This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer File: QJHbWm6gO3YPVOCQy5CYc64z9kk.cer (raw, json) Hash identifier: 1KQYpzBVi9Rb9CMHZIcKQAyXPfULRF1NPqrGw3KtzNI= Subject key identifier: 40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 20BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 05 Jan 2026 00:10:49 +0000 Certificate not after: Wed 30 Dec 2026 15:30:20 +0000 Subordinate resources: IP: 144.79.236.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 18:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8383 (0x20bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Jan 5 00:10:49 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:34:01:21:4e:de:93:84:b1:c8:fd:0f:18:96: dc:30:a4:66:df:f0:c6:3f:dc:4a:f1:01:7d:e9:3a: ea:9c:c9:00:b4:7f:75:34:c5:8a:95:4c:9c:6e:ba: 3f:29:af:f7:08:44:72:0e:d6:d5:ba:ad:a2:ac:33: a0:4f:9f:ad:e4:59:fd:6e:5e:34:b2:e0:93:12:e4: dc:b8:e0:1b:c7:ec:00:37:21:49:83:80:00:64:6b: 06:06:79:2f:42:03:56:5a:7d:30:a1:c3:9d:61:79: cd:25:08:28:1a:24:8d:db:8f:ec:64:71:e2:2a:b1: e7:66:cc:52:a4:29:d2:ec:53:13:66:bb:75:27:47: 07:6b:c9:db:de:4e:07:3a:e9:f1:2e:19:52:9d:ec: 05:b9:c2:69:df:4c:49:ed:98:8c:6d:07:27:cc:64: c5:cd:df:76:41:fc:a4:f2:62:56:38:05:1a:47:38: 1a:31:5c:af:34:2e:c8:5e:54:43:fe:7d:12:d5:c5: 11:bb:cb:8c:c1:23:a6:a9:78:c5:1c:61:b7:cf:0c: 0d:84:51:2e:f5:24:74:79:eb:7d:78:0c:4a:04:22: 66:3d:ca:42:23:d1:66:98:39:30:91:5a:76:c0:c8: b1:3a:a1:47:02:ad:9f:70:5d:37:72:d7:c3:2d:44: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 144.79.236.0/23 Signature Algorithm: sha256WithRSAEncryption 95:6d:04:f0:18:9b:03:36:4a:a3:bb:19:76:b0:48:34:a3:8c: 5f:60:17:92:b1:3b:aa:8a:13:78:6e:37:84:f2:dc:bf:26:9e: 4c:da:17:61:0c:90:f2:00:20:e2:21:f3:65:f2:59:96:95:ed: 50:9b:10:aa:e9:f6:4a:de:44:a0:95:f8:8c:7e:76:8e:55:39: c8:c5:d0:cc:1e:37:8f:36:3b:02:44:2a:be:f4:96:e9:c9:63: 86:ef:6c:20:4d:89:f7:a9:bf:35:e2:0d:9c:75:43:96:f7:3a: 36:65:21:62:86:6c:5d:b5:7e:0b:d7:01:a0:f3:19:a1:ec:f6: f1:e6:bf:a8:a8:40:53:46:ce:08:fc:38:9f:0a:3d:91:c7:fa: 84:af:ef:4c:57:eb:76:8d:2f:8b:14:9e:2d:45:6f:5d:32:b5: 14:7e:72:25:80:ed:9f:e7:8b:95:76:1f:21:ee:e1:3a:61:68: 8e:84:a0:e0:00:22:c8:94:8b:a7:60:f9:94:54:ab:e7:4d:ea: e6:a8:c4:23:d1:bd:fb:da:6b:a1:23:f0:c5:74:74:5a:5c:cb: a2:76:37:ce:5b:6b:0c:5b:5b:6f:e8:ca:a5:8c:36:be:c4:78: 2b:58:e9:d9:eb:f8:01:1b:5a:c1:8f:45:72:5a:df:8b:8e:38: ee:25:81:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIL8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI2MDEwNTAwMTA0OVoXDTI2MTIzMDE1MzAyMFowMzEx MC8GA1UEAxMoNDA5MURCNUE2RUEwM0I3NjBGNTRFMDkwQ0I5MDk4NzNBRTMzRjY0 OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKs0ASFO3pOEscj9DxiW 3DCkZt/wxj/cSvEBfek66pzJALR/dTTFipVMnG66Pymv9whEcg7W1bqtoqwzoE+f reRZ/W5eNLLgkxLk3LjgG8fsADchSYOAAGRrBgZ5L0IDVlp9MKHDnWF5zSUIKBok jduP7GRx4iqx52bMUqQp0uxTE2a7dSdHB2vJ295OBzrp8S4ZUp3sBbnCad9MSe2Y jG0HJ8xkxc3fdkH8pPJiVjgFGkc4GjFcrzQuyF5UQ/59EtXFEbvLjMEjpql4xRxh t88MDYRRLvUkdHnrfXgMSgQiZj3KQiPRZpg5MJFadsDIsTqhRwKtn3BdN3LXwy1E 0Z8CAwEAAaOCAlQwggJQMB0GA1UdDgQWBBRAkdtabqA7dg9U4JDLkJhzrjP2STAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJORVQv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQU9URVJORVQvUUpIYldtNmdPM1lQVk9DUXk1Q1ljNjR6OWtrLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZBP7DANBgkqhkiG9w0BAQsFAAOC AQEAlW0E8BibAzZKo7sZdrBINKOMX2AXkrE7qooTeG43hPLcvyaeTNoXYQyQ8gAg 4iHzZfJZlpXtUJsQqun2St5EoJX4jH52jlU5yMXQzB43jzY7AkQqvvSW6cljhu9s IE2J96m/NeINnHVDlvc6NmUhYoZsXbV+C9cBoPMZoez28ea/qKhAU0bOCPw4nwo9 kcf6hK/vTFfrdo0vixSeLUVvXTK1FH5yJYDtn+eLlXYfIe7hOmFojoSg4AAiyJSL p2D5lFSr503q5qjEI9G9+9proSPwxXR0WlzLonY3zltrDFtbb+jKpYw2vsR4K1jp 2ev4ARtawY9Fclrfi4447iWBdQ== -----END CERTIFICATE-----Generated at Wed Jan 21 18:05:55 2026 by rpki-client