$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/d4GSKMQp9oiOthhlrFUxRgfpH2I.cer File: d4GSKMQp9oiOthhlrFUxRgfpH2I.cer (raw, json) Hash identifier: xMfj8dsH+oei7HiLuNMghX7rAt+rM74G+h9oTrivjSw= Subject key identifier: 77:81:92:28:C4:29:F6:88:8E:B6:18:65:AC:55:31:46:07:E9:1F:62 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2F51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/d4GSKMQp9oiOthhlrFUxRgfpH2I.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:38 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.176.50.0/23 IP: 2400:30a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12113 (0x2f51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=77819228C429F6888EB61865AC55314607E91F62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:df:12:a9:c7:24:44:54:97:4d:b2:dc:8f:5e: db:c5:ba:9d:a6:0c:76:5e:af:ef:42:39:12:82:ab: e0:61:2a:51:7a:76:32:e1:4e:3a:74:25:bb:60:bb: 16:dd:51:78:dc:6f:a9:19:d4:72:35:43:95:09:6e: 8a:74:20:61:d8:b1:e2:73:e6:13:96:a4:4f:d9:66: f9:8c:a3:8b:e1:be:b3:03:b4:48:41:94:56:c7:9d: 38:5d:f2:a1:86:70:ad:f1:3b:2e:cb:89:38:fe:aa: df:84:86:f7:47:69:45:0d:b3:04:a2:d8:b6:48:b9: ea:55:03:f7:ed:5b:0c:85:13:a2:2b:c8:d7:91:f1: b8:e5:fa:36:28:48:d8:7d:64:de:8f:d1:0c:26:be: 79:19:69:44:fd:3c:75:e8:4e:9e:4a:7e:b2:9e:a1: f0:ff:d7:a4:33:69:99:a7:85:13:9b:e4:23:b2:da: a2:d9:25:90:1a:aa:70:79:33:e7:2a:e4:2a:78:ac: f4:96:5b:d6:2d:b8:da:c3:8e:c1:b0:6f:81:37:f2: 43:14:4c:ca:2a:83:a1:05:e2:f5:77:84:14:2a:96: 6f:72:fd:a4:62:21:e1:11:a2:f3:c6:88:80:c7:09: df:13:b8:29:de:5e:5a:16:c2:7b:bd:ff:97:01:2c: 07:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:81:92:28:C4:29:F6:88:8E:B6:18:65:AC:55:31:46:07:E9:1F:62 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUOSI/d4GSKMQp9oiOthhlrFUxRgfpH2I.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.176.50.0/23 IPv6: 2400:30a0::/32 Signature Algorithm: sha256WithRSAEncryption 54:f9:0c:5c:de:17:07:1a:f0:1f:b3:60:4a:f5:56:b7:0c:0a: 32:cf:a5:64:b1:87:6e:37:79:3b:3d:cc:bc:a9:fb:83:a7:b9: 28:b9:04:94:fb:fb:8d:0b:8f:24:9c:49:9c:90:9e:3f:93:92: 5f:4c:76:0c:d0:c1:91:63:b8:cb:0b:f4:ea:14:fa:9e:76:cd: a7:e9:c8:d6:b0:46:fb:4a:16:5f:ec:bf:7d:3b:d4:3f:f4:e1: cd:7c:a7:fe:dc:72:05:ee:b9:be:1e:9e:23:db:7c:44:05:dc: 10:4a:d8:55:cd:c3:2d:a0:82:5f:2d:7b:e4:7d:9b:5a:fa:7e: 9d:c5:7a:74:80:53:59:83:29:12:3c:12:50:9a:d4:41:fd:41: 6d:f4:b8:63:17:8a:fe:0b:c6:26:c7:a5:59:5d:ec:7d:f2:7c: 2a:44:2d:82:2e:02:64:d5:42:52:df:5f:71:a4:77:c3:43:26: 04:e5:33:c1:d0:3c:cc:df:f9:99:f8:ff:b8:3b:c7:10:7e:fc: f1:0d:f8:72:0a:d7:0f:78:61:0c:6d:17:8b:84:9d:01:0c:1c: a8:c0:da:78:05:f6:2f:c6:35:3d:e0:b8:24:09:6b:31:0d:60: dd:f0:98:88:55:ce:cc:97:58:20:55:e7:94:53:e0:0d:7f:f4: d6:f9:57:6c -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICL1EwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTczOFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoNzc4MTkyMjhDNDI5RjY4ODhFQjYxODY1QUM1NTMxNDYwN0U5MUY2 MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALPfEqnHJERUl02y3I9e 28W6naYMdl6v70I5EoKr4GEqUXp2MuFOOnQlu2C7Ft1ReNxvqRnUcjVDlQluinQg Ydix4nPmE5akT9lm+Yyji+G+swO0SEGUVsedOF3yoYZwrfE7LsuJOP6q34SG90dp RQ2zBKLYtki56lUD9+1bDIUToivI15HxuOX6NihI2H1k3o/RDCa+eRlpRP08dehO nkp+sp6h8P/XpDNpmaeFE5vkI7LaotklkBqqcHkz5yrkKnis9JZb1i242sOOwbBv gTfyQxRMyiqDoQXi9XeEFCqWb3L9pGIh4RGi88aIgMcJ3xO4Kd5eWhbCe73/lwEs B18CAwEAAaOCAl0wggJZMB0GA1UdDgQWBBR3gZIoxCn2iI62GGWsVTFGB+kfYjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTFVPU0kvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFVPU0kvZDRHU0tNUXA5b2lPdGhobHJGVXhSZ2ZwSDJJLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAWewMjANBAIAAjAHAwUAJAAwoDANBgkqhkiG 9w0BAQsFAAOCAQEAVPkMXN4XBxrwH7NgSvVWtwwKMs+lZLGHbjd5Oz3MvKn7g6e5 KLkElPv7jQuPJJxJnJCeP5OSX0x2DNDBkWO4ywv06hT6nnbNp+nI1rBG+0oWX+y/ fTvUP/ThzXyn/txyBe65vh6eI9t8RAXcEErYVc3DLaCCXy175H2bWvp+ncV6dIBT WYMpEjwSUJrUQf1BbfS4YxeK/gvGJselWV3sffJ8KkQtgi4CZNVCUt9fcaR3w0Mm BOUzwdA8zN/5mfj/uDvHEH788Q34cgrXD3hhDG0Xi4SdAQwcqMDaeAX2L8Y1PeC4 JAlrMQ1g3fCYiFXOzJdYIFXnlFPgDX/01vlXbA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:49 2024 by rpki-client on console-ams.rpki-client.org