$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer File: jFCLfdoCT7LJ73-79PvQK59DGR0.cer (raw, json) Hash identifier: q1dFqa9GDcGzYCOxsRVwELcDCoyO2AHok5/VecxGBug= Subject key identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2DB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:19 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.168.156.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11701 (0x2db5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:2f:3b:62:91:80:95:0e:5b:50:5a:ed:59: 39:e7:6f:77:f7:0a:15:7f:a1:b8:61:dc:a6:e0:9a: 64:39:80:f9:d8:ca:83:8e:5c:90:5d:97:b1:ea:89: cf:fd:45:92:4b:46:5d:8d:7e:ec:6d:b5:ee:60:19: f2:56:93:43:81:f7:08:ce:f8:ae:fd:64:35:68:4e: 8b:af:4b:15:d4:e0:d5:d7:22:df:47:69:84:4b:2a: 33:ab:5a:ca:05:30:51:89:0d:77:a6:c0:04:06:32: 1d:72:e3:ab:39:67:09:95:ab:7c:d6:bc:16:55:55: be:5c:ba:f2:5b:ec:03:e2:32:52:e0:86:58:c2:e9: ad:cc:b9:8c:58:e6:71:9f:65:e0:39:15:52:d3:e3: ab:56:c7:8b:da:45:fe:58:8b:96:92:b5:1e:08:b1: 0e:40:b8:a8:ea:36:db:f0:fc:73:1b:8a:28:ac:fd: 97:4a:b4:b6:74:92:13:ec:3a:94:47:00:f3:7a:a5: 7b:0a:55:ba:c9:e4:cd:66:52:6e:ed:cd:b1:fb:c9: 7b:50:66:79:aa:13:02:d1:ce:65:22:bf:41:2d:8e: 23:a0:17:a8:f9:9a:fc:10:49:c1:52:cb:7a:63:7c: d6:e7:83:90:b4:d4:0c:75:45:63:59:4e:59:ea:41: 0a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.168.156.0/23 Signature Algorithm: sha256WithRSAEncryption 68:64:d1:66:c9:cd:b5:63:14:c4:ba:26:83:db:58:d2:6e:b5: e7:df:39:98:f2:d1:4c:fd:56:75:58:ad:ab:38:45:d3:b0:49: d1:25:74:60:b8:d6:97:e3:46:d2:0c:8a:e2:1c:f3:f0:67:e0: 98:b5:4c:61:f9:76:90:2c:d0:a2:12:99:bc:66:86:da:2b:27: 63:a9:53:40:38:67:31:4a:e7:27:e9:03:60:6d:b4:de:cc:84: e4:f6:bc:22:83:73:fc:3a:90:82:6a:2b:9c:96:f5:e2:55:2e: 2a:ae:e2:a1:c3:16:b5:94:4e:b1:a5:52:16:e1:65:cf:24:e9: b5:8e:4a:2e:23:96:c7:4c:36:1c:8c:55:d9:bc:fa:a1:00:59: d9:c9:e5:68:5a:6f:c5:91:88:6d:a3:bd:e7:ea:e5:27:f4:c9: e4:e0:60:8f:7d:95:e2:cb:6e:37:cc:65:45:b7:b9:4e:16:48: b5:cb:79:b2:71:34:3d:71:0c:f8:9d:83:03:9b:50:aa:23:87: c4:1f:67:ac:69:5c:3f:63:7a:37:77:50:0b:eb:52:2d:03:58: 47:c7:44:e9:dd:95:60:56:fb:ba:3e:1f:55:0f:19:a8:d1:7b: 55:23:f1:10:4b:e9:d6:6a:70:23:e7:ef:dd:9c:83:05:bb:9c: 9a:cc:b7:74 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICLbUwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTcxOVoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoOEM1MDhCN0REQTAyNEZCMkM5RUY3RkJCRjRGQkQwMkI5RjQzMTkx RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1TLztikYCVDltQWu1Z Oedvd/cKFX+huGHcpuCaZDmA+djKg45ckF2XseqJz/1FkktGXY1+7G217mAZ8laT Q4H3CM74rv1kNWhOi69LFdTg1dci30dphEsqM6taygUwUYkNd6bABAYyHXLjqzln CZWrfNa8FlVVvly68lvsA+IyUuCGWMLprcy5jFjmcZ9l4DkVUtPjq1bHi9pF/liL lpK1HgixDkC4qOo22/D8cxuKKKz9l0q0tnSSE+w6lEcA83qlewpVusnkzWZSbu3N sfvJe1BmeaoTAtHOZSK/QS2OI6AXqPma/BBJwVLLemN81ueDkLTUDHVFY1lOWepB Cr8CAwEAAaOCAlYwggJSMB0GA1UdDgQWBBSMUIt92gJPssnvf7v0+9Arn0MZHTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdwGCCsGAQUFBwELBIHPMIHMMDsGCCsGAQUFBzAF hi9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lCRVJMSU5L LzBaBggrBgEFBQcwCoZOcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0NZQkVSTElOSy9qRkNMZmRvQ1Q3TEo3My03OVB2UUs1OURHUjAubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6icMA0GCSqGSIb3DQEBCwUA A4IBAQBoZNFmyc21YxTEuiaD21jSbrXn3zmY8tFM/VZ1WK2rOEXTsEnRJXRguNaX 40bSDIriHPPwZ+CYtUxh+XaQLNCiEpm8ZobaKydjqVNAOGcxSucn6QNgbbTezITk 9rwig3P8OpCCaiuclvXiVS4qruKhwxa1lE6xpVIW4WXPJOm1jkouI5bHTDYcjFXZ vPqhAFnZyeVoWm/FkYhto73n6uUn9Mnk4GCPfZXiy243zGVFt7lOFki1y3mycTQ9 cQz4nYMDm1CqI4fEH2esaVw/Y3o3d1AL61ItA1hHx0Tp3ZVgVvu6Ph9VDxmo0XtV I/EQS+nWanAj5+/dnIMFu5yazLd0 -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:44 2024 by rpki-client on console-fra.rpki-client.org