$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer File: HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer (raw, json) Hash identifier: OcOx/WT15CQdI11CoxU6j4SqW0SBZgOGVANdgMLl2no= Subject key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3565 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 10 Feb 2025 14:29:13 +0000 Certificate not after: Tue 26 Aug 2025 01:57:03 +0000 Subordinate resources: AS: 150755 IP: 203.175.104.0/23 IP: 2401:4e60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 04:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13669 (0x3565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Feb 10 14:29:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1C7073A6066C765842FDF07169E43518A0BB0235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1f:c6:f7:bb:53:e0:0e:f2:e3:6e:2d:0c:30: 65:41:74:4e:26:80:89:44:2f:2b:2e:cd:6e:68:7f: bc:47:53:fa:f7:60:be:0e:d4:34:59:35:e5:ae:1b: d0:2e:85:b3:66:cb:e4:23:0b:9a:92:29:03:32:61: 2c:70:79:a4:20:5b:8d:96:c4:f7:1b:63:70:dd:2d: 6b:2e:41:f9:79:6c:06:c0:c9:b7:48:1b:fa:a6:eb: 72:80:01:b1:90:6c:82:35:6c:6e:4e:af:8f:24:73: 94:44:d4:38:e8:3e:69:0c:9d:ff:70:f6:14:87:36: 4d:a9:31:48:42:db:29:93:ca:eb:6a:af:e2:d4:e9: 19:b7:d4:1d:80:90:7a:01:2c:21:37:fd:f8:b3:89: 9f:41:10:95:29:e9:64:49:8e:50:c7:1d:56:43:18: 4a:11:77:61:60:3b:a0:48:0c:ad:7d:c1:49:51:6b: a0:2c:80:ce:50:6d:e2:35:34:aa:b6:c1:db:a6:f2: d8:de:9b:3b:84:42:76:d0:e9:bd:4f:a3:76:39:51: f5:96:59:e2:32:3a:88:23:1a:b2:64:0c:4e:7e:06: 3b:d5:7f:d9:c0:01:bb:8d:4d:fa:93:20:a5:cb:2a: 42:95:bd:86:1b:0d:59:e3:38:b8:df:c5:8d:e4:af: a6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 150755 sbgp-ipAddrBlock: critical IPv4: 203.175.104.0/23 IPv6: 2401:4e60::/32 Signature Algorithm: sha256WithRSAEncryption 5f:19:94:8e:d1:d5:cf:3a:84:ca:46:ff:c8:6d:40:c7:bc:95: 66:e4:02:9f:b6:06:ef:e5:a1:c5:81:6e:44:2f:f1:ff:00:bc: f9:3e:12:11:0c:0a:a5:fe:cd:32:eb:4b:2c:24:da:81:09:96: 03:64:99:fa:c9:90:b8:45:53:9c:87:79:1b:e4:f2:d7:68:f5: 16:db:ac:b2:a0:f8:52:d5:00:58:8b:51:72:20:e4:ea:3c:c2: 9c:87:b2:63:09:ee:58:ff:d8:cf:16:a4:0f:51:4c:67:12:1d: f4:ca:35:b3:0d:7d:b9:87:c3:f2:ca:82:c1:cc:69:7d:df:ad: 58:2b:e2:30:cc:30:54:d3:76:11:e7:87:ab:b7:6a:a4:07:f6: d1:2f:a9:6f:26:6b:a5:22:6d:27:3f:f4:b2:04:46:94:9e:df: 05:09:62:be:ac:ad:05:ec:c7:7c:af:ef:24:97:73:c2:f8:1a: 2a:ce:0c:bc:07:f6:bb:26:47:e0:db:88:cb:03:dc:75:46:7d: 3e:38:74:8a:66:d1:0e:e4:3d:95:c8:1a:25:a3:78:30:81:4f: b5:26:8f:2e:d3:4d:cf:77:d6:4a:fc:90:ca:b4:1a:84:07:30: 97:38:fe:fc:86:c2:00:23:33:70:e6:6e:ed:d2:0d:88:f1:29: 13:fb:48:57 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICNWUwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDIxMDE0MjkxM1oXDTI1MDgyNjAxNTcwM1owMzEx MC8GA1UEAxMoMUM3MDczQTYwNjZDNzY1ODQyRkRGMDcxNjlFNDM1MThBMEJCMDIz NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOMfxve7U+AO8uNuLQww ZUF0TiaAiUQvKy7Nbmh/vEdT+vdgvg7UNFk15a4b0C6Fs2bL5CMLmpIpAzJhLHB5 pCBbjZbE9xtjcN0tay5B+XlsBsDJt0gb+qbrcoABsZBsgjVsbk6vjyRzlETUOOg+ aQyd/3D2FIc2TakxSELbKZPK62qv4tTpGbfUHYCQegEsITf9+LOJn0EQlSnpZEmO UMcdVkMYShF3YWA7oEgMrX3BSVFroCyAzlBt4jU0qrbB26by2N6bO4RCdtDpvU+j djlR9ZZZ4jI6iCMasmQMTn4GO9V/2cABu41N+pMgpcsqQpW9hhsNWeM4uN/FjeSv ptkCAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBQccHOmBmx2WEL98HFp5DUYoLsCNTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVOTElORS8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OVU5MSU5FL0hIQnpwZ1pzZGxoQ19mQnhhZVExR0tDN0FqVS5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGgYI KwYBBQUHAQgBAf8ECzAJoAcwBQIDAkzjMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQBy69oMA0EAgACMAcDBQAkAU5gMA0GCSqGSIb3DQEBCwUAA4IBAQBfGZSO 0dXPOoTKRv/IbUDHvJVm5AKftgbv5aHFgW5EL/H/ALz5PhIRDAql/s0y60ssJNqB CZYDZJn6yZC4RVOch3kb5PLXaPUW26yyoPhS1QBYi1FyIOTqPMKch7JjCe5Y/9jP FqQPUUxnEh30yjWzDX25h8PyyoLBzGl9361YK+IwzDBU03YR54ert2qkB/bRL6lv JmulIm0nP/SyBEaUnt8FCWK+rK0F7Md8r+8kl3PC+Boqzgy8B/a7Jkfg24jLA9x1 Rn0+OHSKZtEO5D2VyBolo3gwgU+1Jo8u003Pd9ZK/JDKtBqEBzCXOP78hsIAIzNw 5m7t0g2I8SkT+0hX -----END CERTIFICATE-----Generated at Mon May 19 01:17:10 2025 by rpki-client