$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer File: 6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer (raw, json) Hash identifier: iapzW322wsOz9HyLnm+Saz0gn1pD4DpLBf2a+5FVSWY= Subject key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 1625 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 02:33:14 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 157.15.32.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 07:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5669 (0x1625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Aug 26 02:33:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EAB250D058FACBEB3EA0D16B53865061339074B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:20:c6:ac:63:58:1d:d4:1d:c6:a6:9b:d0:5c: 41:66:59:65:7d:15:2a:85:8c:6d:42:40:a0:69:28: e5:c5:c7:2c:10:a4:30:f1:4c:a9:e5:00:ad:32:09: 7c:ce:0b:ba:59:8d:99:82:3f:c7:1b:ac:42:ef:3b: ce:6f:b3:ed:04:13:0b:e6:9a:26:91:ca:c6:9b:a5: db:dc:77:b9:b3:36:8d:db:86:81:01:23:cb:b7:c0: 81:96:c7:1a:08:82:59:0a:99:2f:71:c2:d9:b4:69: b8:92:0d:89:b1:89:b6:04:30:23:74:13:dd:7e:76: 66:29:e0:5b:8f:52:e9:b7:5e:b7:db:e3:d5:1e:c4: 17:9c:15:3d:8c:a8:a8:75:9e:1d:4f:68:79:36:9d: d5:b6:fe:c8:71:f4:60:40:59:1c:70:b5:8e:42:0c: 9c:48:dc:de:21:1d:cd:97:5d:56:a0:2d:7d:b4:b4: a2:58:52:62:c6:01:30:3c:2d:4f:27:ef:93:10:82: c1:59:4d:b2:4a:0a:6b:9d:e3:e3:3d:52:be:51:f6: be:40:b1:ee:bf:31:2c:3b:5d:47:c0:88:ce:2b:92: dc:ee:a2:b1:35:a0:99:61:e6:6a:7e:86:83:08:e4: a9:2e:10:25:35:95:d9:bd:5f:1f:35:08:cd:46:c5: d4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.15.32.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:02:ed:7f:ae:54:4b:fa:d1:aa:0e:a4:5b:a4:48:0d:cc:12: 30:e5:44:b6:9f:71:26:2b:b8:e1:92:08:16:3a:ca:3f:97:9e: 3b:61:5e:37:f1:8a:ec:c2:46:62:10:4b:a4:a0:bb:ab:2a:ee: 79:0f:8d:42:3d:b3:bb:fa:0b:02:08:4c:eb:b3:33:5a:97:61: 74:c7:57:9d:26:ca:b4:40:55:64:c3:56:0d:ff:00:3a:4e:15: cd:be:19:e8:8e:75:f4:83:a4:01:e4:ab:b3:52:53:14:32:23: 7f:cc:6f:62:09:20:d0:7b:14:c1:79:30:13:1f:fe:ae:2c:3e: 38:94:3e:7b:d8:37:6e:15:65:a8:4c:a7:f8:f7:d1:7f:3f:17: 98:c8:94:38:f0:4d:c2:32:2b:ef:cd:73:84:5b:96:2f:88:20: 9f:a8:de:30:62:18:1e:4a:a0:39:c4:9e:2b:0a:17:ea:39:b5: 6c:2c:1b:c5:95:48:9e:2e:56:16:63:f8:c5:81:c9:42:ad:90: c5:18:27:6f:fb:a4:7e:56:f2:14:54:bf:d7:64:96:cb:d3:2b: bc:58:df:0c:3b:4e:32:4e:98:82:81:9c:c5:f4:2c:07:be:6a: 9c:ee:ac:77:62:2b:87:fd:d5:4b:41:37:59:e3:a2:89:34:04: cd:5e:8d:7d -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgICFiUwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI0MDgyNjAyMzMxNFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoRUFCMjUwRDA1OEZBQ0JFQjNFQTBEMTZCNTM4NjUwNjEzMzkwNzRC NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOUgxqxjWB3UHcamm9Bc QWZZZX0VKoWMbUJAoGko5cXHLBCkMPFMqeUArTIJfM4LulmNmYI/xxusQu87zm+z 7QQTC+aaJpHKxpul29x3ubM2jduGgQEjy7fAgZbHGgiCWQqZL3HC2bRpuJINibGJ tgQwI3QT3X52ZingW49S6bdet9vj1R7EF5wVPYyoqHWeHU9oeTad1bb+yHH0YEBZ HHC1jkIMnEjc3iEdzZddVqAtfbS0olhSYsYBMDwtTyfvkxCCwVlNskoKa53j4z1S vlH2vkCx7r8xLDtdR8CIziuS3O6isTWgmWHman6GgwjkqS4QJTWV2b1fHzUIzUbF 1D0CAwEAAaOCAk4wggJKMB0GA1UdDgQWBBTqslDQWPrL6z6g0WtThlBhM5B0tjAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev QVJDSEUvNnJKUTBGajZ5LXMtb05GclU0WlFZVE9RZExZLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PIDANBgkqhkiG9w0BAQsFAAOCAQEAnwLt f65US/rRqg6kW6RIDcwSMOVEtp9xJiu44ZIIFjrKP5eeO2FeN/GK7MJGYhBLpKC7 qyrueQ+NQj2zu/oLAghM67MzWpdhdMdXnSbKtEBVZMNWDf8AOk4Vzb4Z6I519IOk AeSrs1JTFDIjf8xvYgkg0HsUwXkwEx/+riw+OJQ+e9g3bhVlqEyn+PfRfz8XmMiU OPBNwjIr781zhFuWL4ggn6jeMGIYHkqgOcSeKwoX6jm1bCwbxZVIni5WFmP4xYHJ Qq2QxRgnb/ukflbyFFS/12SWy9MrvFjfDDtOMk6YgoGcxfQsB75qnO6sd2Irh/3V S0E3WeOiiTQEzV6NfQ== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:24 2024 by rpki-client on console-ams.rpki-client.org