$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/-Ux3Lpkm1RoyegtOUGCYE0AKXWg.cer File: -Ux3Lpkm1RoyegtOUGCYE0AKXWg.cer (raw, json) Hash identifier: bA1Ui67Fk738rHg2L2as+5YqDNMcvgSzSdpMJjAcBX0= Subject key identifier: F9:4C:77:2E:99:26:D5:1A:32:7A:0B:4E:50:60:98:13:40:0A:5D:68 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2B66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/-Ux3Lpkm1RoyegtOUGCYE0AKXWg.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Thu 29 Feb 2024 05:24:38 +0000 Certificate not after: Wed 26 Feb 2025 15:30:32 +0000 Subordinate resources: IP: 2401:83e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11110 (0x2b66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Feb 29 05:24:38 2024 GMT Not After : Feb 26 15:30:32 2025 GMT Subject: CN=F94C772E9926D51A327A0B4E50609813400A5D68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9a:e6:b8:be:25:21:75:fe:b7:e0:9c:12:7c: b6:5e:d7:c9:d6:a6:b0:f7:bf:58:b8:64:99:b5:2a: 4d:20:0d:88:14:c5:98:eb:1e:f2:14:db:41:8d:15: 9d:0c:93:be:1b:21:d5:92:e7:e1:b1:f3:55:6e:68: 22:0f:14:65:58:42:b1:1a:73:e1:93:ce:ba:31:5b: 4a:cf:14:1a:6f:5b:a9:31:03:b1:b9:91:b8:0f:97: d3:9e:67:2c:b1:7e:b7:cc:d3:19:81:9d:1d:14:51: 60:e9:ce:d5:07:61:73:63:41:57:4f:fb:c9:0b:f4: d7:a1:83:b1:6b:e4:f2:37:46:14:b1:30:17:67:44: 0b:01:ec:99:e9:2b:35:9a:a7:3f:95:6f:18:fa:89: ab:1f:ff:14:89:a3:7a:7d:40:52:1b:da:a7:be:77: 6c:b2:49:29:69:5c:4a:6a:20:d7:60:db:82:a6:6b: 31:02:e1:a0:4b:67:83:85:2f:f2:94:4a:14:d0:5f: 21:fa:3f:73:ca:14:76:ea:db:de:a3:d4:83:83:63: 67:f7:10:70:2b:07:79:6f:d3:bf:33:4d:02:06:fd: c0:af:16:30:48:01:3a:65:89:8d:e5:30:be:8c:a4: 6e:aa:c3:09:bf:db:d1:4c:87:91:71:5d:9f:66:dc: 3c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:4C:77:2E:99:26:D5:1A:32:7A:0B:4E:50:60:98:13:40:0A:5D:68 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/-Ux3Lpkm1RoyegtOUGCYE0AKXWg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:83e0::/32 Signature Algorithm: sha256WithRSAEncryption 46:b9:a1:f1:b4:da:b5:da:64:7e:cc:5d:c9:b8:78:76:86:fd: 0c:90:76:62:d9:bb:1b:c3:03:4d:07:fa:34:4a:31:ee:77:0d: 6f:2f:79:ba:5d:0e:e7:10:ad:48:69:7c:88:95:f6:a6:5b:0d: 34:f9:d6:c5:a5:f9:b6:00:bb:99:c7:dd:25:f6:58:49:57:c5: e6:0e:fb:a2:b2:38:c7:17:0d:9b:9e:72:b6:12:e6:1d:3b:58: 1d:24:97:ed:6f:92:8a:f5:58:2b:00:1d:61:fe:86:45:5e:68: 74:86:4d:82:6f:6d:51:88:58:ce:21:6b:65:08:4e:a9:05:24: a4:90:17:13:f5:c8:4d:58:84:d2:f9:40:fc:be:56:fb:24:28: 7b:8e:73:26:ce:9a:4c:4b:f4:16:38:eb:d1:d7:e8:ec:8c:27: de:b0:69:0e:94:2b:65:68:1c:ef:94:58:b2:6f:23:69:46:08: 09:40:84:b4:62:df:31:72:bb:dd:cd:01:7c:7b:79:b3:74:46: 90:0b:dd:a2:1c:8d:c4:59:9c:76:65:8a:1a:48:56:c6:2d:71: 7e:ce:b3:d9:8f:97:9c:a2:dc:c3:86:57:8b:a1:87:f4:9b:39: 43:8b:bb:3e:15:d6:b2:f5:5e:d5:cb:67:58:43:20:08:c9:58: 44:e0:d6:30 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICK2YwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDIyOTA1MjQzOFoXDTI1MDIyNjE1MzAzMlowMzEx MC8GA1UEAxMoRjk0Qzc3MkU5OTI2RDUxQTMyN0EwQjRFNTA2MDk4MTM0MDBBNUQ2 ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANia5ri+JSF1/rfgnBJ8 tl7XydamsPe/WLhkmbUqTSANiBTFmOse8hTbQY0VnQyTvhsh1ZLn4bHzVW5oIg8U ZVhCsRpz4ZPOujFbSs8UGm9bqTEDsbmRuA+X055nLLF+t8zTGYGdHRRRYOnO1Qdh c2NBV0/7yQv016GDsWvk8jdGFLEwF2dECwHsmekrNZqnP5VvGPqJqx//FImjen1A Uhvap753bLJJKWlcSmog12DbgqZrMQLhoEtng4Uv8pRKFNBfIfo/c8oUdurb3qPU g4NjZ/cQcCsHeW/TvzNNAgb9wK8WMEgBOmWJjeUwvoykbqrDCb/b0UyHkXFdn2bc PPcCAwEAAaOCAlkwggJVMB0GA1UdDgQWBBT5THcumSbVGjJ6C05QYJgTQApdaDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExFQ0xP VS8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9TSU1QTEVDTE9VLy1VeDNMcGttMVJveWVndE9VR0NZRTBBS1hXZy5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAYPgMA0GCSqGSIb3DQEB CwUAA4IBAQBGuaHxtNq12mR+zF3JuHh2hv0MkHZi2bsbwwNNB/o0SjHudw1vL3m6 XQ7nEK1IaXyIlfamWw00+dbFpfm2ALuZx90l9lhJV8XmDvuisjjHFw2bnnK2EuYd O1gdJJftb5KK9VgrAB1h/oZFXmh0hk2Cb21RiFjOIWtlCE6pBSSkkBcT9chNWITS +UD8vlb7JCh7jnMmzppMS/QWOOvR1+jsjCfesGkOlCtlaBzvlFiybyNpRggJQIS0 Yt8xcrvdzQF8e3mzdEaQC92iHI3EWZx2ZYoaSFbGLXF+zrPZj5ecotzDhleLoYf0 mzlDi7s+Fday9V7Vy2dYQyAIyVhE4NYw -----END CERTIFICATE-----Generated at Tue May 21 08:01:31 2024 by rpki-client on console-fra.rpki-client.org