:96:b2:2b:bc:f6:5c:d0:e9:
e0:0e:64:46:fa:ec:92:aa:d8:e3:71:33:5c:85:87:
c7:9a:0f:be:72:ca:82:2d:80:a0:f1:18:27:76:fa:
a2:06:92:54:84:00:64:ad:61:7c:ff:59:25:45:30:
97:27:3c:90:2e:e3:ba:9e:6b:d0:d4:46:a5:07:e9:
a6:48:25:72:94:ed:3b:db:ea:61:da:b3:a6:71:51:
48:ef:17:5a:74:2d:82:cb:d8:ee:90:45:95:9b:68:
3f:8b:8b:2d:73:9f:78:e3:8d:b9:e0:e9:a0:ae:26:
a0:ad:59:2f:29:f2:c2:73:c3:6e:b0:ae:69:6f:30:
e1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C0:C9:79:17:B7:28:64:EC:2B:23:DC:A7:9A:26:44:0A:70:66:89
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OCTON/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OCTON/dMDJeRe3KGTsKyPcp5omRApwZok.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.244.0/22
IPv6:
2404:56c0::/32
Signature Algorithm: sha256WithRSAEncryption
64:d2:3d:06:f8:6f:c7:69:1e:99:cf:a9:ef:17:39:35:c7:f3:
83:80:6d:9f:a1:87:e0:a9:87:5e:c0:cb:f8:3a:cc:fe:75:08:
b9:10:f9:b4:b8:d2:4a:65:14:09:99:07:d9:55:de:38:03:a1:
1e:77:65:6f:4f:97:9c:3b:a3:65:23:10:be:d6:5e:96:1e:d5:
e9:30:97:f1:ee:91:ac:8e:90:5c:90:d1:28:6c:4a:c8:2a:d1:
52:8d:e0:40:9e:08:12:bd:75:58:03:02:d2:34:44:72:39:ce:
de:04:81:8e:a4:87:2c:59:b4:5f:11:ef:e6:f0:13:ce:cc:b3:
5e:fd:75:7e:59:23:1b:4f:20:41:c3:67:97:41:40:04:ee:31:
a1:f3:ba:45:a8:48:47:02:fb:4c:3a:85:49:a3:65:e2:02:16:
62:8a:99:bf:98:1d:ab:e7:df:ab:75:78:07:54:3b:5a:67:95:
db:50:bd:fa:68:0a:ee:ee:c9:91:f1:14:06:78:f3:8b:aa:c9:
a0:82:7b:ba:fe:66:d2:39:7e:00:91:78:24:32:61:a1:eb:9c:
aa:83:b1:74:ab:82:a3:76:28:ba:0b:ee:e1:93:3b:86:bd:ea:
6b:89:d5:49:43:f0:c9:d5:b9:7f:3f:20:c1:df:f8:a5:4b:dc:
95:a4:cc:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org