$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/d4GSKMQp9oiOthhlrFUxRgfpH2I.cer File: d4GSKMQp9oiOthhlrFUxRgfpH2I.cer (raw, json) Hash identifier: /B1ctumPoyeDvZcx33gVfa4AQnG5D44K3kOtPpyR1ek= Subject key identifier: 77:81:92:28:C4:29:F6:88:8E:B6:18:65:AC:55:31:46:07:E9:1F:62 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 27DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/d4GSKMQp9oiOthhlrFUxRgfpH2I.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:12 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.176.50.0/23 IP: 2400:30a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10206 (0x27de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=77819228C429F6888EB61865AC55314607E91F62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:df:12:a9:c7:24:44:54:97:4d:b2:dc:8f:5e: db:c5:ba:9d:a6:0c:76:5e:af:ef:42:39:12:82:ab: e0:61:2a:51:7a:76:32:e1:4e:3a:74:25:bb:60:bb: 16:dd:51:78:dc:6f:a9:19:d4:72:35:43:95:09:6e: 8a:74:20:61:d8:b1:e2:73:e6:13:96:a4:4f:d9:66: f9:8c:a3:8b:e1:be:b3:03:b4:48:41:94:56:c7:9d: 38:5d:f2:a1:86:70:ad:f1:3b:2e:cb:89:38:fe:aa: df:84:86:f7:47:69:45:0d:b3:04:a2:d8:b6:48:b9: ea:55:03:f7:ed:5b:0c:85:13:a2:2b:c8:d7:91:f1: b8:e5:fa:36:28:48:d8:7d:64:de:8f:d1:0c:26:be: 79:19:69:44:fd:3c:75:e8:4e:9e:4a:7e:b2:9e:a1: f0:ff:d7:a4:33:69:99:a7:85:13:9b:e4:23:b2:da: a2:d9:25:90:1a:aa:70:79:33:e7:2a:e4:2a:78:ac: f4:96:5b:d6:2d:b8:da:c3:8e:c1:b0:6f:81:37:f2: 43:14:4c:ca:2a:83:a1:05:e2:f5:77:84:14:2a:96: 6f:72:fd:a4:62:21:e1:11:a2:f3:c6:88:80:c7:09: df:13:b8:29:de:5e:5a:16:c2:7b:bd:ff:97:01:2c: 07:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:81:92:28:C4:29:F6:88:8E:B6:18:65:AC:55:31:46:07:E9:1F:62 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/d4GSKMQp9oiOthhlrFUxRgfpH2I.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.176.50.0/23 IPv6: 2400:30a0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:d1:07:3a:ab:29:76:73:7c:0c:d3:df:b4:bf:ff:2a:cc:e4: da:5c:87:8f:d8:c0:ed:69:7d:c1:fc:ae:28:ce:a0:7f:ca:3c: e0:46:92:02:88:2a:41:65:17:61:86:8b:16:e6:17:6a:e9:32: ac:33:5b:7a:29:10:d0:e2:5a:2f:b2:7f:3c:84:6f:9b:cd:69: 22:ff:a6:dd:56:df:2f:74:9e:d3:18:f6:54:ca:b8:43:a7:4f: 2a:f1:97:f3:5f:01:5e:f2:06:2b:b4:29:b9:e8:ff:da:00:c2: e8:07:91:33:49:26:eb:a3:ce:7e:ec:ff:62:af:9b:ef:05:57: 06:a8:ce:38:74:6c:3b:22:ed:20:60:b8:0a:48:78:86:95:90: ed:5a:bd:7c:a9:f4:05:7d:cb:1c:94:ba:43:b0:a9:17:07:00: 5c:56:a0:f3:0c:e0:b0:fe:99:42:2f:c9:d3:fe:3d:e1:8f:cf: e9:a7:c2:bb:40:3f:88:50:e5:a4:64:af:b2:94:ef:ad:a7:42: 83:76:d9:83:71:6a:51:e2:63:49:4d:bc:c9:92:ae:88:8f:3e: 1c:25:a1:f9:35:43:30:94:01:07:04:91:46:fa:18:a7:fc:6f: 07:bf:f3:60:86:50:1d:88:06:a6:df:e3:b4:fb:81:3e:34:d9: eb:bb:82:4f -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICJ94wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTExMloXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoNzc4MTkyMjhDNDI5RjY4ODhFQjYxODY1QUM1NTMxNDYwN0U5MUY2 MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALPfEqnHJERUl02y3I9e 28W6naYMdl6v70I5EoKr4GEqUXp2MuFOOnQlu2C7Ft1ReNxvqRnUcjVDlQluinQg Ydix4nPmE5akT9lm+Yyji+G+swO0SEGUVsedOF3yoYZwrfE7LsuJOP6q34SG90dp RQ2zBKLYtki56lUD9+1bDIUToivI15HxuOX6NihI2H1k3o/RDCa+eRlpRP08dehO nkp+sp6h8P/XpDNpmaeFE5vkI7LaotklkBqqcHkz5yrkKnis9JZb1i242sOOwbBv gTfyQxRMyiqDoQXi9XeEFCqWb3L9pGIh4RGi88aIgMcJ3xO4Kd5eWhbCe73/lwEs B18CAwEAAaOCAl0wggJZMB0GA1UdDgQWBBR3gZIoxCn2iI62GGWsVTFGB+kfYjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTFVPU0kvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFVPU0kvZDRHU0tNUXA5b2lPdGhobHJGVXhSZ2ZwSDJJLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAWewMjANBAIAAjAHAwUAJAAwoDANBgkqhkiG 9w0BAQsFAAOCAQEAStEHOqspdnN8DNPftL//Kszk2lyHj9jA7Wl9wfyuKM6gf8o8 4EaSAogqQWUXYYaLFuYXaukyrDNbeikQ0OJaL7J/PIRvm81pIv+m3VbfL3Se0xj2 VMq4Q6dPKvGX818BXvIGK7Qpuej/2gDC6AeRM0km66POfuz/Yq+b7wVXBqjOOHRs OyLtIGC4Ckh4hpWQ7Vq9fKn0BX3LHJS6Q7CpFwcAXFag8wzgsP6ZQi/J0/494Y/P 6afCu0A/iFDlpGSvspTvradCg3bZg3FqUeJjSU28yZKuiI8+HCWh+TVDMJQBBwSR RvoYp/xvB7/zYIZQHYgGpt/jtPuBPjTZ67uCTw== -----END CERTIFICATE-----Generated at Fri May 17 22:07:56 2024 by rpki-client on console-ams.rpki-client.org