$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer (raw, json) Hash identifier: hP8Z3yJqSVTj0ed21mTZlDTcXgFeWmFtgIvrc67rMSk= Subject key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 19EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:28 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: IP: 157.66.166.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6635 (0x19eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Feb 10 14:29:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e5:db:76:f8:d6:c8:dd:65:c9:9f:56:e0:1c: 83:c1:b7:eb:74:8f:8a:8a:63:3b:53:f9:30:ff:4d: ca:2b:5c:54:6c:45:9f:06:00:af:58:fb:bc:60:ab: 21:c8:86:28:29:f0:c0:b4:77:bd:4a:e4:fc:a6:54: 86:c6:db:fc:5e:c4:46:53:a8:11:a9:8c:79:54:d1: 4c:fa:2e:c6:23:e1:a7:a8:fb:62:cf:50:a4:74:6d: 4f:8c:37:8b:b5:9e:8a:45:29:c5:6c:3c:5d:97:01: 3e:9b:f0:ab:8e:eb:a8:be:da:88:6e:52:6e:83:6d: db:88:74:25:16:45:bb:6d:54:3d:e2:19:a7:c8:09: 9f:42:6f:2f:86:88:aa:6a:1f:78:72:65:c2:7e:e4: f1:37:c2:38:73:5a:79:c1:72:b8:f7:96:55:5b:17: d5:ab:dc:da:35:e7:90:9d:d8:aa:bd:8f:b6:e2:6e: 47:b5:43:2a:3c:ad:c7:42:7e:46:b5:49:40:f6:59: a1:1c:2d:48:b4:71:e2:db:eb:24:6d:26:9e:18:ff: 81:09:01:bb:dc:5a:56:0c:47:0a:2d:77:33:f6:5e: 2a:64:5d:7f:43:3b:f2:be:72:8a:37:b3:67:23:d9: 85:f3:bb:af:24:c1:38:d8:c0:3a:cb:5d:ad:bf:1c: f0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.66.166.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:cc:eb:21:54:7a:9f:a5:5d:a4:cb:18:a7:fc:2c:63:15:ce: 7c:48:85:7c:c5:01:67:17:07:d5:92:00:46:99:11:11:7c:69: 9f:a0:5d:2a:9c:d6:05:b9:e8:9e:20:75:bf:fd:44:11:e1:47: 35:50:7f:5c:0a:61:57:51:67:0b:14:a3:59:c6:ec:0a:5e:f1: fc:04:3a:e2:b8:5d:96:8f:d1:0b:74:ca:ef:8a:f4:f0:91:0d: 52:d8:90:63:e1:32:d1:a4:9b:43:70:90:10:61:96:ab:ef:38: b2:a1:c2:6a:6c:28:13:9b:cd:e1:94:dd:de:d7:60:b2:89:47: 1f:c3:4b:31:94:66:2e:0c:d9:5f:76:8f:26:94:ba:3f:8e:0c: ff:40:f9:b0:5b:fd:1b:a6:13:64:37:6c:dd:3e:35:46:3d:ce: 4e:43:19:81:00:44:06:02:21:ab:05:49:77:70:66:32:a4:ea: 52:4c:1d:81:46:e9:b7:bd:1e:9b:ac:6c:41:cb:fb:e0:1b:8c: 88:e9:35:64:17:db:ef:99:5f:37:cb:22:60:3b:a1:49:5b:89: dc:63:a9:ba:3a:87:d4:e8:c0:fc:35:b5:1e:91:be:5c:63:be: 54:c0:bc:fb:13:54:22:dd:f0:0c:5f:5e:6b:59:f9:8d:10:be: 52:ec:72:6b -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgICGeswDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI1MDIxMDE0MjkyOFoXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoRDk2NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNB NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANDl23b41sjdZcmfVuAc g8G363SPiopjO1P5MP9NyitcVGxFnwYAr1j7vGCrIciGKCnwwLR3vUrk/KZUhsbb /F7ERlOoEamMeVTRTPouxiPhp6j7Ys9QpHRtT4w3i7WeikUpxWw8XZcBPpvwq47r qL7aiG5SboNt24h0JRZFu21UPeIZp8gJn0JvL4aIqmofeHJlwn7k8TfCOHNaecFy uPeWVVsX1avc2jXnkJ3Yqr2PtuJuR7VDKjytx0J+RrVJQPZZoRwtSLRx4tvrJG0m nhj/gQkBu9xaVgxHCi13M/ZeKmRdf0M78r5yijezZyPZhfO7ryTBONjAOstdrb8c 8B8CAwEAAaOCAk4wggJKMB0GA1UdDgQWBBTZZrVZCTJBgKiKReH2g89NLtm8pTAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4vMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TElSVU4vMldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CpjANBgkqhkiG9w0BAQsFAAOCAQEASszr IVR6n6VdpMsYp/wsYxXOfEiFfMUBZxcH1ZIARpkREXxpn6BdKpzWBbnoniB1v/1E EeFHNVB/XAphV1FnCxSjWcbsCl7x/AQ64rhdlo/RC3TK74r08JENUtiQY+Ey0aSb Q3CQEGGWq+84sqHCamwoE5vN4ZTd3tdgsolHH8NLMZRmLgzZX3aPJpS6P44M/0D5 sFv9G6YTZDds3T41Rj3OTkMZgQBEBgIhqwVJd3BmMqTqUkwdgUbpt70em6xsQcv7 4BuMiOk1ZBfb75lfN8siYDuhSVuJ3GOpujqH1OjA/DW1HpG+XGO+VMC8+xNUIt3w DF9ea1n5jRC+Uuxyaw== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:32 2025 by rpki-client on console.sobornost.net