$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer (raw, json) Hash identifier: 8sjM7/iS/IFTEwP3Y6xx3ss+Cj2jDBdhZDNl1vpvsro= Subject key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2D57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:15 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.122.236.0/22 IP: 2403:9740::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11607 (0x2d57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fe:0d:2d:02:f0:4f:a8:78:61:6b:6a:b8:44: 6c:48:f1:51:85:00:01:7b:7b:6d:c7:53:1e:fb:5c: fb:25:75:85:8f:78:98:20:1b:f0:dd:c9:45:0f:78: 0f:ce:82:63:35:d8:46:f1:39:0b:e8:41:63:98:04: 59:af:e3:c2:6a:ba:0f:28:4c:e8:ad:9d:54:71:17: 81:13:bb:32:ee:57:31:dc:9e:47:6d:27:c5:87:14: 85:04:e7:1e:cd:1d:45:2a:08:4b:5c:b2:20:03:96: ec:bf:cb:73:b3:eb:46:53:d8:1d:7d:a2:ef:35:27: cc:80:c4:16:92:a9:7d:e3:53:82:4f:05:e3:35:68: 7b:c5:b9:94:6c:72:aa:14:60:3c:0b:b0:65:05:2d: 95:ae:a9:99:56:d3:0b:aa:52:1c:36:62:67:03:2c: e3:e9:fd:87:8c:e2:38:18:96:9d:5e:65:99:46:99: 68:a6:d0:3f:e8:1f:c4:15:bf:32:b1:c6:9c:05:15: d2:5f:90:2d:0b:cc:2d:bd:2a:00:7e:ab:8e:c0:27: 94:f5:23:d6:be:4e:a6:52:fe:a6:40:1f:8f:a6:87: b7:b3:bf:bc:df:9d:b2:5a:5e:96:34:2c:e3:59:94: b6:5c:bd:1a:07:18:fc:af:a0:9c:fa:68:31:a0:cf: ff:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.236.0/22 IPv6: 2403:9740::/32 Signature Algorithm: sha256WithRSAEncryption 26:62:8b:38:08:f0:9f:bd:e4:36:89:a1:01:c9:12:34:3d:20: 31:3b:34:aa:3f:48:1d:05:63:bc:7c:93:9f:0e:0f:b7:6e:90: a0:65:b6:01:8d:0e:6e:56:0b:cd:68:05:2e:0f:8e:40:4d:3b: 67:9e:9a:2f:af:09:d5:e4:f0:47:8d:00:e2:62:66:b0:b8:f3: 44:48:a5:13:d8:a2:f5:74:d7:94:1f:83:60:59:c1:9a:2b:b6: 1d:4a:21:f0:40:29:06:b8:3b:71:57:3d:43:21:39:5a:93:68: 57:b7:81:54:31:a5:b9:a3:ce:ce:04:06:ef:ee:19:90:79:52: bd:3b:32:7a:9a:5d:05:c5:63:2f:e2:33:c3:ba:46:23:8e:57: 7a:0a:95:e6:24:6b:32:66:94:10:d2:73:d2:87:7a:a7:c4:78: 18:0a:b9:1b:cb:42:83:59:db:14:20:0b:27:c8:e8:1d:08:8a: e3:a9:ba:51:20:f7:9e:32:7b:a7:6b:64:c2:00:02:99:c9:da: 92:f3:48:81:11:9a:21:f8:cf:4d:ae:57:dd:d2:2b:0b:7d:53: cc:0e:cc:06:ba:d8:63:91:5a:23:cd:31:ab:87:7d:e8:b3:53: c7:e6:bf:9e:00:45:d4:00:0e:c8:36:48:10:05:4b:e5:e8:5a: 09:d3:35:03 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICLVcwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTcxNVoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoOUZFNzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUx NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMv+DS0C8E+oeGFrarhE bEjxUYUAAXt7bcdTHvtc+yV1hY94mCAb8N3JRQ94D86CYzXYRvE5C+hBY5gEWa/j wmq6DyhM6K2dVHEXgRO7Mu5XMdyeR20nxYcUhQTnHs0dRSoIS1yyIAOW7L/Lc7Pr RlPYHX2i7zUnzIDEFpKpfeNTgk8F4zVoe8W5lGxyqhRgPAuwZQUtla6pmVbTC6pS HDZiZwMs4+n9h4ziOBiWnV5lmUaZaKbQP+gfxBW/MrHGnAUV0l+QLQvMLb0qAH6r jsAnlPUj1r5OplL+pkAfj6aHt7O/vN+dslpeljQs41mUtly9GgcY/K+gnPpoMaDP //MCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBSf50D9DGSS/skvPkTOY27hi401FzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L09OTU9SRS9uLWRBX1F4a2t2N0pMejVFem1OdTRZdU5OUmMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3rsMA0EAgACMAcDBQAkA5dAMA0GCSqG SIb3DQEBCwUAA4IBAQAmYos4CPCfveQ2iaEByRI0PSAxOzSqP0gdBWO8fJOfDg+3 bpCgZbYBjQ5uVgvNaAUuD45ATTtnnpovrwnV5PBHjQDiYmawuPNESKUT2KL1dNeU H4NgWcGaK7YdSiHwQCkGuDtxVz1DITlak2hXt4FUMaW5o87OBAbv7hmQeVK9OzJ6 ml0FxWMv4jPDukYjjld6CpXmJGsyZpQQ0nPSh3qnxHgYCrkby0KDWdsUIAsnyOgd CIrjqbpRIPeeMnuna2TCAAKZydqS80iBEZoh+M9Nrlfd0isLfVPMDswGuthjkVoj zTGrh33os1PH5r+eAEXUAA7INkgQBUvl6FoJ0zUD -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:44 2024 by rpki-client on console-fra.rpki-client.org