$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer File: -FjQAAx8RqmGsuuWgV8GriaTqdA.cer (raw, json) Hash identifier: JgESsffOlPMQhptNP4+k0/zE5wbx7GM3zEJmc9iLkow= Subject key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 1601 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:14 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 159.117.64.0/19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5633 (0x1601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Aug 26 01:57:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b9:b7:1a:31:cd:db:ed:15:50:f5:73:3a:b9: 20:60:3b:a6:2d:c4:01:0f:48:49:d7:3f:61:1b:fe: 22:b1:30:63:1d:dd:85:05:89:2f:5d:9e:65:09:54: 05:7a:65:17:8f:14:c0:88:ee:b5:70:cd:dd:83:dc: ef:42:d8:6a:1a:fe:a0:75:19:b4:fb:fb:46:49:19: 52:e3:54:2c:3c:f1:cb:78:29:b6:d3:6d:92:e7:1c: 6e:81:cc:57:36:a7:78:c2:9f:be:7d:cf:5c:11:51: 35:34:83:09:d7:26:2d:e4:c1:35:d4:61:fb:fc:6c: c7:ea:76:42:2f:12:3c:bf:ac:0e:f0:e5:84:90:30: 2a:38:9c:a1:34:dd:eb:d7:6d:14:cb:f3:94:40:45: c0:e2:8d:b6:d0:f5:cb:80:30:06:58:c6:35:58:01: d5:3e:2d:70:4c:5b:3d:c4:d6:75:f4:53:a0:ea:74: d6:a7:27:6f:4b:7e:02:d3:f1:16:58:d3:a1:8a:0d: 7e:fa:6c:36:2b:12:40:cb:7a:77:81:a6:4f:83:fd: d8:b9:22:be:2f:fd:9d:07:41:6b:71:29:7b:b9:87: 1b:e8:49:6c:4b:2e:f0:ac:8e:49:5a:19:70:37:1e: d8:f1:3f:60:41:69:b2:e6:39:0c:3a:ca:4f:16:0e: c2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 159.117.64.0/19 Signature Algorithm: sha256WithRSAEncryption 03:9c:d0:ee:23:13:71:78:31:bf:3d:9a:b7:aa:0e:12:b4:03: 82:4a:71:b4:5a:ef:51:87:15:d2:3b:98:3c:0a:84:9e:64:f8: cf:d9:24:8d:17:30:ba:84:7d:38:e2:6b:e3:59:03:89:cb:d7: b0:00:96:c8:ad:2d:8a:5f:d4:c0:bd:55:de:13:ee:3d:de:50: 83:46:70:12:f8:bb:e3:fc:0b:a2:ff:ff:d7:01:03:e2:be:8e: e8:ad:fb:b6:19:87:44:ae:84:ef:c3:98:3c:eb:38:d1:c7:ca: 48:cd:e0:e9:1d:b0:ad:99:79:9a:da:f9:5b:25:11:88:2a:cf: 9f:1c:e6:2e:bb:7b:70:a9:8a:b2:2a:bb:19:0d:56:85:5f:7e: 5c:6a:41:b9:38:dc:e4:5a:04:76:8f:69:91:7b:65:3a:de:47: d2:a1:95:6b:3e:60:c3:44:92:94:a7:47:7f:63:91:2e:73:c7: e8:b7:15:19:0f:88:36:85:f2:40:bd:2c:66:cd:39:08:61:7c: 53:64:e7:5a:8b:87:00:1b:04:36:16:b4:bf:8d:18:33:cf:8b: fb:a6:d9:81:87:81:cf:68:61:ca:af:0c:35:c6:f6:e2:d8:8d: c8:e0:5d:63:30:4f:3e:fc:69:77:98:ac:f2:93:19:7f:4a:e9: ba:64:c3:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFgEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI0MDgyNjAxNTcxNFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoRjg1OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlE MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKO5txoxzdvtFVD1czq5 IGA7pi3EAQ9ISdc/YRv+IrEwYx3dhQWJL12eZQlUBXplF48UwIjutXDN3YPc70LY ahr+oHUZtPv7RkkZUuNULDzxy3gpttNtkuccboHMVzaneMKfvn3PXBFRNTSDCdcm LeTBNdRh+/xsx+p2Qi8SPL+sDvDlhJAwKjicoTTd69dtFMvzlEBFwOKNttD1y4Aw BljGNVgB1T4tcExbPcTWdfRToOp01qcnb0t+AtPxFljToYoNfvpsNisSQMt6d4Gm T4P92Lkivi/9nQdBa3Epe7mHG+hJbEsu8KyOSVoZcDce2PE/YEFpsuY5DDrKTxYO wlkCAwEAAaOCAlQwggJQMB0GA1UdDgQWBBT4WNAADHxGqYay65aBXwauJpOp0DAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZPTkcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvRE9OR0ZPTkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBZ91QDANBgkqhkiG9w0BAQsFAAOC AQEAA5zQ7iMTcXgxvz2at6oOErQDgkpxtFrvUYcV0juYPAqEnmT4z9kkjRcwuoR9 OOJr41kDicvXsACWyK0til/UwL1V3hPuPd5Qg0ZwEvi74/wLov//1wED4r6O6K37 thmHRK6E78OYPOs40cfKSM3g6R2wrZl5mtr5WyURiCrPnxzmLrt7cKmKsiq7GQ1W hV9+XGpBuTjc5FoEdo9pkXtlOt5H0qGVaz5gw0SSlKdHf2ORLnPH6LcVGQ+INoXy QL0sZs05CGF8U2TnWouHABsENha0v40YM8+L+6bZgYeBz2hhyq8MNcb24tiNyOBd YzBPPvxpd5is8pMZf0rpumTDlQ== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:22 2024 by rpki-client on console-fra.rpki-client.org