This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.cer (raw, json) Hash identifier: q/j9e3NLBq+jYXrpVcksvf98K9w1CX1cKl8AEhp/49g= Subject key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3F89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 24 Nov 2025 06:59:33 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: AS: 18180 AS: 18417 -- 18418 AS: 131621 IP: 61.67.112.0 -- 61.67.121.255 IP: 101.101.101.0/24 IP: 101.102.103.0/24 IP: 103.235.88.0/23 IP: 119.75.240.0/21 IP: 122.128.80.0/24 IP: 122.252.160.0/24 IP: 150.242.100.0/22 IP: 182.173.0.0 -- 182.173.14.255 IP: 203.91.0.0/24 IP: 203.119.3.0/24 IP: 203.119.94.0/24 IP: 2001:dc1::/32 IP: 2001:de4::/48 IP: 2001:44f0::/32 IP: 2404:178::/32 IP: 2407:3d00::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 20:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16265 (0x3f89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Nov 24 06:59:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3f:31:45:f2:52:a6:8d:d4:53:d3:e9:75:22: 79:53:cd:54:21:5c:a0:fc:f2:04:38:e8:f6:69:4d: f6:5b:98:8a:b3:55:13:2f:d5:99:8e:1d:e1:80:f5: ea:ef:98:65:da:3b:51:cc:c1:11:79:37:db:dc:7e: 72:b6:3b:a6:d7:ca:1c:8b:05:d3:f2:ce:15:fa:32: bd:9c:dd:da:b3:17:af:c5:62:ed:72:77:e7:fc:09: 27:9b:37:90:18:34:c1:30:25:b2:f3:a9:de:78:5c: 46:be:88:ae:fe:7d:9b:2d:af:aa:33:4e:dc:7e:47: 8e:19:f8:7b:86:36:05:07:b6:c5:4c:5e:67:e2:21: 82:11:9e:0e:42:9b:05:4e:44:8f:f5:71:3c:f8:63: bd:a6:24:83:4f:a4:16:55:6b:fa:1a:61:a1:68:ab: 9e:45:b1:92:01:4f:b2:85:a0:0d:a6:20:90:26:30: a6:28:1f:ac:01:ae:ac:52:13:8e:87:2e:bb:d8:b9: e2:75:20:81:a8:f3:46:91:68:a5:e9:cd:d7:8d:fa: 0f:7f:3d:17:fb:f2:32:38:62:1d:f7:e8:78:bf:ff: b8:a0:58:0d:f2:3d:18:a3:8c:f8:00:05:f1:61:0b: 37:8a:43:7d:ab:56:6a:3a:32:4d:47:1e:31:15:d3: c2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 18180 18417-18418 131621 sbgp-ipAddrBlock: critical IPv4: 61.67.112.0-61.67.121.255 101.101.101.0/24 101.102.103.0/24 103.235.88.0/23 119.75.240.0/21 122.128.80.0/24 122.252.160.0/24 150.242.100.0/22 182.173.0.0-182.173.14.255 203.91.0.0/24 203.119.3.0/24 203.119.94.0/24 IPv6: 2001:dc1::/32 2001:de4::/48 2001:44f0::/32 2404:178::/32 2407:3d00::/32 Signature Algorithm: sha256WithRSAEncryption 40:2e:93:c4:01:e4:1c:ff:97:da:c0:27:29:12:e8:9b:31:b8: aa:87:93:35:24:60:d4:8a:17:cc:50:e4:96:68:22:c7:14:c0: ad:fa:35:36:b4:9c:01:6f:78:82:3e:2d:42:a5:08:d6:cc:43: 9d:49:d5:b0:e1:2a:41:2a:d5:cb:b2:8b:95:8d:c5:e8:e9:fb: c2:3e:a0:1b:72:50:13:42:01:d5:d3:c3:3b:69:76:ba:db:9a: e6:d0:da:d0:fc:d7:36:94:c2:e8:21:0d:6d:29:84:04:4f:cf: 3f:84:5b:cb:e4:8e:4b:ee:e7:6a:de:b9:b6:96:2a:5e:49:2b: 80:3c:cf:7f:9b:51:8e:f4:31:1f:11:1d:4b:92:40:3d:2c:c3: 57:75:6d:6e:ae:ff:4a:49:16:06:31:7c:ec:e9:88:f0:3f:7b: 25:61:a3:b1:ca:a9:e4:19:2e:7d:c6:53:6d:45:a7:a5:83:5b: 35:43:8e:ec:1e:15:90:7b:bd:95:2e:f6:6f:67:68:09:c5:8a: a0:3b:59:c7:52:46:44:fc:51:5f:bb:77:ad:f8:2f:40:5f:ba: be:b0:16:f7:eb:a4:04:80:54:1a:89:a3:0d:70:6d:28:8e:a9: 65:97:17:72:1d:1f:41:dd:ff:05:e5:3b:b5:71:59:2d:10:1b: bb:0b:d5:14 -----BEGIN CERTIFICATE----- MIIF9DCCBNygAwIBAgICP4kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MTEyNDA2NTkzM1oXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoREZBOEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2 NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL4/MUXyUqaN1FPT6XUi eVPNVCFcoPzyBDjo9mlN9luYirNVEy/VmY4d4YD16u+YZdo7UczBEXk329x+crY7 ptfKHIsF0/LOFfoyvZzd2rMXr8Vi7XJ35/wJJ5s3kBg0wTAlsvOp3nhcRr6Irv59 my2vqjNO3H5Hjhn4e4Y2BQe2xUxeZ+IhghGeDkKbBU5Ej/VxPPhjvaYkg0+kFlVr +hphoWirnkWxkgFPsoWgDaYgkCYwpigfrAGurFITjocuu9i54nUggajzRpFopenN 1436D389F/vyMjhiHffoeL//uKBYDfI9GKOM+AAF8WELN4pDfatWajoyTUceMRXT wrcCAwEAAaOCAvkwggL1MB0GA1UdDgQWBBTfqMRUgVwwF0Vuo7Sn0AITu4XJZTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev VFdOSUMvMzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAoBggrBgEF BQcBCAEB/wQZMBegFTATAgJHBDAIAgJH8QICR/ICAwICJTCBnwYIKwYBBQUHAQcB Af8EgY8wgYwwXQQCAAEwVzAMAwQEPUNwAwQBPUN4AwQAZWVlAwQAZWZnAwQBZ+tY AwQDd0vwAwQAeoBQAwQAevygAwQClvJkMAsDAwC2rQMEALatDgMEAMtbAAMEAMt3 AwMEAMt3XjArBAIAAjAlAwUAIAENwQMHACABDeQAAAMFACABRPADBQAkBAF4AwUA JAc9ADANBgkqhkiG9w0BAQsFAAOCAQEAQC6TxAHkHP+X2sAnKRLomzG4qoeTNSRg 1IoXzFDklmgixxTArfo1NrScAW94gj4tQqUI1sxDnUnVsOEqQSrVy7KLlY3F6On7 wj6gG3JQE0IB1dPDO2l2utua5tDa0PzXNpTC6CENbSmEBE/PP4Rby+SOS+7nat65 tpYqXkkrgDzPf5tRjvQxHxEdS5JAPSzDV3Vtbq7/SkkWBjF87OmI8D97JWGjscqp 5BkufcZTbUWnpYNbNUOO7B4VkHu9lS72b2doCcWKoDtZx1JGRPxRX7t3rfgvQF+6 vrAW9+ukBIBUGomjDXBtKI6pZZcXch0fQd3/BeU7tXFZLRAbuwvVFA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:56:38 2025 by rpki-client