$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JXv5FL8lh5JagPp7xZDoEi8YXjc.cer File: JXv5FL8lh5JagPp7xZDoEi8YXjc.cer (raw, json) Hash identifier: yV7EcOqSXM4AXJqOFmpDOC1QvollErJpy4ZiIk++dOk= Subject key identifier: 25:7B:F9:14:BF:25:87:92:5A:80:FA:7B:C5:90:E8:12:2F:18:5E:37 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 28A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/JXv5FL8lh5JagPp7xZDoEi8YXjc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:22 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.131.124.0/22 IP: 2403:c9c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10402 (0x28a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=257BF914BF2587925A80FA7BC590E8122F185E37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:70:a3:a9:77:5a:61:1e:f6:f4:0f:1c:eb: ed:43:cd:d2:1c:05:97:7e:2f:30:ee:ca:9a:70:1d: 5d:49:9e:f6:f2:f3:ff:5f:cc:12:9a:77:5d:61:3a: f3:f1:b8:28:48:33:45:5f:2f:89:80:de:df:a6:0e: 9a:8a:13:52:db:d3:0a:f7:4a:7b:9f:3e:3c:48:96: fc:c7:a1:68:e3:92:7d:9b:b9:6b:78:7f:ba:45:c7: 8f:c8:5a:8e:b1:bc:50:1a:32:8a:ea:e3:4b:f0:d9: fd:42:8a:1e:ed:08:8f:c6:29:8f:1c:3a:cc:68:e0: af:36:7a:f3:51:ed:29:59:37:77:06:2f:fc:42:53: f5:bb:fa:f0:18:6e:58:28:ec:f9:77:4a:10:c7:54: 96:cd:c0:e5:dd:54:9c:f5:d9:1d:8c:fa:7d:38:3d: a8:db:4c:de:28:89:1a:b3:c4:c9:f5:5d:12:19:57: 25:a2:73:2a:9d:77:17:17:25:a9:0b:22:ed:ac:43: e8:6e:0b:99:f3:ab:30:9c:3e:48:c1:02:28:81:71: 07:8f:1e:5b:6c:bc:86:cf:09:d0:bb:29:94:cb:85: 86:80:3a:1a:20:c1:f7:c4:7d:5e:e6:37:88:53:b6: fb:a9:3f:b6:4e:95:00:a6:dd:49:c9:20:62:46:4e: 79:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7B:F9:14:BF:25:87:92:5A:80:FA:7B:C5:90:E8:12:2F:18:5E:37 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/JXv5FL8lh5JagPp7xZDoEi8YXjc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.124.0/22 IPv6: 2403:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 64:bd:63:e7:cb:ba:75:2f:15:1e:d8:cd:a8:c2:42:74:71:2a: b7:72:2c:67:3b:d6:f8:e8:3c:33:1b:81:92:b6:9d:ff:c0:a1: ba:89:08:8e:fd:bd:38:db:d7:9b:4c:3e:39:97:df:b1:3d:7e: d7:8e:fe:f6:e7:4a:b0:f8:dc:14:98:73:1e:39:46:f8:e8:af: 5b:38:65:11:54:f4:09:d7:8b:30:43:9c:f7:cc:53:9f:c6:4a: cd:80:fd:8f:a3:40:2d:b2:5a:fb:e9:6c:8c:7f:2f:ff:02:b4: 25:e5:d9:05:19:cd:80:96:e5:1c:65:14:29:bc:0f:54:45:66: 16:8d:bc:9c:3d:ce:3c:d5:92:b5:5e:3c:78:c5:41:bd:3a:f1: f3:16:1c:11:ca:9f:c9:77:d6:ee:bc:36:8b:0d:95:32:f1:d5: 95:c1:61:3c:77:f0:97:ae:8c:a1:e2:28:bf:6b:56:59:a0:12: 2d:94:a5:e5:c0:41:4c:8a:34:c7:2b:86:96:f4:45:10:43:8a: bb:a3:1b:93:ea:90:62:6c:d6:88:9d:c8:3c:43:95:94:1e:c3: 57:22:1c:71:b4:4f:c9:cc:28:73:f7:50:22:68:68:fc:91:06: a0:1d:7d:36:80:f0:82:ee:f9:0c:8a:74:b6:80:a4:87:d9:eb: df:11:67:7c -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICKKIwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEyMloXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoMjU3QkY5MTRCRjI1ODc5MjVBODBGQTdCQzU5MEU4MTIyRjE4NUUz NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM/GcKOpd1phHvb0Dxzr 7UPN0hwFl34vMO7KmnAdXUme9vLz/1/MEpp3XWE68/G4KEgzRV8viYDe36YOmooT UtvTCvdKe58+PEiW/MehaOOSfZu5a3h/ukXHj8hajrG8UBoyiurjS/DZ/UKKHu0I j8Ypjxw6zGjgrzZ681HtKVk3dwYv/EJT9bv68BhuWCjs+XdKEMdUls3A5d1UnPXZ HYz6fTg9qNtM3iiJGrPEyfVdEhlXJaJzKp13FxclqQsi7axD6G4LmfOrMJw+SMEC KIFxB48eW2y8hs8J0LsplMuFhoA6GiDB98R9XuY3iFO2+6k/tk6VAKbdSckgYkZO eTsCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBQle/kUvyWHklqA+nvFkOgSLxheNzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVBPV0VSLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L01QT1dFUi9KWHY1Rkw4bGg1SmFnUHA3eFpEb0VpOFlYamMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4N8MA0EAgACMAcDBQAkA8nAMA0GCSqG SIb3DQEBCwUAA4IBAQBkvWPny7p1LxUe2M2owkJ0cSq3cixnO9b46DwzG4GStp3/ wKG6iQiO/b0429ebTD45l9+xPX7Xjv7250qw+NwUmHMeOUb46K9bOGURVPQJ14sw Q5z3zFOfxkrNgP2Po0Atslr76WyMfy//ArQl5dkFGc2AluUcZRQpvA9URWYWjbyc Pc481ZK1Xjx4xUG9OvHzFhwRyp/Jd9buvDaLDZUy8dWVwWE8d/CXroyh4ii/a1ZZ oBItlKXlwEFMijTHK4aW9EUQQ4q7oxuT6pBibNaIncg8Q5WUHsNXIhxxtE/JzChz 91AiaGj8kQagHX02gPCC7vkMinS2gKSH2evfEWd8 -----END CERTIFICATE-----Generated at Fri May 17 22:19:33 2024 by rpki-client on console-fra.rpki-client.org