This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer File: soOb96bGsX58_LNzSjbA6Yw3obc.cer (raw, json) Hash identifier: u+7IanyT9Ax/KjjJD1mhcBXVe0O1u5tzLKGsebmLZwo= Subject key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 3F1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Thu 06 Nov 2025 07:37:19 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 2406:3040::/32 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 16159 (0x3f1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Nov 6 07:37:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:36:ae:bc:01:69:0c:34:25:39:3b:61:3d: ab:b7:6a:44:d4:49:8f:07:9b:85:9d:6d:c1:4c:1e: 43:d8:c8:20:cd:6f:a9:8c:c3:b8:ac:24:11:d9:50: 53:84:ae:e2:52:d7:0d:4d:82:b6:b7:83:d3:2e:3a: 3d:64:2e:1a:b4:9c:81:bb:49:65:f3:57:c3:03:8c: 6b:3d:c3:cf:02:0e:00:1d:11:53:6c:37:75:2c:2c: 6c:92:fe:04:be:ac:03:79:f2:44:21:90:32:07:b9: a4:8a:d9:bf:4a:0d:a3:b6:d9:1e:58:b2:2d:c9:a6: 1b:c2:86:f0:48:35:b2:02:1f:8b:81:fd:bf:03:7c: 8a:54:7b:d1:85:23:99:35:30:19:0d:d4:19:8f:d6: 82:5a:2e:37:0e:c9:7f:2a:75:b7:9a:f5:72:81:97: 59:85:8a:05:a5:6e:55:ab:33:7d:ee:20:1a:72:b6: ae:d1:88:46:1b:27:21:0a:1a:f3:72:fc:78:d8:9e: 9c:2e:b8:9c:99:c1:8a:39:fa:4f:41:6f:be:42:81: cd:92:59:ca:8d:1c:2a:43:4b:0a:22:75:5b:f2:3a: 4d:1c:dd:c8:54:f4:cd:9f:7d:59:35:be:95:75:25: 27:cb:40:ae:60:85:05:d9:a9:42:28:9d:8e:3c:80: 85:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3040::/32 Signature Algorithm: sha256WithRSAEncryption 0c:00:3a:a0:20:94:97:ca:3d:e4:6a:b4:69:5b:5a:b8:73:c6: 9a:ad:76:65:eb:9a:19:24:db:fa:af:ef:53:a8:1b:2c:2f:e1: d8:5d:67:e3:fe:21:6f:de:ff:b6:4f:56:cc:21:54:00:ff:5b: a6:c2:b1:92:ef:b4:4d:b1:00:80:77:e3:74:fd:ae:a5:6c:52: 22:43:24:a9:22:5f:29:47:25:53:c2:f1:0d:bf:e1:2e:18:00: 1c:c7:7d:90:44:00:fd:dc:94:52:e3:fb:23:ab:a3:eb:e0:53: e7:b9:ca:97:bc:26:27:2e:06:97:c0:f5:60:72:f9:b1:3b:43: 17:72:3f:04:72:5d:28:b1:0f:f2:85:28:7c:1e:4b:42:cc:9c: d3:e0:75:17:2f:0b:b2:74:f0:1c:f6:93:85:20:34:ec:7b:e4: 60:73:8f:71:16:52:2c:3c:85:ee:ee:48:6e:97:f2:d6:e7:c0: 2c:43:2a:37:a4:a3:80:08:4b:2b:31:7e:65:ac:fc:4b:07:fa: 3f:4f:91:52:9a:c1:04:eb:9d:1e:ed:b0:b5:c0:6a:5e:b5:e8: 19:c9:6b:4a:3c:28:a7:73:6b:2a:e9:a1:86:4a:5a:59:8a:34: b9:9d:a8:6f:10:6b:8b:f4:7e:c7:a6:01:26:0f:86:d6:18:ab: da:53:d6:4f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICPx8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MTEwNjA3MzcxOVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoQjI4MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFC NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALBmNq68AWkMNCU5O2E9 q7dqRNRJjwebhZ1twUweQ9jIIM1vqYzDuKwkEdlQU4Su4lLXDU2CtreD0y46PWQu GrScgbtJZfNXwwOMaz3DzwIOAB0RU2w3dSwsbJL+BL6sA3nyRCGQMge5pIrZv0oN o7bZHliyLcmmG8KG8Eg1sgIfi4H9vwN8ilR70YUjmTUwGQ3UGY/WglouNw7Jfyp1 t5r1coGXWYWKBaVuVaszfe4gGnK2rtGIRhsnIQoa83L8eNienC64nJnBijn6T0Fv vkKBzZJZyo0cKkNLCiJ1W/I6TRzdyFT0zZ99WTW+lXUlJ8tArmCFBdmpQiidjjyA hWUCAwEAAaOCAlMwggJPMB0GA1UdDgQWBBSyg5v3psaxfnz8s3NKNsDpjDehtzAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdgGCCsGAQUFBwELBIHLMIHIMDkGCCsGAQUFBzAF hi1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRSQS8w WAYIKwYBBQUHMAqGTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9TVU1BVFJBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5tZnQwMQYIKwYB BQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYI KwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBjBAMA0GCSqGSIb3DQEBCwUAA4IB AQAMADqgIJSXyj3karRpW1q4c8aarXZl65oZJNv6r+9TqBssL+HYXWfj/iFv3v+2 T1bMIVQA/1umwrGS77RNsQCAd+N0/a6lbFIiQySpIl8pRyVTwvENv+EuGAAcx32Q RAD93JRS4/sjq6Pr4FPnucqXvCYnLgaXwPVgcvmxO0MXcj8Ecl0osQ/yhSh8HktC zJzT4HUXLwuydPAc9pOFIDTse+Rgc49xFlIsPIXu7khul/LW58AsQyo3pKOACEsr MX5lrPxLB/o/T5FSmsEE650e7bC1wGpetegZyWtKPCinc2sq6aGGSlpZijS5nahv EGuL9H7HpgEmD4bWGKvaU9ZP -----END CERTIFICATE-----Generated at Sat Dec 20 10:50:47 2025 by rpki-client