$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JXv5FL8lh5JagPp7xZDoEi8YXjc.cer File: JXv5FL8lh5JagPp7xZDoEi8YXjc.cer (raw, json) Hash identifier: jkSHV590C8O2EP5prVtA5A7OHMewR0K33BJ5hYFKDaY= Subject key identifier: 25:7B:F9:14:BF:25:87:92:5A:80:FA:7B:C5:90:E8:12:2F:18:5E:37 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3BFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/JXv5FL8lh5JagPp7xZDoEi8YXjc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:14:55 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 103.131.124.0/22 IP: 2403:c9c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15354 (0x3bfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 22 08:14:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=257BF914BF2587925A80FA7BC590E8122F185E37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:70:a3:a9:77:5a:61:1e:f6:f4:0f:1c:eb: ed:43:cd:d2:1c:05:97:7e:2f:30:ee:ca:9a:70:1d: 5d:49:9e:f6:f2:f3:ff:5f:cc:12:9a:77:5d:61:3a: f3:f1:b8:28:48:33:45:5f:2f:89:80:de:df:a6:0e: 9a:8a:13:52:db:d3:0a:f7:4a:7b:9f:3e:3c:48:96: fc:c7:a1:68:e3:92:7d:9b:b9:6b:78:7f:ba:45:c7: 8f:c8:5a:8e:b1:bc:50:1a:32:8a:ea:e3:4b:f0:d9: fd:42:8a:1e:ed:08:8f:c6:29:8f:1c:3a:cc:68:e0: af:36:7a:f3:51:ed:29:59:37:77:06:2f:fc:42:53: f5:bb:fa:f0:18:6e:58:28:ec:f9:77:4a:10:c7:54: 96:cd:c0:e5:dd:54:9c:f5:d9:1d:8c:fa:7d:38:3d: a8:db:4c:de:28:89:1a:b3:c4:c9:f5:5d:12:19:57: 25:a2:73:2a:9d:77:17:17:25:a9:0b:22:ed:ac:43: e8:6e:0b:99:f3:ab:30:9c:3e:48:c1:02:28:81:71: 07:8f:1e:5b:6c:bc:86:cf:09:d0:bb:29:94:cb:85: 86:80:3a:1a:20:c1:f7:c4:7d:5e:e6:37:88:53:b6: fb:a9:3f:b6:4e:95:00:a6:dd:49:c9:20:62:46:4e: 79:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7B:F9:14:BF:25:87:92:5A:80:FA:7B:C5:90:E8:12:2F:18:5E:37 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MPOWER/JXv5FL8lh5JagPp7xZDoEi8YXjc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.124.0/22 IPv6: 2403:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 52:7c:47:58:e4:c6:b4:14:6d:e2:21:1f:43:bd:12:8d:c9:52: 9a:06:08:55:b0:b8:10:43:8c:a0:32:3f:69:c0:5f:c7:c8:f7: a3:48:e7:df:53:dc:dd:c4:88:16:fd:50:6a:53:9f:45:07:4b: af:7b:7f:ba:0c:ba:11:30:af:e1:d9:98:69:d5:8c:6a:6c:01: fa:9f:4a:cb:af:29:9f:0c:9d:b7:46:81:75:de:43:8e:65:01: 85:98:72:f8:75:9d:e7:4d:b9:fc:7b:f8:dd:25:b7:22:c5:ec: 9b:32:f2:41:13:07:af:e1:f0:9c:96:52:ba:13:23:2c:31:03: 8c:09:cb:fe:90:c3:55:fb:9f:cb:79:af:44:f3:f1:ef:b8:f5: 7b:78:41:b9:8e:ac:22:50:a7:e3:38:2f:cd:42:ed:09:85:82: 34:e5:fd:a5:30:30:aa:15:74:ee:42:44:75:6a:73:5c:7b:af: 58:28:73:5d:12:b7:c0:f0:35:1c:b7:bf:46:4c:8e:62:06:16: 58:85:00:c1:f9:08:47:78:ca:79:bd:c8:83:a3:7b:b0:be:4b: ff:df:de:9e:c4:27:be:43:fb:00:d2:39:59:6c:56:f6:c5:34: d6:a5:1b:cc:1a:f8:44:05:ee:7d:44:5e:e4:3f:ef:8a:79:83: 40:5a:af:fb -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICO/owDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4MTQ1NVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoMjU3QkY5MTRCRjI1ODc5MjVBODBGQTdCQzU5MEU4MTIyRjE4NUUz NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM/GcKOpd1phHvb0Dxzr 7UPN0hwFl34vMO7KmnAdXUme9vLz/1/MEpp3XWE68/G4KEgzRV8viYDe36YOmooT UtvTCvdKe58+PEiW/MehaOOSfZu5a3h/ukXHj8hajrG8UBoyiurjS/DZ/UKKHu0I j8Ypjxw6zGjgrzZ681HtKVk3dwYv/EJT9bv68BhuWCjs+XdKEMdUls3A5d1UnPXZ HYz6fTg9qNtM3iiJGrPEyfVdEhlXJaJzKp13FxclqQsi7axD6G4LmfOrMJw+SMEC KIFxB48eW2y8hs8J0LsplMuFhoA6GiDB98R9XuY3iFO2+6k/tk6VAKbdSckgYkZO eTsCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBQle/kUvyWHklqA+nvFkOgSLxheNzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVBPV0VSLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L01QT1dFUi9KWHY1Rkw4bGg1SmFnUHA3eFpEb0VpOFlYamMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4N8MA0EAgACMAcDBQAkA8nAMA0GCSqG SIb3DQEBCwUAA4IBAQBSfEdY5Ma0FG3iIR9DvRKNyVKaBghVsLgQQ4ygMj9pwF/H yPejSOffU9zdxIgW/VBqU59FB0uve3+6DLoRMK/h2Zhp1YxqbAH6n0rLrymfDJ23 RoF13kOOZQGFmHL4dZ3nTbn8e/jdJbcixeybMvJBEwev4fCcllK6EyMsMQOMCcv+ kMNV+5/Lea9E8/HvuPV7eEG5jqwiUKfjOC/NQu0JhYI05f2lMDCqFXTuQkR1anNc e69YKHNdErfA8DUct79GTI5iBhZYhQDB+QhHeMp5vciDo3uwvkv/396exCe+Q/sA 0jlZbFb2xTTWpRvMGvhEBe59RF7kP++KeYNAWq/7 -----END CERTIFICATE-----Generated at Sat Aug 23 22:24:38 2025 by rpki-client