This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/_WUEd5O9OBfyaU3MKm_uEkcp9N0.cer File: _WUEd5O9OBfyaU3MKm_uEkcp9N0.cer (raw, json) Hash identifier: 8YYm279giG31wxCYGujx9dnbjrtXALpt/GR4LTakK8I= Subject key identifier: FD:65:04:77:93:BD:38:17:F2:69:4D:CC:2A:6F:EE:12:47:29:F4:DD Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 40E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/_WUEd5O9OBfyaU3MKm_uEkcp9N0.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Tue 20 Jan 2026 00:44:38 +0000 Certificate not after: Fri 15 Jan 2027 15:30:19 +0000 Subordinate resources: AS: 18044 IP: 2402:4920::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 08:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16611 (0x40e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Jan 20 00:44:38 2026 GMT Not After : Jan 15 15:30:19 2027 GMT Subject: CN=FD65047793BD3817F2694DCC2A6FEE124729F4DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8d:56:2f:12:60:2b:3c:08:f8:d8:ce:2f:7e: 91:f9:c7:78:34:2c:5b:78:ce:08:c1:e2:2b:6a:55: 3f:8a:58:d9:a8:9c:82:ab:19:3f:14:6d:d2:78:68: 39:46:f2:28:99:f8:e6:19:0a:66:f9:0d:bd:33:4a: 46:7e:0d:cc:9a:03:0c:0d:0d:32:3a:30:d1:21:5b: 01:dd:df:9c:87:80:45:24:ef:0b:b1:2f:e3:91:9c: ca:f0:d5:b7:03:3f:72:db:f0:3c:b7:00:57:56:87: b4:80:1b:4c:87:57:bd:4e:2e:33:94:8f:5c:b1:4a: ff:7c:d6:29:17:c2:17:90:97:bb:69:f4:6d:02:f5: fb:3c:4e:72:f1:b0:1f:bf:1b:51:bf:05:25:bc:22: c1:13:2a:1d:cc:55:00:7d:4b:c4:83:64:fc:7f:06: 51:cd:a0:2b:22:c6:2d:5f:78:a8:eb:79:ba:65:f9: d7:52:24:6a:cd:6e:f9:46:bb:01:af:3d:97:00:4d: bb:17:57:11:43:4a:a4:ed:18:f2:20:91:1b:97:14: 25:93:0c:eb:8f:f3:56:42:d4:fc:e6:93:f3:76:ba: 74:82:b1:c6:80:a2:2a:58:17:07:97:7f:d0:eb:07: 02:e9:e3:35:7e:47:b8:5a:a9:d2:57:f0:7f:65:c7: f8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:65:04:77:93:BD:38:17:F2:69:4D:CC:2A:6F:EE:12:47:29:F4:DD X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/_WUEd5O9OBfyaU3MKm_uEkcp9N0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 18044 sbgp-ipAddrBlock: critical IPv6: 2402:4920::/32 Signature Algorithm: sha256WithRSAEncryption 3e:f3:51:40:71:55:de:04:ad:b7:64:5f:63:44:80:3c:62:e1: 17:3e:ce:76:fd:3e:cb:f7:61:5a:c7:e2:35:e3:56:cd:f1:04: 7b:5d:f3:ae:ba:40:b5:53:13:70:96:a2:65:d0:27:a3:bf:c4: 1f:9a:65:72:08:04:bc:48:2a:15:ca:d3:3e:2a:c0:4b:bc:4f: da:1a:42:12:75:97:0f:ad:25:3b:8f:e4:8e:13:a4:e8:c9:da: 59:65:2b:bd:88:23:1b:d2:15:99:58:18:06:06:3b:5d:3a:41: d6:70:68:9c:b3:cd:ef:4f:32:fc:6a:a2:a2:01:10:03:03:16: e4:c3:fc:43:cc:8c:e0:9d:d6:6f:c7:dc:11:79:03:ae:cd:ef: 43:2d:ff:02:84:0c:7b:b5:e9:ce:82:47:3b:d5:83:6d:3f:de: bf:77:ac:dc:28:a4:40:27:11:2c:0a:f5:bc:fc:ff:85:1d:22: c0:d2:76:22:2b:63:30:05:db:3f:a6:f1:9a:9b:fd:c0:60:be: 26:97:c3:aa:0c:81:62:29:61:17:43:37:2e:7c:d6:36:01:ef: 35:04:ae:09:f9:0f:4c:dd:ec:d0:10:6a:4c:3e:42:cd:3b:f2: 29:e6:90:88:9f:12:81:94:14:4a:9c:76:f2:31:75:ba:bb:c3: 5c:49:95:d0 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgICQOMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI2MDEyMDAwNDQzOFoXDTI3MDExNTE1MzAxOVowMzEx MC8GA1UEAxMoRkQ2NTA0Nzc5M0JEMzgxN0YyNjk0RENDMkE2RkVFMTI0NzI5RjRE RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMWNVi8SYCs8CPjYzi9+ kfnHeDQsW3jOCMHiK2pVP4pY2aicgqsZPxRt0nhoOUbyKJn45hkKZvkNvTNKRn4N zJoDDA0NMjow0SFbAd3fnIeARSTvC7Ev45GcyvDVtwM/ctvwPLcAV1aHtIAbTIdX vU4uM5SPXLFK/3zWKRfCF5CXu2n0bQL1+zxOcvGwH78bUb8FJbwiwRMqHcxVAH1L xINk/H8GUc2gKyLGLV94qOt5umX511Ikas1u+Ua7Aa89lwBNuxdXEUNKpO0Y8iCR G5cUJZMM64/zVkLU/OaT83a6dIKxxoCiKlgXB5d/0OsHAunjNX5HuFqp0lfwf2XH +JsCAwEAAaOCAm4wggJqMB0GA1UdDgQWBBT9ZQR3k704F/JpTcwqb+4SRyn03TAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0FOUkFZUy8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9LQU5SQVlTL19XVUVkNU85T0JmeWFVM01LbV91RWtjcDlOMC5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwGQYI KwYBBQUHAQgBAf8ECjAIoAYwBAICRnwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAkkgMA0GCSqGSIb3DQEBCwUAA4IBAQA+81FAcVXeBK23ZF9jRIA8YuEX Ps52/T7L92Fax+I141bN8QR7XfOuukC1UxNwlqJl0Cejv8QfmmVyCAS8SCoVytM+ KsBLvE/aGkISdZcPrSU7j+SOE6ToydpZZSu9iCMb0hWZWBgGBjtdOkHWcGics83v TzL8aqKiARADAxbkw/xDzIzgndZvx9wReQOuze9DLf8ChAx7tenOgkc71YNtP96/ d6zcKKRAJxEsCvW8/P+FHSLA0nYiK2MwBds/pvGam/3AYL4ml8OqDIFiKWEXQzcu fNY2Ae81BK4J+Q9M3ezQEGpMPkLNO/Ip5pCInxKBlBRKnHbyMXW6u8NcSZXQ -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:50 2026 by rpki-client