$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer File: T6amplWgxCuZx-IIfr70RKy1ZJM.cer (raw, json) Hash identifier: 95uVfgPpHyIJcpQ62g3uzZdCML3+gXiSYpXt2PQzyps= Subject key identifier: 4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2E21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:24 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.152.220.0/23 IP: 2406:2fc0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11809 (0x2e21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:64:fd:3b:66:5b:11:17:b5:43:a5:52:ab:e8: 74:e9:2b:42:0f:fe:6a:08:a6:0e:71:7d:58:fd:be: ac:e9:58:64:81:41:95:5d:58:d4:f8:ee:f0:48:f8: 4b:06:d8:1e:33:62:7e:06:a5:7e:c4:82:37:05:29: 97:fd:04:0c:98:75:3b:63:95:bc:87:bf:14:cd:94: 0c:57:4c:ed:56:04:b6:2b:aa:44:ae:24:20:35:44: 59:cc:63:c6:01:5b:43:cc:44:a8:5c:e2:aa:12:d7: 50:b6:c2:ac:f6:a7:b9:79:ab:5e:ad:0b:e5:d1:6a: e6:fb:62:67:a8:3a:1a:42:ce:fa:9b:20:13:6f:4b: 3f:e6:c9:e8:07:9d:f0:a5:e5:16:80:5d:42:65:3a: a3:19:98:7f:40:9d:bc:dd:47:36:ba:9d:a5:56:9f: 5f:02:de:60:24:d7:79:22:3d:7d:ed:1d:19:94:c9: 96:0e:9a:c7:1b:f0:44:ac:33:8d:d3:b5:de:44:f3: 89:bc:3b:74:44:4d:c1:26:01:8b:1f:59:cb:60:7e: 00:34:40:cb:a2:21:e5:16:23:ae:97:9d:18:e9:d9: 8f:d5:1f:92:a7:07:52:76:ae:0f:7c:f1:0d:76:62: 5e:ac:72:67:14:53:79:52:26:7e:12:15:d0:76:95: 0f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.220.0/23 IPv6: 2406:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption 24:13:74:e3:90:48:03:63:bd:ea:c5:ec:07:24:83:6d:a2:9a: aa:f5:64:c5:da:68:47:02:c4:5f:b5:62:84:5a:89:ec:b8:59: 81:f6:2e:41:dd:71:ce:28:2d:14:a8:85:1f:50:c4:f4:4b:0d: ff:14:95:fd:dd:d7:ef:57:ee:38:07:50:74:b9:9e:04:2e:5a: 8a:31:95:08:b2:dc:c0:e2:a1:26:08:f1:b8:74:59:3d:26:25: e3:64:d4:0a:71:ba:dc:74:20:86:03:cd:2a:56:25:95:29:45: c9:b1:f3:5b:73:42:a1:22:b8:df:95:71:35:3f:f9:64:07:12: e7:0c:4c:d6:84:77:a1:1e:c7:75:a6:d3:83:25:d8:9e:83:27: 76:a2:bb:eb:dc:63:38:4c:91:40:eb:ba:a1:f4:f2:b7:26:9c: eb:30:d0:f2:77:d4:17:2f:cb:2f:c4:80:8d:2e:ee:5a:1a:fb: 05:fa:9d:fc:06:54:f0:67:b7:a8:06:40:cf:ae:be:22:7a:2f: 62:c9:44:4d:91:d7:ab:71:4f:8b:bb:b2:27:a5:3c:4a:90:25: 0e:5b:d8:2d:2d:58:e1:8e:78:52:55:0c:1a:f2:3f:7c:ac:a6: ec:78:ff:be:0f:dc:fa:38:22:6a:08:94:35:c3:2d:9e:aa:74: f9:b6:16:46 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICLiEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTcyNFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoNEZBNkE2QTY1NUEwQzQyQjk5QzdFMjA4N0VCRUY0NDRBQ0I1NjQ5 MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOdk/TtmWxEXtUOlUqvo dOkrQg/+agimDnF9WP2+rOlYZIFBlV1Y1Pju8Ej4SwbYHjNifgalfsSCNwUpl/0E DJh1O2OVvIe/FM2UDFdM7VYEtiuqRK4kIDVEWcxjxgFbQ8xEqFziqhLXULbCrPan uXmrXq0L5dFq5vtiZ6g6GkLO+psgE29LP+bJ6Aed8KXlFoBdQmU6oxmYf0CdvN1H NrqdpVafXwLeYCTXeSI9fe0dGZTJlg6axxvwRKwzjdO13kTzibw7dERNwSYBix9Z y2B+ADRAy6Ih5RYjrpedGOnZj9UfkqcHUnauD3zxDXZiXqxyZxRTeVImfhIV0HaV D9ECAwEAAaOCAlkwggJVMB0GA1UdDgQWBBRPpqamVaDEK5nH4gh+vvRErLVkkzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdAGCCsGAQUFBwELBIHDMIHAMDUGCCsGAQUFBzAF hilyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSURULzBUBggr BgEFBQcwCoZIcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lE VC9UNmFtcGxXZ3hDdVp4LUlJZnI3MFJLeTFaSk0ubWZ0MDEGCCsGAQUFBzANhiVo dHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ5jcMA0EAgACMAcDBQAkBi/AMA0GCSqGSIb3DQEB CwUAA4IBAQAkE3TjkEgDY73qxewHJINtopqq9WTF2mhHAsRftWKEWonsuFmB9i5B 3XHOKC0UqIUfUMT0Sw3/FJX93dfvV+44B1B0uZ4ELlqKMZUIstzA4qEmCPG4dFk9 JiXjZNQKcbrcdCCGA80qViWVKUXJsfNbc0KhIrjflXE1P/lkBxLnDEzWhHehHsd1 ptODJdiegyd2orvr3GM4TJFA67qh9PK3JpzrMNDyd9QXL8svxICNLu5aGvsF+p38 BlTwZ7eoBkDPrr4iei9iyURNkdercU+Lu7InpTxKkCUOW9gtLVjhjnhSVQwa8j98 rKbseP++D9z6OCJqCJQ1wy2eqnT5thZG -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:32 2024 by rpki-client on console-fra.rpki-client.org