Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer
File: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer (raw, json)
Hash identifier: o3u8naqefIUdWiR1vOpT8DGZB65vd44bsBSv1lSZmUg=
Subject key identifier: BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7
Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743
Certificate serial: 19BF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Mon 10 Feb 2025 14:29:27 +0000
Certificate not after: Fri 09 Jan 2026 15:30:20 +0000
Subordinate resources: IP: 161.248.128.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6591 (0x19bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000
Validity
Not Before: Feb 10 14:29:27 2025 GMT
Not After : Jan 9 15:30:20 2026 GMT
Subject: CN=BBF8E5352240971787806A3E53A8904859A9F0E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f7:1e:c9:e3:7e:f5:bb:16:30:b1:de:74:d8:
3b:af:5a:f3:03:ef:db:32:1b:bd:75:8b:fd:61:9b:
d3:60:80:9d:11:25:e9:c4:94:cb:9b:80:76:c2:90:
15:4a:3d:bd:c6:c0:1f:47:6a:43:19:88:fc:98:39:
1d:df:2a:ff:74:73:76:1f:4e:06:a6:7e:51:7d:2b:
e7:9b:d2:9c:11:95:d3:53:ab:65:28:60:b6:1a:5c:
1b:26:0c:be:3e:4e:97:c4:f4:9f:8b:57:aa:0a:ff:
9d:b4:70:64:77:54:76:b9:0d:86:a4:d8:0b:86:f8:
21:b7:a4:da:4a:52:85:44:df:6c:e6:09:ca:f1:74:
ba:8a:e5:9d:14:26:4c:a7:89:55:c8:31:25:a4:46:
10:f9:99:e9:30:4f:38:15:fe:4c:8b:6e:33:7f:9a:
d6:4a:72:25:9d:4e:60:3b:6b:c6:93:d6:3b:75:ae:
58:e2:3c:7a:89:75:12:f1:10:3f:a0:2c:0b:1e:a4:
ec:51:70:ba:d1:61:2a:47:98:c6:bb:9f:c0:aa:f4:
3b:cd:2f:46:84:54:f2:63:90:ae:d0:e2:d4:5d:98:
6f:82:de:d9:98:87:32:70:d1:a9:e0:1d:d8:67:1d:
13:55:e2:96:2e:7c:fa:22:13:f0:b7:bc:5e:47:8e:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7
X509v3 Authority Key Identifier:
keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.128.0/23
Signature Algorithm: sha256WithRSAEncryption
78:17:0b:23:42:8d:94:97:1f:f4:87:ef:59:94:86:e7:84:7f:
2f:09:64:f7:bd:d0:3d:95:6e:52:7b:a4:65:63:77:b2:d7:fd:
d5:61:e4:53:0e:4d:5e:06:60:a4:d3:8a:4b:c4:68:4b:d2:15:
00:c5:16:51:ff:d4:d5:1d:4a:af:5a:4b:da:f9:ea:d4:6a:cb:
43:70:bd:cf:fd:02:37:bf:b6:ef:0a:a2:86:70:93:7a:2a:7f:
3e:5d:0b:52:7a:66:90:54:f3:42:3e:b3:d6:cc:a4:d5:5c:e6:
e5:76:e9:3c:a5:38:1b:8c:d5:87:da:45:96:92:77:4d:51:79:
c4:d3:7e:3c:39:ad:39:5d:be:12:a0:93:e8:68:9b:d3:fe:b1:
b4:65:61:df:11:1f:a5:0c:b9:46:ba:a9:85:82:c2:77:7f:e5:
58:27:d3:1b:c9:87:f1:8b:69:eb:f7:30:bd:c1:4d:8d:65:41:
e2:c3:fc:dd:13:dd:da:83:43:6d:d4:7a:c0:32:c2:cc:5c:00:
8b:d1:e5:2e:d9:42:a7:18:62:d0:51:f7:fb:da:17:33:fe:95:
41:92:28:25:a9:a2:02:5e:2c:89:1f:08:0b:ab:ec:66:b0:66:
9d:d5:6b:e6:2e:4c:59:45:86:3a:7c:68:84:11:1a:bd:2d:ab:
e0:8f:1d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:00 2025 by rpki-client