$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer File: 6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer (raw, json) Hash identifier: Nv7RozPl2W3h5PVNMX7HjIxMmMdv3PdcWC3bw5YR8Z0= Subject key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 1DB5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:15:08 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 157.15.32.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 20:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7605 (0x1db5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Aug 22 08:15:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EAB250D058FACBEB3EA0D16B53865061339074B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:20:c6:ac:63:58:1d:d4:1d:c6:a6:9b:d0:5c: 41:66:59:65:7d:15:2a:85:8c:6d:42:40:a0:69:28: e5:c5:c7:2c:10:a4:30:f1:4c:a9:e5:00:ad:32:09: 7c:ce:0b:ba:59:8d:99:82:3f:c7:1b:ac:42:ef:3b: ce:6f:b3:ed:04:13:0b:e6:9a:26:91:ca:c6:9b:a5: db:dc:77:b9:b3:36:8d:db:86:81:01:23:cb:b7:c0: 81:96:c7:1a:08:82:59:0a:99:2f:71:c2:d9:b4:69: b8:92:0d:89:b1:89:b6:04:30:23:74:13:dd:7e:76: 66:29:e0:5b:8f:52:e9:b7:5e:b7:db:e3:d5:1e:c4: 17:9c:15:3d:8c:a8:a8:75:9e:1d:4f:68:79:36:9d: d5:b6:fe:c8:71:f4:60:40:59:1c:70:b5:8e:42:0c: 9c:48:dc:de:21:1d:cd:97:5d:56:a0:2d:7d:b4:b4: a2:58:52:62:c6:01:30:3c:2d:4f:27:ef:93:10:82: c1:59:4d:b2:4a:0a:6b:9d:e3:e3:3d:52:be:51:f6: be:40:b1:ee:bf:31:2c:3b:5d:47:c0:88:ce:2b:92: dc:ee:a2:b1:35:a0:99:61:e6:6a:7e:86:83:08:e4: a9:2e:10:25:35:95:d9:bd:5f:1f:35:08:cd:46:c5: d4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.15.32.0/23 Signature Algorithm: sha256WithRSAEncryption 67:66:d6:d6:d0:39:8a:87:7f:60:70:72:95:fc:ed:77:29:19: d4:57:c1:cd:74:8f:e3:fb:60:28:3d:45:d2:89:8e:13:7b:3f: f4:f7:e6:62:c1:fb:07:16:98:34:05:73:b1:57:86:e0:27:70: 48:51:8f:a9:62:37:25:e0:96:c9:fc:67:c0:16:50:27:b2:52: 1d:06:14:8f:2b:1d:8f:c6:64:8d:ef:f6:a3:2a:64:4a:18:29: 8d:18:00:5b:17:71:61:8f:bc:1e:31:25:87:0d:39:15:0c:73: b4:07:27:e2:35:0d:92:15:6d:33:21:8f:a9:b7:a5:97:f7:78: f5:01:d6:96:48:01:68:22:05:f2:43:e2:20:6c:e5:59:98:0b: 5d:eb:38:67:03:0c:15:ea:09:67:60:41:ca:0e:fa:4b:8c:16: 62:2d:e3:07:71:8a:2f:72:cd:bc:4a:80:85:1a:f6:d2:4c:d9: f2:a4:38:0e:71:7e:76:df:93:a5:0e:74:c8:bc:8c:d9:3d:1a: a4:e6:3d:43:2b:3a:b7:07:70:b0:05:4c:20:f7:d9:1f:ab:1c: f1:f2:0a:09:e5:a9:a3:f4:57:97:58:06:1c:2a:5c:f4:8a:ec: 1b:fa:bb:8c:1d:1b:7f:56:7c:c1:11:a6:1f:eb:1d:2e:b6:ba: 18:bc:8c:09 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgICHbUwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI1MDgyMjA4MTUwOFoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoRUFCMjUwRDA1OEZBQ0JFQjNFQTBEMTZCNTM4NjUwNjEzMzkwNzRC NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOUgxqxjWB3UHcamm9Bc QWZZZX0VKoWMbUJAoGko5cXHLBCkMPFMqeUArTIJfM4LulmNmYI/xxusQu87zm+z 7QQTC+aaJpHKxpul29x3ubM2jduGgQEjy7fAgZbHGgiCWQqZL3HC2bRpuJINibGJ tgQwI3QT3X52ZingW49S6bdet9vj1R7EF5wVPYyoqHWeHU9oeTad1bb+yHH0YEBZ HHC1jkIMnEjc3iEdzZddVqAtfbS0olhSYsYBMDwtTyfvkxCCwVlNskoKa53j4z1S vlH2vkCx7r8xLDtdR8CIziuS3O6isTWgmWHman6GgwjkqS4QJTWV2b1fHzUIzUbF 1D0CAwEAAaOCAk4wggJKMB0GA1UdDgQWBBTqslDQWPrL6z6g0WtThlBhM5B0tjAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdQGCCsGAQUFBwELBIHHMIHEMDcGCCsGAQUFBzAF hityc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUvMFYG CCsGAQUFBzAKhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev QVJDSEUvNnJKUTBGajZ5LXMtb05GclU0WlFZVE9RZExZLm1mdDAxBggrBgEFBQcw DYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PIDANBgkqhkiG9w0BAQsFAAOCAQEAZ2bW 1tA5iod/YHBylfztdykZ1FfBzXSP4/tgKD1F0omOE3s/9PfmYsH7BxaYNAVzsVeG 4CdwSFGPqWI3JeCWyfxnwBZQJ7JSHQYUjysdj8Zkje/2oypkShgpjRgAWxdxYY+8 HjElhw05FQxztAcn4jUNkhVtMyGPqbell/d49QHWlkgBaCIF8kPiIGzlWZgLXes4 ZwMMFeoJZ2BByg76S4wWYi3jB3GKL3LNvEqAhRr20kzZ8qQ4DnF+dt+TpQ50yLyM 2T0apOY9Qys6twdwsAVMIPfZH6sc8fIKCeWpo/RXl1gGHCpc9IrsG/q7jB0bf1Z8 wRGmH+sdLra6GLyMCQ== -----END CERTIFICATE-----Generated at Thu Sep 18 19:14:25 2025 by rpki-client