$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer File: S0bOj4AxurdTZNpb2YHoiFBPtBE.cer (raw, json) Hash identifier: bAbCax9pqLiy5UMLdc5Ql09dbj/qRAvtPGmGfy4WOvY= Subject key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 19D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:27 +0000 Certificate not after: Wed 08 Oct 2025 15:30:28 +0000 Subordinate resources: IP: 160.187.200.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 21:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6609 (0x19d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000 Validity Not Before: Feb 10 14:29:27 2025 GMT Not After : Oct 8 15:30:28 2025 GMT Subject: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:0e:e7:c2:ed:4c:83:94:17:51:16:03:36: da:f1:bb:04:a4:ff:5e:75:e2:00:3d:a6:38:6a:df: 67:84:79:91:ff:f5:9e:f5:e2:ee:6b:bb:48:bc:b6: 73:cf:81:59:a4:9f:7e:2a:47:b9:91:84:ef:29:73: 66:e9:f7:12:e4:50:5b:62:fa:db:b8:9b:28:08:ff: 35:91:42:c6:5b:90:4c:83:4b:fc:57:5b:f6:3c:86: e2:d8:99:ac:10:3e:e5:58:33:bd:5b:dc:5e:99:79: 94:cd:46:46:c3:04:15:fe:7e:2a:fe:5b:6a:61:8b: 0a:6d:14:d1:4f:32:2e:77:0f:ce:2a:c7:95:78:b3: fa:f2:c8:7a:f5:e1:f8:10:36:ff:9f:5e:35:3e:49: 26:9d:db:47:c0:14:6e:9e:68:1f:cf:62:d3:59:e2: 82:d2:ad:9a:8f:c7:ee:1e:3d:5b:02:1e:ad:ed:f7: 58:3e:9a:5c:cd:98:56:4a:13:8f:9f:0c:86:37:37: 7c:b2:11:02:a6:63:db:b4:58:08:a8:da:bd:ab:8b: 06:7c:5b:29:97:f1:b3:6a:1b:7a:c5:77:d3:20:00: 60:18:63:b4:ef:78:73:6e:fe:63:82:34:e1:d6:42: 62:89:6f:22:f5:07:94:72:cf:f8:6b:25:3c:e7:e4: 5b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.200.0/23 Signature Algorithm: sha256WithRSAEncryption 38:1c:e4:4a:29:71:0b:e4:09:df:df:c8:22:17:e5:90:4e:c2: 9e:44:cd:20:33:31:2d:b9:f5:88:d7:b4:7f:f6:62:91:9c:70: 07:64:25:79:ad:28:93:ac:1e:02:b2:65:f8:2a:2a:18:13:0f: a8:89:aa:ef:e8:aa:23:9d:43:7d:e9:36:95:c8:18:7f:14:08: c9:e1:84:d9:a9:f9:3b:8d:b7:03:0d:7a:79:be:c2:62:a2:43: 0c:86:0f:6e:f9:fd:9c:4d:7c:90:42:23:97:f4:07:3b:ee:fb: 47:5f:d0:64:ee:76:ad:51:9d:a9:74:bc:f0:76:77:1b:45:11: 71:00:4e:e5:aa:5a:01:aa:e9:bc:78:14:dd:ab:0e:8c:4a:c0: 14:7b:c5:a5:74:8d:a7:5d:3f:e1:7e:6d:c7:02:4c:77:2e:b6: b7:f6:1d:69:15:ce:d8:3d:42:85:b3:0a:42:39:92:75:6e:eb: c8:a7:46:5c:2c:93:f7:77:6d:0b:ba:36:09:e7:db:af:be:0c: 0c:0f:21:1a:d3:ad:73:4b:c7:91:a2:61:c6:0e:dc:9a:f8:f7: 69:3c:c3:19:29:7a:63:08:72:92:f9:23:db:40:4c:35:10:71: 9f:c2:5e:cb:d4:0d:84:06:2c:01:fe:be:e9:a2:b5:ba:18:d6: 2a:02:db:95 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICGdEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI1MDIxMDE0MjkyN1oXDTI1MTAwODE1MzAyOFowMzEx MC8GA1UEAxMoNEI0NkNFOEY4MDMxQkFCNzUzNjREQTVCRDk4MUU4ODg1MDRGQjQx MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM4IDufC7UyDlBdRFgM2 2vG7BKT/XnXiAD2mOGrfZ4R5kf/1nvXi7mu7SLy2c8+BWaSffipHuZGE7ylzZun3 EuRQW2L627ibKAj/NZFCxluQTINL/Fdb9jyG4tiZrBA+5VgzvVvcXpl5lM1GRsME Ff5+Kv5bamGLCm0U0U8yLncPzirHlXiz+vLIevXh+BA2/59eNT5JJp3bR8AUbp5o H89i01nigtKtmo/H7h49WwIere33WD6aXM2YVkoTj58Mhjc3fLIRAqZj27RYCKja vauLBnxbKZfxs2obesV30yAAYBhjtO94c27+Y4I04dZCYolvIvUHlHLP+GslPOfk W+MCAwEAAaOCAlgwggJUMB0GA1UdDgQWBBRLRs6PgDG6t1Nk2lvZgeiIUE+0ETAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOX05P MS8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UQUlXQU5fTk8xL1MwYk9qNEF4dXJkVFpOcGIyWUhvaUZCUHRCRS5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu8gwDQYJKoZIhvcNAQEL BQADggEBADgc5EopcQvkCd/fyCIX5ZBOwp5EzSAzMS259YjXtH/2YpGccAdkJXmt KJOsHgKyZfgqKhgTD6iJqu/oqiOdQ33pNpXIGH8UCMnhhNmp+TuNtwMNenm+wmKi QwyGD275/ZxNfJBCI5f0Bzvu+0df0GTudq1Rnal0vPB2dxtFEXEATuWqWgGq6bx4 FN2rDoxKwBR7xaV0jaddP+F+bccCTHcutrf2HWkVztg9QoWzCkI5knVu68inRlws k/d3bQu6Ngnn26++DAwPIRrTrXNLx5GiYcYO3Jr492k8wxkpemMIcpL5I9tATDUQ cZ/CXsvUDYQGLAH+vumitboY1ioC25U= -----END CERTIFICATE-----Generated at Sat Apr 5 19:51:04 2025 by rpki-client