$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer File: R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer (raw, json) Hash identifier: sRIUSHgXGzUfaiL6uXs99Bx98APGACleEhJCNTo62to= Subject key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 35D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:18 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: AS: 9918 IP: 61.61.0.0 -- 61.61.191.255 IP: 211.78.0.0/18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13783 (0x35d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000 Validity Not Before: Feb 10 14:29:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cc:7b:c4:e1:30:a8:d2:3f:51:6f:93:63:09: 84:cf:d9:88:8b:9f:68:d7:4c:ed:44:7a:b5:c0:3c: 84:8f:8a:06:00:d2:c3:d3:1b:6a:2c:c4:b0:24:34: 83:db:15:44:77:2e:da:ee:dd:b6:fa:47:84:9f:cf: 26:3f:c6:5b:bc:c2:98:d9:bb:c4:03:66:b1:45:9e: 55:6e:e4:69:17:7b:64:7b:4d:86:6d:ce:82:ad:cb: ae:94:46:61:65:3f:94:d9:89:f6:5d:bd:89:3b:b5: 52:3f:a5:ef:d4:1d:a4:24:24:aa:a9:bb:d4:22:f3: 05:8f:38:b1:5c:04:ba:b1:a4:f0:43:22:35:5e:4c: 3a:72:dd:6c:c7:a9:c2:b7:6c:51:34:91:4b:4f:74: 5d:fd:35:f8:da:57:71:94:f3:3b:e6:aa:fc:ba:57: cc:5e:cc:d5:6b:1f:8e:00:e5:d9:58:19:ff:51:13: 7d:31:a3:77:30:6d:39:cc:6b:ef:4a:01:a7:53:04: 28:0b:99:79:b1:af:02:44:20:ef:e6:74:c1:41:a7: ce:c7:cf:fb:d4:3f:97:d2:73:dd:c6:2d:d3:bb:c9: ff:e4:64:3a:9d:37:ce:90:c2:62:09:1f:59:2b:e3: 46:25:4d:7d:b8:7b:c3:83:a7:9c:0f:99:f2:0b:46: fe:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 9918 sbgp-ipAddrBlock: critical IPv4: 61.61.0.0-61.61.191.255 211.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 52:a7:3a:4a:44:37:6b:8f:4f:65:48:21:04:27:5f:75:9c:77: 2d:a6:0e:0a:a2:88:79:2b:c0:5b:30:1a:2c:1a:0e:a7:ea:d4: bd:0c:05:98:e9:e6:6a:cb:11:b4:7c:1a:dd:e5:f6:52:e5:91: 66:00:75:51:45:36:7c:bc:90:87:8f:2a:c7:d6:b4:f1:47:21: 75:95:d9:9a:9b:88:cf:bb:c3:91:d0:bb:09:fa:4d:6c:fb:24: 4e:8b:3c:27:5e:0f:e8:84:c1:47:06:70:05:43:45:f2:6e:c9: 24:61:16:05:39:72:77:8f:01:33:4d:66:eb:2e:83:f6:08:f7: f7:24:12:67:fa:55:d3:b1:05:78:4d:40:95:12:5d:97:26:ca: f5:fd:bd:b6:86:a2:15:d8:3b:f8:32:df:de:a1:3e:45:13:25: 85:2a:81:ad:33:6b:9c:5d:01:59:62:32:1f:8f:9f:b6:1e:40: f3:6d:19:c7:63:1b:23:ee:a1:3d:99:26:64:c3:22:ee:03:fd: c2:0a:5b:c1:0f:c2:12:cf:45:9e:dc:9a:66:16:8b:f3:c2:55: db:4d:c1:1f:f3:d0:9a:9f:0e:55:11:9f:dc:cf:24:4a:13:ab: b5:df:8e:a7:7c:3c:1b:d7:51:f8:03:04:59:6e:92:ca:29:5b: 02:db:85:6e -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgICNdcwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkxOFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoNDc3MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJG MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKjMe8ThMKjSP1Fvk2MJ hM/ZiIufaNdM7UR6tcA8hI+KBgDSw9MbaizEsCQ0g9sVRHcu2u7dtvpHhJ/PJj/G W7zCmNm7xANmsUWeVW7kaRd7ZHtNhm3Ogq3LrpRGYWU/lNmJ9l29iTu1Uj+l79Qd pCQkqqm71CLzBY84sVwEurGk8EMiNV5MOnLdbMepwrdsUTSRS090Xf01+NpXcZTz O+aq/LpXzF7M1WsfjgDl2VgZ/1ETfTGjdzBtOcxr70oBp1MEKAuZebGvAkQg7+Z0 wUGnzsfP+9Q/l9Jz3cYt07vJ/+RkOp03zpDCYgkfWSvjRiVNfbh7w4OnnA+Z8gtG /h8CAwEAAaOCAnIwggJuMB0GA1UdDgQWBBRHcvcVNFtULh1wi8slcfzXLdJr8zAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdAGCCsGAQUFBwELBIHDMIHAMDUGCCsGAQUFBzAF hilyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzBUBggr BgEFBQcwCoZIcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tH VC9SM0wzRlRSYlZDNGRjSXZMSlhIODF5M1NhX00ubWZ0MDEGCCsGAQUFBzANhiVo dHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBkGCCsGAQUFBwEI AQH/BAowCKAGMAQCAia+MCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAATATMAsDAwA9 PQMEBj09gAMEBtNOADANBgkqhkiG9w0BAQsFAAOCAQEAUqc6SkQ3a49PZUghBCdf dZx3LaYOCqKIeSvAWzAaLBoOp+rUvQwFmOnmassRtHwa3eX2UuWRZgB1UUU2fLyQ h48qx9a08UchdZXZmpuIz7vDkdC7CfpNbPskTos8J14P6ITBRwZwBUNF8m7JJGEW BTlyd48BM01m6y6D9gj39yQSZ/pV07EFeE1AlRJdlybK9f29toaiFdg7+DLf3qE+ RRMlhSqBrTNrnF0BWWIyH4+fth5A820Zx2MbI+6hPZkmZMMi7gP9wgpbwQ/CEs9F ntyaZhaL88JV203BH/PQmp8OVRGf3M8kShOrtd+Op3w8G9dR+AMEWW6SyilbAtuF bg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:15:06 2025 by rpki-client