Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer
File: ma5DqX1RxaFOESh6mAJMNqWZN3s.cer (raw, json)
Hash identifier: /SxDjaBPQn75xMjNwqVQeD40d+P/UQWORmuaXB2I/Eo=
Subject key identifier: 99:AE:43:A9:7D:51:C5:A1:4E:11:28:7A:98:02:4C:36:A5:99:37:7B
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3D2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 22 Aug 2025 08:51:46 +0000
Certificate not after: Sat 22 Aug 2026 08:14:28 +0000
Subordinate resources: AS: 152615
IP: 2401:caa0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15658 (0x3d2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 22 08:51:46 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=99AE43A97D51C5A14E11287A98024C36A599377B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6d:7c:e6:65:c6:c8:b1:7e:56:25:71:5b:36:
e8:1c:63:64:b2:ef:62:13:6c:a6:2e:e6:7d:aa:0d:
5f:af:23:77:91:dd:a4:5b:4c:1e:49:48:66:78:8e:
5c:b7:ac:d6:c5:e5:d8:7e:38:c0:ff:d3:8b:a5:03:
7a:1e:ed:4c:91:27:2e:7e:bc:b3:f2:cb:4f:cd:04:
49:9b:89:cb:4c:b0:ee:73:f3:9b:41:df:df:8f:9b:
d7:77:3c:aa:24:ad:a8:b5:f1:b2:81:9c:6e:c8:32:
31:60:ea:41:4e:7a:f2:de:e0:c5:ee:86:3e:a6:61:
1d:bf:66:4c:2f:23:12:36:23:89:79:e7:22:92:e6:
13:82:4a:53:70:49:af:02:28:6d:be:6b:8a:33:60:
12:24:77:f4:ec:70:36:79:5c:49:a4:66:26:9a:a5:
1a:b4:d2:b0:66:66:66:d3:ab:46:80:8e:0e:87:b1:
bf:96:ea:bb:44:51:e7:79:26:5d:88:2c:f6:26:a5:
61:3b:fe:5f:03:60:f9:2c:dc:a4:b9:12:2c:fe:82:
75:ea:e1:08:63:3b:fe:59:36:ca:15:5f:5f:3d:a5:
82:8c:80:9c:ad:b3:ce:e8:8a:6e:c5:48:f0:9e:26:
59:82:3e:62:3d:1c:16:8f:4d:b6:bc:86:0f:46:b1:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AE:43:A9:7D:51:C5:A1:4E:11:28:7A:98:02:4C:36:A5:99:37:7B
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152615
sbgp-ipAddrBlock: critical
IPv6:
2401:caa0::/32
Signature Algorithm: sha256WithRSAEncryption
43:d6:d0:73:10:ef:50:80:e3:10:a4:33:fb:06:4f:ef:dc:c9:
52:2f:25:48:91:26:a9:37:c1:65:db:b4:69:80:4e:c6:65:98:
fb:9f:f0:19:12:c1:37:61:68:22:cf:cd:17:09:4b:3b:ca:55:
e0:f7:d9:8c:5d:30:8f:2f:1f:84:d8:e3:d6:ba:c3:08:6b:1d:
b7:fa:93:61:b6:8a:bd:57:26:f4:e0:55:74:dc:de:7f:e5:8c:
79:f4:3f:91:9d:44:00:dd:7e:ae:d4:06:9b:c7:41:8b:bb:65:
eb:2e:77:ba:03:92:3b:c7:40:df:f9:dd:66:74:6e:db:f2:6b:
d7:0e:41:ef:ce:77:72:2e:cf:a5:8a:2d:06:a4:04:8e:a7:a5:
1d:b5:e5:49:60:6b:b4:67:cc:a0:c1:72:59:66:b3:4c:6a:64:
3f:3d:ab:2c:e7:40:68:e1:39:f2:5c:0c:2c:63:5d:cf:cc:a1:
3d:b0:ce:2f:b1:74:25:48:6e:4d:5d:13:cb:47:8d:e9:45:55:
3c:8e:98:7f:7e:4f:4c:2e:c5:c5:a5:d7:0d:44:52:12:6c:54:
11:c9:70:33:b2:04:2b:8c:fa:44:aa:a1:cf:19:93:9a:d6:ca:
3a:47:c6:39:ab:ff:d6:af:d5:7d:ad:3a:8c:65:0a:c0:a3:76:
7e:fc:22:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:58:41 2025 by rpki-client