$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer (raw, json) Hash identifier: orLOy0kQQDC3i9aCJORuNd7zwUBv65DdDzi2QXESJes= Subject key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3B06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:14:44 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 103.122.236.0/22 IP: 2403:9740::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15110 (0x3b06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 22 08:14:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fe:0d:2d:02:f0:4f:a8:78:61:6b:6a:b8:44: 6c:48:f1:51:85:00:01:7b:7b:6d:c7:53:1e:fb:5c: fb:25:75:85:8f:78:98:20:1b:f0:dd:c9:45:0f:78: 0f:ce:82:63:35:d8:46:f1:39:0b:e8:41:63:98:04: 59:af:e3:c2:6a:ba:0f:28:4c:e8:ad:9d:54:71:17: 81:13:bb:32:ee:57:31:dc:9e:47:6d:27:c5:87:14: 85:04:e7:1e:cd:1d:45:2a:08:4b:5c:b2:20:03:96: ec:bf:cb:73:b3:eb:46:53:d8:1d:7d:a2:ef:35:27: cc:80:c4:16:92:a9:7d:e3:53:82:4f:05:e3:35:68: 7b:c5:b9:94:6c:72:aa:14:60:3c:0b:b0:65:05:2d: 95:ae:a9:99:56:d3:0b:aa:52:1c:36:62:67:03:2c: e3:e9:fd:87:8c:e2:38:18:96:9d:5e:65:99:46:99: 68:a6:d0:3f:e8:1f:c4:15:bf:32:b1:c6:9c:05:15: d2:5f:90:2d:0b:cc:2d:bd:2a:00:7e:ab:8e:c0:27: 94:f5:23:d6:be:4e:a6:52:fe:a6:40:1f:8f:a6:87: b7:b3:bf:bc:df:9d:b2:5a:5e:96:34:2c:e3:59:94: b6:5c:bd:1a:07:18:fc:af:a0:9c:fa:68:31:a0:cf: ff:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.236.0/22 IPv6: 2403:9740::/32 Signature Algorithm: sha256WithRSAEncryption 65:4d:bb:f2:6e:a5:bf:9a:56:a1:39:08:7a:ad:d1:db:7d:b5: 08:06:0d:43:01:59:21:03:89:0b:80:95:de:43:54:a4:8f:2f: 3d:3f:d3:83:9d:b6:1c:34:f6:c7:8c:18:aa:82:ce:cc:0e:e1: 8f:93:79:e5:5d:f7:62:41:9a:b3:70:98:e4:0d:db:b8:e5:72: ea:5a:0a:f1:14:75:07:c8:6c:0b:9b:35:05:be:61:7a:eb:b5: 9c:7b:55:62:f3:ef:df:7b:24:f3:24:d8:7c:c2:cd:b8:1f:fa: 6e:ea:36:f5:7b:40:8a:58:4e:02:5c:24:b8:88:c7:84:8e:16: f3:4b:2a:7b:ff:b9:b2:5e:ca:11:37:7f:24:ab:f7:9c:13:40: c4:41:28:ab:56:fa:49:32:59:b6:b7:3e:ad:e5:2f:79:0a:f9: af:93:07:e6:48:77:1a:8e:c0:79:44:f2:cc:95:79:51:0b:f1: 4c:17:6f:11:ac:13:3b:98:e3:80:79:2d:c4:93:26:24:14:40: bf:83:64:bc:81:82:84:b7:b0:65:e0:b4:9b:17:c8:9a:2d:28: dd:e0:6e:04:aa:08:c2:e7:69:27:9a:4f:55:92:e8:9b:f2:0f: a0:ff:bb:17:1a:81:c2:62:c8:0c:e4:2b:a3:07:22:27:7d:eb: 8c:bf:2a:39 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICOwYwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4MTQ0NFoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoOUZFNzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUx NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMv+DS0C8E+oeGFrarhE bEjxUYUAAXt7bcdTHvtc+yV1hY94mCAb8N3JRQ94D86CYzXYRvE5C+hBY5gEWa/j wmq6DyhM6K2dVHEXgRO7Mu5XMdyeR20nxYcUhQTnHs0dRSoIS1yyIAOW7L/Lc7Pr RlPYHX2i7zUnzIDEFpKpfeNTgk8F4zVoe8W5lGxyqhRgPAuwZQUtla6pmVbTC6pS HDZiZwMs4+n9h4ziOBiWnV5lmUaZaKbQP+gfxBW/MrHGnAUV0l+QLQvMLb0qAH6r jsAnlPUj1r5OplL+pkAfj6aHt7O/vN+dslpeljQs41mUtly9GgcY/K+gnPpoMaDP //MCAwEAAaOCAl8wggJbMB0GA1UdDgQWBBSf50D9DGSS/skvPkTOY27hi401FzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L09OTU9SRS9uLWRBX1F4a2t2N0pMejVFem1OdTRZdU5OUmMubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3rsMA0EAgACMAcDBQAkA5dAMA0GCSqG SIb3DQEBCwUAA4IBAQBlTbvybqW/mlahOQh6rdHbfbUIBg1DAVkhA4kLgJXeQ1Sk jy89P9ODnbYcNPbHjBiqgs7MDuGPk3nlXfdiQZqzcJjkDdu45XLqWgrxFHUHyGwL mzUFvmF667Wce1Vi8+/feyTzJNh8ws24H/pu6jb1e0CKWE4CXCS4iMeEjhbzSyp7 /7myXsoRN38kq/ecE0DEQSirVvpJMlm2tz6t5S95CvmvkwfmSHcajsB5RPLMlXlR C/FMF28RrBM7mOOAeS3EkyYkFEC/g2S8gYKEt7Bl4LSbF8iaLSjd4G4EqgjC52kn mk9Vkuib8g+g/7sXGoHCYsgM5CujByInfeuMvyo5 -----END CERTIFICATE-----Generated at Sat Aug 23 22:26:40 2025 by rpki-client