Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/z2pBlfch5bzqe20Nz2_MDSXeypU.cer
File: z2pBlfch5bzqe20Nz2_MDSXeypU.cer (raw, json)
Hash identifier: G3gDcuhduebfheQXPToOZVaUie98l6P37G2UdWRvwk0=
Subject key identifier: CF:6A:41:95:F7:21:E5:BC:EA:7B:6D:0D:CF:6F:CC:0D:25:DE:CA:95
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 19FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/YICO/z2pBlfch5bzqe20Nz2_MDSXeypU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/YICO/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Tue 29 Sep 2020 09:53:37 +0000
Certificate not after: Wed 29 Sep 2021 09:51:23 +0000
Subordinate resources: IP: 103.131.56.0/22
IP: 2403:c6c0::/32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6650 (0x19fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Sep 29 09:53:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF6A4195F721E5BCEA7B6D0DCF6FCC0D25DECA95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9d:e5:43:7b:0f:d1:ad:fa:8c:e7:1c:f1:48:
23:05:c8:a0:2f:37:36:3d:e2:95:23:f0:d1:ff:76:
2c:8f:80:ad:5a:de:f6:75:30:9e:50:95:0f:f3:6a:
63:e8:80:d4:62:60:e5:93:99:40:7c:48:89:44:11:
35:bc:16:a6:97:45:02:29:5f:0a:46:e6:5a:92:1f:
79:50:0b:cf:ee:5e:0a:f0:72:37:c9:64:77:47:de:
e5:19:5a:b2:8f:2e:14:96:26:c1:6a:5c:69:e6:1c:
45:56:da:e1:fc:31:6e:3d:63:8d:98:89:91:a3:d2:
bf:23:c7:18:32:df:e3:58:50:d9:4e:12:fc:48:66:
f0:19:ba:63:96:c4:77:4f:67:87:25:f1:c3:e0:da:
76:4f:b4:e8:fd:e2:e2:cf:49:f7:dd:5d:7c:a8:56:
8a:63:b1:78:66:cb:1f:b5:71:02:ce:41:4f:a5:47:
68:7a:50:3d:ef:7e:ae:c9:0e:73:71:f6:e0:ec:e7:
04:65:ba:d4:07:7f:eb:42:7f:80:16:80:0f:d3:3c:
03:ad:a1:45:55:0d:6b:04:29:28:8c:21:4f:3d:29:
03:35:5b:02:3a:05:83:4a:49:e7:fe:80:5c:0c:61:
79:64:77:55:51:54:63:af:18:2b:18:84:2a:ad:2e:
2c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6A:41:95:F7:21:E5:BC:EA:7B:6D:0D:CF:6F:CC:0D:25:DE:CA:95
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YICO/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YICO/z2pBlfch5bzqe20Nz2_MDSXeypU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.56.0/22
IPv6:
2403:c6c0::/32
Signature Algorithm: sha256WithRSAEncryption
6e:46:98:cb:7e:90:8c:b4:cb:56:2a:58:07:7b:a5:33:4b:3c:
ea:d5:ce:02:59:7b:83:11:af:1b:ef:38:81:cb:ac:a0:ff:cc:
d4:cf:b5:55:23:da:74:cf:f9:f0:d3:d1:8c:6c:56:ef:7e:ec:
ce:69:1d:04:7f:39:9d:67:4f:3c:e8:f3:0a:01:a8:6a:c2:17:
31:7d:08:8c:6b:87:1b:82:10:5f:84:22:b3:1a:a1:eb:21:65:
1f:c2:ef:0f:47:95:bb:b8:6f:78:b8:18:ec:dc:d6:59:b9:61:
73:bc:8e:0f:de:0b:56:6c:de:bc:95:42:0e:7e:00:f7:0d:41:
28:93:0b:c5:aa:f9:a4:f4:6c:9f:10:b0:1f:eb:9b:5e:6e:16:
eb:bf:27:d7:4a:51:aa:72:4b:6d:cf:ad:b9:9f:3f:5b:47:b9:
85:a7:90:66:8f:94:30:64:35:c0:0c:d4:73:00:96:62:d7:8b:
a4:3c:5f:bc:98:cc:4e:ad:c5:61:94:01:cd:5d:28:60:a6:06:
e4:6d:9e:34:71:6f:64:21:ac:f3:12:da:ca:3a:99:31:95:22:
ca:b5:46:35:36:33:72:bd:ac:1a:6d:1c:a7:ca:b5:28:29:f0:
f3:9e:1c:40:ee:5b:23:9c:f5:7f:da:75:a5:ac:ae:bc:1f:e4:
be:26:85:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org