$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer File: 6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer (raw, json) Hash identifier: RTYyNlLgUEC/s3ykpDuYCF9tpAzQthN2nIDXis1E4dI= Subject key identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 273A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:03 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.126.180.0/22 IP: 2404:f40::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10042 (0x273a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E95973EB86F597CAE612C67929ED9352E70B5528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:33:7b:1b:71:58:0d:f4:59:bf:58:4b:8d:93: 33:d8:00:26:69:65:33:8b:79:d9:3c:4a:78:ca:4e: 19:d0:6a:22:43:fc:47:c6:84:fe:ae:25:d5:10:14: 4d:72:29:dd:66:25:b3:cf:fe:4a:65:41:c5:34:6c: ff:3c:a7:91:5c:9d:d1:10:9b:80:77:17:87:06:af: 80:a0:86:0d:c3:7a:cf:45:f1:3e:52:70:0f:78:23: 6d:75:6c:33:62:21:4a:4c:53:ce:0a:52:77:22:78: 0e:bf:e0:42:f5:c0:1a:72:43:6c:87:4b:22:d2:30: 4c:e4:43:39:9d:57:21:11:7d:cc:75:21:a9:52:51: 05:d5:6c:49:08:33:21:28:05:69:89:a9:03:a7:d3: 58:01:61:9c:ce:56:2c:9c:fb:53:3d:85:95:14:89: aa:f1:cf:ff:83:e2:73:8a:78:e3:33:00:da:f4:a6: 69:6d:6c:c5:23:20:0b:c2:5d:40:51:14:bc:9d:da: e6:95:f1:b8:8c:af:d7:a6:d8:28:05:12:5a:cf:76: c4:c5:bd:13:a8:70:1b:19:51:6d:76:fa:32:f1:53: 04:0c:15:2e:18:aa:04:f5:9a:22:ee:4b:69:3c:4a: fd:d3:c2:d0:62:99:c4:20:e1:0a:f5:f8:9e:c7:30: 4f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.180.0/22 IPv6: 2404:f40::/32 Signature Algorithm: sha256WithRSAEncryption 10:ac:4d:ee:98:4e:3c:ca:de:5d:50:28:00:61:8b:d2:b5:76: b3:b2:21:19:88:d2:4a:e8:b7:c4:18:4d:d0:57:61:76:4f:9d: 9c:01:a1:9e:e3:78:08:40:bd:2d:76:72:30:20:bb:c0:43:65: 64:7b:63:4a:ee:a3:e8:37:a9:cd:ba:33:f5:f9:a2:05:eb:c9: 92:49:38:f4:11:54:31:1a:64:93:c6:5c:39:96:aa:f7:06:15: c4:4e:f3:02:6f:db:1d:ca:fd:db:e8:d4:54:46:dd:12:cb:bb: 74:f5:26:4c:42:48:ed:81:30:9e:07:9b:dd:2c:68:61:88:ef: 9f:a6:24:75:1c:6e:f0:df:c6:dd:38:71:00:73:16:66:04:6d: 3f:47:44:1b:c1:1c:e1:61:e1:84:ca:13:5e:36:b4:68:14:3a: 82:50:f9:a7:7a:8b:5e:c7:bb:42:df:6b:75:ea:f1:08:c0:3e: f0:50:6f:54:0d:22:6b:33:5f:65:40:9a:24:7a:bd:a1:07:1f: 32:04:b9:82:09:c5:76:f4:22:06:35:57:83:19:7d:40:04:93: f3:d6:74:2f:9a:12:b3:67:34:41:76:aa:ca:bd:ca:3f:52:3e: ab:9a:42:47:dd:62:1e:94:70:90:33:4b:b0:f3:65:c2:c9:78: a3:72:e2:e1 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICJzowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEwM1oXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoRTk1OTczRUI4NkY1OTdDQUU2MTJDNjc5MjlFRDkzNTJFNzBCNTUy ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKEzextxWA30Wb9YS42T M9gAJmllM4t52TxKeMpOGdBqIkP8R8aE/q4l1RAUTXIp3WYls8/+SmVBxTRs/zyn kVyd0RCbgHcXhwavgKCGDcN6z0XxPlJwD3gjbXVsM2IhSkxTzgpSdyJ4Dr/gQvXA GnJDbIdLItIwTORDOZ1XIRF9zHUhqVJRBdVsSQgzISgFaYmpA6fTWAFhnM5WLJz7 Uz2FlRSJqvHP/4Pic4p44zMA2vSmaW1sxSMgC8JdQFEUvJ3a5pXxuIyv16bYKAUS Ws92xMW9E6hwGxlRbXb6MvFTBAwVLhiqBPWaIu5LaTxK/dPC0GKZxCDhCvX4nscw T7UCAwEAAaOCAmMwggJfMB0GA1UdDgQWBBTpWXPrhvWXyuYSxnkp7ZNS5wtVKDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdNRTEyMDQv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSFdNRTEyMDQvNlZsejY0YjFsOHJtRXNaNUtlMlRVdWNMVlNnLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAu BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAmd+tDANBAIAAjAHAwUAJAQPQDAN BgkqhkiG9w0BAQsFAAOCAQEAEKxN7phOPMreXVAoAGGL0rV2s7IhGYjSSui3xBhN 0Fdhdk+dnAGhnuN4CEC9LXZyMCC7wENlZHtjSu6j6Depzboz9fmiBevJkkk49BFU MRpkk8ZcOZaq9wYVxE7zAm/bHcr92+jUVEbdEsu7dPUmTEJI7YEwngeb3SxoYYjv n6YkdRxu8N/G3ThxAHMWZgRtP0dEG8Ec4WHhhMoTXja0aBQ6glD5p3qLXse7Qt9r derxCMA+8FBvVA0iazNfZUCaJHq9oQcfMgS5ggnFdvQiBjVXgxl9QAST89Z0L5oS s2c0QXaqyr3KP1I+q5pCR91iHpRwkDNLsPNlwsl4o3Li4Q== -----END CERTIFICATE-----Generated at Tue May 21 08:01:31 2024 by rpki-client on console-fra.rpki-client.org