$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/-Cq3lxJINbGrEumPs2_yfJiDQNc.cer File: -Cq3lxJINbGrEumPs2_yfJiDQNc.cer (raw, json) Hash identifier: 6++5zDd35e6pquG1GUp4pk2JqxYnA6OnPJHhcjiiS2I= Subject key identifier: F8:2A:B7:97:12:48:35:B1:AB:12:E9:8F:B3:6F:F2:7C:98:83:40:D7 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2AED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/IPV6PO/-Cq3lxJINbGrEumPs2_yfJiDQNc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/IPV6PO/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Wed 27 Dec 2023 09:03:40 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 2001:44f0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Dec 2023 10:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10989 (0x2aed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Dec 27 09:03:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F82AB797124835B1AB12E98FB36FF27C988340D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:31:ab:48:c8:6e:f4:79:a3:a1:1e:1c:f6:77: ac:ad:ff:9c:ae:b6:39:47:94:3c:df:2b:d8:d0:a9: 65:4d:1a:4f:b1:0a:dc:e2:b4:52:61:1d:41:f6:1c: a2:15:79:1d:55:3e:f9:27:92:8c:00:f2:69:c7:08: 51:34:c8:66:8a:e0:9e:5b:8c:53:85:11:70:e8:1a: 4d:82:04:32:9c:bf:7c:c8:0c:13:a9:81:88:1e:2b: bf:d1:70:e2:54:ee:64:b9:b7:8a:0a:da:1f:9a:25: 67:89:aa:cf:18:e2:65:db:a1:d1:f8:b6:ed:4e:e6: 9f:de:60:ec:12:bd:7a:6d:bc:51:75:37:80:f9:10: 96:a6:29:83:99:67:c8:b4:78:83:38:63:d3:13:fb: f2:64:77:c5:1f:1a:b4:b9:bf:af:94:98:c5:37:3e: 78:0c:d7:34:16:32:68:cf:54:5b:f7:0c:94:fb:b6: a4:b9:e8:d7:23:1b:4a:07:6d:2a:7f:2b:04:06:14: 64:b1:76:34:70:bf:de:d7:79:03:0d:6a:40:b7:0e: d7:88:3f:8d:76:60:f0:77:a1:2b:d5:68:19:ee:b6: da:f5:b5:ce:72:4f:0c:26:ec:a1:0c:98:7f:4c:54: df:3b:df:68:29:0c:b6:a9:f1:10:05:54:ef:f0:98: eb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2A:B7:97:12:48:35:B1:AB:12:E9:8F:B3:6F:F2:7C:98:83:40:D7 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IPV6PO/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IPV6PO/-Cq3lxJINbGrEumPs2_yfJiDQNc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:44f0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:06:47:65:e7:c4:15:5a:d7:fe:64:13:4c:e6:0e:e9:d6:2b: d2:f3:41:2e:eb:3a:73:e3:3f:b0:19:92:5d:d9:93:d3:a4:3b: 93:0d:ff:d7:b3:9f:9b:1b:3f:5e:83:84:3a:3f:2e:2b:55:c8: 42:b1:6b:bd:13:9e:24:0b:35:75:03:41:4f:89:7e:dd:6d:3c: 44:81:2a:5f:38:a0:be:37:3d:d7:23:eb:71:aa:16:9e:1a:cb: 50:a5:00:bb:d8:0f:46:c3:e4:52:3d:43:cc:7f:ba:c7:9c:60: ec:d3:f9:02:ff:db:f5:9d:04:2e:07:9f:e1:0a:df:8a:e0:bf: cd:48:56:cd:72:80:7b:a8:21:46:a4:dc:5f:6f:75:fd:02:00: 3f:02:36:35:c5:82:89:3b:da:82:ce:f8:48:ae:ab:10:13:4c: 5b:61:56:a7:7f:1c:e6:74:d8:18:87:84:8b:2e:10:95:3b:bc: 10:6b:aa:0c:18:e8:27:8b:b8:7c:96:12:01:00:29:ee:b7:02: 7c:bc:74:9d:ea:c2:7b:b8:74:fb:fc:67:52:48:53:a3:f7:f0: cd:a0:0f:8e:25:aa:24:54:8d:bf:f5:02:59:eb:d4:ae:11:a8: f5:b8:ed:f6:49:8e:5a:58:88:4d:81:05:f4:e5:91:e4:f5:f4: 85:61:dd:12 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICKu0wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMTIyNzA5MDM0MFoXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoRjgyQUI3OTcxMjQ4MzVCMUFCMTJFOThGQjM2RkYyN0M5ODgzNDBE NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMIxq0jIbvR5o6EeHPZ3 rK3/nK62OUeUPN8r2NCpZU0aT7EK3OK0UmEdQfYcohV5HVU++SeSjADyaccIUTTI ZorgnluMU4URcOgaTYIEMpy/fMgME6mBiB4rv9Fw4lTuZLm3igraH5olZ4mqzxji Zduh0fi27U7mn95g7BK9em28UXU3gPkQlqYpg5lnyLR4gzhj0xP78mR3xR8atLm/ r5SYxTc+eAzXNBYyaM9UW/cMlPu2pLno1yMbSgdtKn8rBAYUZLF2NHC/3td5Aw1q QLcO14g/jXZg8HehK9VoGe622vW1znJPDCbsoQyYf0xU3zvfaCkMtqnxEAVU7/CY 6+0CAwEAAaOCAlEwggJNMB0GA1UdDgQWBBT4KreXEkg1sasS6Y+zb/J8mINA1zAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVBWNlBPLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0lQVjZQTy8tQ3EzbHhKSU5iR3JFdW1QczJfeWZKaURRTmMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsG AQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAFE8DANBgkqhkiG9w0BAQsFAAOCAQEA TQZHZefEFVrX/mQTTOYO6dYr0vNBLus6c+M/sBmSXdmT06Q7kw3/17Ofmxs/XoOE Oj8uK1XIQrFrvROeJAs1dQNBT4l+3W08RIEqXzigvjc91yPrcaoWnhrLUKUAu9gP RsPkUj1DzH+6x5xg7NP5Av/b9Z0ELgef4QrfiuC/zUhWzXKAe6ghRqTcX291/QIA PwI2NcWCiTvags74SK6rEBNMW2FWp38c5nTYGIeEiy4QlTu8EGuqDBjoJ4u4fJYS AQAp7rcCfLx0nerCe7h0+/xnUkhTo/fwzaAPjiWqJFSNv/UCWevUrhGo9bjt9kmO WliITYEF9OWR5PX0hWHdEg== -----END CERTIFICATE-----Generated at Wed Dec 27 12:26:08 2023 by rpki-client on console-ams.rpki-client.org