$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Ea0dvZwV2WVamhlYTHB1e5kN3BY.cer File: Ea0dvZwV2WVamhlYTHB1e5kN3BY.cer (raw, json) Hash identifier: WSnAAu+Sox5uwDRFSwfwpGG3rdq6+wqAmYfZsWnW8uQ= Subject key identifier: 11:AD:1D:BD:9C:15:D9:65:5A:9A:19:58:4C:70:75:7B:99:0D:DC:16 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2EEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/Ea0dvZwV2WVamhlYTHB1e5kN3BY.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:33 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 43.241.32.0/22 IP: 103.37.36.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12015 (0x2eef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=11AD1DBD9C15D9655A9A19584C70757B990DDC16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:78:bc:f9:7e:a7:a0:0a:e0:f2:72:d1:b4: 43:62:8d:56:78:c7:95:f5:65:5b:ea:f2:f9:f6:f8: 52:b7:a1:da:9d:3e:65:33:27:15:7b:c6:9e:cc:54: 65:66:d8:6a:46:79:47:e1:04:0c:13:d8:f5:d6:70: 45:fb:38:33:dc:f3:1f:4c:79:f2:37:12:84:20:57: 7f:94:af:ed:20:e9:41:0c:0f:8e:2d:6b:c8:81:52: da:f9:4b:49:8f:ec:9d:77:d1:22:f7:6a:21:13:25: 0d:c1:b8:d5:be:44:1d:78:ca:9c:3a:97:94:85:7f: 07:4d:97:c7:21:e2:ae:90:19:de:9e:08:40:04:01: 4e:34:49:c5:a7:9f:8b:49:19:cf:f8:ca:dc:c8:88: 3d:92:c3:cd:a5:6a:3f:f5:5b:33:0e:e3:96:99:aa: c8:d4:9d:98:a5:fd:dd:d0:e8:fc:00:5e:a5:3c:48: 5b:91:dc:b3:59:6c:7b:aa:ae:df:8d:ef:67:2d:3c: 52:c4:66:c5:93:b0:79:dc:52:93:84:b8:57:e6:e1: c5:db:1b:89:eb:e6:a4:a4:5a:15:bf:7c:77:31:5c: 56:59:cd:69:f1:ab:eb:cd:bb:29:47:4c:34:21:10: 0e:49:74:79:fd:8c:6b:03:d9:09:71:dd:eb:8b:63: 14:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AD:1D:BD:9C:15:D9:65:5A:9A:19:58:4C:70:75:7B:99:0D:DC:16 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEICHING/Ea0dvZwV2WVamhlYTHB1e5kN3BY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.241.32.0/22 103.37.36.0/22 Signature Algorithm: sha256WithRSAEncryption 27:1e:ed:a4:a6:6d:45:58:4e:57:c8:86:d3:05:12:a2:a8:0a: e8:d8:06:0e:f9:4d:b1:48:28:d2:d2:96:cd:11:7f:4e:84:b4: cc:ed:86:74:2b:92:2c:a7:f6:06:40:72:c4:67:8a:72:4d:ba: 7e:55:48:a2:dd:68:71:68:bd:7c:36:f1:5d:56:ef:d1:67:71: 9f:1b:c6:c3:24:1b:21:81:ed:37:03:28:58:6a:e7:bc:1c:d7: 50:81:e7:2f:b0:15:bf:64:54:4f:04:78:d4:4d:b6:97:80:2e: 41:cb:ca:ed:5b:8a:39:9a:d3:14:ef:be:a6:4f:86:90:75:5c: 2f:a5:82:48:4d:d3:c1:1d:38:cd:bc:e2:81:f0:db:d3:9a:8a: 87:ed:52:38:cd:f9:dc:2f:f6:bb:1e:6d:52:99:00:04:cb:bb: 55:20:77:12:62:b4:f3:b0:2f:c4:1c:27:6d:33:fb:7d:9f:9b: b7:6a:f9:c5:8d:f8:91:a9:a9:c6:a8:cf:a0:8c:a4:95:35:80: 62:93:8f:65:d0:32:28:17:be:b9:f9:e3:cc:69:c1:23:84:95: 54:93:c2:91:76:21:cb:92:d1:77:2c:da:df:71:ab:09:2c:f0: 71:6e:a8:bb:04:0d:3d:15:b9:57:94:fa:d3:a2:54:56:dc:f2: 19:1c:7f:82 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgICLu8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTczM1oXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoMTFBRDFEQkQ5QzE1RDk2NTVBOUExOTU4NEM3MDc1N0I5OTBEREMx NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM6feLz5fqegCuDyctG0 Q2KNVnjHlfVlW+ry+fb4Ureh2p0+ZTMnFXvGnsxUZWbYakZ5R+EEDBPY9dZwRfs4 M9zzH0x58jcShCBXf5Sv7SDpQQwPji1ryIFS2vlLSY/snXfRIvdqIRMlDcG41b5E HXjKnDqXlIV/B02XxyHirpAZ3p4IQAQBTjRJxaefi0kZz/jK3MiIPZLDzaVqP/Vb Mw7jlpmqyNSdmKX93dDo/ABepTxIW5Hcs1lse6qu343vZy08UsRmxZOwedxSk4S4 V+bhxdsbievmpKRaFb98dzFcVlnNafGr6827KUdMNCEQDkl0ef2MawPZCXHd64tj FDcCAwEAAaOCAlowggJWMB0GA1UdDgQWBBQRrR29nBXZZVqaGVhMcHV7mQ3cFjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VJQ0hJTkcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvV0VJQ0hJTkcvRWEwZHZad1YyV1ZhbWhsWVRIQjFlNWtOM0JZLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAl BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAivxIAMEAmclJDANBgkqhkiG9w0B AQsFAAOCAQEAJx7tpKZtRVhOV8iG0wUSoqgK6NgGDvlNsUgo0tKWzRF/ToS0zO2G dCuSLKf2BkByxGeKck26flVIot1ocWi9fDbxXVbv0WdxnxvGwyQbIYHtNwMoWGrn vBzXUIHnL7AVv2RUTwR41E22l4AuQcvK7VuKOZrTFO++pk+GkHVcL6WCSE3TwR04 zbzigfDb05qKh+1SOM353C/2ux5tUpkABMu7VSB3EmK087AvxBwnbTP7fZ+bt2r5 xY34kampxqjPoIyklTWAYpOPZdAyKBe+ufnjzGnBI4SVVJPCkXYhy5LRdyza33Gr CSzwcW6ouwQNPRW5V5T606JUVtzyGRx/gg== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:30 2024 by rpki-client on console-ams.rpki-client.org