$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer File: 4q-M_ZUnD89cLKZdh3d_b7er_TI.cer (raw, json) Hash identifier: 9OwwjwFPShZkSVncAi/dmizSoNzR+WhVIryy/15VEA0= Subject key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:22 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: AS: 24162 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13895 (0x3647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Feb 10 14:29:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:4d:df:89:c4:63:9e:c6:ea:9c:9a:9c:59: 50:15:bb:85:2b:da:2d:38:67:ec:a2:0b:ae:e5:ca: e9:21:78:30:84:7f:cb:70:35:ea:19:7b:78:b6:99: 87:5d:2d:9e:1d:f0:b6:bb:1e:1a:25:cc:fc:95:e4: 3c:01:f8:41:e1:eb:8a:60:a6:c9:f9:1d:5f:32:df: 2e:f0:8b:51:eb:0b:cd:00:03:fa:1c:8e:fb:7e:99: f6:64:ba:56:65:f6:e5:be:6b:f3:8b:00:f0:a9:6b: a5:ad:1c:9a:cd:0f:03:97:a6:71:48:db:81:3a:d8: f9:66:50:80:f4:39:02:d6:fd:a5:34:5c:3a:ce:b4: 14:d8:65:92:ec:8f:28:89:59:aa:7c:34:9a:1d:57: 45:16:50:c0:dd:5f:b0:36:6a:6d:27:7a:91:64:7e: 3e:aa:96:bc:88:48:41:49:89:54:2c:5c:5d:57:cc: 0d:38:5d:7c:1e:5c:3a:05:90:b2:e1:59:7b:12:b6: 37:f7:f3:a5:17:bd:66:0c:72:b3:94:54:02:ca:a1: 30:44:69:cd:f6:b7:e1:f3:d1:49:c8:fc:20:a2:d0: cb:2b:34:53:8f:0d:5b:db:0f:6f:dc:05:05:03:4e: 76:d8:43:f4:ca:7a:31:6c:64:c4:57:26:d7:32:b1: 9b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 24162 Signature Algorithm: sha256WithRSAEncryption 95:ad:a1:ea:e8:29:07:b1:76:7e:3f:50:9a:de:28:92:03:b1: 4e:ca:76:f0:5a:73:d9:f3:db:fe:e3:76:f9:99:15:e6:87:fb: 80:0d:ab:29:3d:ad:e2:02:81:e8:a7:33:2c:84:4a:95:24:22: 21:ba:27:2f:55:36:63:64:8a:99:25:0a:c8:14:ce:32:02:fb: 40:f0:ab:92:d1:f9:e9:de:de:91:cd:c4:9f:bc:50:05:a9:75: 6d:ce:63:3a:60:90:a0:e1:48:db:2c:f5:d3:15:b8:8b:e5:ee: 50:87:04:1a:8e:1e:17:5d:80:3d:34:40:b7:57:48:c2:d2:1c: 37:ed:5d:f1:48:41:43:87:af:9b:40:e7:c0:16:ed:c6:9c:58: 7e:a1:f7:58:c4:ef:9c:5d:af:73:4b:56:67:17:56:1c:98:31: c7:ab:05:24:79:0a:01:da:40:10:42:1b:f4:c2:7c:ac:93:77: 15:89:61:5a:39:4f:03:f7:c8:9f:12:90:17:3c:04:ef:87:5d: 58:ff:f7:47:2c:0e:da:68:87:11:bc:b1:b0:77:64:ef:20:fa: b8:d5:58:c8:f5:3a:01:65:e2:38:fd:6b:43:b0:bb:24:3f:d1: dd:86:c0:1c:ba:f5:6a:2a:55:2d:47:ce:c5:7a:c8:a9:24:05: 96:cf:f6:d2 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgICNkcwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkyMloXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoRTJBRjhDRkQ5NTI3MEZDRjVDMkNBNjVEODc3NzdGNkZCN0FCRkQz MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALyCTd+JxGOexuqcmpxZ UBW7hSvaLThn7KILruXK6SF4MIR/y3A16hl7eLaZh10tnh3wtrseGiXM/JXkPAH4 QeHrimCmyfkdXzLfLvCLUesLzQAD+hyO+36Z9mS6VmX25b5r84sA8Klrpa0cms0P A5emcUjbgTrY+WZQgPQ5Atb9pTRcOs60FNhlkuyPKIlZqnw0mh1XRRZQwN1fsDZq bSd6kWR+PqqWvIhIQUmJVCxcXVfMDThdfB5cOgWQsuFZexK2N/fzpRe9Zgxys5RU AsqhMERpzfa34fPRScj8IKLQyys0U48NW9sPb9wFBQNOdthD9Mp6MWxkxFcm1zKx m1cCAwEAAaOCAkwwggJIMB0GA1UdDgQWBBTir4z9lScPz1wspl2Hd39vt6v9MjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVDVEFMRS8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SRUNUQUxFLzRxLU1fWlVuRDg5Y0xLWmRoM2RfYjdlcl9USS5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGQYI KwYBBQUHAQgBAf8ECjAIoAYwBAICXmIwDQYJKoZIhvcNAQELBQADggEBAJWtoero KQexdn4/UJreKJIDsU7KdvBac9nz2/7jdvmZFeaH+4ANqyk9reICgeinMyyESpUk IiG6Jy9VNmNkipklCsgUzjIC+0Dwq5LR+ene3pHNxJ+8UAWpdW3OYzpgkKDhSNss 9dMVuIvl7lCHBBqOHhddgD00QLdXSMLSHDftXfFIQUOHr5tA58AW7cacWH6h91jE 75xdr3NLVmcXVhyYMcerBSR5CgHaQBBCG/TCfKyTdxWJYVo5TwP3yJ8SkBc8BO+H XVj/90csDtpohxG8sbB3ZO8g+rjVWMj1OgFl4jj9a0OwuyQ/0d2GwBy69WoqVS1H zsV6yKkkBZbP9tI= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:32 2025 by rpki-client on console.sobornost.net