$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer File: jFCLfdoCT7LJ73-79PvQK59DGR0.cer (raw, json) Hash identifier: EbFCKiSWb2PUxffUunIJb77T0QldLowY7ORL4HpYqVM= Subject key identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 276C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:06 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.168.156.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 23:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10092 (0x276c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:2f:3b:62:91:80:95:0e:5b:50:5a:ed:59: 39:e7:6f:77:f7:0a:15:7f:a1:b8:61:dc:a6:e0:9a: 64:39:80:f9:d8:ca:83:8e:5c:90:5d:97:b1:ea:89: cf:fd:45:92:4b:46:5d:8d:7e:ec:6d:b5:ee:60:19: f2:56:93:43:81:f7:08:ce:f8:ae:fd:64:35:68:4e: 8b:af:4b:15:d4:e0:d5:d7:22:df:47:69:84:4b:2a: 33:ab:5a:ca:05:30:51:89:0d:77:a6:c0:04:06:32: 1d:72:e3:ab:39:67:09:95:ab:7c:d6:bc:16:55:55: be:5c:ba:f2:5b:ec:03:e2:32:52:e0:86:58:c2:e9: ad:cc:b9:8c:58:e6:71:9f:65:e0:39:15:52:d3:e3: ab:56:c7:8b:da:45:fe:58:8b:96:92:b5:1e:08:b1: 0e:40:b8:a8:ea:36:db:f0:fc:73:1b:8a:28:ac:fd: 97:4a:b4:b6:74:92:13:ec:3a:94:47:00:f3:7a:a5: 7b:0a:55:ba:c9:e4:cd:66:52:6e:ed:cd:b1:fb:c9: 7b:50:66:79:aa:13:02:d1:ce:65:22:bf:41:2d:8e: 23:a0:17:a8:f9:9a:fc:10:49:c1:52:cb:7a:63:7c: d6:e7:83:90:b4:d4:0c:75:45:63:59:4e:59:ea:41: 0a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.168.156.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:0e:6c:10:12:c9:bd:e8:03:75:1c:c2:7d:65:7e:e4:76:b5: e4:ab:d5:ac:78:2a:2b:0a:b2:82:b2:3a:c3:19:40:1d:e7:10: 7e:56:af:81:29:d6:7f:ef:c0:19:8b:c7:c4:a4:e2:18:dd:3a: f1:47:57:d0:1a:66:5c:73:a3:77:f8:38:ad:a2:46:cd:99:bc: 54:65:05:95:ea:d6:37:c1:8f:f5:95:23:3c:57:f2:c6:1a:81: e1:96:5e:2d:c9:5c:0c:16:d9:c9:15:66:68:70:63:21:c1:fe: 7f:40:45:20:5f:4f:61:ee:75:c4:77:23:28:06:d1:7b:74:94: 37:af:7a:c5:4a:89:20:4a:53:97:c1:b6:e4:e1:83:47:7c:4c: cc:45:95:07:90:ae:85:0f:dc:20:6b:0d:0a:2e:ca:50:0d:fb: 38:d0:cf:e1:29:95:91:dd:2b:41:76:d1:d5:b4:5d:f5:70:0f: 14:93:e9:7d:62:f5:c0:53:b8:62:53:d2:7b:19:e2:70:5e:99: 4e:48:af:c9:3f:cf:33:40:28:b2:4a:4f:4c:9f:45:d6:7d:a1: 94:da:f8:54:e2:2c:d2:da:98:83:d0:5b:55:37:71:46:32:91: d9:3a:b8:04:b7:4b:6d:08:6d:5a:c0:0a:0c:6e:5e:b2:06:5d: b2:03:df:e2 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICJ2wwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTEwNloXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoOEM1MDhCN0REQTAyNEZCMkM5RUY3RkJCRjRGQkQwMkI5RjQzMTkx RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1TLztikYCVDltQWu1Z Oedvd/cKFX+huGHcpuCaZDmA+djKg45ckF2XseqJz/1FkktGXY1+7G217mAZ8laT Q4H3CM74rv1kNWhOi69LFdTg1dci30dphEsqM6taygUwUYkNd6bABAYyHXLjqzln CZWrfNa8FlVVvly68lvsA+IyUuCGWMLprcy5jFjmcZ9l4DkVUtPjq1bHi9pF/liL lpK1HgixDkC4qOo22/D8cxuKKKz9l0q0tnSSE+w6lEcA83qlewpVusnkzWZSbu3N sfvJe1BmeaoTAtHOZSK/QS2OI6AXqPma/BBJwVLLemN81ueDkLTUDHVFY1lOWepB Cr8CAwEAAaOCAlYwggJSMB0GA1UdDgQWBBSMUIt92gJPssnvf7v0+9Arn0MZHTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdwGCCsGAQUFBwELBIHPMIHMMDsGCCsGAQUFBzAF hi9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lCRVJMSU5L LzBaBggrBgEFBQcwCoZOcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0NZQkVSTElOSy9qRkNMZmRvQ1Q3TEo3My03OVB2UUs1OURHUjAubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6icMA0GCSqGSIb3DQEBCwUA A4IBAQCbDmwQEsm96AN1HMJ9ZX7kdrXkq9WseCorCrKCsjrDGUAd5xB+Vq+BKdZ/ 78AZi8fEpOIY3TrxR1fQGmZcc6N3+DitokbNmbxUZQWV6tY3wY/1lSM8V/LGGoHh ll4tyVwMFtnJFWZocGMhwf5/QEUgX09h7nXEdyMoBtF7dJQ3r3rFSokgSlOXwbbk 4YNHfEzMRZUHkK6FD9wgaw0KLspQDfs40M/hKZWR3StBdtHVtF31cA8Uk+l9YvXA U7hiU9J7GeJwXplOSK/JP88zQCiySk9Mn0XWfaGU2vhU4izS2piD0FtVN3FGMpHZ OrgEt0ttCG1awAoMbl6yBl2yA9/i -----END CERTIFICATE-----Generated at Fri May 3 17:13:58 2024 by rpki-client on console-fra.rpki-client.org