$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer File: 0291B733B1EED1AF7E817D958CE6F13A585F0695.cer (raw, json) Hash identifier: LFhcTreAc7MAml1b6XwG867D0I94H/1Xxsk3pA6Gv2Y= Subject key identifier: 02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 1B811A63EC6ADB63D5179E22808F8B5FD591D43F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft caRepository: rsync://rpkica.twnic.tw/rpki/ZAT/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 16:01:12 +0000 Certificate not after: Mon 10 May 2027 16:06:12 +0000 Subordinate resources: IP: 210.79.150.0/23 IP: 2401:55a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:81:1a:63:ec:6a:db:63:d5:17:9e:22:80:8f:8b:5f:d5:91:d4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 16:01:12 2026 GMT Not After : May 10 16:06:12 2027 GMT Subject: CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:6f:8a:11:64:bb:64:0f:69:4c:07:2e:e6: a7:07:89:d4:2e:f7:c1:31:89:91:61:bf:86:92:3f: 0a:16:6d:20:99:dc:26:ea:ab:3a:4a:e3:05:d3:09: b3:8d:b1:ef:d5:ba:91:62:43:7d:44:05:39:03:c4: fc:fa:e4:78:b3:bb:bd:12:72:49:c6:11:77:86:e8: 8e:e3:f0:c8:2f:bb:f6:cd:ec:41:87:24:69:25:b4: 9f:ac:f6:bc:2f:84:1b:1e:84:bf:52:4a:7b:8b:19: e4:14:af:34:c3:c0:a8:43:05:19:c7:46:10:d9:21: 1c:c6:9e:8b:27:ed:8b:90:fc:f7:fa:5f:7d:33:1b: 35:68:44:0d:4a:40:72:16:e2:02:2b:a5:f9:0a:4d: 36:f0:8f:5b:0f:99:74:db:a7:21:36:66:d8:1f:d9: 1a:76:5f:27:78:0a:3a:9c:19:09:bc:22:13:e8:69: 97:f7:b2:0c:49:f1:b3:23:e9:c2:40:e1:ab:74:7f: e6:86:d7:0f:83:0b:ff:19:45:0b:7a:5c:d4:68:ba: 8d:f4:23:56:12:af:4f:e6:44:0c:81:24:04:5c:a5: 57:b1:7b:79:43:86:0e:6d:3b:78:e5:09:5e:32:94: e3:df:ff:47:09:6f:f7:94:f5:e2:43:b3:aa:8a:87: b0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.150.0/23 IPv6: 2401:55a0::/32 Signature Algorithm: sha256WithRSAEncryption 0c:6e:5a:45:89:bf:0d:b8:86:67:5d:0e:f6:48:57:e4:e2:1f: 69:7d:fa:46:36:e4:d6:bb:be:45:59:83:48:57:b7:4c:72:03: ce:83:a0:54:79:c6:ed:18:6a:7e:ce:38:e8:29:8b:0a:90:f0: 04:4d:f2:a8:16:9d:af:56:90:b6:68:1d:10:ee:3e:40:67:ab: 02:51:95:25:1f:0f:9c:d6:10:19:a4:1f:d3:33:5b:8b:b2:84: 7a:af:36:98:c7:df:b5:73:35:10:3e:9b:64:05:cc:23:65:03: 6d:cc:e8:0d:08:80:b9:ed:62:67:d5:9b:f7:ae:ca:1e:0e:aa: ef:54:fa:ef:35:cd:ec:b9:16:bf:bc:70:9f:e8:07:00:f6:3c: 1f:3f:0e:9f:e1:69:df:37:2d:35:53:73:3a:ec:24:49:d3:10: 68:33:da:72:ce:99:82:d5:e3:8a:a5:4f:06:9f:24:84:93:2b: e8:a4:a3:d5:e2:1b:9c:3b:ea:bc:80:38:0b:ec:e9:3f:df:62: 39:a6:ac:ba:d4:34:e6:1b:e0:c0:14:a3:e6:80:a4:12:4b:94: 7f:3e:27:66:0a:d6:a7:44:5e:c2:6c:1b:d7:af:94:52:40:9c: db:55:8f:51:eb:83:7b:13:67:d4:2f:9b:75:cf:80:b8:c7:76: 1f:b3:32:51 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUG4EaY+xq22PVF54igI+LX9WR1D8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE2MDExMloX DTI3MDUxMDE2MDYxMlowMzExMC8GA1UEAxMoMDI5MUI3MzNCMUVFRDFBRjdFODE3 RDk1OENFNkYxM0E1ODVGMDY5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMMb4oRZLtkD2lMBy7mpweJ1C73wTGJkWG/hpI/ChZtIJncJuqrOkrjBdMJ s42x79W6kWJDfUQFOQPE/PrkeLO7vRJyScYRd4bojuPwyC+79s3sQYckaSW0n6z2 vC+EGx6Ev1JKe4sZ5BSvNMPAqEMFGcdGENkhHMaeiyfti5D89/pffTMbNWhEDUpA chbiAiul+QpNNvCPWw+ZdNunITZm2B/ZGnZfJ3gKOpwZCbwiE+hpl/eyDEnxsyPp wkDhq3R/5obXD4ML/xlFC3pc1Gi6jfQjVhKvT+ZEDIEkBFylV7F7eUOGDm07eOUJ XjKU49//Rwlv95T14kOzqoqHsKMCAwEAAaOCAm8wggJrMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAKRtzOx7tGvfoF9lYzm8TpYXwaVMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9aQVQvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAvMDI5 MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1ODVGMDY5NS5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAdJPljANBAIAAjAHAwUAJAFVoDANBgkqhkiG9w0BAQsFAAOCAQEA DG5aRYm/DbiGZ10O9khX5OIfaX36Rjbk1ru+RVmDSFe3THIDzoOgVHnG7Rhqfs44 6CmLCpDwBE3yqBadr1aQtmgdEO4+QGerAlGVJR8PnNYQGaQf0zNbi7KEeq82mMff tXM1ED6bZAXMI2UDbczoDQiAue1iZ9Wb967KHg6q71T67zXN7LkWv7xwn+gHAPY8 Hz8On+Fp3zctNVNzOuwkSdMQaDPacs6ZgtXjiqVPBp8khJMr6KSj1eIbnDvqvIA4 C+zpP99iOaasutQ05hvgwBSj5oCkEkuUfz4nZgrWp0Rewmwb16+UUkCc21WPUeuD exNn1C+bdc+AuMd2H7MyUQ== -----END CERTIFICATE-----Generated at Wed May 13 19:57:30 2026 by rpki-client