$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer File: S0bOj4AxurdTZNpb2YHoiFBPtBE.cer (raw, json) Hash identifier: Ks0RLGzbWgaFvFdNyoK2Ps0UTWqgOoMWZZnk7Njlg64= Subject key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 1716 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Wed 09 Oct 2024 06:22:48 +0000 Certificate not after: Wed 08 Oct 2025 15:30:28 +0000 Subordinate resources: IP: 160.187.200.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5910 (0x1716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Oct 9 06:22:48 2024 GMT Not After : Oct 8 15:30:28 2025 GMT Subject: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:0e:e7:c2:ed:4c:83:94:17:51:16:03:36: da:f1:bb:04:a4:ff:5e:75:e2:00:3d:a6:38:6a:df: 67:84:79:91:ff:f5:9e:f5:e2:ee:6b:bb:48:bc:b6: 73:cf:81:59:a4:9f:7e:2a:47:b9:91:84:ef:29:73: 66:e9:f7:12:e4:50:5b:62:fa:db:b8:9b:28:08:ff: 35:91:42:c6:5b:90:4c:83:4b:fc:57:5b:f6:3c:86: e2:d8:99:ac:10:3e:e5:58:33:bd:5b:dc:5e:99:79: 94:cd:46:46:c3:04:15:fe:7e:2a:fe:5b:6a:61:8b: 0a:6d:14:d1:4f:32:2e:77:0f:ce:2a:c7:95:78:b3: fa:f2:c8:7a:f5:e1:f8:10:36:ff:9f:5e:35:3e:49: 26:9d:db:47:c0:14:6e:9e:68:1f:cf:62:d3:59:e2: 82:d2:ad:9a:8f:c7:ee:1e:3d:5b:02:1e:ad:ed:f7: 58:3e:9a:5c:cd:98:56:4a:13:8f:9f:0c:86:37:37: 7c:b2:11:02:a6:63:db:b4:58:08:a8:da:bd:ab:8b: 06:7c:5b:29:97:f1:b3:6a:1b:7a:c5:77:d3:20:00: 60:18:63:b4:ef:78:73:6e:fe:63:82:34:e1:d6:42: 62:89:6f:22:f5:07:94:72:cf:f8:6b:25:3c:e7:e4: 5b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.200.0/23 Signature Algorithm: sha256WithRSAEncryption 56:0e:60:39:d1:e9:f0:e0:5a:a5:a5:9f:e0:08:7f:94:8e:45: d2:4f:ff:5c:99:8a:5b:15:a6:2a:75:d5:2e:ae:51:65:39:c9: f9:8c:01:8a:72:07:8b:08:97:61:d1:c3:53:e8:0b:a3:83:00: f4:40:93:ea:19:98:b0:4b:c9:99:0b:9e:d3:53:6b:70:56:10: 9d:51:fe:59:55:e6:7e:34:c7:22:3c:08:6b:3f:e0:bb:59:e5: 63:0c:92:7d:1b:aa:7e:7e:f8:6e:a7:57:90:87:d1:57:e2:53: 55:47:a4:67:cf:d0:0b:d2:a1:b0:5c:14:7f:a3:22:91:c1:11: c0:27:87:7c:f3:7c:98:b5:57:35:80:7a:c2:7a:9c:20:aa:0b: a7:96:f3:da:e6:cb:8e:82:6b:49:bd:65:a0:61:f0:59:db:b7: ed:d2:fc:46:02:67:d3:4e:f7:90:0d:4d:0e:69:84:1f:9b:20: 04:91:74:a1:4f:f7:be:60:b8:dd:80:7a:d8:68:0f:43:34:13: 95:9d:a7:34:57:e8:0f:91:b9:3e:cf:58:3c:e5:df:fc:99:9f: 7b:a5:0f:e9:4d:da:5c:fe:d3:6a:15:66:91:69:6e:49:20:79: 1c:3e:3c:a4:75:e7:7e:27:7e:3d:47:44:7d:c9:a4:15:93:b2: 7f:25:f2:1d -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICFxYwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI0MTAwOTA2MjI0OFoXDTI1MTAwODE1MzAyOFowMzEx MC8GA1UEAxMoNEI0NkNFOEY4MDMxQkFCNzUzNjREQTVCRDk4MUU4ODg1MDRGQjQx MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM4IDufC7UyDlBdRFgM2 2vG7BKT/XnXiAD2mOGrfZ4R5kf/1nvXi7mu7SLy2c8+BWaSffipHuZGE7ylzZun3 EuRQW2L627ibKAj/NZFCxluQTINL/Fdb9jyG4tiZrBA+5VgzvVvcXpl5lM1GRsME Ff5+Kv5bamGLCm0U0U8yLncPzirHlXiz+vLIevXh+BA2/59eNT5JJp3bR8AUbp5o H89i01nigtKtmo/H7h49WwIere33WD6aXM2YVkoTj58Mhjc3fLIRAqZj27RYCKja vauLBnxbKZfxs2obesV30yAAYBhjtO94c27+Y4I04dZCYolvIvUHlHLP+GslPOfk W+MCAwEAAaOCAlgwggJUMB0GA1UdDgQWBBRLRs6PgDG6t1Nk2lvZgeiIUE+0ETAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOX05P MS8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UQUlXQU5fTk8xL1MwYk9qNEF4dXJkVFpOcGIyWUhvaUZCUHRCRS5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu8gwDQYJKoZIhvcNAQEL BQADggEBAFYOYDnR6fDgWqWln+AIf5SORdJP/1yZilsVpip11S6uUWU5yfmMAYpy B4sIl2HRw1PoC6ODAPRAk+oZmLBLyZkLntNTa3BWEJ1R/llV5n40xyI8CGs/4LtZ 5WMMkn0bqn5++G6nV5CH0VfiU1VHpGfP0AvSobBcFH+jIpHBEcAnh3zzfJi1VzWA esJ6nCCqC6eW89rmy46Ca0m9ZaBh8Fnbt+3S/EYCZ9NO95ANTQ5phB+bIASRdKFP 975guN2AethoD0M0E5WdpzRX6A+RuT7PWDzl3/yZn3ulD+lN2lz+02oVZpFpbkkg eRw+PKR1534nfj1HRH3JpBWTsn8l8h0= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:31 2024 by rpki-client on console-fra.rpki-client.org