$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/rCoiyP7SDnuQaiQaY1fdvSNmtGA.cer File: rCoiyP7SDnuQaiQaY1fdvSNmtGA.cer (raw, json) Hash identifier: NgwzbKqVVULtJ6eK1kNigol2qggNgrp2Hc7FlOXFQzI= Subject key identifier: AC:2A:22:C8:FE:D2:0E:7B:90:6A:24:1A:63:57:DD:BD:23:66:B4:60 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/rCoiyP7SDnuQaiQaY1fdvSNmtGA.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Tue 12 Mar 2024 05:11:41 +0000 Certificate not after: Wed 26 Feb 2025 15:30:21 +0000 Subordinate resources: AS: 150772 IP: 2401:83a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11129 (0x2b79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Mar 12 05:11:41 2024 GMT Not After : Feb 26 15:30:21 2025 GMT Subject: CN=AC2A22C8FED20E7B906A241A6357DDBD2366B460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:4d:d0:8f:d1:31:f4:a4:d3:d0:1e:80:0d: 7d:c8:77:7b:9e:1c:e4:4e:f7:97:84:3a:0c:81:26: 2e:b0:99:25:37:94:bf:da:83:b7:45:40:90:5b:cc: 3b:69:a6:6c:6f:63:2a:3d:d6:d9:d0:3d:6a:c1:3c: 48:88:b6:57:40:32:6f:4f:22:fd:d3:5d:c1:4a:a8: 95:61:a2:ed:60:4a:89:fd:c8:89:96:08:1e:f5:97: 7f:e2:35:21:e8:9d:1c:a6:e3:ee:86:96:fd:52:04: 8c:22:95:fc:bb:86:4b:f2:ea:df:6d:f7:93:4d:59: cd:27:91:83:ad:86:6d:99:bd:1d:1a:04:88:db:4e: b7:ad:f3:de:38:48:bd:13:39:c0:00:fe:67:32:ad: d5:98:c2:37:bf:98:c4:71:17:ea:68:05:3b:dd:95: 0d:ad:d0:d7:47:1c:a4:14:56:44:61:9d:62:86:e5: 6d:3e:e2:5e:84:0e:dd:48:eb:09:51:3d:17:e8:58: 68:91:0c:e7:4e:5e:87:a7:b5:33:9e:30:53:3d:05: 9b:5a:60:fc:49:38:fa:bb:64:02:55:30:28:23:45: 4c:46:48:7c:eb:7f:e0:24:f9:a4:ea:72:ee:0d:b0: ad:96:31:1d:8c:18:b5:5c:d0:00:09:22:b4:64:54: ef:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2A:22:C8:FE:D2:0E:7B:90:6A:24:1A:63:57:DD:BD:23:66:B4:60 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/rCoiyP7SDnuQaiQaY1fdvSNmtGA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 150772 sbgp-ipAddrBlock: critical IPv6: 2401:83a0::/32 Signature Algorithm: sha256WithRSAEncryption 26:60:bd:c2:a7:96:45:6a:ca:02:65:10:da:63:c7:c7:56:2c: 5f:12:4c:18:af:db:1e:04:30:be:60:63:0d:a4:3d:81:28:74: 19:75:cd:a7:6b:80:bf:3d:3d:21:93:c9:21:27:59:15:75:55: e5:da:bd:41:95:06:4e:9f:87:e1:31:c1:3e:5b:33:e7:a2:3d: b8:41:44:54:c1:5c:85:cd:28:4c:d1:4f:1c:db:85:2c:21:2e: 58:60:a3:94:5b:f0:88:78:fa:d6:52:b7:d2:65:33:36:65:21: 88:37:4c:f1:17:00:48:27:a0:d3:cb:d4:84:f9:78:f8:81:05: 1e:58:b3:7d:c3:0e:60:7f:db:e4:54:66:27:77:ce:5a:af:45: 87:93:15:c8:bb:57:46:81:71:25:fa:08:d1:92:93:70:75:0b: 4f:59:90:76:67:ff:10:cf:1b:2c:ce:d7:d7:d5:1a:82:f1:06: 0d:37:3e:d4:7d:3f:ad:c2:4e:53:6d:a5:b6:33:fa:6f:53:7c: 25:bb:c0:25:b0:f7:c5:20:a5:ac:8d:82:51:1a:bd:1d:11:37: 89:c6:d3:41:4c:d0:f7:fb:b8:4a:3b:11:1f:23:d1:44:49:59: 95:38:30:70:74:4b:7b:08:d8:57:af:8f:b0:c5:8c:8b:db:16: ea:77:7d:eb -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICK3kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDMxMjA1MTE0MVoXDTI1MDIyNjE1MzAyMVowMzEx MC8GA1UEAxMoQUMyQTIyQzhGRUQyMEU3QjkwNkEyNDFBNjM1N0REQkQyMzY2QjQ2 MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6pTdCP0TH0pNPQHoAN fch3e54c5E73l4Q6DIEmLrCZJTeUv9qDt0VAkFvMO2mmbG9jKj3W2dA9asE8SIi2 V0Ayb08i/dNdwUqolWGi7WBKif3IiZYIHvWXf+I1IeidHKbj7oaW/VIEjCKV/LuG S/Lq3233k01ZzSeRg62GbZm9HRoEiNtOt63z3jhIvRM5wAD+ZzKt1ZjCN7+YxHEX 6mgFO92VDa3Q10ccpBRWRGGdYoblbT7iXoQO3UjrCVE9F+hYaJEM505eh6e1M54w Uz0Fm1pg/Ek4+rtkAlUwKCNFTEZIfOt/4CT5pOpy7g2wrZYxHYwYtVzQAAkitGRU 710CAwEAAaOCAmkwggJlMB0GA1UdDgQWBBSsKiLI/tIOe5BqJBpjV929I2a0YDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdIGCCsGAQUFBwELBIHFMIHCMDYGCCsGAQUFBzAF hipyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy8wVQYI KwYBBQUHMAqGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9O Q0NDL3JDb2l5UDdTRG51UWFpUWFZMWZkdlNObXRHQS5tZnQwMQYIKwYBBQUHMA2G JWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAkz0MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAGDoDANBgkqhkiG9w0BAQsFAAOCAQEAJmC9wqeWRWrKAmUQ2mPHx1YsXxJMGK/b HgQwvmBjDaQ9gSh0GXXNp2uAvz09IZPJISdZFXVV5dq9QZUGTp+H4THBPlsz56I9 uEFEVMFchc0oTNFPHNuFLCEuWGCjlFvwiHj61lK30mUzNmUhiDdM8RcASCeg08vU hPl4+IEFHlizfcMOYH/b5FRmJ3fOWq9Fh5MVyLtXRoFxJfoI0ZKTcHULT1mQdmf/ EM8bLM7X19UagvEGDTc+1H0/rcJOU22ltjP6b1N8JbvAJbD3xSClrI2CURq9HRE3 icbTQUzQ9/u4SjsRHyPRRElZlTgwcHRLewjYV6+PsMWMi9sW6nd96w== -----END CERTIFICATE-----Generated at Tue May 21 23:31:17 2024 by rpki-client on console-ams.rpki-client.org