$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer File: 0CA9C32F7806470F750EC53431D4F322F0851573.cer (raw, json) Hash identifier: h3N3o6epXunzqosJvRaoLDVHHzePQagGecelMYqg71E= Subject key identifier: 0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 6262D1DCFFB2F58C842A606F5B3A7E29BF4FB18A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft caRepository: rsync://rpkica.twnic.tw/rpki/BOOKS/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:19 +0000 Certificate not after: Mon 10 May 2027 15:48:19 +0000 Subordinate resources: IP: 103.125.228.0/22 IP: 2403:fb40::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:62:d1:dc:ff:b2:f5:8c:84:2a:60:6f:5b:3a:7e:29:bf:4f:b1:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:43:19 2026 GMT Not After : May 10 15:48:19 2027 GMT Subject: CN=0CA9C32F7806470F750EC53431D4F322F0851573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:28:94:30:cc:5e:77:bc:54:84:5d:1e:cb: 94:96:26:6e:09:b2:e2:d0:93:6b:d1:9d:c9:51:ab: fe:4f:55:e4:ff:a2:4f:b0:96:7a:03:9d:96:4c:c8: 74:45:d8:4d:d9:07:60:01:2e:a2:2b:a5:d1:ba:d8: 14:78:93:2f:b6:ef:c6:99:1e:70:d6:d3:2f:eb:f9: 77:45:47:7f:82:51:14:93:29:a6:9f:76:b8:d7:d0: 26:82:60:dc:fe:95:62:61:73:37:ca:52:5d:cb:96: aa:2c:e2:35:91:9d:8b:33:c6:e6:e5:cd:60:b9:a4: 85:72:d2:2b:a4:d9:3b:2d:b8:00:ce:c0:73:c2:cc: f1:f1:e4:27:9a:a6:6b:20:b1:44:b4:cc:3b:59:49: 38:27:c3:18:a0:74:9e:29:8b:f3:50:3d:da:cf:f9: 6f:47:86:56:fb:dd:89:f3:6d:e6:d3:4a:42:b0:c7: bb:e8:22:fc:e8:9a:4d:dd:9c:10:ac:3f:cf:16:ff: 02:d6:91:95:51:b5:7c:32:91:dc:50:ec:71:d3:2f: 37:5b:74:37:e2:f9:fc:a6:11:7a:7f:09:c9:f5:4a: 75:f4:27:52:2c:ac:a2:6e:12:59:9e:92:76:80:4b: 43:7d:17:a2:cb:c1:26:c4:9d:f1:58:c0:e4:da:5c: 5d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.228.0/22 IPv6: 2403:fb40::/32 Signature Algorithm: sha256WithRSAEncryption 71:1f:9f:09:f6:81:e1:e0:30:0d:26:ab:c5:e2:34:ae:e2:0a: 51:d5:79:44:a6:2f:82:18:d4:84:8b:d6:3b:7d:60:58:38:bc: 04:57:a1:f1:7f:78:d6:95:78:48:37:aa:42:dc:3e:4d:60:cf: 2e:c4:b3:7d:55:8b:0b:40:dc:02:f5:5e:e1:52:fb:42:76:4f: ba:bf:59:ae:e9:ec:95:f0:e4:30:91:2d:1a:61:18:e2:ed:a9: 2d:af:11:e4:e7:e6:2c:9d:4a:17:58:d5:91:d8:e7:39:1f:c4: 39:ac:32:58:63:57:fe:8d:9c:a0:f9:5d:e3:49:b4:40:c3:e4: cc:7e:cd:0f:d2:73:46:1e:58:72:cd:da:aa:6c:97:fd:89:41: 66:6f:8e:68:8b:0c:f4:ec:2a:6f:97:12:87:16:c5:47:bf:a1: 44:ea:37:85:d8:a9:92:4d:c3:8c:b8:41:e0:4a:dd:b8:56:b3: 93:2e:e5:40:ba:e8:1a:fe:25:b2:e7:db:26:4b:89:2a:37:59: 2e:81:93:66:fd:20:40:6d:35:0c:71:8f:7f:95:b6:71:92:ea: c3:eb:60:84:14:c0:0f:18:8b:fb:29:72:b6:50:e7:13:aa:a6: 50:2c:ba:39:9f:91:8a:fd:04:42:1b:3c:7a:08:3a:84:a5:d3: d7:71:7e:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIUYmLR3P+y9YyEKmBvWzp+Kb9PsYowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDMxOVoX DTI3MDUxMDE1NDgxOVowMzExMC8GA1UEAxMoMENBOUMzMkY3ODA2NDcwRjc1MEVD NTM0MzFENEYzMjJGMDg1MTU3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANN9KJQwzF53vFSEXR7LlJYmbgmy4tCTa9GdyVGr/k9V5P+iT7CWegOdlkzI dEXYTdkHYAEuoiul0brYFHiTL7bvxpkecNbTL+v5d0VHf4JRFJMppp92uNfQJoJg 3P6VYmFzN8pSXcuWqiziNZGdizPG5uXNYLmkhXLSK6TZOy24AM7Ac8LM8fHkJ5qm ayCxRLTMO1lJOCfDGKB0nimL81A92s/5b0eGVvvdifNt5tNKQrDHu+gi/OiaTd2c EKw/zxb/AtaRlVG1fDKR3FDscdMvN1t0N+L5/KYRen8JyfVKdfQnUiysom4SWZ6S doBLQ30XosvBJsSd8VjA5NpcXX0CAwEAAaOCAnMwggJvMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAypwy94BkcPdQ7FNDHU8yLwhRVzMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CT09LUy8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CT09LUy8w LzBDQTlDMzJGNzgwNjQ3MEY3NTBFQzUzNDMxRDRGMzIyRjA4NTE1NzMubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfeQwDQQCAAIwBwMFACQD+0AwDQYJKoZIhvcNAQELBQAD ggEBAHEfnwn2geHgMA0mq8XiNK7iClHVeUSmL4IY1ISL1jt9YFg4vARXofF/eNaV eEg3qkLcPk1gzy7Es31ViwtA3AL1XuFS+0J2T7q/Wa7p7JXw5DCRLRphGOLtqS2v EeTn5iydShdY1ZHY5zkfxDmsMlhjV/6NnKD5XeNJtEDD5Mx+zQ/Sc0YeWHLN2qps l/2JQWZvjmiLDPTsKm+XEocWxUe/oUTqN4XYqZJNw4y4QeBK3bhWs5Mu5UC66Br+ JbLn2yZLiSo3WS6Bk2b9IEBtNQxxj3+VtnGS6sPrYIQUwA8Yi/spcrZQ5xOqplAs ujmfkYr9BEIbPHoIOoSl09dxfgc= -----END CERTIFICATE-----Generated at Wed May 13 19:57:47 2026 by rpki-client