$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer File: -FjQAAx8RqmGsuuWgV8GriaTqdA.cer (raw, json) Hash identifier: f+g1xmII/0zCXHalTv8WqMJ8JA1B/T82/hYtbsiRgQ4= Subject key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 1411 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:23 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 159.117.64.0/19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 05:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5137 (0x1411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Sep 1 03:11:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b9:b7:1a:31:cd:db:ed:15:50:f5:73:3a:b9: 20:60:3b:a6:2d:c4:01:0f:48:49:d7:3f:61:1b:fe: 22:b1:30:63:1d:dd:85:05:89:2f:5d:9e:65:09:54: 05:7a:65:17:8f:14:c0:88:ee:b5:70:cd:dd:83:dc: ef:42:d8:6a:1a:fe:a0:75:19:b4:fb:fb:46:49:19: 52:e3:54:2c:3c:f1:cb:78:29:b6:d3:6d:92:e7:1c: 6e:81:cc:57:36:a7:78:c2:9f:be:7d:cf:5c:11:51: 35:34:83:09:d7:26:2d:e4:c1:35:d4:61:fb:fc:6c: c7:ea:76:42:2f:12:3c:bf:ac:0e:f0:e5:84:90:30: 2a:38:9c:a1:34:dd:eb:d7:6d:14:cb:f3:94:40:45: c0:e2:8d:b6:d0:f5:cb:80:30:06:58:c6:35:58:01: d5:3e:2d:70:4c:5b:3d:c4:d6:75:f4:53:a0:ea:74: d6:a7:27:6f:4b:7e:02:d3:f1:16:58:d3:a1:8a:0d: 7e:fa:6c:36:2b:12:40:cb:7a:77:81:a6:4f:83:fd: d8:b9:22:be:2f:fd:9d:07:41:6b:71:29:7b:b9:87: 1b:e8:49:6c:4b:2e:f0:ac:8e:49:5a:19:70:37:1e: d8:f1:3f:60:41:69:b2:e6:39:0c:3a:ca:4f:16:0e: c2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 159.117.64.0/19 Signature Algorithm: sha256WithRSAEncryption cd:65:99:5f:91:2d:f2:ca:dc:39:76:60:5d:16:1b:fa:a6:50: d1:11:32:ca:10:f9:bd:57:97:7f:7c:e9:6c:6f:d9:66:70:bc: 34:21:b1:6d:e3:03:7e:ec:4d:fb:af:30:8e:4a:88:fc:32:f4: 36:c0:6d:07:1c:8e:3a:b4:88:2a:c8:1a:f9:11:2f:42:f8:67: 6d:ab:f4:90:4b:71:ec:2b:d6:bc:fc:0c:3c:f0:69:38:5b:3d: da:8d:09:b1:02:2a:9a:88:69:83:48:f8:35:e7:5e:ec:ff:1a: e4:ca:2c:3f:28:8f:fd:7f:a3:27:ba:7d:c5:6c:22:55:75:3f: 06:8c:d3:66:54:be:d9:7e:55:8f:1d:77:40:a2:5c:5d:cc:d0: d6:f7:6a:20:ef:cf:71:16:46:7b:c2:bd:71:09:47:82:fa:14: 85:c7:b8:99:8c:a7:9f:df:0b:d9:45:47:ee:d4:92:99:29:80: bb:95:19:39:de:2c:d0:fa:ee:a3:fa:98:fd:7c:93:fe:3d:38: f5:ff:67:cb:0d:b4:0d:09:78:c5:53:e4:69:06:cd:81:17:1b: 35:ea:60:54:e0:d1:6c:ab:e9:21:82:47:12:60:81:87:7c:a0: 6e:4b:5d:7d:44:2e:d2:38:20:e8:04:a0:db:60:6f:e9:ae:3e: 85:22:18:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFBEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTIzMDkwMTAzMTEyM1oXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoRjg1OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlE MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKO5txoxzdvtFVD1czq5 IGA7pi3EAQ9ISdc/YRv+IrEwYx3dhQWJL12eZQlUBXplF48UwIjutXDN3YPc70LY ahr+oHUZtPv7RkkZUuNULDzxy3gpttNtkuccboHMVzaneMKfvn3PXBFRNTSDCdcm LeTBNdRh+/xsx+p2Qi8SPL+sDvDlhJAwKjicoTTd69dtFMvzlEBFwOKNttD1y4Aw BljGNVgB1T4tcExbPcTWdfRToOp01qcnb0t+AtPxFljToYoNfvpsNisSQMt6d4Gm T4P92Lkivi/9nQdBa3Epe7mHG+hJbEsu8KyOSVoZcDce2PE/YEFpsuY5DDrKTxYO wlkCAwEAAaOCAlQwggJQMB0GA1UdDgQWBBT4WNAADHxGqYay65aBXwauJpOp0DAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZPTkcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvRE9OR0ZPTkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBZ91QDANBgkqhkiG9w0BAQsFAAOC AQEAzWWZX5Et8srcOXZgXRYb+qZQ0REyyhD5vVeXf3zpbG/ZZnC8NCGxbeMDfuxN +68wjkqI/DL0NsBtBxyOOrSIKsga+REvQvhnbav0kEtx7CvWvPwMPPBpOFs92o0J sQIqmohpg0j4Nede7P8a5MosPyiP/X+jJ7p9xWwiVXU/BozTZlS+2X5Vjx13QKJc XczQ1vdqIO/PcRZGe8K9cQlHgvoUhce4mYynn98L2UVH7tSSmSmAu5UZOd4s0Pru o/qY/XyT/j049f9nyw20DQl4xVPkaQbNgRcbNepgVODRbKvpIYJHEmCBh3ygbktd fUQu0jgg6ASg22Bv6a4+hSIYpw== -----END CERTIFICATE-----Generated at Tue May 21 06:28:37 2024 by rpki-client on console-ams.rpki-client.org