$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Ea0dvZwV2WVamhlYTHB1e5kN3BY.cer File: Ea0dvZwV2WVamhlYTHB1e5kN3BY.cer (raw, json) Hash identifier: p1Jm3yME5Udeh4MgKmi72EYjsV8NLjb44M8DChi71ec= Subject key identifier: 11:AD:1D:BD:9C:15:D9:65:5A:9A:19:58:4C:70:75:7B:99:0D:DC:16 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2918 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/Ea0dvZwV2WVamhlYTHB1e5kN3BY.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:29 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 43.241.32.0/22 IP: 103.37.36.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10520 (0x2918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=11AD1DBD9C15D9655A9A19584C70757B990DDC16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:78:bc:f9:7e:a7:a0:0a:e0:f2:72:d1:b4: 43:62:8d:56:78:c7:95:f5:65:5b:ea:f2:f9:f6:f8: 52:b7:a1:da:9d:3e:65:33:27:15:7b:c6:9e:cc:54: 65:66:d8:6a:46:79:47:e1:04:0c:13:d8:f5:d6:70: 45:fb:38:33:dc:f3:1f:4c:79:f2:37:12:84:20:57: 7f:94:af:ed:20:e9:41:0c:0f:8e:2d:6b:c8:81:52: da:f9:4b:49:8f:ec:9d:77:d1:22:f7:6a:21:13:25: 0d:c1:b8:d5:be:44:1d:78:ca:9c:3a:97:94:85:7f: 07:4d:97:c7:21:e2:ae:90:19:de:9e:08:40:04:01: 4e:34:49:c5:a7:9f:8b:49:19:cf:f8:ca:dc:c8:88: 3d:92:c3:cd:a5:6a:3f:f5:5b:33:0e:e3:96:99:aa: c8:d4:9d:98:a5:fd:dd:d0:e8:fc:00:5e:a5:3c:48: 5b:91:dc:b3:59:6c:7b:aa:ae:df:8d:ef:67:2d:3c: 52:c4:66:c5:93:b0:79:dc:52:93:84:b8:57:e6:e1: c5:db:1b:89:eb:e6:a4:a4:5a:15:bf:7c:77:31:5c: 56:59:cd:69:f1:ab:eb:cd:bb:29:47:4c:34:21:10: 0e:49:74:79:fd:8c:6b:03:d9:09:71:dd:eb:8b:63: 14:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AD:1D:BD:9C:15:D9:65:5A:9A:19:58:4C:70:75:7B:99:0D:DC:16 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/Ea0dvZwV2WVamhlYTHB1e5kN3BY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.241.32.0/22 103.37.36.0/22 Signature Algorithm: sha256WithRSAEncryption 95:d3:27:d8:88:46:4d:05:fd:76:8c:71:f3:1f:92:17:2b:dd: 1c:21:fe:f2:db:0b:a2:66:07:ce:df:a3:6c:23:dc:54:4d:71: 2e:2b:74:b7:74:2c:a9:e6:35:3d:2e:22:e2:d3:c9:39:c3:cb: c7:5c:5c:e9:e4:8a:62:9e:39:53:26:ce:2f:7d:b2:ac:00:0c: 49:16:4d:12:40:c3:87:2b:a4:b4:58:f5:a7:1f:8c:53:7e:e9: 92:f0:b1:63:71:9f:69:4e:3c:57:a6:ed:f2:4c:be:da:e4:59: 65:30:32:fa:b4:2a:fb:67:b2:f8:37:77:4c:3c:25:33:28:3d: d6:71:1f:86:7f:c2:6f:dd:c1:80:21:54:e8:d9:5c:35:41:e9: c5:ef:31:0d:26:52:97:cd:7a:fa:64:dd:fe:85:b8:d7:b5:1a: c5:36:91:23:81:68:b2:53:ed:73:4c:a2:ae:d6:2d:25:fe:fa: c6:6a:87:cf:e0:68:a8:c8:4e:6d:fb:81:f1:cc:fc:6e:63:33: c5:3d:34:ce:25:e2:94:19:90:68:da:17:24:57:b3:94:14:5c: a2:4f:39:0a:b7:9d:e8:04:d0:4a:67:16:24:0b:c0:fe:ba:49: 08:06:33:66:b2:dc:4a:3e:ee:31:0c:9e:15:13:20:19:54:ca: d9:d6:c6:51 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgICKRgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEyOVoXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoMTFBRDFEQkQ5QzE1RDk2NTVBOUExOTU4NEM3MDc1N0I5OTBEREMx NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM6feLz5fqegCuDyctG0 Q2KNVnjHlfVlW+ry+fb4Ureh2p0+ZTMnFXvGnsxUZWbYakZ5R+EEDBPY9dZwRfs4 M9zzH0x58jcShCBXf5Sv7SDpQQwPji1ryIFS2vlLSY/snXfRIvdqIRMlDcG41b5E HXjKnDqXlIV/B02XxyHirpAZ3p4IQAQBTjRJxaefi0kZz/jK3MiIPZLDzaVqP/Vb Mw7jlpmqyNSdmKX93dDo/ABepTxIW5Hcs1lse6qu343vZy08UsRmxZOwedxSk4S4 V+bhxdsbievmpKRaFb98dzFcVlnNafGr6827KUdMNCEQDkl0ef2MawPZCXHd64tj FDcCAwEAAaOCAlowggJWMB0GA1UdDgQWBBQRrR29nBXZZVqaGVhMcHV7mQ3cFjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VJQ0hJTkcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvV0VJQ0hJTkcvRWEwZHZad1YyV1ZhbWhsWVRIQjFlNWtOM0JZLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAl BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAivxIAMEAmclJDANBgkqhkiG9w0B AQsFAAOCAQEAldMn2IhGTQX9doxx8x+SFyvdHCH+8tsLomYHzt+jbCPcVE1xLit0 t3QsqeY1PS4i4tPJOcPLx1xc6eSKYp45UybOL32yrAAMSRZNEkDDhyuktFj1px+M U37pkvCxY3GfaU48V6bt8ky+2uRZZTAy+rQq+2ey+Dd3TDwlMyg91nEfhn/Cb93B gCFU6NlcNUHpxe8xDSZSl816+mTd/oW417UaxTaRI4FoslPtc0yirtYtJf76xmqH z+BoqMhObfuB8cz8bmMzxT00ziXilBmQaNoXJFezlBRcok85Cred6ATQSmcWJAvA /rpJCAYzZrLcSj7uMQyeFRMgGVTK2dbGUQ== -----END CERTIFICATE-----Generated at Fri May 17 09:34:26 2024 by rpki-client on console-fra.rpki-client.org