$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/vYUzvIlqVcbIw_re-leHMQxfNA4.cer File: vYUzvIlqVcbIw_re-leHMQxfNA4.cer (raw, json) Hash identifier: AdX9zVZsgKfy9n6xOlc1c1WXl4GPnWwMenMGaWcQaPQ= Subject key identifier: BD:85:33:BC:89:6A:55:C6:C8:C3:FA:DE:FA:57:87:31:0C:5F:34:0E Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/vYUzvIlqVcbIw_re-leHMQxfNA4.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:14:37 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 2401:af20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14986 (0x3a8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Aug 22 08:14:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BD8533BC896A55C6C8C3FADEFA5787310C5F340E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:01:b2:22:cd:f8:c2:24:0f:4d:d4:d4:b1: 5a:2e:63:0f:ff:a4:74:2c:ce:7e:5a:3c:54:81:e0: 06:6a:c7:e7:d5:16:7b:07:63:62:d2:91:6f:e8:7a: 1e:e6:ca:56:aa:96:2e:03:40:d2:fe:5b:88:79:94: 10:25:21:3d:3b:bc:50:96:c0:4a:29:41:01:0b:13: c5:eb:b0:cb:c9:68:84:64:8d:f4:11:0b:4a:4e:ee: 23:c1:c3:f1:f5:9d:11:ec:98:0c:e6:ad:13:69:3a: 39:aa:c0:c4:21:41:b5:14:8d:0c:89:4c:2d:8c:5a: 5e:48:d9:78:e5:10:81:56:2a:ae:54:49:1e:b7:86: 20:6f:b9:39:ad:f8:76:13:76:22:24:f8:5d:f7:86: 18:11:d9:25:a4:c3:4e:5c:57:90:01:95:f3:b3:3a: c9:a8:32:0c:33:9d:28:92:79:22:26:1f:ea:0d:f1: ef:49:46:c1:2a:f2:f2:ea:44:9c:ab:1d:86:92:28: be:18:7c:72:03:b8:ac:f6:fe:75:4b:e0:3d:a9:db: 01:02:94:f1:1b:f4:17:6a:88:a1:72:9e:91:39:33: f1:b3:48:04:6f:3d:87:59:02:93:20:ea:82:2f:43: 33:9a:6a:dc:ef:46:c2:72:b8:8c:44:05:cb:16:9a: c9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:85:33:BC:89:6A:55:C6:C8:C3:FA:DE:FA:57:87:31:0C:5F:34:0E X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/vYUzvIlqVcbIw_re-leHMQxfNA4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:af20::/32 Signature Algorithm: sha256WithRSAEncryption 07:db:7f:3b:fe:66:c2:09:f8:4d:64:30:69:b2:d0:33:30:74: b4:da:d1:44:1f:8d:03:08:50:d1:2e:86:e6:7a:61:3a:63:a3: ec:0d:38:a2:50:68:86:2b:81:6c:79:d5:36:02:fc:5a:fc:e1: d7:9a:a9:81:35:4f:41:c0:40:1b:aa:21:58:ea:30:07:26:36: b9:92:4c:0e:d2:dd:24:4d:34:fb:93:13:50:0f:95:28:79:c6: 86:7f:26:a7:59:e2:5b:94:62:e4:3f:58:bc:7e:dd:0a:7e:0b: 7c:79:53:5a:1b:15:9e:6c:cc:67:a3:f0:be:f1:54:91:24:93: 00:6f:41:11:07:7c:74:7c:ab:22:1b:12:60:96:2a:16:b4:12: c0:a6:7f:92:d3:36:73:aa:ad:44:b0:4d:b1:33:f8:81:59:5c: ac:9f:53:05:eb:ec:23:44:82:df:a5:bc:a5:18:38:32:4b:be: 1a:65:5b:c7:a5:49:1b:82:f3:89:c5:1f:e1:41:9b:c8:03:ee: 92:ed:8c:ce:8f:af:2b:f8:29:c8:a3:49:61:32:7f:f7:b5:ac: e0:5e:da:ff:fb:48:c1:43:ef:cf:9d:20:2e:cc:d6:74:4f:d5: 96:0f:15:37:bb:6e:d4:bc:74:da:db:d2:ed:99:55:97:33:05: 4e:d0:66:fa -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICOoowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4MTQzN1oXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoQkQ4NTMzQkM4OTZBNTVDNkM4QzNGQURFRkE1Nzg3MzEwQzVGMzQw RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMgIAbIizfjCJA9N1NSx Wi5jD/+kdCzOflo8VIHgBmrH59UWewdjYtKRb+h6HubKVqqWLgNA0v5biHmUECUh PTu8UJbASilBAQsTxeuwy8lohGSN9BELSk7uI8HD8fWdEeyYDOatE2k6OarAxCFB tRSNDIlMLYxaXkjZeOUQgVYqrlRJHreGIG+5Oa34dhN2IiT4XfeGGBHZJaTDTlxX kAGV87M6yagyDDOdKJJ5IiYf6g3x70lGwSry8upEnKsdhpIovhh8cgO4rPb+dUvg PanbAQKU8Rv0F2qIoXKekTkz8bNIBG89h1kCkyDqgi9DM5pq3O9GwnK4jEQFyxaa yYcCAwEAAaOCAlMwggJPMB0GA1UdDgQWBBS9hTO8iWpVxsjD+t76V4cxDF80DjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NFVEVDSC8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9DQ0VURUNIL3ZZVXp2SWxxVmNiSXdfcmUtbGVITVF4Zk5BNC5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYI KwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAa8gMA0GCSqGSIb3DQEBCwUAA4IB AQAH2387/mbCCfhNZDBpstAzMHS02tFEH40DCFDRLobmemE6Y6PsDTiiUGiGK4Fs edU2Avxa/OHXmqmBNU9BwEAbqiFY6jAHJja5kkwO0t0kTTT7kxNQD5UoecaGfyan WeJblGLkP1i8ft0Kfgt8eVNaGxWebMxno/C+8VSRJJMAb0ERB3x0fKsiGxJglioW tBLApn+S0zZzqq1EsE2xM/iBWVysn1MF6+wjRILfpbylGDgyS74aZVvHpUkbgvOJ xR/hQZvIA+6S7YzOj68r+CnIo0lhMn/3tazgXtr/+0jBQ+/PnSAuzNZ0T9WWDxU3 u27UvHTa29LtmVWXMwVO0Gb6 -----END CERTIFICATE-----Generated at Sat Aug 23 22:25:03 2025 by rpki-client