$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer File: H31if-NqLr9pgJvIR7VDO_Q-N-g.cer (raw, json) Hash identifier: fpQ698T2FeMT5gEF1s/3LW3HpcOouq/f2yBCDQ+/iUk= Subject key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3D3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:58:30 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: AS: 152619 IP: 2401:e3e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15674 (0x3d3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 22 08:58:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1b:7d:5d:be:c6:e7:95:b1:3e:7e:62:ee:68: c2:b5:e0:6f:ca:12:7f:d3:22:69:60:91:f7:db:f9: b4:6c:68:a0:61:a5:8d:f5:1e:cc:d5:a7:c8:bd:cc: b8:11:52:7a:ac:b5:e8:c4:79:13:24:46:e2:a9:67: b4:5b:c6:9d:eb:9b:1f:34:f6:5f:00:14:7b:b9:31: c7:8c:d7:07:5d:74:c4:87:80:ff:2f:03:19:6d:ec: f6:fc:e7:d6:b4:9b:ef:1d:f5:b1:ec:e0:b9:a0:30: 76:15:58:51:ee:e9:00:8b:02:c3:c4:6d:07:fa:c3: f9:ff:b9:0a:40:a4:c8:b4:9b:c2:03:07:96:9c:d2: 31:93:06:63:2a:0a:0f:e7:d2:d0:78:4c:7c:ee:b8: ca:df:ba:6c:f2:bb:92:35:ce:a5:64:ff:cb:43:de: 92:49:35:ea:34:60:fc:b4:78:e5:2f:4d:4e:94:c0: 5d:16:6c:b7:8e:6a:94:00:70:44:19:28:89:cc:d5: 49:79:f0:62:ed:9a:f6:8b:43:fb:33:79:1d:5b:1d: 9f:1d:f3:5b:7a:7e:95:cb:ff:1d:21:09:91:08:e7: 4e:12:df:71:80:86:17:7b:b6:61:9c:0a:1a:cb:a2: be:b4:9a:28:45:25:e3:3c:99:9c:b9:3e:9d:13:de: 02:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 152619 sbgp-ipAddrBlock: critical IPv6: 2401:e3e0::/32 Signature Algorithm: sha256WithRSAEncryption 62:d9:9d:2b:da:16:8e:85:85:e4:93:fa:d2:61:c4:70:fc:90: eb:66:4e:59:c5:b0:51:85:2d:ec:84:3f:82:87:0a:20:ad:57: 1f:73:91:18:32:c2:8e:05:b1:29:1a:29:ec:b3:77:18:15:63: 87:7e:42:c3:a2:00:47:ba:99:3e:d1:45:2c:d4:57:cb:c6:76: f9:25:98:ef:4e:48:1c:22:f0:14:90:03:a4:a9:65:ad:2b:1c: e4:25:a4:2c:1a:65:92:db:b8:37:b5:3a:a1:45:51:06:67:cb: 7c:61:e0:2c:20:dd:04:f2:4a:94:27:0a:34:a2:3d:bf:fe:6a: 9b:64:99:c0:6e:89:43:c4:00:9a:80:96:65:67:41:79:84:81: 9c:04:63:29:99:e2:76:5b:cf:31:75:ac:5b:cc:5a:2a:51:40: d6:b2:1d:ae:4d:23:d0:67:b3:2f:6c:a9:93:da:0d:80:90:d8: 5e:ae:9b:a2:92:5a:32:99:b2:f9:9e:13:c0:f3:d7:48:89:d0: a8:fa:fc:38:f3:d6:68:45:7f:0f:61:ad:5b:97:31:93:13:8a: db:82:17:7e:86:be:00:cc:d8:de:cb:c1:87:3e:b4:1b:e7:e1: 6b:e9:89:d5:47:cc:f9:5f:1f:eb:31:38:ce:90:9e:0e:05:35: e9:15:6e:26 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgICPTowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4NTgzMFoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoMUY3RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdF ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMEbfV2+xueVsT5+Yu5o wrXgb8oSf9MiaWCR99v5tGxooGGljfUezNWnyL3MuBFSeqy16MR5EyRG4qlntFvG neubHzT2XwAUe7kxx4zXB110xIeA/y8DGW3s9vzn1rSb7x31sezguaAwdhVYUe7p AIsCw8RtB/rD+f+5CkCkyLSbwgMHlpzSMZMGYyoKD+fS0HhMfO64yt+6bPK7kjXO pWT/y0Pekkk16jRg/LR45S9NTpTAXRZst45qlABwRBkoiczVSXnwYu2a9otD+zN5 HVsdnx3zW3p+lcv/HSEJkQjnThLfcYCGF3u2YZwKGsuivrSaKEUl4zyZnLk+nRPe ArkCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBQffWJ/42ouv2mAm8hHtUM79D436DAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZBU1Qv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVkVSWUZBU1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMCVCswIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAePgMA0GCSqGSIb3DQEBCwUAA4IBAQBi2Z0r2haOhYXkk/rSYcRw /JDrZk5ZxbBRhS3shD+ChwogrVcfc5EYMsKOBbEpGinss3cYFWOHfkLDogBHupk+ 0UUs1FfLxnb5JZjvTkgcIvAUkAOkqWWtKxzkJaQsGmWS27g3tTqhRVEGZ8t8YeAs IN0E8kqUJwo0oj2//mqbZJnAbolDxACagJZlZ0F5hIGcBGMpmeJ2W88xdaxbzFoq UUDWsh2uTSPQZ7MvbKmT2g2AkNherpuikloymbL5nhPA89dIidCo+vw489ZoRX8P Ya1blzGTE4rbghd+hr4AzNjey8GHPrQb5+Fr6YnVR8z5Xx/rMTjOkJ4OBTXpFW4m -----END CERTIFICATE-----Generated at Sat Aug 23 22:28:08 2025 by rpki-client