$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer File: 6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer (raw, json) Hash identifier: ekRE82660uodB9qyBolHwJLt6qZZx+K9Wo7yJcPUu0Y= Subject key identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2F27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:36 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.126.180.0/22 IP: 2404:f40::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12071 (0x2f27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E95973EB86F597CAE612C67929ED9352E70B5528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:33:7b:1b:71:58:0d:f4:59:bf:58:4b:8d:93: 33:d8:00:26:69:65:33:8b:79:d9:3c:4a:78:ca:4e: 19:d0:6a:22:43:fc:47:c6:84:fe:ae:25:d5:10:14: 4d:72:29:dd:66:25:b3:cf:fe:4a:65:41:c5:34:6c: ff:3c:a7:91:5c:9d:d1:10:9b:80:77:17:87:06:af: 80:a0:86:0d:c3:7a:cf:45:f1:3e:52:70:0f:78:23: 6d:75:6c:33:62:21:4a:4c:53:ce:0a:52:77:22:78: 0e:bf:e0:42:f5:c0:1a:72:43:6c:87:4b:22:d2:30: 4c:e4:43:39:9d:57:21:11:7d:cc:75:21:a9:52:51: 05:d5:6c:49:08:33:21:28:05:69:89:a9:03:a7:d3: 58:01:61:9c:ce:56:2c:9c:fb:53:3d:85:95:14:89: aa:f1:cf:ff:83:e2:73:8a:78:e3:33:00:da:f4:a6: 69:6d:6c:c5:23:20:0b:c2:5d:40:51:14:bc:9d:da: e6:95:f1:b8:8c:af:d7:a6:d8:28:05:12:5a:cf:76: c4:c5:bd:13:a8:70:1b:19:51:6d:76:fa:32:f1:53: 04:0c:15:2e:18:aa:04:f5:9a:22:ee:4b:69:3c:4a: fd:d3:c2:d0:62:99:c4:20:e1:0a:f5:f8:9e:c7:30: 4f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.180.0/22 IPv6: 2404:f40::/32 Signature Algorithm: sha256WithRSAEncryption 60:a4:98:76:32:2b:07:74:65:83:cd:fc:f6:54:24:80:26:8c: 24:75:c3:c0:04:82:3d:25:0e:01:7d:4e:ff:22:11:c4:ce:da: ee:db:02:d6:23:a3:23:a4:a5:0c:b7:c6:7d:a3:cc:14:2c:1d: 16:05:88:d4:e2:19:f5:7a:f7:d6:df:4b:50:f6:77:b0:f0:00: 10:19:31:30:59:98:8f:a0:99:7d:c9:9a:7f:ed:61:53:1c:a6: 20:47:78:ee:01:a2:58:3a:4f:4c:5f:29:a6:44:5f:55:43:55: 46:57:96:5f:75:e6:d7:9d:62:d9:e0:18:74:ce:90:05:f1:59: bc:63:92:1b:aa:c1:36:f5:fc:bd:2b:76:8a:ab:e3:57:1b:b7: 99:d8:05:64:05:de:be:15:6b:1b:49:04:a4:16:63:f3:6f:dd: c2:af:9d:2d:31:a4:f0:ae:98:d4:dd:9d:6e:5a:27:8f:9a:4d: 00:d3:43:56:c6:10:cf:7a:6b:c6:b6:42:62:19:87:dc:c8:86: 97:76:13:b9:15:a5:9c:06:51:b6:41:76:02:f8:c5:76:00:c8: 1a:de:87:29:bc:f6:f1:39:e9:e9:4b:ba:47:1c:6a:a0:8c:b9: bd:83:b1:7e:0d:ae:0a:e8:70:d0:da:19:73:ee:ff:33:da:a8: 08:6c:40:62 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICLycwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTczNloXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoRTk1OTczRUI4NkY1OTdDQUU2MTJDNjc5MjlFRDkzNTJFNzBCNTUy ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKEzextxWA30Wb9YS42T M9gAJmllM4t52TxKeMpOGdBqIkP8R8aE/q4l1RAUTXIp3WYls8/+SmVBxTRs/zyn kVyd0RCbgHcXhwavgKCGDcN6z0XxPlJwD3gjbXVsM2IhSkxTzgpSdyJ4Dr/gQvXA GnJDbIdLItIwTORDOZ1XIRF9zHUhqVJRBdVsSQgzISgFaYmpA6fTWAFhnM5WLJz7 Uz2FlRSJqvHP/4Pic4p44zMA2vSmaW1sxSMgC8JdQFEUvJ3a5pXxuIyv16bYKAUS Ws92xMW9E6hwGxlRbXb6MvFTBAwVLhiqBPWaIu5LaTxK/dPC0GKZxCDhCvX4nscw T7UCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBTpWXPrhvWXyuYSxnkp7ZNS5wtVKDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdNRTEyMDQv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSFdNRTEyMDQvNlZsejY0YjFsOHJtRXNaNUtlMlRVdWNMVlNnLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAu BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAmd+tDANBAIAAjAHAwUAJAQPQDAN BgkqhkiG9w0BAQsFAAOCAQEAYKSYdjIrB3Rlg8389lQkgCaMJHXDwASCPSUOAX1O /yIRxM7a7tsC1iOjI6SlDLfGfaPMFCwdFgWI1OIZ9Xr31t9LUPZ3sPAAEBkxMFmY j6CZfcmaf+1hUxymIEd47gGiWDpPTF8ppkRfVUNVRleWX3Xm151i2eAYdM6QBfFZ vGOSG6rBNvX8vSt2iqvjVxu3mdgFZAXevhVrG0kEpBZj82/dwq+dLTGk8K6Y1N2d blonj5pNANNDVsYQz3prxrZCYhmH3MiGl3YTuRWlnAZRtkF2AvjFdgDIGt6HKbz2 8Tnp6Uu6RxxqoIy5vYOxfg2uCuhw0NoZc+7/M9qoCGxAYg== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:22 2024 by rpki-client on console-fra.rpki-client.org