$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.cer File: Z2LgCk_vzdfwUnPkFQIYw6n-Euk.cer (raw, json) Hash identifier: ZD1+bDcicGc+T5HcNTuiypc5rlSJd+wJAWtnCcDOcjM= Subject key identifier: 67:62:E0:0A:4F:EF:CD:D7:F0:52:73:E4:15:02:18:C3:A9:FE:12:E9 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3CF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:15:07 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 103.134.80.0/22 IP: 2404:62c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15608 (0x3cf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 22 08:15:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6762E00A4FEFCDD7F05273E4150218C3A9FE12E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:eb:f8:7f:d8:81:df:90:a9:98:4b:e5:11: e2:cc:df:b0:da:f8:c4:83:1b:d1:af:4a:f6:b0:f8: f8:ab:e2:f3:cd:6c:81:b8:2b:83:5c:6b:63:82:8b: ff:54:a6:44:b1:0d:f6:4a:db:65:e7:ce:e1:31:eb: 1a:d4:24:71:25:1e:3b:76:8a:bc:73:1f:ef:5e:91: d0:b3:7d:66:9f:13:d0:ba:12:6b:47:d7:ba:ce:6b: 0e:6c:f1:31:c3:a3:7f:4c:4d:84:20:c6:b4:0a:6b: 7d:5d:32:cb:4d:e9:5f:d1:2a:59:a0:df:5f:eb:9a: 1c:5f:25:73:20:44:38:3c:38:81:19:ad:3e:d6:47: 75:37:7b:cf:9f:ca:88:ac:65:ad:3a:e8:8f:7d:c1: 36:5d:51:e7:4b:02:13:73:ae:ec:88:bb:a6:de:22: 36:78:0f:84:3b:47:be:a3:e9:24:28:59:25:e0:10: 71:74:29:b0:af:db:64:f1:3d:30:51:cf:0b:56:c9: 3d:9f:8f:d9:9b:33:a0:e5:5e:b4:90:b2:00:8e:81: b6:ef:85:df:18:7e:39:e3:68:58:ec:ed:ad:e3:53: 88:3b:0c:91:98:59:46:26:85:9b:42:25:2c:fa:c1: 60:2c:61:ec:b4:f0:07:cd:2c:43:52:2f:d3:8a:d0: f4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:62:E0:0A:4F:EF:CD:D7:F0:52:73:E4:15:02:18:C3:A9:FE:12:E9 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YIMINGINFO/Z2LgCk_vzdfwUnPkFQIYw6n-Euk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.134.80.0/22 IPv6: 2404:62c0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:72:5e:95:f2:36:64:29:41:4f:3c:b4:74:2c:b1:c6:8b:27: 7d:4d:a8:72:1e:53:3b:fb:4a:33:51:8b:54:d7:7e:90:80:71: 16:73:0d:4c:60:7a:2d:6c:15:8c:18:04:23:37:67:68:f5:1c: e5:92:7b:6e:fd:8c:ea:1f:c9:2f:56:a9:c5:f0:fb:13:b8:a5: 56:f7:d5:a4:6e:f1:fc:4c:44:cd:4c:93:30:8f:95:56:2b:37: 13:20:4c:ff:37:66:0a:89:13:7a:59:7d:a6:00:e4:e7:dd:08: b9:2b:c2:be:1b:b5:8c:cc:5b:42:95:7f:a4:01:dc:a6:81:f9: 73:f9:00:18:db:63:62:bd:aa:19:89:71:26:b6:6d:f9:bb:a5: aa:e7:b9:b8:c0:3d:ac:0e:65:04:8d:b8:a1:9f:48:db:34:df: 02:b6:7d:fc:54:1a:ac:4a:35:1e:fa:a8:de:13:2b:f5:a5:d7: 3e:52:c7:a3:bd:87:fc:dc:72:bc:57:f7:ba:cd:5c:95:d4:9a: 19:e3:53:65:3e:a4:7d:af:98:02:a8:db:47:01:ee:b3:7d:38: e3:ef:fb:61:ed:fe:3b:98:4b:db:e5:78:de:98:05:eb:13:80: 08:34:d1:7e:98:ee:ab:6c:ba:41:02:25:64:18:06:ea:ba:91: dc:f9:62:3b -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICPPgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4MTUwN1oXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoNjc2MkUwMEE0RkVGQ0REN0YwNTI3M0U0MTUwMjE4QzNBOUZFMTJF OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALyY6/h/2IHfkKmYS+UR 4szfsNr4xIMb0a9K9rD4+Kvi881sgbgrg1xrY4KL/1SmRLEN9krbZefO4THrGtQk cSUeO3aKvHMf716R0LN9Zp8T0LoSa0fXus5rDmzxMcOjf0xNhCDGtAprfV0yy03p X9EqWaDfX+uaHF8lcyBEODw4gRmtPtZHdTd7z5/KiKxlrTroj33BNl1R50sCE3Ou 7Ii7pt4iNngPhDtHvqPpJChZJeAQcXQpsK/bZPE9MFHPC1bJPZ+P2ZszoOVetJCy AI6Btu+F3xh+OeNoWOztreNTiDsMkZhZRiaFm0IlLPrBYCxh7LTwB80sQ1Iv04rQ 9IECAwEAAaOCAmcwggJjMB0GA1UdDgQWBBRnYuAKT+/N1/BSc+QVAhjDqf4S6TAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWUlNSU5HSU5G Ty8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZSU1JTkdJTkZPL1oyTGdDa192emRmd1VuUGtGUUlZdzZuLUV1ay5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJnhlAwDQQCAAIwBwMFACQE YsAwDQYJKoZIhvcNAQELBQADggEBAF1yXpXyNmQpQU88tHQsscaLJ31NqHIeUzv7 SjNRi1TXfpCAcRZzDUxgei1sFYwYBCM3Z2j1HOWSe279jOofyS9WqcXw+xO4pVb3 1aRu8fxMRM1MkzCPlVYrNxMgTP83ZgqJE3pZfaYA5OfdCLkrwr4btYzMW0KVf6QB 3KaB+XP5ABjbY2K9qhmJcSa2bfm7parnubjAPawOZQSNuKGfSNs03wK2ffxUGqxK NR76qN4TK/Wl1z5Sx6O9h/zccrxX97rNXJXUmhnjU2U+pH2vmAKo20cB7rN9OOPv +2Ht/juYS9vleN6YBesTgAg00X6Y7qtsukECJWQYBuq6kdz5Yjs= -----END CERTIFICATE-----Generated at Sat Aug 23 22:26:47 2025 by rpki-client