$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/qwyzskBpUB606KXATg7sZRHCyRw.cer File: qwyzskBpUB606KXATg7sZRHCyRw.cer (raw, json) Hash identifier: TbmkjmuL1c7s2WqZjXbNe+uFORmuym2LppzRPF66wyQ= Subject key identifier: AB:0C:B3:B2:40:69:50:1E:B4:E8:A5:C0:4E:0E:EC:65:11:C2:C9:1C Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3EC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/MFE/qwyzskBpUB606KXATg7sZRHCyRw.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/MFE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Mon 27 Oct 2025 07:02:51 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 103.117.132.0/23 IP: 2401:3b60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 16:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16072 (0x3ec8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Oct 27 07:02:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AB0CB3B24069501EB4E8A5C04E0EEC6511C2C91C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a6:03:26:b5:3f:8f:1f:69:01:7b:c8:35:ac: 69:c3:5a:30:c1:59:3d:b8:ef:bc:0b:68:5f:ca:2d: e6:10:f2:f9:8e:6f:85:f8:08:12:5b:ca:8a:6e:c1: d2:c2:24:79:06:80:23:bc:df:31:e9:70:83:80:14: 63:36:8c:27:2a:50:cc:e3:cd:22:7d:30:f9:e4:8a: 0a:de:8b:c2:b4:3f:bd:ef:59:5c:65:f0:f7:80:d3: f5:4e:f2:01:f5:49:c7:c7:fa:b5:26:a7:bd:74:6c: 8d:7b:bd:5d:f2:f0:97:9c:c7:e1:c0:8e:2a:ae:43: 01:7d:c6:b8:2f:25:ed:c7:97:b2:76:fb:2b:cd:74: d0:e0:7f:4c:b2:4a:fa:0e:4b:20:6b:50:ee:c9:b3: da:39:35:2a:87:7a:51:b9:ed:dd:41:d4:ae:a5:12: d0:2a:2b:50:25:5c:36:c9:84:e5:f3:9c:72:a0:eb: a0:88:98:df:01:6f:e8:11:d1:82:cb:6f:95:0a:51: 75:09:20:e8:a9:3c:bd:78:58:83:f7:e9:71:e9:18: f0:f3:f3:d9:a0:7a:90:d5:8e:3d:35:03:ba:54:59: c3:68:b1:9d:6e:63:2a:b5:ac:d0:56:6b:b0:37:ec: 56:c5:ad:ff:3a:77:98:cc:8b:21:c3:32:cd:6a:76: f3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:0C:B3:B2:40:69:50:1E:B4:E8:A5:C0:4E:0E:EC:65:11:C2:C9:1C X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MFE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MFE/qwyzskBpUB606KXATg7sZRHCyRw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.117.132.0/23 IPv6: 2401:3b60::/32 Signature Algorithm: sha256WithRSAEncryption 4c:5c:5a:28:b3:b3:2e:f4:81:76:7f:a5:55:1a:f3:2e:d9:48: 53:ce:24:01:03:a1:4d:47:7d:f2:ab:31:bd:7f:49:2d:12:6f: 0a:a6:c9:63:c2:59:8e:94:83:2d:60:92:30:f5:54:ac:fa:1f: 19:43:be:c2:e7:22:41:ef:d6:28:a7:ed:5a:87:b5:96:fe:ab: b6:74:ee:e8:9c:4b:09:35:b6:a3:64:af:c1:93:2d:c5:f5:6b: fb:13:f3:e9:37:12:67:3b:85:cf:40:1e:63:cd:1c:85:4a:97: 22:1e:37:30:92:b6:da:8f:39:ee:2c:fe:07:f0:9c:74:cb:09: 73:15:e8:32:aa:17:a7:4e:12:98:ca:0c:e1:76:43:e5:ab:cf: f5:09:97:1a:da:7f:4c:95:60:76:b0:25:5f:f8:d4:91:a8:63: ed:79:39:64:bc:39:b1:19:f1:c9:a9:03:1e:7b:20:df:eb:69: 30:76:75:b4:f2:8f:03:bf:24:4e:69:fb:ed:31:f3:f8:dd:ea: 3f:d9:73:50:e3:52:e9:8e:8b:00:d7:cb:f4:4c:b4:ac:d2:5d: f7:06:77:f9:78:8f:49:d5:33:6e:af:75:b0:22:37:6d:e5:b2: da:d0:8c:f1:54:92:fe:f3:e8:15:ba:d5:7e:4b:d6:c3:cf:87: a4:ae:c6:99 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICPsgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MTAyNzA3MDI1MVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoQUIwQ0IzQjI0MDY5NTAxRUI0RThBNUMwNEUwRUVDNjUxMUMyQzkx QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMSmAya1P48faQF7yDWs acNaMMFZPbjvvAtoX8ot5hDy+Y5vhfgIElvKim7B0sIkeQaAI7zfMelwg4AUYzaM JypQzOPNIn0w+eSKCt6LwrQ/ve9ZXGXw94DT9U7yAfVJx8f6tSanvXRsjXu9XfLw l5zH4cCOKq5DAX3GuC8l7ceXsnb7K8100OB/TLJK+g5LIGtQ7smz2jk1Kod6Ubnt 3UHUrqUS0CorUCVcNsmE5fOccqDroIiY3wFv6BHRgstvlQpRdQkg6Kk8vXhYg/fp cekY8PPz2aB6kNWOPTUDulRZw2ixnW5jKrWs0FZrsDfsVsWt/zp3mMyLIcMyzWp2 8ysCAwEAAaOCAlkwggJVMB0GA1UdDgQWBBSrDLOyQGlQHrTopcBODuxlEcLJHDAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdAGCCsGAQUFBwELBIHDMIHAMDUGCCsGAQUFBzAF hilyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUZFLzBUBggr BgEFBQcwCoZIcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01G RS9xd3l6c2tCcFVCNjA2S1hBVGc3c1pSSEN5UncubWZ0MDEGCCsGAQUFBzANhiVo dHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ3WEMA0EAgACMAcDBQAkATtgMA0GCSqGSIb3DQEB CwUAA4IBAQBMXFoos7Mu9IF2f6VVGvMu2UhTziQBA6FNR33yqzG9f0ktEm8Kpslj wlmOlIMtYJIw9VSs+h8ZQ77C5yJB79Yop+1ah7WW/qu2dO7onEsJNbajZK/Bky3F 9Wv7E/PpNxJnO4XPQB5jzRyFSpciHjcwkrbajznuLP4H8Jx0ywlzFegyqhenThKY ygzhdkPlq8/1CZca2n9MlWB2sCVf+NSRqGPteTlkvDmxGfHJqQMeeyDf62kwdnW0 8o8DvyROafvtMfP43eo/2XNQ41LpjosA18v0TLSs0l33Bnf5eI9J1TNur3WwIjdt 5bLa0IzxVJL+8+gVutV+S9bDz4ekrsaZ -----END CERTIFICATE-----Generated at Tue Oct 28 14:46:48 2025 by rpki-client