$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer File: Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer (raw, json) Hash identifier: gCwZ5SjWCdv6eiC6VXDCjPmCoLeNLNxuMkW3ixMgt1o= Subject key identifier: 26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/Jh4D2-J9_Niz4MVfLwQz6gItHUs.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:11 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: AS: 131630 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 12:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13633 (0x3541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000 Validity Not Before: Feb 10 14:29:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8e:cd:2d:87:db:92:31:76:36:7d:1f:64:06: 03:c4:f5:e3:c6:7e:14:a4:23:d7:5b:fa:9b:4a:98: 02:c1:4e:d1:b4:2e:2d:a7:32:e7:cc:e6:5c:2f:46: 94:c5:85:80:91:81:ac:df:b5:43:b3:01:bb:21:4a: c1:ef:5d:f7:94:7a:f5:64:a2:bb:3a:3e:a5:13:24: 97:92:c7:48:a8:53:fc:4e:07:1f:67:5d:1f:8c:c4: 00:fc:ce:b9:2f:6d:3e:e2:76:fe:33:91:33:17:4c: 7a:1f:d0:30:39:2c:9a:44:19:e3:56:cb:bb:55:cd: f8:8a:98:46:27:40:29:48:48:06:ae:66:a4:45:78: 53:06:66:f6:80:41:b1:9f:4b:a5:6a:48:96:6f:16: b3:2f:7a:67:60:0d:3d:cb:80:6a:ce:f5:e7:1e:f6: a6:66:98:42:c0:e5:7a:29:16:81:70:4e:b6:86:4f: 1c:70:ab:82:c8:8b:46:be:cc:a5:a2:03:bb:51:86: b1:9c:44:51:e6:71:3f:a7:5c:5c:19:30:12:f6:0b: a6:4d:9a:5c:1c:af:aa:93:7b:ac:1b:5c:c5:34:8a: be:b4:31:49:b9:7c:e4:18:86:aa:24:15:1f:17:e8: 66:16:0a:2c:af:da:fc:67:a7:37:40:fd:32:7e:0b: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/Jh4D2-J9_Niz4MVfLwQz6gItHUs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 131630 Signature Algorithm: sha256WithRSAEncryption 49:43:6b:81:78:3d:bf:39:04:d5:fb:80:ea:03:06:ee:46:28: 20:9d:71:d6:35:42:dd:6d:a7:9e:eb:67:47:8a:45:9a:a0:41: 80:a9:68:17:8d:d8:9b:7a:b9:89:20:73:a4:c9:bc:56:6b:0a: f7:12:6c:d9:09:42:65:94:af:f3:2a:02:ba:fb:ce:73:f6:07: aa:37:8b:b6:7c:e1:dc:08:84:79:dc:44:98:7f:da:db:17:b7: 76:f3:af:90:91:3c:98:49:8d:87:06:a2:91:1d:6b:b7:e1:e7: 7d:a9:67:e8:e4:48:83:e1:66:19:5b:e9:9d:3c:0b:79:fa:60: 7a:b1:9f:cf:82:ef:87:a6:86:0c:f6:89:dd:e5:59:de:f6:6b: 8b:55:c1:28:8b:8b:19:6b:50:ca:41:2b:82:21:b1:2a:6f:00: 54:64:53:9b:6a:2d:2f:79:84:dd:bc:07:38:b4:a9:0d:7e:62: c2:9b:f0:38:66:5d:65:be:8a:32:3f:ba:32:08:31:31:17:51: e5:74:f2:8d:b2:4c:b5:d7:db:5c:78:3b:d3:88:01:cf:f9:a4: aa:4a:d5:42:fd:79:4d:88:8d:b5:19:3d:d6:2f:5f:bd:3e:55: 92:23:74:6e:d0:d9:3f:f9:ee:cc:c9:17:10:d7:4d:64:34:cd: e2:e4:d4:6c -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICNUEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkxMVoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoMjYxRTAzREJFMjdERkNEOEIzRTBDNTVGMkYwNDMzRUEwMjJEMUQ0 QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANWOzS2H25IxdjZ9H2QG A8T148Z+FKQj11v6m0qYAsFO0bQuLacy58zmXC9GlMWFgJGBrN+1Q7MBuyFKwe9d 95R69WSiuzo+pRMkl5LHSKhT/E4HH2ddH4zEAPzOuS9tPuJ2/jORMxdMeh/QMDks mkQZ41bLu1XN+IqYRidAKUhIBq5mpEV4UwZm9oBBsZ9LpWpIlm8Wsy96Z2ANPcuA as715x72pmaYQsDleikWgXBOtoZPHHCrgsiLRr7MpaIDu1GGsZxEUeZxP6dcXBkw EvYLpk2aXByvqpN7rBtcxTSKvrQxSbl85BiGqiQVHxfoZhYKLK/a/GenN0D9Mn4L WpMCAwEAAaOCAk8wggJLMB0GA1UdDgQWBBQmHgPb4n382LPgxV8vBDPqAi0dSzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FSRU5BVFcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvR0FSRU5BVFcvSmg0RDItSjlfTml6NE1WZkx3UXo2Z0l0SFVzLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMCAi4wDQYJKoZIhvcNAQELBQADggEBAElD a4F4Pb85BNX7gOoDBu5GKCCdcdY1Qt1tp57rZ0eKRZqgQYCpaBeN2Jt6uYkgc6TJ vFZrCvcSbNkJQmWUr/MqArr7znP2B6o3i7Z84dwIhHncRJh/2tsXt3bzr5CRPJhJ jYcGopEda7fh532pZ+jkSIPhZhlb6Z08C3n6YHqxn8+C74emhgz2id3lWd72a4tV wSiLixlrUMpBK4IhsSpvAFRkU5tqLS95hN28Bzi0qQ1+YsKb8DhmXWW+ijI/ujII MTEXUeV08o2yTLXX21x4O9OIAc/5pKpK1UL9eU2IjbUZPdYvX70+VZIjdG7Q2T/5 7szJFxDXTWQ0zeLk1Gw= -----END CERTIFICATE-----Generated at Sat Apr 12 10:46:37 2025 by rpki-client