$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JXv5FL8lh5JagPp7xZDoEi8YXjc.cer File: JXv5FL8lh5JagPp7xZDoEi8YXjc.cer (raw, json) Hash identifier: +bz+SGmiTeg6mvG+mEfg5htUpSfCkZwEmTA7dOpiEIg= Subject key identifier: 25:7B:F9:14:BF:25:87:92:5A:80:FA:7B:C5:90:E8:12:2F:18:5E:37 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 35FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/JXv5FL8lh5JagPp7xZDoEi8YXjc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:19 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.131.124.0/22 IP: 2403:c9c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 12:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13823 (0x35ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000 Validity Not Before: Feb 10 14:29:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=257BF914BF2587925A80FA7BC590E8122F185E37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:70:a3:a9:77:5a:61:1e:f6:f4:0f:1c:eb: ed:43:cd:d2:1c:05:97:7e:2f:30:ee:ca:9a:70:1d: 5d:49:9e:f6:f2:f3:ff:5f:cc:12:9a:77:5d:61:3a: f3:f1:b8:28:48:33:45:5f:2f:89:80:de:df:a6:0e: 9a:8a:13:52:db:d3:0a:f7:4a:7b:9f:3e:3c:48:96: fc:c7:a1:68:e3:92:7d:9b:b9:6b:78:7f:ba:45:c7: 8f:c8:5a:8e:b1:bc:50:1a:32:8a:ea:e3:4b:f0:d9: fd:42:8a:1e:ed:08:8f:c6:29:8f:1c:3a:cc:68:e0: af:36:7a:f3:51:ed:29:59:37:77:06:2f:fc:42:53: f5:bb:fa:f0:18:6e:58:28:ec:f9:77:4a:10:c7:54: 96:cd:c0:e5:dd:54:9c:f5:d9:1d:8c:fa:7d:38:3d: a8:db:4c:de:28:89:1a:b3:c4:c9:f5:5d:12:19:57: 25:a2:73:2a:9d:77:17:17:25:a9:0b:22:ed:ac:43: e8:6e:0b:99:f3:ab:30:9c:3e:48:c1:02:28:81:71: 07:8f:1e:5b:6c:bc:86:cf:09:d0:bb:29:94:cb:85: 86:80:3a:1a:20:c1:f7:c4:7d:5e:e6:37:88:53:b6: fb:a9:3f:b6:4e:95:00:a6:dd:49:c9:20:62:46:4e: 79:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7B:F9:14:BF:25:87:92:5A:80:FA:7B:C5:90:E8:12:2F:18:5E:37 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/JXv5FL8lh5JagPp7xZDoEi8YXjc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.124.0/22 IPv6: 2403:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 50:50:c3:79:68:d5:08:66:72:47:6d:f6:17:e1:91:8c:32:87: be:bc:71:a0:24:4b:9c:ff:ad:27:4d:2c:51:4b:f5:a3:6e:c1: b3:24:4f:54:8b:70:f6:09:ed:1c:c5:45:06:51:85:c8:72:d1: be:18:42:c6:51:18:3e:2a:d1:1a:49:16:f3:ac:db:08:10:3a: 57:33:57:0e:81:f8:86:02:e3:68:2c:4f:34:59:af:02:d1:f9: e2:aa:3c:c9:54:df:b3:2b:ed:59:c3:54:be:e8:8d:82:e8:11: 78:e3:ea:f0:b3:e1:5d:a5:78:7e:f8:15:46:01:89:f2:2b:96: 53:64:8c:08:57:fd:50:ce:04:6b:3b:76:17:c3:a9:ff:97:a7: 85:72:5c:25:07:e3:67:39:97:b2:67:b0:7d:d4:6c:c7:32:7f: 44:3c:4d:51:de:50:83:b9:10:b0:e5:a6:73:72:45:b6:ba:be: 23:72:4c:4e:80:ac:34:94:10:59:4d:5c:d1:bc:94:7e:92:b4: 3d:6f:4c:b3:81:91:a1:e2:a2:b2:56:d3:02:99:1a:58:d6:9e: 8d:cc:7d:f9:0c:e6:67:e4:39:b5:55:68:70:d8:67:98:2f:b5: 3c:5c:66:61:63:1b:33:6b:7a:e9:a6:13:94:95:cb:ca:4b:95: 34:5c:e3:96 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICNf8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkxOVoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoMjU3QkY5MTRCRjI1ODc5MjVBODBGQTdCQzU5MEU4MTIyRjE4NUUz NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM/GcKOpd1phHvb0Dxzr 7UPN0hwFl34vMO7KmnAdXUme9vLz/1/MEpp3XWE68/G4KEgzRV8viYDe36YOmooT UtvTCvdKe58+PEiW/MehaOOSfZu5a3h/ukXHj8hajrG8UBoyiurjS/DZ/UKKHu0I j8Ypjxw6zGjgrzZ681HtKVk3dwYv/EJT9bv68BhuWCjs+XdKEMdUls3A5d1UnPXZ HYz6fTg9qNtM3iiJGrPEyfVdEhlXJaJzKp13FxclqQsi7axD6G4LmfOrMJw+SMEC KIFxB48eW2y8hs8J0LsplMuFhoA6GiDB98R9XuY3iFO2+6k/tk6VAKbdSckgYkZO eTsCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBQle/kUvyWHklqA+nvFkOgSLxheNzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVBPV0VSLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L01QT1dFUi9KWHY1Rkw4bGg1SmFnUHA3eFpEb0VpOFlYamMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4N8MA0EAgACMAcDBQAkA8nAMA0GCSqG SIb3DQEBCwUAA4IBAQBQUMN5aNUIZnJHbfYX4ZGMMoe+vHGgJEuc/60nTSxRS/Wj bsGzJE9Ui3D2Ce0cxUUGUYXIctG+GELGURg+KtEaSRbzrNsIEDpXM1cOgfiGAuNo LE80Wa8C0fniqjzJVN+zK+1Zw1S+6I2C6BF44+rws+FdpXh++BVGAYnyK5ZTZIwI V/1QzgRrO3YXw6n/l6eFclwlB+NnOZeyZ7B91GzHMn9EPE1R3lCDuRCw5aZzckW2 ur4jckxOgKw0lBBZTVzRvJR+krQ9b0yzgZGh4qKyVtMCmRpY1p6NzH35DOZn5Dm1 VWhw2GeYL7U8XGZhYxsza3rpphOUlcvKS5U0XOOW -----END CERTIFICATE-----Generated at Sat Apr 12 10:47:48 2025 by rpki-client