Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/svKqlx-Ozr_D4hA6H-YkAeHBmxU.cer
File: svKqlx-Ozr_D4hA6H-YkAeHBmxU.cer (raw, json)
Hash identifier: fq3PLWeZKthqFkCm76Z0jYMiPNGSpuxr0X8JGjc62E4=
Subject key identifier: B2:F2:AA:97:1F:8E:CE:BF:C3:E2:10:3A:1F:E6:24:01:E1:C1:9B:15
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 186C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUTC/svKqlx-Ozr_D4hA6H-YkAeHBmxU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUTC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:52:57 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.131.248.0/22
IP: 2403:d540::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6252 (0x186c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:52:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B2F2AA971F8ECEBFC3E2103A1FE62401E1C19B15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:76:59:30:44:62:e9:c7:fb:8a:18:40:be:15:
1d:1a:0a:d5:7a:94:af:df:8b:5e:57:fe:64:9a:dd:
6d:92:b5:c8:76:14:c9:93:73:5a:14:04:bc:20:b3:
0b:72:bd:98:3b:09:b6:a6:ed:08:a9:d2:d6:7e:a9:
18:12:8f:d3:ac:f3:3a:26:f5:3f:ed:56:fd:72:03:
8c:e4:a2:98:6a:16:34:49:f9:d3:02:3b:79:bd:72:
99:63:80:e7:81:b8:9b:32:7f:ed:fa:13:11:b9:62:
50:b5:43:1f:3e:5d:62:6b:a6:e2:63:9b:79:a1:09:
de:01:5a:a8:94:16:31:78:8d:c7:73:45:3e:fe:34:
85:51:a0:de:73:4a:5b:27:53:94:8f:74:6e:f5:6f:
63:b2:51:07:79:10:41:6f:c8:68:39:ad:99:5b:99:
20:dc:03:5f:2d:9d:0d:58:55:c4:a7:96:44:bf:61:
a3:3f:e3:37:18:5b:7f:3d:55:9b:dc:51:5f:e7:a6:
00:a7:5a:73:64:9d:73:c4:c9:44:a6:1e:5b:f5:e8:
83:cc:8c:dd:a5:a1:ea:2c:e7:3f:56:b0:b2:5b:dd:
20:e1:ac:a0:2b:f4:74:4c:5b:e3:13:fd:76:6f:f2:
07:df:d8:ec:3e:45:9b:4a:8c:44:1b:23:70:68:4a:
9d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F2:AA:97:1F:8E:CE:BF:C3:E2:10:3A:1F:E6:24:01:E1:C1:9B:15
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUTC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUTC/svKqlx-Ozr_D4hA6H-YkAeHBmxU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.248.0/22
IPv6:
2403:d540::/32
Signature Algorithm: sha256WithRSAEncryption
3b:8b:a5:16:78:31:99:59:29:e1:30:98:fe:c1:0a:47:cc:a2:
33:82:5a:8b:f9:0c:a9:1d:cd:57:a1:a7:07:7a:c8:1a:f7:48:
a8:be:fc:22:c0:a3:0a:04:06:b8:72:b2:bb:0a:82:4d:36:b3:
5a:60:27:81:43:c5:dc:d1:83:f8:d6:70:6a:6d:ba:e1:7c:c1:
7b:3d:49:46:6d:fc:ec:35:56:a7:13:73:f5:ef:3a:59:a0:44:
56:8b:29:3b:e9:f9:ca:56:3d:db:c3:b3:0f:05:2f:e3:23:ef:
e6:75:7a:e0:b0:ca:f9:b5:1f:ab:f7:bd:5d:13:52:06:27:0a:
f7:49:20:31:ab:9f:b6:49:2b:6e:66:6e:0f:90:77:be:88:fc:
e2:3d:15:8c:e2:45:c0:7c:7b:97:b0:b7:b1:6b:06:68:b1:95:
a1:e3:cd:73:aa:e2:34:2f:3c:94:d5:56:04:01:72:c4:57:3e:
1a:0b:6a:2f:29:3e:e7:e4:2a:ca:9e:1d:59:06:65:7d:fd:c9:
3b:97:f5:5e:c3:41:35:c5:50:88:2c:d3:15:e2:97:cf:4c:9b:
a0:aa:2b:b8:0a:82:70:74:2b:ee:ea:89:6c:b3:fa:e9:5c:0f:
45:f7:8b:a5:a5:b7:05:5c:f1:ce:5b:82:2c:3a:86:a7:a8:16:
f0:75:7e:f6
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgICGGwwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTIwMDkyOTA5NTI1N1oXDTIxMDkyOTA5NTEyM1owMzEx
MC8GA1UEAxMoQjJGMkFBOTcxRjhFQ0VCRkMzRTIxMDNBMUZFNjI0MDFFMUMxOUIx
NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO52WTBEYunH+4oYQL4V
HRoK1XqUr9+LXlf+ZJrdbZK1yHYUyZNzWhQEvCCzC3K9mDsJtqbtCKnS1n6pGBKP
06zzOib1P+1W/XIDjOSimGoWNEn50wI7eb1ymWOA54G4mzJ/7foTEbliULVDHz5d
Ymum4mObeaEJ3gFaqJQWMXiNx3NFPv40hVGg3nNKWydTlI90bvVvY7JRB3kQQW/I
aDmtmVuZINwDXy2dDVhVxKeWRL9hoz/jNxhbfz1Vm9xRX+emAKdac2Sdc8TJRKYe
W/Xog8yM3aWh6iznP1awslvdIOGsoCv0dExb4xP9dm/yB9/Y7D5Fm0qMRBsjcGhK
nVMCAwEAAaOCAlswggJXMB0GA1UdDgQWBBSy8qqXH47Ov8PiEDof5iQB4cGbFTAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdIGCCsGAQUFBwELBIHFMIHCMDYGCCsGAQUFBzAF
hipyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVUQy8wVQYI
KwYBBQUHMAqGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9O
VVRDL3N2S3FseC1PenJfRDRoQTZILVlrQWVIQm14VS5tZnQwMQYIKwYBBQUHMA2G
JWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwLgYIKwYBBQUH
AQcBAf8EHzAdMAwEAgABMAYDBAJng/gwDQQCAAIwBwMFACQD1UAwDQYJKoZIhvcN
AQELBQADggEBADuLpRZ4MZlZKeEwmP7BCkfMojOCWov5DKkdzVehpwd6yBr3SKi+
/CLAowoEBrhysrsKgk02s1pgJ4FDxdzRg/jWcGptuuF8wXs9SUZt/Ow1VqcTc/Xv
OlmgRFaLKTvp+cpWPdvDsw8FL+Mj7+Z1euCwyvm1H6v3vV0TUgYnCvdJIDGrn7ZJ
K25mbg+Qd76I/OI9FYziRcB8e5ewt7FrBmixlaHjzXOq4jQvPJTVVgQBcsRXPhoL
ai8pPufkKsqeHVkGZX39yTuX9V7DQTXFUIgs0xXil89Mm6CqK7gKgnB0K+7qiWyz
+ulcD0X3i6WltwVc8c5bgiw6hqeoFvB1fvY=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org