Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/j1deHk9wQf8dJLEOoj9yesE6DXc.cer
File: j1deHk9wQf8dJLEOoj9yesE6DXc.cer (raw, json)
Hash identifier: 0nuaZbyWxCv53h+aDW1ymhVm0U6xhf+KurE2TzzIMtY=
Subject key identifier: 8F:57:5E:1E:4F:70:41:FF:1D:24:B1:0E:A2:3F:72:7A:C1:3A:0D:77
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 1870
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/GREENISLAND/j1deHk9wQf8dJLEOoj9yesE6DXc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/GREENISLAND/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:00 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.137.98.0/23
IP: 2404:aec0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6256 (0x1870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F575E1E4F7041FF1D24B10EA23F727AC13A0D77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:18:75:99:c4:e1:bb:af:4b:80:ce:36:0c:
c7:c0:21:ed:69:9c:88:67:cb:cf:cd:6c:d9:5c:12:
de:26:f0:47:a4:ff:06:c2:09:49:60:41:20:a8:4a:
e2:ef:8d:ad:86:50:d1:8d:97:28:62:e4:5e:9d:3a:
b6:61:b6:c0:0e:ea:e1:e7:3c:c3:cc:0d:a1:dd:64:
c9:1e:d3:e1:26:a5:db:d6:6f:ad:8b:ff:3f:35:ad:
d2:d5:09:10:4c:2b:e1:b0:da:5e:a7:7a:c6:be:68:
33:f5:6e:ee:e8:15:b6:c6:43:85:61:25:01:ac:bb:
be:d7:a5:f5:af:28:d8:ca:9c:27:47:bc:d8:90:06:
15:14:14:3e:da:dc:e3:3d:9a:f4:32:11:ab:0d:10:
30:aa:5e:8f:6a:14:75:3f:75:86:44:51:95:95:f9:
2f:13:74:db:d1:1a:0f:93:50:f4:f9:5d:b6:8e:60:
55:4a:07:06:f6:5d:bd:39:44:7e:f4:6b:0e:fe:92:
56:ea:b4:38:b6:e2:15:45:f7:66:fd:95:23:25:3d:
e2:3f:1a:e5:8d:39:33:56:f9:ce:51:49:08:03:30:
e3:46:dd:c7:d3:41:d3:f9:60:83:f0:be:d6:d4:81:
d2:91:a0:4e:03:ff:9a:c3:af:2d:d7:7a:b6:e6:8d:
ba:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:57:5E:1E:4F:70:41:FF:1D:24:B1:0E:A2:3F:72:7A:C1:3A:0D:77
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GREENISLAND/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GREENISLAND/j1deHk9wQf8dJLEOoj9yesE6DXc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.98.0/23
IPv6:
2404:aec0::/32
Signature Algorithm: sha256WithRSAEncryption
3d:a4:fc:b9:13:e8:10:ab:e0:a5:dc:24:6c:54:6a:08:53:d6:
02:e3:25:87:f4:78:a0:03:44:08:e3:e7:79:8b:7f:57:ed:19:
b0:bc:90:29:58:6c:56:0e:7e:48:9d:32:a8:3d:f5:c5:53:b0:
f0:b8:98:82:5c:c4:3d:27:a8:9a:a7:c9:5f:c7:a3:5f:c8:97:
d9:23:33:5f:51:fd:6d:02:05:2b:a4:c9:94:bf:4f:23:57:67:
dd:6b:70:80:6f:7c:df:51:65:6a:06:9e:63:9c:31:77:9b:51:
70:42:e4:db:77:0c:57:7c:ff:48:a4:0e:45:a5:92:52:d2:46:
b3:24:a6:52:43:1a:81:a2:d4:1e:0d:7d:ee:4d:f2:bc:65:c4:
53:75:8b:74:fc:09:f8:9e:e2:bd:65:5a:eb:42:85:14:1f:3d:
fb:b9:3b:8f:eb:ca:d8:27:78:a4:8c:da:c1:3a:f4:48:0c:11:
03:5f:6b:8a:59:6a:90:85:43:a2:d8:78:66:ef:c5:69:37:d7:
fe:de:31:1c:eb:60:1c:7a:15:1d:f8:dc:44:74:cd:56:65:a2:
dc:3f:1b:54:46:da:26:f0:92:8d:65:df:f2:df:89:31:4b:ff:
a5:96:38:06:cd:9f:e6:67:e6:50:12:7d:ce:05:28:fd:bd:60:
31:d9:02:bd
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgICGHAwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIwMDkyOTA5NTMwMFoXDTIxMDkyOTA5NTEyM1owMzEx
MC8GA1UEAxMoOEY1NzVFMUU0RjcwNDFGRjFEMjRCMTBFQTIzRjcyN0FDMTNBMEQ3
NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK8cGHWZxOG7r0uAzjYM
x8Ah7WmciGfLz81s2VwS3ibwR6T/BsIJSWBBIKhK4u+NrYZQ0Y2XKGLkXp06tmG2
wA7q4ec8w8wNod1kyR7T4Sal29ZvrYv/PzWt0tUJEEwr4bDaXqd6xr5oM/Vu7ugV
tsZDhWElAay7vtel9a8o2MqcJ0e82JAGFRQUPtrc4z2a9DIRqw0QMKpej2oUdT91
hkRRlZX5LxN029EaD5NQ9Pldto5gVUoHBvZdvTlEfvRrDv6SVuq0OLbiFUX3Zv2V
IyU94j8a5Y05M1b5zlFJCAMw40bdx9NB0/lgg/C+1tSB0pGgTgP/msOvLdd6tuaN
ulUCAwEAAaOCAmkwggJlMB0GA1UdDgQWBBSPV14eT3BB/x0ksQ6iP3J6wToNdzAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgeAGCCsGAQUFBwELBIHTMIHQMD0GCCsGAQUFBzAF
hjFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1JFRU5JU0xB
TkQvMFwGCCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvR1JFRU5JU0xBTkQvajFkZUhrOXdRZjhkSkxFT29qOXllc0U2RFhjLm1m
dDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5
LnhtbDAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAWeJYjANBAIAAjAHAwUA
JASuwDANBgkqhkiG9w0BAQsFAAOCAQEAPaT8uRPoEKvgpdwkbFRqCFPWAuMlh/R4
oANECOPneYt/V+0ZsLyQKVhsVg5+SJ0yqD31xVOw8LiYglzEPSeomqfJX8ejX8iX
2SMzX1H9bQIFK6TJlL9PI1dn3WtwgG9831FlagaeY5wxd5tRcELk23cMV3z/SKQO
RaWSUtJGsySmUkMagaLUHg197k3yvGXEU3WLdPwJ+J7ivWVa60KFFB89+7k7j+vK
2Cd4pIzawTr0SAwRA19rillqkIVDoth4Zu/FaTfX/t4xHOtgHHoVHfjcRHTNVmWi
3D8bVEbaJvCSjWXf8t+JMUv/pZY4Bs2f5mfmUBJ9zgUo/b1gMdkCvQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org