$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/rDLTT78BAXweZ__iZz-qYiXEQSI.cer File: rDLTT78BAXweZ__iZz-qYiXEQSI.cer (raw, json) Hash identifier: 0qpw1bJw9khBadrLBoi7ZcmkiIafGGmsFAYA6qkBdlg= Subject key identifier: AC:32:D3:4F:BF:01:01:7C:1E:67:FF:E2:67:3F:AA:62:25:C4:41:22 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3961 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/rDLTT78BAXweZ__iZz-qYiXEQSI.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Tue 01 Jul 2025 02:01:19 +0000 Certificate not after: Wed 01 Jul 2026 00:43:49 +0000 Subordinate resources: IP: 2402:1360::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 22:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14689 (0x3961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Jul 1 02:01:19 2025 GMT Not After : Jul 1 00:43:49 2026 GMT Subject: CN=AC32D34FBF01017C1E67FFE2673FAA6225C44122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:af:8e:39:6f:99:14:9b:c1:f8:f9:64:2e:7e: db:8e:cd:48:29:49:61:9b:49:e0:e0:ed:3b:1f:2d: 90:b8:c4:4d:f9:58:2d:91:25:59:9a:7d:12:fc:de: e9:45:1e:66:58:9e:c5:24:2b:d2:d8:8d:9e:67:b9: b5:ce:d7:8b:17:ac:24:3d:84:ea:96:87:ea:0c:43: 68:7f:48:3f:4e:86:51:76:fb:d0:1d:e4:d0:54:fc: c8:79:5b:3c:92:94:79:72:0a:33:d0:84:1d:25:b3: ef:63:a5:82:07:ed:dc:d6:b4:20:89:82:30:89:f9: a3:e5:03:2a:12:ce:85:0f:60:c0:8a:da:6a:74:b2: 48:c6:68:da:52:9b:dd:a7:46:c4:df:2a:16:2e:8a: 19:8f:03:2a:90:fc:8d:dc:18:50:6c:2f:ef:89:ed: ba:e2:58:7b:3f:db:16:0c:6f:08:9b:3e:05:6e:b4: c9:16:30:0d:a3:10:41:26:4b:cd:9c:2d:66:97:26: fa:c4:e2:c2:6f:60:21:5a:3a:c5:58:9f:ab:73:c6: a6:a9:2d:cf:56:57:9e:21:44:32:9e:b7:d6:55:06: 97:4b:4e:2d:2b:0a:10:ff:db:2c:6b:2a:b9:13:3c: 83:b6:68:98:42:90:c8:f9:61:11:84:db:b1:d3:80: 23:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:32:D3:4F:BF:01:01:7C:1E:67:FF:E2:67:3F:AA:62:25:C4:41:22 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/rDLTT78BAXweZ__iZz-qYiXEQSI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:1360::/32 Signature Algorithm: sha256WithRSAEncryption 34:03:5d:d3:8b:d0:bd:6f:1b:9f:89:73:8b:1e:1a:5e:5b:c4: eb:6e:38:b4:12:05:7d:90:ca:7a:f8:f4:a5:77:53:0f:42:a9: 1d:9a:fb:df:db:9f:98:55:aa:2e:44:f8:1f:c7:82:65:4d:d1: a3:61:92:f9:38:7e:8b:33:74:10:ac:2e:fb:cd:cb:ae:4a:4f: a8:21:63:f6:c8:10:e2:ee:de:1b:f3:0d:8e:a1:e2:e8:4e:5c: 4c:18:f2:cb:de:b2:c5:55:10:d9:a9:89:28:d4:b5:c5:3a:22: 32:08:2d:27:0e:7c:a4:af:66:c2:7d:f9:13:82:66:38:ae:a6: 2f:bc:5b:51:9b:af:cc:e2:db:20:f0:94:70:5e:d7:50:96:39: da:69:64:66:74:2b:93:62:8c:14:14:0e:15:54:7e:d7:6b:65: ed:d5:61:10:4c:7c:5d:65:a4:69:39:39:f6:2a:d7:15:26:e6: 2a:8d:02:d0:31:17:3b:70:37:fa:ff:16:c9:96:3a:f1:6f:ef: 96:52:c9:24:1d:3c:61:f2:d4:17:98:43:35:48:0a:6f:5a:ee: fd:65:2b:64:73:33:70:f1:4b:8f:52:27:dc:b5:38:5b:95:08: 73:a3:da:51:2d:88:57:9c:8c:b4:da:34:e8:e6:31:e4:b7:9a: db:24:ac:e8 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICOWEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MDcwMTAyMDExOVoXDTI2MDcwMTAwNDM0OVowMzEx MC8GA1UEAxMoQUMzMkQzNEZCRjAxMDE3QzFFNjdGRkUyNjczRkFBNjIyNUM0NDEy MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALOvjjlvmRSbwfj5ZC5+ 247NSClJYZtJ4ODtOx8tkLjETflYLZElWZp9Evze6UUeZliexSQr0tiNnme5tc7X ixesJD2E6paH6gxDaH9IP06GUXb70B3k0FT8yHlbPJKUeXIKM9CEHSWz72Olggft 3Na0IImCMIn5o+UDKhLOhQ9gwIraanSySMZo2lKb3adGxN8qFi6KGY8DKpD8jdwY UGwv74ntuuJYez/bFgxvCJs+BW60yRYwDaMQQSZLzZwtZpcm+sTiwm9gIVo6xVif q3PGpqktz1ZXniFEMp631lUGl0tOLSsKEP/bLGsquRM8g7ZomEKQyPlhEYTbsdOA I3kCAwEAAaOCAlUwggJRMB0GA1UdDgQWBBSsMtNPvwEBfB5n/+JnP6piJcRBIjAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdoGCCsGAQUFBwELBIHNMIHKMDoGCCsGAQUFBzAF hi5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0RJTkcv MFkGCCsGAQUFBzAKhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvTUlOR0RJTkcvckRMVFQ3OEJBWHdlWl9faVp6LXFZaVhFUVNJLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAg BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCE2AwDQYJKoZIhvcNAQELBQAD ggEBADQDXdOL0L1vG5+Jc4seGl5bxOtuOLQSBX2Qynr49KV3Uw9CqR2a+9/bn5hV qi5E+B/HgmVN0aNhkvk4foszdBCsLvvNy65KT6ghY/bIEOLu3hvzDY6h4uhOXEwY 8svessVVENmpiSjUtcU6IjIILScOfKSvZsJ9+ROCZjiupi+8W1Gbr8zi2yDwlHBe 11CWOdppZGZ0K5NijBQUDhVUftdrZe3VYRBMfF1lpGk5OfYq1xUm5iqNAtAxFztw N/r/FsmWOvFv75ZSySQdPGHy1BeYQzVICm9a7v1lK2RzM3DxS49SJ9y1OFuVCHOj 2lEtiFecjLTaNOjmMeS3mtskrOg= -----END CERTIFICATE-----Generated at Wed Jul 2 20:16:16 2025 by rpki-client