Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/st59_iO5HROBJsm0Abge1CP09q8.cer
File: st59_iO5HROBJsm0Abge1CP09q8.cer (raw, json)
Hash identifier: YlsmS8hlJ2Oebv7CBv7EfQEzRztnWn7CSp5Nj9/IEh0=
Subject key identifier: B2:DE:7D:FE:23:B9:1D:13:81:26:C9:B4:01:B8:1E:D4:23:F4:F6:AF
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 18BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/JW72/st59_iO5HROBJsm0Abge1CP09q8.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/JW72/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:21 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.122.212.0/22
IP: 2403:9540::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6332 (0x18bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B2DE7DFE23B91D138126C9B401B81ED423F4F6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6f:ef:c8:cb:5c:b1:7a:ea:c2:44:8e:a5:8d:
09:98:6d:e9:63:ed:17:30:f4:ce:b4:f4:de:cb:d6:
98:9e:67:13:14:2b:8d:f0:27:24:bd:1c:f5:d6:19:
84:91:c9:83:68:23:47:18:b7:2c:47:e7:f9:8b:7a:
96:42:7d:af:a0:b0:7e:ec:58:23:74:38:d0:21:56:
cb:f6:0d:18:11:fc:14:10:29:7a:13:41:c6:35:3d:
71:4f:45:03:fb:0d:1b:92:a4:f7:f3:c7:6f:42:0e:
12:67:75:f5:dc:a6:1b:dd:2b:b3:bf:b6:5b:b4:83:
6b:02:c1:a8:71:57:50:8d:1f:1d:b2:07:89:16:82:
44:8a:9d:b7:58:8f:0c:e2:61:c6:ed:8d:73:0a:d6:
05:24:fb:3b:35:e0:12:b2:e8:ab:35:2f:76:69:41:
d8:9b:b0:01:ee:57:73:4e:22:83:d2:a2:25:49:a7:
61:27:f4:b9:1c:f2:dc:d1:d8:0e:a9:53:2d:5f:88:
c0:21:18:ac:26:37:35:ad:cf:f7:1f:db:80:d7:35:
4f:0b:d4:c6:6d:8e:97:f5:e7:cd:c7:60:f3:c6:b3:
b8:11:e0:cf:47:63:60:a8:17:f3:57:af:ba:79:b2:
57:98:10:ed:b7:0f:27:b0:2c:aa:bc:e1:17:de:52:
c7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DE:7D:FE:23:B9:1D:13:81:26:C9:B4:01:B8:1E:D4:23:F4:F6:AF
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JW72/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JW72/st59_iO5HROBJsm0Abge1CP09q8.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.212.0/22
IPv6:
2403:9540::/32
Signature Algorithm: sha256WithRSAEncryption
88:92:55:52:44:58:10:3b:08:29:5e:be:20:12:50:1a:66:d1:
c6:90:9d:91:aa:ae:b3:51:95:7d:ec:fc:cb:95:83:a4:ce:3b:
0f:63:a4:22:a2:de:1a:28:f7:f2:c0:39:9e:01:22:e4:20:f3:
02:fa:5c:bd:38:b6:00:49:19:d7:d2:31:2b:80:27:1c:15:d8:
46:76:ed:ca:e1:79:62:c5:be:5b:e4:8c:04:67:b7:70:a7:3d:
57:71:db:fa:86:54:73:02:05:69:da:7c:6d:1e:19:3c:ae:ce:
ac:8a:f5:bc:fd:fd:79:f4:48:a6:a2:30:cd:f8:70:c6:56:8e:
84:13:a7:81:b8:e6:11:ca:6b:c4:bf:37:1d:9c:bc:fa:1e:ef:
69:5e:5d:de:e1:3c:b5:fb:cd:fb:46:8b:7e:a1:2a:21:34:f7:
1e:70:60:f8:77:78:04:f3:f3:0f:7d:a8:fd:41:07:92:ac:4d:
85:a6:5a:25:8f:b8:bf:f5:ee:81:60:3c:67:0a:ea:56:a0:aa:
51:85:08:d2:c9:c4:d0:d1:74:52:8d:35:50:dc:88:1f:42:34:
7a:4a:1a:03:85:47:6c:47:de:97:35:71:5e:dd:58:36:c7:41:
f6:bd:57:6a:5d:26:e0:ea:9d:b1:4a:6a:d5:42:ec:b1:14:c7:
56:e2:2a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org