$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/o55PwFcEngVg5h05adE6Xi8RrNI.cer File: o55PwFcEngVg5h05adE6Xi8RrNI.cer (raw, json) Hash identifier: yz540ZOklw1BuFRQPV7feh0WMSwgkkKTRVaeOjOnyPU= Subject key identifier: A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 29E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/o55PwFcEngVg5h05adE6Xi8RrNI.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Wed 20 Sep 2023 03:33:36 +0000 Certificate not after: Wed 18 Sep 2024 09:08:03 +0000 Subordinate resources: IP: 103.127.218.0/23 IP: 2401:3a20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10723 (0x29e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 20 03:33:36 2023 GMT Not After : Sep 18 09:08:03 2024 GMT Subject: CN=A39E4FC057049E0560E61D3969D13A5E2F11ACD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9c:f4:60:30:47:a4:a8:33:e5:ae:5c:19:82: 2b:48:fd:8f:68:7e:51:fc:6a:72:8e:d0:cf:54:72: 01:c6:98:35:ce:dd:f3:f3:95:e9:ef:d3:c6:3a:22: c0:ce:f7:b2:ce:60:42:0c:a3:03:2c:95:ed:3e:15: 2f:61:ea:c5:34:46:cb:a2:39:6a:58:5e:ce:c8:1f: 6a:01:ef:e1:f2:67:e0:1e:10:ab:47:3b:51:66:3c: 54:1d:0f:0e:d5:16:be:fb:1b:78:3d:80:0b:1d:f6: 0b:10:4a:cf:4a:ae:b7:4b:d5:d1:d9:70:05:56:16: a4:5a:4f:48:01:a3:17:f2:b8:3b:ac:7f:04:68:9b: 42:09:66:e2:15:1a:17:e0:32:cb:1f:1f:8c:bb:97: f1:9f:09:6f:18:c1:11:89:8c:21:d2:10:58:f5:24: 5f:b3:68:41:c5:3c:d2:d8:25:d2:37:8c:4f:4c:b8: 04:95:64:6d:87:fa:18:8a:f8:91:56:ba:95:c5:57: 41:39:d6:78:ab:56:30:67:49:24:9d:e2:cc:ac:e4: 7a:04:70:9b:98:f8:08:4c:99:09:6c:ee:1a:89:0e: 9f:4d:89:3e:57:f4:4b:11:db:58:ef:c6:35:92:09: 1a:80:3b:30:f9:5c:86:e6:3a:15:f2:c7:e9:45:15: 48:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9E:4F:C0:57:04:9E:05:60:E6:1D:39:69:D1:3A:5E:2F:11:AC:D2 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDWALK/o55PwFcEngVg5h05adE6Xi8RrNI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.218.0/23 IPv6: 2401:3a20::/32 Signature Algorithm: sha256WithRSAEncryption 46:be:b8:57:bc:62:65:2d:bc:99:4c:80:13:79:55:36:bb:fb: 6b:bb:22:21:71:eb:08:b9:48:84:ef:d5:5c:f6:7c:24:d6:aa: fd:6f:bb:65:b8:fd:cc:b6:ce:2e:df:f4:76:6b:da:a6:b8:e9: 93:d6:2b:ef:a9:65:6f:14:64:fa:d9:6c:d9:14:b1:44:82:f4: 63:36:f2:b8:7d:6d:ed:ef:5f:0b:13:47:2e:44:d1:a1:67:3b: 3c:47:b4:f1:77:33:af:3d:07:51:2c:73:f6:88:c5:48:97:2b: 44:5b:4a:31:81:ba:fa:4a:a5:5b:9a:d0:cf:d8:58:04:07:27: 3b:21:25:e7:54:93:7a:0b:29:12:2f:68:a8:8d:1b:6a:98:3e: 9d:7a:78:c2:9e:7b:78:41:26:4d:da:25:fd:51:a6:c7:c6:5c: cf:54:45:77:f6:84:d5:2f:8f:5f:dd:90:62:5d:d8:ef:cb:da: 79:21:c5:1c:71:cf:a1:45:92:26:6c:82:5f:76:b9:ad:2d:bd: 20:6e:b7:ec:17:bb:bc:de:4e:8c:de:78:e3:dd:b4:b0:5b:0e: 60:28:54:13:5f:5b:5f:c3:6b:65:32:24:14:52:65:c0:d6:bd: 0d:87:be:9d:9d:7b:55:cb:b0:c1:37:07:f5:7d:5c:6b:c8:36: 83:b4:e6:c4 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICKeMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkyMDAzMzMzNloXDTI0MDkxODA5MDgwM1owMzEx MC8GA1UEAxMoQTM5RTRGQzA1NzA0OUUwNTYwRTYxRDM5NjlEMTNBNUUyRjExQUNE MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPKc9GAwR6SoM+WuXBmC K0j9j2h+Ufxqco7Qz1RyAcaYNc7d8/OV6e/TxjoiwM73ss5gQgyjAyyV7T4VL2Hq xTRGy6I5alhezsgfagHv4fJn4B4Qq0c7UWY8VB0PDtUWvvsbeD2ACx32CxBKz0qu t0vV0dlwBVYWpFpPSAGjF/K4O6x/BGibQglm4hUaF+Ayyx8fjLuX8Z8JbxjBEYmM IdIQWPUkX7NoQcU80tgl0jeMT0y4BJVkbYf6GIr4kVa6lcVXQTnWeKtWMGdJJJ3i zKzkegRwm5j4CEyZCWzuGokOn02JPlf0SxHbWO/GNZIJGoA7MPlchuY6FfLH6UUV SLsCAwEAAaOCAmUwggJhMB0GA1UdDgQWBBSjnk/AVwSeBWDmHTlp0TpeLxGs0jAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdwGCCsGAQUFBwELBIHPMIHMMDsGCCsGAQUFBzAF hi9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURXQUxL LzBaBggrBgEFBQcwCoZOcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0NMT1VEV0FMSy9vNTVQd0ZjRW5nVmc1aDA1YWRFNlhpOFJyTkkubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1s MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ3/aMA0EAgACMAcDBQAkATog MA0GCSqGSIb3DQEBCwUAA4IBAQBGvrhXvGJlLbyZTIATeVU2u/truyIhcesIuUiE 79Vc9nwk1qr9b7tluP3Mts4u3/R2a9qmuOmT1ivvqWVvFGT62WzZFLFEgvRjNvK4 fW3t718LE0cuRNGhZzs8R7TxdzOvPQdRLHP2iMVIlytEW0oxgbr6SqVbmtDP2FgE Byc7ISXnVJN6CykSL2iojRtqmD6denjCnnt4QSZN2iX9UabHxlzPVEV39oTVL49f 3ZBiXdjvy9p5IcUccc+hRZImbIJfdrmtLb0gbrfsF7u83k6M3njj3bSwWw5gKFQT X1tfw2tlMiQUUmXA1r0Nh76dnXtVy7DBNwf1fVxryDaDtObE -----END CERTIFICATE-----Generated at Fri May 17 22:07:56 2024 by rpki-client on console-ams.rpki-client.org