$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer File: eCczeuX0S1Tzhcty1PzQf66lyUM.cer (raw, json) Hash identifier: 13aferYCGOtA5+N9bF886WiCzOJWp9mme5UL9BObnPc= Subject key identifier: 78:27:33:7A:E5:F4:4B:54:F3:85:CB:72:D4:FC:D0:7F:AE:A5:C9:43 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3E22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Wed 01 Oct 2025 05:21:21 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 49.213.34.0/23 IP: 2402:22e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15906 (0x3e22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Oct 1 05:21:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7827337AE5F44B54F385CB72D4FCD07FAEA5C943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8b:ca:ce:e2:04:a8:58:24:f0:33:5e:70:bc: 72:34:db:14:93:0f:f2:68:4d:8c:ad:ac:fe:2e:46: 17:4e:72:42:e9:80:15:43:7b:56:cc:e2:22:6c:75: 82:2e:a8:10:9c:99:0d:70:02:fa:98:47:43:3e:9e: fc:d9:fb:a9:08:82:0d:34:09:9a:8e:78:c9:88:cd: 3d:19:93:fa:7f:77:50:8f:10:7b:78:3e:b3:d2:f0: ae:38:48:56:dc:a9:7c:b8:f4:46:fe:9c:02:fb:20: e5:c8:8b:dd:a2:02:8d:c6:39:b8:7f:36:11:f0:0e: 7a:82:ad:ce:a2:df:70:a2:ae:37:5d:b7:90:c3:2d: 94:5e:6e:09:7f:8d:39:91:ca:42:c5:ee:5c:5f:d6: 30:60:77:b6:ab:b5:55:da:87:b3:3d:8d:e6:4a:51: 2d:ea:aa:98:f3:e8:cd:9b:c0:ae:46:fb:a4:49:0e: 3c:16:ce:21:03:21:59:b1:f0:77:0e:da:e8:eb:a5: f5:22:6e:56:3c:8f:6d:e7:6b:fd:0a:0f:f6:d0:b1: aa:8a:1c:0f:ee:9b:1d:be:5a:58:20:62:08:5d:e2: 87:0a:db:a9:cf:83:0b:4b:fb:b0:58:68:d0:c9:6e: 84:bc:32:b2:cd:05:af:66:ed:af:68:2e:4a:53:46: a8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:27:33:7A:E5:F4:4B:54:F3:85:CB:72:D4:FC:D0:7F:AE:A5:C9:43 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.34.0/23 IPv6: 2402:22e0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:f0:8d:6e:c9:6e:6f:95:8b:e8:e5:56:eb:b8:5d:80:0c:29: 6e:4d:91:5e:39:0c:23:3a:2f:d7:fc:f3:cb:61:2a:2a:35:b2: 2c:dd:45:ed:b0:d5:22:96:5c:c2:f6:b6:2c:59:79:a7:35:76: b5:7e:98:d0:91:d7:50:01:3e:df:e3:32:a7:f5:37:17:49:50: 51:8d:6c:5d:6b:82:c2:01:9b:a8:62:b3:98:0d:3e:e1:09:a2: 2d:c1:2d:90:4b:11:26:f1:61:4d:0c:d3:9a:2b:c0:e7:bb:b3: 23:08:0e:c5:a6:48:42:74:76:4c:fc:14:4a:81:9a:2a:26:a1: 94:0c:8f:ab:95:0e:a0:02:c3:23:df:fe:9b:02:f8:fd:fd:95: 5f:3e:70:c4:7f:45:08:f9:c8:b6:26:23:a4:fa:02:c8:2d:bd: 79:db:4f:71:49:fc:5b:3b:57:98:79:02:cc:5b:ff:36:94:65: f5:49:4b:44:d1:43:d2:c3:43:29:41:fc:8a:72:1c:8c:e9:79: ba:d7:4f:8b:c3:65:70:b2:49:bf:ab:a9:2d:eb:e5:e3:27:55: 99:d1:7b:f8:d7:33:d1:26:08:63:6b:3e:86:34:7d:d2:8f:ce: bb:c3:22:6d:80:5e:46:da:b9:b7:ef:98:3d:ac:97:06:2b:81: dc:bc:9e:90 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICPiIwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MTAwMTA1MjEyMVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoNzgyNzMzN0FFNUY0NEI1NEYzODVDQjcyRDRGQ0QwN0ZBRUE1Qzk0 MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJyLys7iBKhYJPAzXnC8 cjTbFJMP8mhNjK2s/i5GF05yQumAFUN7VsziImx1gi6oEJyZDXAC+phHQz6e/Nn7 qQiCDTQJmo54yYjNPRmT+n93UI8Qe3g+s9LwrjhIVtypfLj0Rv6cAvsg5ciL3aIC jcY5uH82EfAOeoKtzqLfcKKuN123kMMtlF5uCX+NOZHKQsXuXF/WMGB3tqu1VdqH sz2N5kpRLeqqmPPozZvArkb7pEkOPBbOIQMhWbHwdw7a6Oul9SJuVjyPbedr/QoP 9tCxqoocD+6bHb5aWCBiCF3ihwrbqc+DC0v7sFho0MluhLwyss0Fr2btr2guSlNG qFsCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBR4JzN65fRLVPOFy3LU/NB/rqXJQzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJWUlZSS8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9TSElZSVlJL2VDY3pldVgwUzFUemhjdHkxUHpRZjY2bHlVTS5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwLgYI KwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAEx1SIwDQQCAAIwBwMFACQCIuAwDQYJ KoZIhvcNAQELBQADggEBAIzwjW7Jbm+Vi+jlVuu4XYAMKW5NkV45DCM6L9f888th Kio1sizdRe2w1SKWXML2tixZeac1drV+mNCR11ABPt/jMqf1NxdJUFGNbF1rgsIB m6his5gNPuEJoi3BLZBLESbxYU0M05orwOe7syMIDsWmSEJ0dkz8FEqBmiomoZQM j6uVDqACwyPf/psC+P39lV8+cMR/RQj5yLYmI6T6AsgtvXnbT3FJ/Fs7V5h5Asxb /zaUZfVJS0TRQ9LDQylB/IpyHIzpebrXT4vDZXCySb+rqS3r5eMnVZnRe/jXM9Em CGNrPoY0fdKPzrvDIm2AXkbaubfvmD2slwYrgdy8npA= -----END CERTIFICATE-----Generated at Tue Oct 21 02:19:16 2025 by rpki-client