This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0wEZt4lGgLD8LVEX0upqKNhQSuQ.cer File: 0wEZt4lGgLD8LVEX0upqKNhQSuQ.cer (raw, json) Hash identifier: rFPxllcOpkHQ1Am1PGhXK2pyJdElXhyagFM3Dd3K7Dk= Subject key identifier: D3:01:19:B7:89:46:80:B0:FC:2D:51:17:D2:EA:6A:28:D8:50:4A:E4 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 400E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/HCCG_HCEB/0wEZt4lGgLD8LVEX0upqKNhQSuQ.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/HCCG_HCEB/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Thu 18 Dec 2025 08:08:24 +0000 Certificate not after: Fri 04 Dec 2026 15:30:18 +0000 Subordinate resources: AS: 131675 IP: 2402:3ce0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 03:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16398 (0x400e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Dec 18 08:08:24 2025 GMT Not After : Dec 4 15:30:18 2026 GMT Subject: CN=D30119B7894680B0FC2D5117D2EA6A28D8504AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:69:bc:52:00:ba:04:9b:d2:78:48:f1:75: 5f:8a:c5:03:4b:6f:e1:dd:c6:4e:b7:d1:d5:9c:5c: 48:56:bf:dd:0d:e2:a0:ce:f5:f9:f6:3a:ad:05:f4: 0b:d4:62:be:70:7a:cc:a3:1b:45:75:df:12:a9:46: 4a:99:33:90:46:72:61:ff:ba:16:b4:bb:42:eb:bc: 0a:2c:d5:de:ee:94:9a:e9:89:5d:0e:1e:c0:55:34: 49:d3:c7:71:67:3d:76:d4:5d:25:9e:b4:5b:6b:46: 8c:ec:45:0d:dc:8b:65:6b:65:a7:6a:0d:a0:9b:ec: 00:9b:0a:85:d1:0d:f5:f6:f7:93:02:90:78:8c:6b: 01:18:10:7a:48:b6:38:42:27:a8:ad:73:bc:56:ab: a0:8a:47:4d:c0:22:32:8a:d9:8d:e1:2b:68:84:09: a9:4b:d6:4b:8a:95:04:0b:82:96:9f:b5:98:ac:f8: 3d:5b:7e:75:d4:a4:6e:f1:cc:86:84:cb:1b:16:28: df:23:b3:96:b5:9a:86:6d:af:88:51:98:2e:eb:d3: 6f:5e:2b:93:e9:21:ae:0c:39:96:0a:ce:69:12:06: 99:1d:c6:79:fa:e3:bc:0a:75:40:88:be:b4:3c:3b: 81:b6:34:bd:f6:95:86:ab:7a:32:78:4a:e6:c4:f6: 52:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:01:19:B7:89:46:80:B0:FC:2D:51:17:D2:EA:6A:28:D8:50:4A:E4 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HCCG_HCEB/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HCCG_HCEB/0wEZt4lGgLD8LVEX0upqKNhQSuQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 131675 sbgp-ipAddrBlock: critical IPv6: 2402:3ce0::/32 Signature Algorithm: sha256WithRSAEncryption 5b:91:15:d7:ce:19:79:b8:a2:4b:64:7c:c6:f0:7c:96:25:02: 58:d8:bf:21:c0:19:7b:5b:00:d0:b3:c2:41:7f:34:62:46:85: 36:17:32:f0:e3:73:17:88:51:66:a3:70:6c:dc:e1:0a:14:07: 61:14:4c:fb:75:ca:9f:bd:19:15:bd:20:b6:39:72:6a:eb:6d: 50:1f:cf:81:36:7f:72:35:bf:fa:42:f0:4b:5d:67:33:5a:12: 8d:29:2e:a0:34:81:0f:8a:1d:5c:38:92:cb:f8:18:10:87:f2: b2:89:f0:1b:32:48:ee:cb:4d:db:57:c4:46:f8:f0:de:44:10: 1d:28:d2:1d:94:0d:09:be:94:2c:2a:6b:4c:41:0d:16:c5:ad: dc:86:1b:c7:63:58:ac:e2:6c:3a:ce:f1:2a:2b:d9:a4:0e:df: 0a:6d:05:6a:a5:cd:4c:b8:c4:51:f1:2f:6f:7b:f5:16:2f:53: 7e:b6:cc:6d:6b:70:59:c4:fe:15:8d:00:73:fc:98:67:78:77: 83:b7:82:a0:7f:7b:6f:95:5e:87:b1:9e:db:6f:35:74:a9:52: 23:64:8b:9e:19:71:07:81:95:73:87:ce:84:2f:10:1e:61:28: 3b:a7:ad:45:7f:1b:9c:34:75:08:08:fa:ca:28:64:ef:89:06: d6:f2:b7:05 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICQA4wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI1MTIxODA4MDgyNFoXDTI2MTIwNDE1MzAxOFowMzEx MC8GA1UEAxMoRDMwMTE5Qjc4OTQ2ODBCMEZDMkQ1MTE3RDJFQTZBMjhEODUwNEFF NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN+yabxSALoEm9J4SPF1 X4rFA0tv4d3GTrfR1ZxcSFa/3Q3ioM71+fY6rQX0C9RivnB6zKMbRXXfEqlGSpkz kEZyYf+6FrS7Quu8CizV3u6UmumJXQ4ewFU0SdPHcWc9dtRdJZ60W2tGjOxFDdyL ZWtlp2oNoJvsAJsKhdEN9fb3kwKQeIxrARgQeki2OEInqK1zvFaroIpHTcAiMorZ jeEraIQJqUvWS4qVBAuClp+1mKz4PVt+ddSkbvHMhoTLGxYo3yOzlrWahm2viFGY LuvTb14rk+khrgw5lgrOaRIGmR3GefrjvAp1QIi+tDw7gbY0vfaVhqt6MnhK5sT2 Uu0CAwEAAaOCAnMwggJvMB0GA1UdDgQWBBTTARm3iUaAsPwtURfS6moo2FBK5DAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdwGCCsGAQUFBwELBIHPMIHMMDsGCCsGAQUFBzAF hi9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSENDR19IQ0VC LzBaBggrBgEFBQcwCoZOcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hDQ0dfSENFQi8wd0VadDRsR2dMRDhMVkVYMHVwcUtOaFFTdVEubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwICWzAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQCPOAwDQYJKoZIhvcNAQELBQADggEBAFuRFdfOGXm4oktkfMbw fJYlAljYvyHAGXtbANCzwkF/NGJGhTYXMvDjcxeIUWajcGzc4QoUB2EUTPt1yp+9 GRW9ILY5cmrrbVAfz4E2f3I1v/pC8EtdZzNaEo0pLqA0gQ+KHVw4ksv4GBCH8rKJ 8BsySO7LTdtXxEb48N5EEB0o0h2UDQm+lCwqa0xBDRbFrdyGG8djWKzibDrO8Sor 2aQO3wptBWqlzUy4xFHxL2979RYvU362zG1rcFnE/hWNAHP8mGd4d4O3gqB/e2+V XoexnttvNXSpUiNki54ZcQeBlXOHzoQvEB5hKDunrUV/G5w0dQgI+sooZO+JBtby twU= -----END CERTIFICATE-----Generated at Sat Dec 20 02:37:46 2025 by rpki-client