$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer (raw, json) Hash identifier: 8z3bkTkYbPMiq8gunfwwcogmOaz+WDt4/SeH/NdnA4Y= Subject key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 27DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 01 Sep 2023 03:11:12 +0000 Certificate not after: Sat 31 Aug 2024 03:10:53 +0000 Subordinate resources: IP: 103.122.236.0/22 IP: 2403:9740::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10202 (0x27da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Sep 1 03:11:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fe:0d:2d:02:f0:4f:a8:78:61:6b:6a:b8:44: 6c:48:f1:51:85:00:01:7b:7b:6d:c7:53:1e:fb:5c: fb:25:75:85:8f:78:98:20:1b:f0:dd:c9:45:0f:78: 0f:ce:82:63:35:d8:46:f1:39:0b:e8:41:63:98:04: 59:af:e3:c2:6a:ba:0f:28:4c:e8:ad:9d:54:71:17: 81:13:bb:32:ee:57:31:dc:9e:47:6d:27:c5:87:14: 85:04:e7:1e:cd:1d:45:2a:08:4b:5c:b2:20:03:96: ec:bf:cb:73:b3:eb:46:53:d8:1d:7d:a2:ef:35:27: cc:80:c4:16:92:a9:7d:e3:53:82:4f:05:e3:35:68: 7b:c5:b9:94:6c:72:aa:14:60:3c:0b:b0:65:05:2d: 95:ae:a9:99:56:d3:0b:aa:52:1c:36:62:67:03:2c: e3:e9:fd:87:8c:e2:38:18:96:9d:5e:65:99:46:99: 68:a6:d0:3f:e8:1f:c4:15:bf:32:b1:c6:9c:05:15: d2:5f:90:2d:0b:cc:2d:bd:2a:00:7e:ab:8e:c0:27: 94:f5:23:d6:be:4e:a6:52:fe:a6:40:1f:8f:a6:87: b7:b3:bf:bc:df:9d:b2:5a:5e:96:34:2c:e3:59:94: b6:5c:bd:1a:07:18:fc:af:a0:9c:fa:68:31:a0:cf: ff:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.236.0/22 IPv6: 2403:9740::/32 Signature Algorithm: sha256WithRSAEncryption 31:73:54:16:17:01:49:05:5b:52:f2:f5:32:53:c4:df:e4:e8: b0:65:bf:1f:f8:2b:d1:0d:63:d0:f6:1d:d3:76:09:20:c1:97: 88:16:dd:c8:1d:f3:56:17:90:4d:19:d7:00:b2:43:c1:41:f2: 43:e8:c1:72:5d:a6:3c:35:22:6e:55:45:29:47:03:ef:cb:4b: 52:8d:3f:b5:37:59:f7:d5:a7:73:39:39:28:7a:31:dc:e0:71: 81:b6:a5:42:b4:b7:ac:12:a2:34:fc:cd:61:59:24:0e:c9:0a: 04:8b:7d:26:5d:6e:4a:c8:a4:db:dd:f6:bb:0d:ae:b1:ed:da: ee:e1:80:6e:77:d4:82:41:2b:8c:4c:80:c2:52:d1:5e:3c:bd: c3:11:cf:70:a8:f6:45:7e:d1:9e:4d:c9:9d:7b:bb:f0:5a:f1: 31:b0:b8:89:16:44:bc:a0:34:d1:64:b6:c1:d1:f0:f5:2e:b6: 65:d3:f5:11:84:ad:b6:d5:ff:45:91:58:ad:3d:de:a7:2b:3c: ad:1b:b5:25:1a:0d:1c:8b:a0:3c:28:ae:a2:48:b5:54:91:3d: ff:d6:b9:85:4c:77:78:79:50:3b:ed:8b:5c:23:a9:53:60:bb: ae:c3:d9:3a:1e:42:b0:a1:a4:7b:64:74:d4:bb:58:50:1d:da: 87:53:94:3f -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICJ9owDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTIzMDkwMTAzMTExMloXDTI0MDgzMTAzMTA1M1owMzEx MC8GA1UEAxMoOUZFNzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUx NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMv+DS0C8E+oeGFrarhE bEjxUYUAAXt7bcdTHvtc+yV1hY94mCAb8N3JRQ94D86CYzXYRvE5C+hBY5gEWa/j wmq6DyhM6K2dVHEXgRO7Mu5XMdyeR20nxYcUhQTnHs0dRSoIS1yyIAOW7L/Lc7Pr RlPYHX2i7zUnzIDEFpKpfeNTgk8F4zVoe8W5lGxyqhRgPAuwZQUtla6pmVbTC6pS HDZiZwMs4+n9h4ziOBiWnV5lmUaZaKbQP+gfxBW/MrHGnAUV0l+QLQvMLb0qAH6r jsAnlPUj1r5OplL+pkAfj6aHt7O/vN+dslpeljQs41mUtly9GgcY/K+gnPpoMaDP //MCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBSf50D9DGSS/skvPkTOY27hi401FzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L09OTU9SRS9uLWRBX1F4a2t2N0pMejVFem1OdTRZdU5OUmMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3rsMA0EAgACMAcDBQAkA5dAMA0GCSqG SIb3DQEBCwUAA4IBAQAxc1QWFwFJBVtS8vUyU8Tf5OiwZb8f+CvRDWPQ9h3Tdgkg wZeIFt3IHfNWF5BNGdcAskPBQfJD6MFyXaY8NSJuVUUpRwPvy0tSjT+1N1n31adz OTkoejHc4HGBtqVCtLesEqI0/M1hWSQOyQoEi30mXW5KyKTb3fa7Da6x7dru4YBu d9SCQSuMTIDCUtFePL3DEc9wqPZFftGeTcmde7vwWvExsLiJFkS8oDTRZLbB0fD1 LrZl0/URhK221f9FkVitPd6nKzytG7UlGg0ci6A8KK6iSLVUkT3/1rmFTHd4eVA7 7YtcI6lTYLuuw9k6HkKwoaR7ZHTUu1hQHdqHU5Q/ -----END CERTIFICATE-----Generated at Tue May 21 06:28:53 2024 by rpki-client on console-ams.rpki-client.org