$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer File: soOb96bGsX58_LNzSjbA6Yw3obc.cer (raw, json) Hash identifier: jYXnjC2D7TMVudo6jgzNoRrwnF9WFYVzZTfYwySNz/Q= Subject key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 2EF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 26 Aug 2024 01:57:33 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 103.152.150.0/23 IP: 2406:3040::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12019 (0x2ef3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 26 01:57:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:36:ae:bc:01:69:0c:34:25:39:3b:61:3d: ab:b7:6a:44:d4:49:8f:07:9b:85:9d:6d:c1:4c:1e: 43:d8:c8:20:cd:6f:a9:8c:c3:b8:ac:24:11:d9:50: 53:84:ae:e2:52:d7:0d:4d:82:b6:b7:83:d3:2e:3a: 3d:64:2e:1a:b4:9c:81:bb:49:65:f3:57:c3:03:8c: 6b:3d:c3:cf:02:0e:00:1d:11:53:6c:37:75:2c:2c: 6c:92:fe:04:be:ac:03:79:f2:44:21:90:32:07:b9: a4:8a:d9:bf:4a:0d:a3:b6:d9:1e:58:b2:2d:c9:a6: 1b:c2:86:f0:48:35:b2:02:1f:8b:81:fd:bf:03:7c: 8a:54:7b:d1:85:23:99:35:30:19:0d:d4:19:8f:d6: 82:5a:2e:37:0e:c9:7f:2a:75:b7:9a:f5:72:81:97: 59:85:8a:05:a5:6e:55:ab:33:7d:ee:20:1a:72:b6: ae:d1:88:46:1b:27:21:0a:1a:f3:72:fc:78:d8:9e: 9c:2e:b8:9c:99:c1:8a:39:fa:4f:41:6f:be:42:81: cd:92:59:ca:8d:1c:2a:43:4b:0a:22:75:5b:f2:3a: 4d:1c:dd:c8:54:f4:cd:9f:7d:59:35:be:95:75:25: 27:cb:40:ae:60:85:05:d9:a9:42:28:9d:8e:3c:80: 85:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.150.0/23 IPv6: 2406:3040::/32 Signature Algorithm: sha256WithRSAEncryption 67:29:12:d6:d0:71:a1:35:7a:3b:23:71:56:b6:00:18:b0:36: 89:11:69:1b:98:df:f6:f6:a0:85:5e:49:a6:9d:38:5b:b4:7f: 02:e1:0f:0c:f5:2e:23:89:6c:46:35:c2:c3:e1:1b:5a:2f:54: 85:6b:7c:36:80:78:bd:c3:d0:22:b6:66:e2:b3:20:51:21:f7: 46:3e:36:34:11:3a:a6:09:c7:df:78:95:7c:9e:26:30:05:47: fb:e9:38:52:9f:7c:0f:42:e6:52:9d:26:ad:cf:d5:89:5a:cb: 4c:ad:43:f1:f8:6c:46:ac:e2:e1:3c:1c:42:27:d9:ae:c3:39: 31:f2:0e:56:09:02:d1:ed:5e:9d:c5:19:ca:36:a6:a2:b3:e9: 6b:28:64:5a:44:f2:36:30:f9:7f:8f:13:a2:61:b2:3d:63:dd: 14:d6:ed:11:7c:1e:e6:5f:c3:45:f7:6b:1f:88:ec:91:d5:f0: 7e:ec:5c:79:6e:a2:88:fb:5b:93:2d:75:84:ce:8a:f6:a0:fe: c2:f5:76:24:67:69:58:9f:96:1b:4f:f2:60:70:bd:89:46:4a: 84:7b:49:3b:78:0c:53:54:8c:16:f9:30:26:30:02:7a:d1:e3: 0c:b7:38:06:37:c5:9d:51:4d:8d:5b:88:ee:ec:72:db:c7:d4: 2d:5b:fe:0c -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICLvMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI0MDgyNjAxNTczM1oXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoQjI4MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFC NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALBmNq68AWkMNCU5O2E9 q7dqRNRJjwebhZ1twUweQ9jIIM1vqYzDuKwkEdlQU4Su4lLXDU2CtreD0y46PWQu GrScgbtJZfNXwwOMaz3DzwIOAB0RU2w3dSwsbJL+BL6sA3nyRCGQMge5pIrZv0oN o7bZHliyLcmmG8KG8Eg1sgIfi4H9vwN8ilR70YUjmTUwGQ3UGY/WglouNw7Jfyp1 t5r1coGXWYWKBaVuVaszfe4gGnK2rtGIRhsnIQoa83L8eNienC64nJnBijn6T0Fv vkKBzZJZyo0cKkNLCiJ1W/I6TRzdyFT0zZ99WTW+lXUlJ8tArmCFBdmpQiidjjyA hWUCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBSyg5v3psaxfnz8s3NKNsDpjDehtzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRSQS8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9TVU1BVFJBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwLgYI KwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAFnmJYwDQQCAAIwBwMFACQGMEAwDQYJ KoZIhvcNAQELBQADggEBAGcpEtbQcaE1ejsjcVa2ABiwNokRaRuY3/b2oIVeSaad OFu0fwLhDwz1LiOJbEY1wsPhG1ovVIVrfDaAeL3D0CK2ZuKzIFEh90Y+NjQROqYJ x994lXyeJjAFR/vpOFKffA9C5lKdJq3P1Ylay0ytQ/H4bEas4uE8HEIn2a7DOTHy DlYJAtHtXp3FGco2pqKz6WsoZFpE8jYw+X+PE6Jhsj1j3RTW7RF8HuZfw0X3ax+I 7JHV8H7sXHluooj7W5MtdYTOivag/sL1diRnaViflhtP8mBwvYlGSoR7STt4DFNU jBb5MCYwAnrR4wy3OAY3xZ1RTY1biO7sctvH1C1b/gw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:50 2024 by rpki-client on console-ams.rpki-client.org