$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.cer File: Z2LgCk_vzdfwUnPkFQIYw6n-Euk.cer (raw, json) Hash identifier: QkdW3fiG6bNiiBTAP3JCn598enqu/YL7JonfW8/+9LU= Subject key identifier: 67:62:E0:0A:4F:EF:CD:D7:F0:52:73:E4:15:02:18:C3:A9:FE:12:E9 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 27FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:14 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.134.80.0/22 IP: 2404:62c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10238 (0x27fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6762E00A4FEFCDD7F05273E4150218C3A9FE12E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:eb:f8:7f:d8:81:df:90:a9:98:4b:e5:11: e2:cc:df:b0:da:f8:c4:83:1b:d1:af:4a:f6:b0:f8: f8:ab:e2:f3:cd:6c:81:b8:2b:83:5c:6b:63:82:8b: ff:54:a6:44:b1:0d:f6:4a:db:65:e7:ce:e1:31:eb: 1a:d4:24:71:25:1e:3b:76:8a:bc:73:1f:ef:5e:91: d0:b3:7d:66:9f:13:d0:ba:12:6b:47:d7:ba:ce:6b: 0e:6c:f1:31:c3:a3:7f:4c:4d:84:20:c6:b4:0a:6b: 7d:5d:32:cb:4d:e9:5f:d1:2a:59:a0:df:5f:eb:9a: 1c:5f:25:73:20:44:38:3c:38:81:19:ad:3e:d6:47: 75:37:7b:cf:9f:ca:88:ac:65:ad:3a:e8:8f:7d:c1: 36:5d:51:e7:4b:02:13:73:ae:ec:88:bb:a6:de:22: 36:78:0f:84:3b:47:be:a3:e9:24:28:59:25:e0:10: 71:74:29:b0:af:db:64:f1:3d:30:51:cf:0b:56:c9: 3d:9f:8f:d9:9b:33:a0:e5:5e:b4:90:b2:00:8e:81: b6:ef:85:df:18:7e:39:e3:68:58:ec:ed:ad:e3:53: 88:3b:0c:91:98:59:46:26:85:9b:42:25:2c:fa:c1: 60:2c:61:ec:b4:f0:07:cd:2c:43:52:2f:d3:8a:d0: f4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:62:E0:0A:4F:EF:CD:D7:F0:52:73:E4:15:02:18:C3:A9:FE:12:E9 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.134.80.0/22 IPv6: 2404:62c0::/32 Signature Algorithm: sha256WithRSAEncryption 91:5e:f3:27:ed:0e:ed:f1:c6:13:a6:fc:49:46:f7:fa:66:4d: 84:81:eb:08:e4:3c:2e:62:12:6f:d4:81:1d:bf:39:3a:b3:2e: 48:a6:3d:13:21:66:6a:11:f0:0e:0e:a3:0e:af:bb:ec:dd:15: 39:24:4a:ba:2e:33:bf:5c:4d:92:ce:21:eb:ca:83:84:81:f6: d8:d8:6d:02:90:85:57:30:03:3c:80:c7:de:04:26:b5:fe:56: d0:5c:87:80:98:02:3c:66:93:d1:4c:c4:40:a7:de:59:bb:fc: d5:4f:38:3a:b2:a5:19:91:0b:85:db:4d:1b:89:8d:d1:12:28: e9:de:ec:c1:ef:2c:2a:86:25:70:62:17:f9:5e:71:5a:8c:1a: 8e:2f:4b:e7:1a:83:b2:0d:46:54:9c:5a:99:dd:3b:e7:f3:55: 04:20:2a:24:53:3b:03:63:c1:b1:96:0b:46:53:7e:69:5c:39: 53:89:56:9f:e8:7d:c9:6d:91:ac:42:70:5f:50:ec:f7:e7:9f: 44:b5:39:09:03:41:e6:95:f7:ac:56:01:da:35:85:9d:ad:a8: 5a:65:a2:33:94:27:b9:74:6e:6c:b3:db:23:6c:89:3e:5e:98: 7a:e9:66:fc:84:5e:fb:32:e2:e7:9e:bc:80:e4:af:11:5e:ec: 45:71:c5:13 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICJ/4wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTExNFoXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoNjc2MkUwMEE0RkVGQ0REN0YwNTI3M0U0MTUwMjE4QzNBOUZFMTJF OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALyY6/h/2IHfkKmYS+UR 4szfsNr4xIMb0a9K9rD4+Kvi881sgbgrg1xrY4KL/1SmRLEN9krbZefO4THrGtQk cSUeO3aKvHMf716R0LN9Zp8T0LoSa0fXus5rDmzxMcOjf0xNhCDGtAprfV0yy03p X9EqWaDfX+uaHF8lcyBEODw4gRmtPtZHdTd7z5/KiKxlrTroj33BNl1R50sCE3Ou 7Ii7pt4iNngPhDtHvqPpJChZJeAQcXQpsK/bZPE9MFHPC1bJPZ+P2ZszoOVetJCy AI6Btu+F3xh+OeNoWOztreNTiDsMkZhZRiaFm0IlLPrBYCxh7LTwB80sQ1Iv04rQ 9IECAwEAAaOCAmcwggJjMB0GA1UdDgQWBBRnYuAKT+/N1/BSc+QVAhjDqf4S6TAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWUlNSU5HSU5G Ty8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZSU1JTkdJTkZPL1oyTGdDa192emRmd1VuUGtGUUlZdzZuLUV1ay5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJnhlAwDQQCAAIwBwMFACQE YsAwDQYJKoZIhvcNAQELBQADggEBAJFe8yftDu3xxhOm/ElG9/pmTYSB6wjkPC5i Em/UgR2/OTqzLkimPRMhZmoR8A4Oow6vu+zdFTkkSrouM79cTZLOIevKg4SB9tjY bQKQhVcwAzyAx94EJrX+VtBch4CYAjxmk9FMxECn3lm7/NVPODqypRmRC4XbTRuJ jdESKOne7MHvLCqGJXBiF/lecVqMGo4vS+cag7INRlScWpndO+fzVQQgKiRTOwNj wbGWC0ZTfmlcOVOJVp/ofcltkaxCcF9Q7Pfnn0S1OQkDQeaV96xWAdo1hZ2tqFpl ojOUJ7l0bmyz2yNsiT5emHrpZvyEXvsy4ueevIDkrxFe7EVxxRM= -----END CERTIFICATE-----Generated at Tue May 21 21:12:31 2024 by rpki-client on console-fra.rpki-client.org