$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/o55PwFcEngVg5h05adE6Xi8RrNI.cer File: o55PwFcEngVg5h05adE6Xi8RrNI.cer (raw, json) Hash identifier: u9MAS33GhOf9gZ/PP+r5AJKam9m8vUvaAd2iGE1y+t0= Subject key identifier: A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 341D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/o55PwFcEngVg5h05adE6Xi8RrNI.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:28:59 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.127.218.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 17:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13341 (0x341d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Feb 10 14:28:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A39E4FC057049E0560E61D3969D13A5E2F11ACD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9c:f4:60:30:47:a4:a8:33:e5:ae:5c:19:82: 2b:48:fd:8f:68:7e:51:fc:6a:72:8e:d0:cf:54:72: 01:c6:98:35:ce:dd:f3:f3:95:e9:ef:d3:c6:3a:22: c0:ce:f7:b2:ce:60:42:0c:a3:03:2c:95:ed:3e:15: 2f:61:ea:c5:34:46:cb:a2:39:6a:58:5e:ce:c8:1f: 6a:01:ef:e1:f2:67:e0:1e:10:ab:47:3b:51:66:3c: 54:1d:0f:0e:d5:16:be:fb:1b:78:3d:80:0b:1d:f6: 0b:10:4a:cf:4a:ae:b7:4b:d5:d1:d9:70:05:56:16: a4:5a:4f:48:01:a3:17:f2:b8:3b:ac:7f:04:68:9b: 42:09:66:e2:15:1a:17:e0:32:cb:1f:1f:8c:bb:97: f1:9f:09:6f:18:c1:11:89:8c:21:d2:10:58:f5:24: 5f:b3:68:41:c5:3c:d2:d8:25:d2:37:8c:4f:4c:b8: 04:95:64:6d:87:fa:18:8a:f8:91:56:ba:95:c5:57: 41:39:d6:78:ab:56:30:67:49:24:9d:e2:cc:ac:e4: 7a:04:70:9b:98:f8:08:4c:99:09:6c:ee:1a:89:0e: 9f:4d:89:3e:57:f4:4b:11:db:58:ef:c6:35:92:09: 1a:80:3b:30:f9:5c:86:e6:3a:15:f2:c7:e9:45:15: 48:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/o55PwFcEngVg5h05adE6Xi8RrNI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.218.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:cb:9f:c8:f1:b2:45:e6:53:db:23:d2:57:73:e3:00:48:b7: de:e1:82:dc:3c:93:1e:54:0e:68:08:9e:66:dd:e0:c0:ca:d9: 9e:96:f9:a7:0f:69:53:b7:51:75:de:52:6c:2f:4e:4d:79:56: 7e:be:9d:87:c3:3e:e6:8d:21:63:a5:90:3c:93:4a:a4:5d:88: 6b:88:49:14:87:15:73:ad:40:63:92:b0:aa:02:ef:73:62:11: 75:b7:f0:85:43:0c:7c:30:0e:1f:15:2c:0a:0f:24:a8:50:47: a0:c8:ad:92:2d:04:a2:f0:3c:e3:0c:33:35:59:9e:fe:96:8d: a0:ed:1e:94:77:7f:fc:cb:b8:fe:29:36:6c:34:a3:e7:aa:7d: 52:17:82:47:34:c3:c5:8e:28:86:8d:52:29:f4:0b:30:ab:88: 93:a0:d7:db:68:31:87:e3:04:c0:f4:42:44:76:b2:37:a9:70: 53:40:60:04:3b:4e:1c:6e:ba:96:4e:2a:a9:c0:6a:eb:aa:0b: 2c:98:5e:fd:61:fc:b0:92:60:71:43:94:4e:f4:e8:c5:fb:38: 55:90:e2:60:78:f4:ec:22:0c:87:6c:19:1c:c6:46:41:fc:ba: 23:9b:d5:87:6a:c2:3e:1a:5b:bd:31:0f:2e:2d:5a:ea:24:36: f8:14:63:13 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICNB0wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0Mjg1OVoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoQTM5RTRGQzA1NzA0OUUwNTYwRTYxRDM5NjlEMTNBNUUyRjExQUNE MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPKc9GAwR6SoM+WuXBmC K0j9j2h+Ufxqco7Qz1RyAcaYNc7d8/OV6e/TxjoiwM73ss5gQgyjAyyV7T4VL2Hq xTRGy6I5alhezsgfagHv4fJn4B4Qq0c7UWY8VB0PDtUWvvsbeD2ACx32CxBKz0qu t0vV0dlwBVYWpFpPSAGjF/K4O6x/BGibQglm4hUaF+Ayyx8fjLuX8Z8JbxjBEYmM IdIQWPUkX7NoQcU80tgl0jeMT0y4BJVkbYf6GIr4kVa6lcVXQTnWeKtWMGdJJJ3i zKzkegRwm5j4CEyZCWzuGokOn02JPlf0SxHbWO/GNZIJGoA7MPlchuY6FfLH6UUV SLsCAwEAAaOCAlYwggJSMB0GA1UdDgQWBBSjnk/AVwSeBWDmHTlp0TpeLxGs0jAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdwGCCsGAQUFBwELBIHPMIHMMDsGCCsGAQUFBzAF hi9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURXQUxL LzBaBggrBgEFBQcwCoZOcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0NMT1VEV0FMSy9vNTVQd0ZjRW5nVmc1aDA1YWRFNlhpOFJyTkkubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3/aMA0GCSqGSIb3DQEBCwUA A4IBAQA/y5/I8bJF5lPbI9JXc+MASLfe4YLcPJMeVA5oCJ5m3eDAytmelvmnD2lT t1F13lJsL05NeVZ+vp2Hwz7mjSFjpZA8k0qkXYhriEkUhxVzrUBjkrCqAu9zYhF1 t/CFQwx8MA4fFSwKDySoUEegyK2SLQSi8DzjDDM1WZ7+lo2g7R6Ud3/8y7j+KTZs NKPnqn1SF4JHNMPFjiiGjVIp9Aswq4iToNfbaDGH4wTA9EJEdrI3qXBTQGAEO04c brqWTiqpwGrrqgssmF79YfywkmBxQ5RO9OjF+zhVkOJgePTsIgyHbBkcxkZB/Loj m9WHasI+Glu9MQ8uLVrqJDb4FGMT -----END CERTIFICATE-----Generated at Sat Apr 12 14:31:53 2025 by rpki-client