Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/uFXXHD7Qbrm67Sm_whVkQz-c8lY.cer
File: uFXXHD7Qbrm67Sm_whVkQz-c8lY.cer (raw, json)
Hash identifier: p1JoXHk6aCB9x+4f95WoK2Rd5Z6Lxnqj45RmXJ1up6A=
Subject key identifier: B8:55:D7:1C:3E:D0:6E:B9:BA:ED:29:BF:C2:15:64:43:3F:9C:F2:56
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 19DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/WRES/uFXXHD7Qbrm67Sm_whVkQz-c8lY.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/WRES/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:35 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.123.60.0/22
IP: 2403:9cc0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6622 (0x19de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B855D71C3ED06EB9BAED29BFC21564433F9CF256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:26:62:62:88:69:c2:e7:ff:a9:d9:a3:4a:5d:
89:9d:7e:24:cf:62:b7:7e:bb:e7:da:62:ab:bb:cd:
15:11:c8:8c:26:8c:04:6e:ac:d4:71:a0:5d:98:97:
79:74:ec:3c:24:08:d2:8a:e7:25:68:91:72:a1:57:
e3:b0:78:7c:00:ed:7e:8d:f0:ed:57:bb:78:85:70:
0b:76:be:7a:b0:a6:69:16:79:7a:38:7a:aa:f8:c7:
8e:c8:3f:9f:e6:0f:20:5a:2f:50:ab:e9:56:c9:5f:
4e:05:1b:80:b6:b6:f6:a7:97:c5:ea:8c:b1:19:77:
4b:cc:f9:11:3f:56:dc:3a:96:8c:60:ce:49:f2:09:
64:c4:88:79:02:d3:63:e3:9b:a6:56:fc:18:a7:6c:
43:81:5a:4a:91:30:40:7c:a4:e0:b8:01:ad:ba:68:
5d:63:d0:5f:79:84:05:04:d2:a7:a5:7e:3b:65:10:
b7:65:18:a6:98:02:ec:88:d5:d3:31:44:7e:e6:96:
bb:b0:0d:c8:d7:b4:61:33:1d:a9:bd:ac:6f:a7:ef:
a8:8f:da:88:23:ba:44:30:73:33:b8:09:9e:70:82:
ac:d9:6b:5b:ca:f5:39:1b:25:f5:87:1a:33:51:f2:
39:24:91:64:e7:dc:28:d7:45:0c:76:b3:f0:cd:c6:
02:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:55:D7:1C:3E:D0:6E:B9:BA:ED:29:BF:C2:15:64:43:3F:9C:F2:56
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WRES/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WRES/uFXXHD7Qbrm67Sm_whVkQz-c8lY.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.60.0/22
IPv6:
2403:9cc0::/32
Signature Algorithm: sha256WithRSAEncryption
47:34:13:27:af:45:d7:ee:35:51:91:df:37:29:89:4e:4b:4f:
4e:de:1f:dd:b2:33:e9:69:0d:ef:53:4b:a9:25:3c:c5:8c:b9:
af:32:fa:f1:fb:cc:51:40:21:ec:f4:a0:35:c6:f7:09:fd:81:
7f:2e:df:40:d5:dc:cd:9a:13:74:aa:1f:d1:f8:9a:22:c3:97:
ee:43:80:e1:c0:16:62:a2:b5:39:dd:2e:8e:ef:44:b5:46:96:
59:db:0e:c4:86:f6:a5:88:15:60:92:c4:f8:4c:ac:f0:ae:60:
2e:cb:fe:e2:a6:01:34:29:89:64:bb:5a:34:86:0f:39:db:a1:
c7:31:a7:3b:52:c6:ea:1a:01:dd:a2:78:24:cf:37:4e:9b:5f:
79:e7:ab:df:c6:99:07:4c:ae:3a:b9:8c:d5:06:fb:6d:1f:6a:
44:5c:fd:b7:79:58:0d:23:43:99:27:82:91:63:f2:a1:d7:87:
ce:ea:35:66:24:0d:69:1a:34:ae:cf:90:d8:47:33:1c:9c:cf:
03:2e:46:76:b3:3a:e3:08:9f:07:f0:1d:7e:31:90:44:ca:76:
17:30:2c:67:77:d6:c8:10:e5:19:c0:fa:ff:ea:22:e8:b3:50:
b6:09:d3:85:1c:d1:55:21:f1:9e:1c:00:f3:89:e0:b0:f1:f1:
91:1c:8a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org