$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/rCoiyP7SDnuQaiQaY1fdvSNmtGA.cer File: rCoiyP7SDnuQaiQaY1fdvSNmtGA.cer (raw, json) Hash identifier: mxF9HTze6+591ZZ0fr/BrV1suXklRGaElyehvgws5Co= Subject key identifier: AC:2A:22:C8:FE:D2:0E:7B:90:6A:24:1A:63:57:DD:BD:23:66:B4:60 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2FA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/rCoiyP7SDnuQaiQaY1fdvSNmtGA.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 02:23:58 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: AS: 150772 IP: 2401:83a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12195 (0x2fa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 02:23:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AC2A22C8FED20E7B906A241A6357DDBD2366B460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:4d:d0:8f:d1:31:f4:a4:d3:d0:1e:80:0d: 7d:c8:77:7b:9e:1c:e4:4e:f7:97:84:3a:0c:81:26: 2e:b0:99:25:37:94:bf:da:83:b7:45:40:90:5b:cc: 3b:69:a6:6c:6f:63:2a:3d:d6:d9:d0:3d:6a:c1:3c: 48:88:b6:57:40:32:6f:4f:22:fd:d3:5d:c1:4a:a8: 95:61:a2:ed:60:4a:89:fd:c8:89:96:08:1e:f5:97: 7f:e2:35:21:e8:9d:1c:a6:e3:ee:86:96:fd:52:04: 8c:22:95:fc:bb:86:4b:f2:ea:df:6d:f7:93:4d:59: cd:27:91:83:ad:86:6d:99:bd:1d:1a:04:88:db:4e: b7:ad:f3:de:38:48:bd:13:39:c0:00:fe:67:32:ad: d5:98:c2:37:bf:98:c4:71:17:ea:68:05:3b:dd:95: 0d:ad:d0:d7:47:1c:a4:14:56:44:61:9d:62:86:e5: 6d:3e:e2:5e:84:0e:dd:48:eb:09:51:3d:17:e8:58: 68:91:0c:e7:4e:5e:87:a7:b5:33:9e:30:53:3d:05: 9b:5a:60:fc:49:38:fa:bb:64:02:55:30:28:23:45: 4c:46:48:7c:eb:7f:e0:24:f9:a4:ea:72:ee:0d:b0: ad:96:31:1d:8c:18:b5:5c:d0:00:09:22:b4:64:54: ef:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2A:22:C8:FE:D2:0E:7B:90:6A:24:1A:63:57:DD:BD:23:66:B4:60 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/rCoiyP7SDnuQaiQaY1fdvSNmtGA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 150772 sbgp-ipAddrBlock: critical IPv6: 2401:83a0::/32 Signature Algorithm: sha256WithRSAEncryption 74:d7:8a:68:74:f4:6e:0c:c0:cb:c0:9a:49:88:01:b4:9d:5e: 52:15:09:f0:9f:d8:c3:82:52:5a:bd:07:27:6d:20:b6:75:f6: 8b:07:53:aa:2b:60:dd:41:d0:47:f0:f5:96:d8:47:4e:bb:45: 10:f3:bb:25:73:51:1f:44:74:39:95:71:59:d9:41:4a:aa:01: 15:db:a3:3c:68:1b:71:06:8c:2a:63:17:19:5c:cb:b9:78:34: f9:21:26:d6:08:c1:e8:10:53:ee:3a:4e:f7:f7:fa:d7:ca:ae: fe:86:6a:97:b0:fb:39:38:0e:92:e8:32:be:2e:50:33:61:bf: 1e:22:d9:33:b6:48:46:f8:1e:5a:28:e8:27:d6:c9:ef:d2:c4: dc:99:c4:47:2e:9b:90:7d:03:95:89:3c:4b:d7:4a:ee:65:4b: db:41:83:61:a8:79:46:6c:d1:57:2a:e5:5d:66:f3:69:fb:f2: f3:86:75:f7:9f:d3:3e:87:04:36:af:55:6a:a6:54:17:ec:09: 46:41:cb:9e:15:7a:00:1a:95:4b:1a:7f:98:ce:4d:0e:55:bb: cf:51:d2:24:a1:64:92:2b:89:1a:22:44:c6:09:c2:8b:74:71: e4:97:97:45:55:03:ef:49:ba:f6:35:b4:9e:e1:56:f6:4e:d6: 84:70:d2:a2 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICL6MwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAyMjM1OFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoQUMyQTIyQzhGRUQyMEU3QjkwNkEyNDFBNjM1N0REQkQyMzY2QjQ2 MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6pTdCP0TH0pNPQHoAN fch3e54c5E73l4Q6DIEmLrCZJTeUv9qDt0VAkFvMO2mmbG9jKj3W2dA9asE8SIi2 V0Ayb08i/dNdwUqolWGi7WBKif3IiZYIHvWXf+I1IeidHKbj7oaW/VIEjCKV/LuG S/Lq3233k01ZzSeRg62GbZm9HRoEiNtOt63z3jhIvRM5wAD+ZzKt1ZjCN7+YxHEX 6mgFO92VDa3Q10ccpBRWRGGdYoblbT7iXoQO3UjrCVE9F+hYaJEM505eh6e1M54w Uz0Fm1pg/Ek4+rtkAlUwKCNFTEZIfOt/4CT5pOpy7g2wrZYxHYwYtVzQAAkitGRU 710CAwEAAaOCAmkwggJlMB0GA1UdDgQWBBSsKiLI/tIOe5BqJBpjV929I2a0YDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdIGCCsGAQUFBwELBIHFMIHCMDYGCCsGAQUFBzAF hipyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy8wVQYI KwYBBQUHMAqGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9O Q0NDL3JDb2l5UDdTRG51UWFpUWFZMWZkdlNObXRHQS5tZnQwMQYIKwYBBQUHMA2G JWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAkz0MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAGDoDANBgkqhkiG9w0BAQsFAAOCAQEAdNeKaHT0bgzAy8CaSYgBtJ1eUhUJ8J/Y w4JSWr0HJ20gtnX2iwdTqitg3UHQR/D1lthHTrtFEPO7JXNRH0R0OZVxWdlBSqoB FdujPGgbcQaMKmMXGVzLuXg0+SEm1gjB6BBT7jpO9/f618qu/oZql7D7OTgOkugy vi5QM2G/HiLZM7ZIRvgeWijoJ9bJ79LE3JnERy6bkH0DlYk8S9dK7mVL20GDYah5 RmzRVyrlXWbzafvy84Z195/TPocENq9VaqZUF+wJRkHLnhV6ABqVSxp/mM5NDlW7 z1HSJKFkkiuJGiJExgnCi3Rx5JeXRVUD70m69jW0nuFW9k7WhHDSog== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:44 2024 by rpki-client on console-fra.rpki-client.org