$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer File: S0bOj4AxurdTZNpb2YHoiFBPtBE.cer (raw, json) Hash identifier: aPVcA28tELOSzRJLJlVHB1Ii1cVIX/sok8akwIhyEHE= Subject key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 1DD3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 22 Aug 2025 08:52:15 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 160.187.200.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 16:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7635 (0x1dd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Aug 22 08:52:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:0e:e7:c2:ed:4c:83:94:17:51:16:03:36: da:f1:bb:04:a4:ff:5e:75:e2:00:3d:a6:38:6a:df: 67:84:79:91:ff:f5:9e:f5:e2:ee:6b:bb:48:bc:b6: 73:cf:81:59:a4:9f:7e:2a:47:b9:91:84:ef:29:73: 66:e9:f7:12:e4:50:5b:62:fa:db:b8:9b:28:08:ff: 35:91:42:c6:5b:90:4c:83:4b:fc:57:5b:f6:3c:86: e2:d8:99:ac:10:3e:e5:58:33:bd:5b:dc:5e:99:79: 94:cd:46:46:c3:04:15:fe:7e:2a:fe:5b:6a:61:8b: 0a:6d:14:d1:4f:32:2e:77:0f:ce:2a:c7:95:78:b3: fa:f2:c8:7a:f5:e1:f8:10:36:ff:9f:5e:35:3e:49: 26:9d:db:47:c0:14:6e:9e:68:1f:cf:62:d3:59:e2: 82:d2:ad:9a:8f:c7:ee:1e:3d:5b:02:1e:ad:ed:f7: 58:3e:9a:5c:cd:98:56:4a:13:8f:9f:0c:86:37:37: 7c:b2:11:02:a6:63:db:b4:58:08:a8:da:bd:ab:8b: 06:7c:5b:29:97:f1:b3:6a:1b:7a:c5:77:d3:20:00: 60:18:63:b4:ef:78:73:6e:fe:63:82:34:e1:d6:42: 62:89:6f:22:f5:07:94:72:cf:f8:6b:25:3c:e7:e4: 5b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.200.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:da:0e:b5:fd:da:45:8d:35:55:22:d9:35:1f:0e:59:0a:7f: e3:1b:de:2f:e1:cc:e3:9a:5a:e0:5f:4e:b8:72:a2:ef:98:39: b7:16:7a:03:86:d1:23:37:f6:c7:b5:c7:14:e1:23:ca:41:06: 61:3f:1b:53:a4:80:fc:00:08:63:c8:5f:53:0d:23:87:7a:93: 64:51:30:93:3d:28:ae:2f:79:fa:0f:a3:41:a6:af:6b:60:97: 28:07:53:78:69:7b:7e:b4:30:3a:ae:e3:b5:22:cf:d5:9a:8c: c0:29:cf:a7:a1:e2:14:4f:93:28:75:d0:01:87:c0:10:91:10: b6:f6:99:82:97:82:87:5c:6a:7b:8e:f0:eb:93:80:63:b6:88: b7:21:e2:48:fe:02:5b:cc:a6:af:76:09:dc:69:09:03:b5:5d: 13:12:02:0e:ad:b9:b5:29:df:58:bc:13:0a:25:9c:8d:e1:3e: c9:2a:62:ee:ad:c1:88:9c:57:c6:ad:ef:16:17:1c:b5:4b:d8: 0a:4d:05:3c:04:75:49:9a:14:a4:15:80:6d:ec:76:c4:c9:0b: 8a:05:44:ae:db:c0:05:b5:61:39:36:fc:d3:7e:de:cd:ac:15: aa:08:17:c9:62:79:d6:84:73:34:6c:92:4e:47:b5:e7:03:f0: e0:e8:69:22 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICHdMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI1MDgyMjA4NTIxNVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoNEI0NkNFOEY4MDMxQkFCNzUzNjREQTVCRDk4MUU4ODg1MDRGQjQx MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM4IDufC7UyDlBdRFgM2 2vG7BKT/XnXiAD2mOGrfZ4R5kf/1nvXi7mu7SLy2c8+BWaSffipHuZGE7ylzZun3 EuRQW2L627ibKAj/NZFCxluQTINL/Fdb9jyG4tiZrBA+5VgzvVvcXpl5lM1GRsME Ff5+Kv5bamGLCm0U0U8yLncPzirHlXiz+vLIevXh+BA2/59eNT5JJp3bR8AUbp5o H89i01nigtKtmo/H7h49WwIere33WD6aXM2YVkoTj58Mhjc3fLIRAqZj27RYCKja vauLBnxbKZfxs2obesV30yAAYBhjtO94c27+Y4I04dZCYolvIvUHlHLP+GslPOfk W+MCAwEAAaOCAlgwggJUMB0GA1UdDgQWBBRLRs6PgDG6t1Nk2lvZgeiIUE+0ETAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOX05P MS8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UQUlXQU5fTk8xL1MwYk9qNEF4dXJkVFpOcGIyWUhvaUZCUHRCRS5tZnQw MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54 bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu8gwDQYJKoZIhvcNAQEL BQADggEBAA7aDrX92kWNNVUi2TUfDlkKf+Mb3i/hzOOaWuBfTrhyou+YObcWegOG 0SM39se1xxThI8pBBmE/G1OkgPwACGPIX1MNI4d6k2RRMJM9KK4vefoPo0Gmr2tg lygHU3hpe360MDqu47Uiz9WajMApz6eh4hRPkyh10AGHwBCRELb2mYKXgodcanuO 8OuTgGO2iLch4kj+AlvMpq92CdxpCQO1XRMSAg6tubUp31i8EwolnI3hPskqYu6t wYicV8at7xYXHLVL2ApNBTwEdUmaFKQVgG3sdsTJC4oFRK7bwAW1YTk2/NN+3s2s FaoIF8liedaEczRskk5HtecD8ODoaSI= -----END CERTIFICATE-----Generated at Tue Oct 28 14:28:57 2025 by rpki-client