$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer File: HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer (raw, json) Hash identifier: HO3P43DChAwYZB1Afw+hiIDBVjzZNSrQrlntDx60LCg= Subject key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:15:05 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: AS: 150755 IP: 203.175.104.0/23 IP: 2401:4e60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15570 (0x3cd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 22 08:15:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1C7073A6066C765842FDF07169E43518A0BB0235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1f:c6:f7:bb:53:e0:0e:f2:e3:6e:2d:0c:30: 65:41:74:4e:26:80:89:44:2f:2b:2e:cd:6e:68:7f: bc:47:53:fa:f7:60:be:0e:d4:34:59:35:e5:ae:1b: d0:2e:85:b3:66:cb:e4:23:0b:9a:92:29:03:32:61: 2c:70:79:a4:20:5b:8d:96:c4:f7:1b:63:70:dd:2d: 6b:2e:41:f9:79:6c:06:c0:c9:b7:48:1b:fa:a6:eb: 72:80:01:b1:90:6c:82:35:6c:6e:4e:af:8f:24:73: 94:44:d4:38:e8:3e:69:0c:9d:ff:70:f6:14:87:36: 4d:a9:31:48:42:db:29:93:ca:eb:6a:af:e2:d4:e9: 19:b7:d4:1d:80:90:7a:01:2c:21:37:fd:f8:b3:89: 9f:41:10:95:29:e9:64:49:8e:50:c7:1d:56:43:18: 4a:11:77:61:60:3b:a0:48:0c:ad:7d:c1:49:51:6b: a0:2c:80:ce:50:6d:e2:35:34:aa:b6:c1:db:a6:f2: d8:de:9b:3b:84:42:76:d0:e9:bd:4f:a3:76:39:51: f5:96:59:e2:32:3a:88:23:1a:b2:64:0c:4e:7e:06: 3b:d5:7f:d9:c0:01:bb:8d:4d:fa:93:20:a5:cb:2a: 42:95:bd:86:1b:0d:59:e3:38:b8:df:c5:8d:e4:af: a6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 150755 sbgp-ipAddrBlock: critical IPv4: 203.175.104.0/23 IPv6: 2401:4e60::/32 Signature Algorithm: sha256WithRSAEncryption 5b:01:4c:02:88:81:90:8a:a6:5f:5e:5e:23:b2:c1:42:70:82: 2a:6f:57:16:89:6e:7a:41:77:3f:79:48:a7:88:73:0f:9f:81: 64:65:4e:4d:a5:9b:ec:a0:54:af:c0:9f:ad:aa:ed:49:d3:07: d1:a3:6f:8a:77:de:6e:72:a4:19:63:00:fc:2c:28:37:12:fc: 5a:20:67:1e:37:2d:e2:1a:99:df:49:cc:1a:b2:60:05:91:a4: ef:b4:3a:17:19:30:a1:3c:a9:2f:19:58:df:13:00:2e:45:8b: 02:58:eb:41:e7:68:2f:32:7f:5c:4e:13:e4:a3:3a:7b:2f:c6: e0:81:7c:ce:6a:1c:e4:ea:11:84:e6:95:f4:84:04:38:19:6b: ff:42:69:92:99:24:b0:03:ca:2c:d4:50:7a:3f:b7:5e:ad:0b: 9a:7f:7c:33:71:28:d6:d1:ad:08:13:57:84:ea:54:10:08:5c: ae:52:de:bf:b5:8e:fe:c5:7d:cd:d2:e3:83:42:0a:b0:1f:a1: 9f:d2:ed:1d:26:86:1b:01:7f:84:d4:33:9a:69:22:25:e0:ec: a4:0c:32:95:db:88:d7:9a:50:8d:fd:1f:67:8d:00:41:59:93: 6d:7e:b2:4a:67:3c:d7:b9:e1:4e:6f:22:b4:c5:5b:f3:45:49: eb:31:20:a3 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICPNIwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4MTUwNVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoMUM3MDczQTYwNjZDNzY1ODQyRkRGMDcxNjlFNDM1MThBMEJCMDIz NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOMfxve7U+AO8uNuLQww ZUF0TiaAiUQvKy7Nbmh/vEdT+vdgvg7UNFk15a4b0C6Fs2bL5CMLmpIpAzJhLHB5 pCBbjZbE9xtjcN0tay5B+XlsBsDJt0gb+qbrcoABsZBsgjVsbk6vjyRzlETUOOg+ aQyd/3D2FIc2TakxSELbKZPK62qv4tTpGbfUHYCQegEsITf9+LOJn0EQlSnpZEmO UMcdVkMYShF3YWA7oEgMrX3BSVFroCyAzlBt4jU0qrbB26by2N6bO4RCdtDpvU+j djlR9ZZZ4jI6iCMasmQMTn4GO9V/2cABu41N+pMgpcsqQpW9hhsNWeM4uN/FjeSv ptkCAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBQccHOmBmx2WEL98HFp5DUYoLsCNTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVOTElORS8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OVU5MSU5FL0hIQnpwZ1pzZGxoQ19mQnhhZVExR0tDN0FqVS5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGgYI KwYBBQUHAQgBAf8ECzAJoAcwBQIDAkzjMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQBy69oMA0EAgACMAcDBQAkAU5gMA0GCSqGSIb3DQEBCwUAA4IBAQBbAUwC iIGQiqZfXl4jssFCcIIqb1cWiW56QXc/eUiniHMPn4FkZU5NpZvsoFSvwJ+tqu1J 0wfRo2+Kd95ucqQZYwD8LCg3EvxaIGceNy3iGpnfScwasmAFkaTvtDoXGTChPKkv GVjfEwAuRYsCWOtB52gvMn9cThPkozp7L8bggXzOahzk6hGE5pX0hAQ4GWv/QmmS mSSwA8os1FB6P7derQuaf3wzcSjW0a0IE1eE6lQQCFyuUt6/tY7+xX3N0uODQgqw H6Gf0u0dJoYbAX+E1DOaaSIl4OykDDKV24jXmlCN/R9njQBBWZNtfrJKZzzXueFO byK0xVvzRUnrMSCj -----END CERTIFICATE-----Generated at Sat Aug 23 20:38:17 2025 by rpki-client