$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/synakmj8_VTZ84oB7Qz3CSu2kAw.cer File: synakmj8_VTZ84oB7Qz3CSu2kAw.cer (raw, json) Hash identifier: xqgMdUctBdQAXE5JGl+P0rfBbB4cAojlKgHJEXBOhRE= Subject key identifier: B3:29:DA:92:68:FC:FD:54:D9:F3:8A:01:ED:0C:F7:09:2B:B6:90:0C Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 362F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/synakmj8_VTZ84oB7Qz3CSu2kAw.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:21 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: AS: 63898 IP: 103.158.78.0/23 IP: 2406:b4c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 12:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13871 (0x362f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000 Validity Not Before: Feb 10 14:29:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B329DA9268FCFD54D9F38A01ED0CF7092BB6900C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f8:e5:d4:b2:85:c2:ed:64:6f:04:49:c4:a3: 9f:60:f3:ac:e5:7c:c6:da:16:0a:c9:f0:cf:fe:43: 54:8e:18:4b:23:6c:d0:e0:af:4a:9e:59:d6:5e:79: 42:df:9d:72:19:5b:cb:71:51:63:98:97:15:4f:20: 67:2b:99:88:1f:2f:d6:6a:c9:33:60:03:8e:cb:f5: 42:25:33:62:7c:ef:0f:12:37:a4:59:16:fe:38:10: 0d:67:30:fb:66:00:c8:3d:11:66:e8:ec:52:c2:a1: 5b:98:07:37:fb:82:4c:b5:9f:28:8f:09:b1:73:fb: 64:74:10:06:7b:1b:b2:fe:54:26:d1:c0:09:cd:56: 4f:b3:b0:60:67:2a:c7:c2:d6:b3:67:8f:9f:27:97: c0:00:b2:45:64:b0:2b:80:79:0b:19:49:97:9c:e8: fd:c6:87:a7:01:63:89:9e:6a:93:c9:44:b9:26:b0: ca:8f:1b:71:27:52:af:d1:72:bb:8e:fd:fd:5d:d3: 84:88:40:0e:4f:19:ec:ef:80:52:f2:f5:96:78:08: e3:ac:c7:74:00:4a:92:c0:47:88:bd:b0:31:c2:30: 27:3a:cc:10:88:10:5a:3b:7d:9d:da:7b:d9:60:2f: 9b:88:a1:fc:ef:90:d6:7a:00:ed:b0:e2:6b:67:a3: 65:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:29:DA:92:68:FC:FD:54:D9:F3:8A:01:ED:0C:F7:09:2B:B6:90:0C X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/synakmj8_VTZ84oB7Qz3CSu2kAw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63898 sbgp-ipAddrBlock: critical IPv4: 103.158.78.0/23 IPv6: 2406:b4c0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:4e:ef:29:b4:08:3f:f5:aa:26:f2:fc:63:87:04:6a:4c:00: c1:49:92:5d:47:a9:9c:0e:85:c5:85:cb:ab:a2:9a:82:49:28: 03:18:ec:06:6c:5e:be:6e:ca:b2:d2:b3:b3:16:69:a0:e5:40: dc:ae:e5:fa:9a:09:98:ad:38:b3:1c:c4:77:23:3e:89:aa:54: 32:78:38:85:f2:e4:2f:11:f9:66:66:49:a5:d4:c8:fd:f9:2c: 6c:95:d2:c7:92:a8:f0:62:0e:5d:84:45:1f:3c:ba:cd:6a:ba: 96:bb:39:30:b0:15:57:e8:3d:c9:63:c4:27:28:ea:bd:b8:d6: 07:eb:b0:09:3b:25:51:df:ea:b1:e4:5c:16:d5:a3:00:70:66: f7:ad:5d:f3:4e:88:06:27:c0:a4:d6:d1:bf:be:c9:dc:84:d8: 65:99:d5:80:8f:aa:6e:d9:34:8b:17:42:c6:2e:80:07:2c:08: 8e:0d:89:4b:dd:6a:52:24:43:42:1a:00:55:50:2a:06:41:75: 32:f9:69:aa:94:d8:ad:a3:4a:5a:74:d7:62:d3:91:ba:44:6a: 49:27:f6:d2:4a:69:49:16:32:38:af:a2:d0:a3:0b:70:1d:09: 2d:bb:fc:27:a1:ec:5a:50:d4:c5:03:15:69:5a:3c:0a:f6:76: 7b:0a:86:be -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICNi8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkyMVoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoQjMyOURBOTI2OEZDRkQ1NEQ5RjM4QTAxRUQwQ0Y3MDkyQkI2OTAw QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN345dSyhcLtZG8EScSj n2DzrOV8xtoWCsnwz/5DVI4YSyNs0OCvSp5Z1l55Qt+dchlby3FRY5iXFU8gZyuZ iB8v1mrJM2ADjsv1QiUzYnzvDxI3pFkW/jgQDWcw+2YAyD0RZujsUsKhW5gHN/uC TLWfKI8JsXP7ZHQQBnsbsv5UJtHACc1WT7OwYGcqx8LWs2ePnyeXwACyRWSwK4B5 CxlJl5zo/caHpwFjiZ5qk8lEuSawyo8bcSdSr9Fyu479/V3ThIhADk8Z7O+AUvL1 lngI46zHdABKksBHiL2wMcIwJzrMEIgQWjt9ndp72WAvm4ih/O+Q1noA7bDia2ej Zf0CAwEAAaOCAn8wggJ7MB0GA1UdDgQWBBSzKdqSaPz9VNnzigHtDPcJK7aQDDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTQ1lCRVIv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvTlNTQ1lCRVIvc3luYWttajhfVlRaODRvQjdRejNDU3Uya0F3Lm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA+ZowLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAFnnk4wDQQCAAIwBwMFACQGtMAwDQYJKoZIhvcNAQELBQADggEBABpO 7ym0CD/1qiby/GOHBGpMAMFJkl1HqZwOhcWFy6uimoJJKAMY7AZsXr5uyrLSs7MW aaDlQNyu5fqaCZitOLMcxHcjPomqVDJ4OIXy5C8R+WZmSaXUyP35LGyV0seSqPBi Dl2ERR88us1qupa7OTCwFVfoPcljxCco6r241gfrsAk7JVHf6rHkXBbVowBwZvet XfNOiAYnwKTW0b++ydyE2GWZ1YCPqm7ZNIsXQsYugAcsCI4NiUvdalIkQ0IaAFVQ KgZBdTL5aaqU2K2jSlp012LTkbpEakkn9tJKaUkWMjivotCjC3AdCS27/Ceh7FpQ 1MUDFWlaPAr2dnsKhr4= -----END CERTIFICATE-----Generated at Sat Apr 12 10:29:28 2025 by rpki-client