$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.cer File: Z2LgCk_vzdfwUnPkFQIYw6n-Euk.cer (raw, json) Hash identifier: 9J2gpQxcPyfpuacTqbilZ2Xy+vi1EHYSjZDN2LnjEok= Subject key identifier: 67:62:E0:0A:4F:EF:CD:D7:F0:52:73:E4:15:02:18:C3:A9:FE:12:E9 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2F5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:38 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.134.80.0/22 IP: 2404:62c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12125 (0x2f5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6762E00A4FEFCDD7F05273E4150218C3A9FE12E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:eb:f8:7f:d8:81:df:90:a9:98:4b:e5:11: e2:cc:df:b0:da:f8:c4:83:1b:d1:af:4a:f6:b0:f8: f8:ab:e2:f3:cd:6c:81:b8:2b:83:5c:6b:63:82:8b: ff:54:a6:44:b1:0d:f6:4a:db:65:e7:ce:e1:31:eb: 1a:d4:24:71:25:1e:3b:76:8a:bc:73:1f:ef:5e:91: d0:b3:7d:66:9f:13:d0:ba:12:6b:47:d7:ba:ce:6b: 0e:6c:f1:31:c3:a3:7f:4c:4d:84:20:c6:b4:0a:6b: 7d:5d:32:cb:4d:e9:5f:d1:2a:59:a0:df:5f:eb:9a: 1c:5f:25:73:20:44:38:3c:38:81:19:ad:3e:d6:47: 75:37:7b:cf:9f:ca:88:ac:65:ad:3a:e8:8f:7d:c1: 36:5d:51:e7:4b:02:13:73:ae:ec:88:bb:a6:de:22: 36:78:0f:84:3b:47:be:a3:e9:24:28:59:25:e0:10: 71:74:29:b0:af:db:64:f1:3d:30:51:cf:0b:56:c9: 3d:9f:8f:d9:9b:33:a0:e5:5e:b4:90:b2:00:8e:81: b6:ef:85:df:18:7e:39:e3:68:58:ec:ed:ad:e3:53: 88:3b:0c:91:98:59:46:26:85:9b:42:25:2c:fa:c1: 60:2c:61:ec:b4:f0:07:cd:2c:43:52:2f:d3:8a:d0: f4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:62:E0:0A:4F:EF:CD:D7:F0:52:73:E4:15:02:18:C3:A9:FE:12:E9 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.134.80.0/22 IPv6: 2404:62c0::/32 Signature Algorithm: sha256WithRSAEncryption 47:36:26:83:c1:d6:d7:51:5f:bc:f3:9d:93:52:0c:b8:7f:34: 45:0d:9d:d5:a9:b6:48:69:b4:64:89:6a:00:19:32:0d:01:e3: b0:13:46:27:57:4e:89:75:c1:d7:ca:37:69:53:38:f6:e3:c6: 7d:e2:35:b8:8f:5c:dd:d8:7e:76:f4:51:74:d3:f3:1e:e7:97: 91:b7:ae:1c:6d:ea:3f:c1:85:9e:4f:47:ff:d0:69:46:e4:4c: 34:08:f0:27:6d:c9:0f:88:d5:6a:20:4e:b3:df:f7:d5:b0:3c: ea:f8:d4:0e:dc:56:36:41:5d:71:84:6c:f1:a8:bb:c8:8f:0e: 25:27:4d:45:e5:a2:de:fb:67:a4:ca:f5:63:e0:32:75:ed:33: 1b:d7:82:81:e3:6c:3d:62:ca:fd:04:26:d6:2f:7c:09:0f:ac: 11:f5:15:11:23:d0:1a:84:c2:06:a7:62:77:54:ed:eb:70:e5: fe:b9:12:62:62:26:e9:c1:98:46:1e:98:1a:87:8d:df:64:32: 23:eb:05:8e:0d:3f:08:43:ba:44:0e:81:10:92:a8:58:b8:49: 61:5c:0a:2a:ae:c1:8f:80:53:aa:95:90:b7:18:97:77:e1:80: a8:f2:b4:d7:36:07:56:a8:8b:3d:00:9b:01:5e:60:53:fe:00: 8f:a5:02:6e -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICL10wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTczOFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoNjc2MkUwMEE0RkVGQ0REN0YwNTI3M0U0MTUwMjE4QzNBOUZFMTJF OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALyY6/h/2IHfkKmYS+UR 4szfsNr4xIMb0a9K9rD4+Kvi881sgbgrg1xrY4KL/1SmRLEN9krbZefO4THrGtQk cSUeO3aKvHMf716R0LN9Zp8T0LoSa0fXus5rDmzxMcOjf0xNhCDGtAprfV0yy03p X9EqWaDfX+uaHF8lcyBEODw4gRmtPtZHdTd7z5/KiKxlrTroj33BNl1R50sCE3Ou 7Ii7pt4iNngPhDtHvqPpJChZJeAQcXQpsK/bZPE9MFHPC1bJPZ+P2ZszoOVetJCy AI6Btu+F3xh+OeNoWOztreNTiDsMkZhZRiaFm0IlLPrBYCxh7LTwB80sQ1Iv04rQ 9IECAwEAAaOCAmcwggJjMB0GA1UdDgQWBBRnYuAKT+/N1/BSc+QVAhjDqf4S6TAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWUlNSU5HSU5G Ty8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZSU1JTkdJTkZPL1oyTGdDa192emRmd1VuUGtGUUlZdzZuLUV1ay5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJnhlAwDQQCAAIwBwMFACQE YsAwDQYJKoZIhvcNAQELBQADggEBAEc2JoPB1tdRX7zznZNSDLh/NEUNndWptkhp tGSJagAZMg0B47ATRidXTol1wdfKN2lTOPbjxn3iNbiPXN3Yfnb0UXTT8x7nl5G3 rhxt6j/BhZ5PR//QaUbkTDQI8CdtyQ+I1WogTrPf99WwPOr41A7cVjZBXXGEbPGo u8iPDiUnTUXlot77Z6TK9WPgMnXtMxvXgoHjbD1iyv0EJtYvfAkPrBH1FREj0BqE wganYndU7etw5f65EmJiJunBmEYemBqHjd9kMiPrBY4NPwhDukQOgRCSqFi4SWFc CiquwY+AU6qVkLcYl3fhgKjytNc2B1aoiz0AmwFeYFP+AI+lAm4= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:43 2024 by rpki-client on console-fra.rpki-client.org