$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer File: 0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer (raw, json) Hash identifier: OjUhupqeUq7MM8+pPzucFr1GtUNo1Cy0N7Cn/6slZxo= Subject key identifier: 0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 49D767CBE777CD18523F054BBAED74D3F5FD73CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.mft caRepository: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:42:49 +0000 Certificate not after: Mon 10 May 2027 15:47:49 +0000 Subordinate resources: AS: 18040 AS: 152612 IP: 2402:43e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d7:67:cb:e7:77:cd:18:52:3f:05:4b:ba:ed:74:d3:f5:fd:73:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:42:49 2026 GMT Not After : May 10 15:47:49 2027 GMT Subject: CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:70:40:5a:42:de:03:aa:7f:af:6c:9e:6e:64: a2:76:f3:88:cf:dd:e8:2a:00:9a:e3:bc:e9:e0:f3: a0:96:57:b9:f8:00:31:65:86:de:be:4f:5f:41:ee: ec:7e:80:90:a5:c4:6a:7f:4b:77:ec:1d:e6:f3:14: 6b:32:dc:92:7f:ab:6c:2f:a5:80:46:a0:da:97:32: e2:c1:ce:14:27:d1:cb:84:cc:e2:b1:d1:2a:aa:2e: 4a:40:4d:d1:12:61:ca:2d:7c:54:78:79:ac:7b:0e: f0:53:ef:66:9c:dc:af:b0:87:b4:b3:bd:1f:0a:c0: 3a:d4:e0:b8:48:8f:6d:e4:a0:55:8b:19:73:a5:b8: 64:f4:1d:4a:40:67:38:cc:00:4b:e2:77:b0:15:ea: 06:be:2e:17:16:d8:02:0f:49:d7:78:9e:83:20:ee: 89:f5:98:64:19:ac:0b:b5:9c:53:37:78:65:66:e7: b1:34:68:f5:33:d9:95:90:d6:d2:22:fd:f1:58:d1: 11:44:1e:c2:8b:ab:a3:cc:9e:b6:93:1c:68:49:fe: cf:53:8b:eb:60:c9:e6:0c:a5:da:d8:b0:2c:7d:0a: b7:c8:0d:d7:0d:a9:1f:dd:09:24:63:5e:76:78:08: b8:40:5e:de:5d:b1:4b:c5:46:95:33:24:18:1e:c8: bb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:43e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 18040 152612 Signature Algorithm: sha256WithRSAEncryption 9a:d5:12:69:09:99:de:75:2c:0d:7a:55:f3:30:8c:41:90:89: 64:c0:03:c9:38:b4:8a:71:4b:4f:0b:45:e3:c9:6b:30:e1:4c: d4:a8:8c:e2:bb:70:b4:f3:28:7c:5c:27:e4:26:8f:43:aa:6b: a0:50:1b:23:0f:ed:ab:53:8c:8c:bc:38:79:94:1d:7a:1d:95: 0e:a9:1b:f0:c0:ce:87:08:61:43:17:c9:12:c5:11:f2:e3:71: 8a:dc:df:ff:3e:ee:2d:c3:9b:be:88:bf:8b:77:7a:d4:4c:6a: 31:83:95:e4:f3:c3:8d:12:94:10:7a:ce:c5:49:68:66:2a:72: 9c:7f:b2:e1:29:08:19:6b:fb:3c:af:0a:14:d7:21:ef:76:51: af:28:23:93:02:a3:2f:aa:77:2e:ea:e9:cf:3a:cf:a5:14:55: a1:49:64:4d:97:f1:1f:e1:2b:5c:b4:68:cb:ae:ef:8e:c2:d6: 04:8b:15:24:3a:9e:50:49:6b:18:ed:d6:fd:56:89:ab:ea:45: 19:68:c4:eb:48:a0:f5:14:26:0b:6c:eb:b2:36:cb:0f:de:5d: 89:e8:3a:e2:eb:2c:13:36:a4:ab:ac:59:de:5a:a6:04:01:7a: e5:21:0e:26:89:18:75:1e:78:ba:7d:f2:12:4e:3d:69:06:ec: 7b:6e:85:64 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgIUSddny+d3zRhSPwVLuu100/X9c8wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDI0OVoX DTI3MDUxMDE1NDc0OVowMzExMC8GA1UEAxMoMEY2QjM0MjdDRDQwM0RFNzBEOTdD RERDQUZBMEJEQkMxNjZDM0U3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdwQFpC3gOqf69snm5konbziM/d6CoAmuO86eDzoJZXufgAMWWG3r5PX0Hu 7H6AkKXEan9Ld+wd5vMUazLckn+rbC+lgEag2pcy4sHOFCfRy4TM4rHRKqouSkBN 0RJhyi18VHh5rHsO8FPvZpzcr7CHtLO9HwrAOtTguEiPbeSgVYsZc6W4ZPQdSkBn OMwAS+J3sBXqBr4uFxbYAg9J13iegyDuifWYZBmsC7WcUzd4ZWbnsTRo9TPZlZDW 0iL98VjREUQewouro8yetpMcaEn+z1OL62DJ5gyl2tiwLH0Kt8gN1w2pH90JJGNe dngIuEBe3l2xS8VGlTMkGB7Iu98CAwEAAaOCAoswggKHMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA9rNCfNQD3nDZfN3K+gvbwWbD54MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BT1RFUk5FVC8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BT1RF Uk5FVC8wLzBGNkIzNDI3Q0Q0MDNERTcwRDk3Q0REQ0FGQTBCREJDMTY2QzNFNzgu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAkAkPgMB4GCCsGAQUFBwEIAQH/BA8wDaALMAkC AkZ4AgMCVCQwDQYJKoZIhvcNAQELBQADggEBAJrVEmkJmd51LA16VfMwjEGQiWTA A8k4tIpxS08LRePJazDhTNSojOK7cLTzKHxcJ+Qmj0Oqa6BQGyMP7atTjIy8OHmU HXodlQ6pG/DAzocIYUMXyRLFEfLjcYrc3/8+7i3Dm76Iv4t3etRMajGDleTzw40S lBB6zsVJaGYqcpx/suEpCBlr+zyvChTXIe92Ua8oI5MCoy+qdy7q6c86z6UUVaFJ ZE2X8R/hK1y0aMuu747C1gSLFSQ6nlBJaxjt1v1WiavqRRloxOtIoPUUJgts67I2 yw/eXYnoOuLrLBM2pKusWd5apgQBeuUhDiaJGHUeeLp98hJOPWkG7HtuhWQ= -----END CERTIFICATE-----Generated at Wed May 13 19:58:01 2026 by rpki-client