$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer File: 6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer (raw, json) Hash identifier: 2O28DSyMjiPti974BqkWY5mvnCRubAhSfOUZNM8dL00= Subject key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 147D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Tue 30 Jan 2024 09:07:07 +0000 Certificate not after: Thu 23 Jan 2025 15:30:21 +0000 Subordinate resources: IP: 157.15.32.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 05:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5245 (0x147d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Jan 30 09:07:07 2024 GMT Not After : Jan 23 15:30:21 2025 GMT Subject: CN=EAB250D058FACBEB3EA0D16B53865061339074B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:20:c6:ac:63:58:1d:d4:1d:c6:a6:9b:d0:5c: 41:66:59:65:7d:15:2a:85:8c:6d:42:40:a0:69:28: e5:c5:c7:2c:10:a4:30:f1:4c:a9:e5:00:ad:32:09: 7c:ce:0b:ba:59:8d:99:82:3f:c7:1b:ac:42:ef:3b: ce:6f:b3:ed:04:13:0b:e6:9a:26:91:ca:c6:9b:a5: db:dc:77:b9:b3:36:8d:db:86:81:01:23:cb:b7:c0: 81:96:c7:1a:08:82:59:0a:99:2f:71:c2:d9:b4:69: b8:92:0d:89:b1:89:b6:04:30:23:74:13:dd:7e:76: 66:29:e0:5b:8f:52:e9:b7:5e:b7:db:e3:d5:1e:c4: 17:9c:15:3d:8c:a8:a8:75:9e:1d:4f:68:79:36:9d: d5:b6:fe:c8:71:f4:60:40:59:1c:70:b5:8e:42:0c: 9c:48:dc:de:21:1d:cd:97:5d:56:a0:2d:7d:b4:b4: a2:58:52:62:c6:01:30:3c:2d:4f:27:ef:93:10:82: c1:59:4d:b2:4a:0a:6b:9d:e3:e3:3d:52:be:51:f6: be:40:b1:ee:bf:31:2c:3b:5d:47:c0:88:ce:2b:92: dc:ee:a2:b1:35:a0:99:61:e6:6a:7e:86:83:08:e4: a9:2e:10:25:35:95:d9:bd:5f:1f:35:08:cd:46:c5: d4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.15.32.0/23 Signature Algorithm: sha256WithRSAEncryption 09:79:25:15:59:ac:4d:50:6c:05:52:67:5b:85:3e:b3:6d:10: 41:9a:e9:b1:d2:b5:42:0b:18:f3:6c:0b:a8:92:86:58:cd:25: 9e:97:54:0b:cc:fc:54:4f:e0:bb:01:26:23:9d:fa:71:ee:d6: ad:02:4a:57:5e:17:34:31:e7:cd:1d:8e:45:e0:c7:0b:e4:e4: 9a:10:7a:21:d9:dd:ed:60:27:c2:a7:b0:02:f6:99:e0:ec:05: b2:5e:12:ab:a7:17:0e:fd:88:2e:ea:94:0c:ff:18:d5:43:7f: df:39:24:e8:9a:1e:a6:c7:f7:21:80:37:0e:b1:f2:81:c5:ff: 04:26:0a:03:3e:e4:56:1c:1a:cc:96:52:eb:08:df:4a:1f:fd: 89:29:ab:25:8f:71:49:e4:68:a9:e7:78:88:5c:c9:15:e5:64: 22:08:95:4a:00:c7:ad:b1:c2:a2:16:67:ba:b2:d8:79:96:9d: 95:0a:46:c4:f2:f7:60:6f:29:00:b0:15:5b:e9:ea:80:f5:03: 53:9f:b9:11:ec:20:33:e7:4b:95:1b:f1:16:c0:31:0a:e0:92: fc:b6:d8:50:30:50:1a:e2:41:de:47:4d:59:5d:3e:b1:e3:96: 16:de:54:50:91:ea:3d:07:4f:ba:ff:e0:04:18:ea:bf:9c:8d: bc:9e:27:08 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgICFH0wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI0MDEzMDA5MDcwN1oXDTI1MDEyMzE1MzAyMVowMzEx MC8GA1UEAxMoRUFCMjUwRDA1OEZBQ0JFQjNFQTBEMTZCNTM4NjUwNjEzMzkwNzRC NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOUgxqxjWB3UHcamm9Bc QWZZZX0VKoWMbUJAoGko5cXHLBCkMPFMqeUArTIJfM4LulmNmYI/xxusQu87zm+z 7QQTC+aaJpHKxpul29x3ubM2jduGgQEjy7fAgZbHGgiCWQqZL3HC2bRpuJINibGJ tgQwI3QT3X52ZingW49S6bdet9vj1R7EF5wVPYyoqHWeHU9oeTad1bb+yHH0YEBZ HHC1jkIMnEjc3iEdzZddVqAtfbS0olhSYsYBMDwtTyfvkxCCwVlNskoKa53j4z1S vlH2vkCx7r8xLDtdR8CIziuS3O6isTWgmWHman6GgwjkqS4QJTWV2b1fHzUIzUbF 1D0CAwEAAaOCAk4wggJKMB0GA1UdDgQWBBTqslDQWPrL6z6g0WtThlBhM5B0tjAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev QVJDSEUvNnJKUTBGajZ5LXMtb05GclU0WlFZVE9RZExZLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PIDANBgkqhkiG9w0BAQsFAAOCAQEACXkl FVmsTVBsBVJnW4U+s20QQZrpsdK1QgsY82wLqJKGWM0lnpdUC8z8VE/guwEmI536 ce7WrQJKV14XNDHnzR2OReDHC+TkmhB6Idnd7WAnwqewAvaZ4OwFsl4Sq6cXDv2I LuqUDP8Y1UN/3zkk6Joepsf3IYA3DrHygcX/BCYKAz7kVhwazJZS6wjfSh/9iSmr JY9xSeRoqed4iFzJFeVkIgiVSgDHrbHCohZnurLYeZadlQpGxPL3YG8pALAVW+nq gPUDU5+5EewgM+dLlRvxFsAxCuCS/LbYUDBQGuJB3kdNWV0+seOWFt5UUJHqPQdP uv/gBBjqv5yNvJ4nCA== -----END CERTIFICATE-----Generated at Tue May 21 08:01:31 2024 by rpki-client on console-fra.rpki-client.org