$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/m9yQDEijVhPeB12MOTYZI3261RU.cer File: m9yQDEijVhPeB12MOTYZI3261RU.cer (raw, json) Hash identifier: EzJHtRHi7IQMdQRXJ6lAwvEs1sPArfO6brFB3ujSP+g= Subject key identifier: 9B:DC:90:0C:48:A3:56:13:DE:07:5D:8C:39:36:19:23:7D:BA:D5:15 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2898 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/OBANK/m9yQDEijVhPeB12MOTYZI3261RU.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/OBANK/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:22 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.125.64.0/22 IP: 2403:edc0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10392 (0x2898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9BDC900C48A35613DE075D8C393619237DBAD515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:6b:58:4a:8b:85:0e:07:ef:c6:3f:b0:11: b9:aa:89:29:ae:1e:1a:d6:92:e8:93:48:b9:0f:b7: 0e:31:41:ca:27:5f:b0:f1:36:06:9a:df:31:ac:bb: d3:43:f6:be:1a:ae:52:03:0e:de:66:68:55:d1:3c: 0a:66:53:a0:e7:61:eb:04:43:4f:05:6b:fb:6f:2f: 0d:b0:2d:46:15:d7:0f:b8:c9:28:f5:c2:84:2f:93: d6:58:50:6c:e1:3e:ac:4e:60:0f:05:6d:7d:0f:2b: e2:52:39:b6:4a:ce:6a:06:46:49:4d:3a:d4:c8:1f: c5:3f:55:c7:16:78:69:a7:5b:fa:d3:5a:42:64:69: a3:2d:20:a6:9c:61:21:04:da:34:d9:d2:28:7f:5d: 93:17:a3:2c:54:77:25:a5:18:9a:c1:fd:6f:a9:9f: b3:ba:db:9e:2f:ac:dc:e5:23:28:d2:d8:25:da:24: 8d:10:52:5a:37:fa:46:dc:d8:4f:ea:a8:10:01:de: a8:32:95:9a:51:b1:7a:9a:2d:1b:45:cb:4a:50:c1: 50:cb:4c:3e:f6:2a:96:12:49:cc:d8:99:4d:10:88: 80:a9:9d:3e:58:68:07:7d:9a:d0:36:e1:ae:4a:4e: f3:51:1c:31:54:2a:31:bf:de:22:dd:00:16:5a:ff: 6e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:DC:90:0C:48:A3:56:13:DE:07:5D:8C:39:36:19:23:7D:BA:D5:15 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OBANK/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OBANK/m9yQDEijVhPeB12MOTYZI3261RU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.125.64.0/22 IPv6: 2403:edc0::/32 Signature Algorithm: sha256WithRSAEncryption 22:17:ee:f4:02:d7:70:0d:b8:19:d1:3b:a6:63:01:4f:86:22: 60:6e:9e:4a:c8:c8:ed:e6:23:f4:c6:04:37:7f:d0:dc:fa:13: 5b:1a:bc:32:0d:38:bf:88:4d:88:6c:8f:ba:19:ec:5d:84:35: 22:88:9a:0b:7c:4e:72:54:7f:5c:0d:e1:c7:99:fc:42:73:02: d7:87:9f:40:ea:a3:f1:b9:f8:a0:d2:3a:9f:d0:f4:32:47:2f: e7:46:a2:40:d7:63:c9:03:47:d6:61:2b:79:b6:a0:f4:58:9f: 82:f4:2e:57:d1:7b:e4:ef:6a:76:14:50:25:14:11:f6:ea:53: 3f:31:d5:62:d9:47:c4:0d:78:51:e5:9a:5e:e9:36:c8:d0:ee: a4:5b:d3:0d:43:87:f6:9a:fa:04:da:c1:ea:20:89:6f:49:e4: 3c:da:c9:04:83:27:24:36:b5:59:bd:e2:9f:04:5f:47:e7:76: 15:e6:74:fd:62:13:33:39:fe:4c:3e:c2:38:09:24:b1:36:c7: e7:c6:bc:ad:c1:77:ee:b2:b1:f0:33:50:73:b9:c5:ee:90:71: f9:c3:ca:1f:b9:e5:3d:ca:ee:3b:63:3b:c1:5e:cb:e7:8b:ea: dd:98:ae:d1:a3:ac:e5:e7:93:e1:73:ae:01:62:75:f0:c9:d3: 95:d9:0e:85 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICKJgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEyMloXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoOUJEQzkwMEM0OEEzNTYxM0RFMDc1RDhDMzkzNjE5MjM3REJBRDUx NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMCya1hKi4UOB+/GP7AR uaqJKa4eGtaS6JNIuQ+3DjFByidfsPE2BprfMay700P2vhquUgMO3mZoVdE8CmZT oOdh6wRDTwVr+28vDbAtRhXXD7jJKPXChC+T1lhQbOE+rE5gDwVtfQ8r4lI5tkrO agZGSU061MgfxT9VxxZ4aadb+tNaQmRpoy0gppxhIQTaNNnSKH9dkxejLFR3JaUY msH9b6mfs7rbni+s3OUjKNLYJdokjRBSWjf6RtzYT+qoEAHeqDKVmlGxepotG0XL SlDBUMtMPvYqlhJJzNiZTRCIgKmdPlhoB32a0DbhrkpO81EcMVQqMb/eIt0AFlr/ bhsCAwEAAaOCAl0wggJZMB0GA1UdDgQWBBSb3JAMSKNWE94HXYw5NhkjfbrVFTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT0JBTksvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev T0JBTksvbTl5UURFaWpWaFBlQjEyTU9UWVpJMzI2MVJVLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAmd9QDANBAIAAjAHAwUAJAPtwDANBgkqhkiG 9w0BAQsFAAOCAQEAIhfu9ALXcA24GdE7pmMBT4YiYG6eSsjI7eYj9MYEN3/Q3PoT Wxq8Mg04v4hNiGyPuhnsXYQ1IoiaC3xOclR/XA3hx5n8QnMC14efQOqj8bn4oNI6 n9D0Mkcv50aiQNdjyQNH1mErebag9FifgvQuV9F75O9qdhRQJRQR9upTPzHVYtlH xA14UeWaXuk2yNDupFvTDUOH9pr6BNrB6iCJb0nkPNrJBIMnJDa1Wb3inwRfR+d2 FeZ0/WITMzn+TD7COAkksTbH58a8rcF37rKx8DNQc7nF7pBx+cPKH7nlPcruO2M7 wV7L54vq3Ziu0aOs5eeT4XOuAWJ18MnTldkOhQ== -----END CERTIFICATE-----Generated at Fri May 17 10:15:35 2024 by rpki-client on console-ams.rpki-client.org