$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Ea0dvZwV2WVamhlYTHB1e5kN3BY.cer File: Ea0dvZwV2WVamhlYTHB1e5kN3BY.cer (raw, json) Hash identifier: O12N3M+K0H8CKFePqbLGAqEvso/y8Tp3YGTFnMxFYqY= Subject key identifier: 11:AD:1D:BD:9C:15:D9:65:5A:9A:19:58:4C:70:75:7B:99:0D:DC:16 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/Ea0dvZwV2WVamhlYTHB1e5kN3BY.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:10 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 43.241.32.0/22 IP: 103.37.36.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 12:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13593 (0x3519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000 Validity Not Before: Feb 10 14:29:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=11AD1DBD9C15D9655A9A19584C70757B990DDC16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:78:bc:f9:7e:a7:a0:0a:e0:f2:72:d1:b4: 43:62:8d:56:78:c7:95:f5:65:5b:ea:f2:f9:f6:f8: 52:b7:a1:da:9d:3e:65:33:27:15:7b:c6:9e:cc:54: 65:66:d8:6a:46:79:47:e1:04:0c:13:d8:f5:d6:70: 45:fb:38:33:dc:f3:1f:4c:79:f2:37:12:84:20:57: 7f:94:af:ed:20:e9:41:0c:0f:8e:2d:6b:c8:81:52: da:f9:4b:49:8f:ec:9d:77:d1:22:f7:6a:21:13:25: 0d:c1:b8:d5:be:44:1d:78:ca:9c:3a:97:94:85:7f: 07:4d:97:c7:21:e2:ae:90:19:de:9e:08:40:04:01: 4e:34:49:c5:a7:9f:8b:49:19:cf:f8:ca:dc:c8:88: 3d:92:c3:cd:a5:6a:3f:f5:5b:33:0e:e3:96:99:aa: c8:d4:9d:98:a5:fd:dd:d0:e8:fc:00:5e:a5:3c:48: 5b:91:dc:b3:59:6c:7b:aa:ae:df:8d:ef:67:2d:3c: 52:c4:66:c5:93:b0:79:dc:52:93:84:b8:57:e6:e1: c5:db:1b:89:eb:e6:a4:a4:5a:15:bf:7c:77:31:5c: 56:59:cd:69:f1:ab:eb:cd:bb:29:47:4c:34:21:10: 0e:49:74:79:fd:8c:6b:03:d9:09:71:dd:eb:8b:63: 14:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AD:1D:BD:9C:15:D9:65:5A:9A:19:58:4C:70:75:7B:99:0D:DC:16 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/Ea0dvZwV2WVamhlYTHB1e5kN3BY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.241.32.0/22 103.37.36.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:a1:d1:63:38:ed:4e:43:44:e4:41:4b:60:ee:f4:01:e3:8f: af:a8:eb:60:ee:ca:e9:c9:0f:f4:f9:c9:33:13:77:25:22:99: d7:e4:64:0b:2d:f3:b6:67:c6:2f:89:af:de:f2:29:8d:af:9c: 24:5e:07:a6:07:af:df:83:90:71:f3:26:87:ff:ef:88:5f:bb: 39:60:0f:54:c7:13:42:d6:ff:69:c3:02:02:9d:b4:a5:40:9d: f4:72:45:e9:3a:59:b1:e0:a9:3f:fb:b3:0f:82:d9:16:6e:e7: 23:87:e2:e3:84:99:5a:b9:02:b6:cb:d5:78:27:09:d1:72:cc: d3:17:0e:08:72:1d:df:73:e1:1e:de:bc:2f:0e:2b:63:7d:d8: 60:32:97:1f:86:1a:ab:a5:77:53:9d:71:63:2e:bb:3b:16:22: b7:1d:f3:18:b8:62:23:2f:43:f8:a6:34:d6:9b:b8:13:0b:0d: a2:07:11:43:fa:b1:31:36:7f:6c:2b:0f:a3:a6:7f:26:ec:8c: 12:a9:ed:64:61:6c:77:a1:bb:5e:e0:81:66:57:19:a3:bf:6c: 64:9e:0d:e9:19:36:92:cc:0b:70:60:a2:18:86:7e:7c:42:36: d2:40:df:a4:ac:dc:12:81:f7:2b:3b:85:68:82:22:e6:5d:64: 9c:9e:c1:e9 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgICNRkwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkxMFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoMTFBRDFEQkQ5QzE1RDk2NTVBOUExOTU4NEM3MDc1N0I5OTBEREMx NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM6feLz5fqegCuDyctG0 Q2KNVnjHlfVlW+ry+fb4Ureh2p0+ZTMnFXvGnsxUZWbYakZ5R+EEDBPY9dZwRfs4 M9zzH0x58jcShCBXf5Sv7SDpQQwPji1ryIFS2vlLSY/snXfRIvdqIRMlDcG41b5E HXjKnDqXlIV/B02XxyHirpAZ3p4IQAQBTjRJxaefi0kZz/jK3MiIPZLDzaVqP/Vb Mw7jlpmqyNSdmKX93dDo/ABepTxIW5Hcs1lse6qu343vZy08UsRmxZOwedxSk4S4 V+bhxdsbievmpKRaFb98dzFcVlnNafGr6827KUdMNCEQDkl0ef2MawPZCXHd64tj FDcCAwEAAaOCAlowggJWMB0GA1UdDgQWBBQRrR29nBXZZVqaGVhMcHV7mQ3cFjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VJQ0hJTkcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvV0VJQ0hJTkcvRWEwZHZad1YyV1ZhbWhsWVRIQjFlNWtOM0JZLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAl BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAivxIAMEAmclJDANBgkqhkiG9w0B AQsFAAOCAQEALqHRYzjtTkNE5EFLYO70AeOPr6jrYO7K6ckP9PnJMxN3JSKZ1+Rk Cy3ztmfGL4mv3vIpja+cJF4Hpgev34OQcfMmh//viF+7OWAPVMcTQtb/acMCAp20 pUCd9HJF6TpZseCpP/uzD4LZFm7nI4fi44SZWrkCtsvVeCcJ0XLM0xcOCHId33Ph Ht68Lw4rY33YYDKXH4Yaq6V3U51xYy67OxYitx3zGLhiIy9D+KY01pu4EwsNogcR Q/qxMTZ/bCsPo6Z/JuyMEqntZGFsd6G7XuCBZlcZo79sZJ4N6Rk2kswLcGCiGIZ+ fEI20kDfpKzcEoH3KzuFaIIi5l1knJ7B6Q== -----END CERTIFICATE-----Generated at Sat Apr 12 10:41:49 2025 by rpki-client