$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.cer File: 1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.cer (raw, json) Hash identifier: J39rJPhgsNE168MvsRYb2PDS09w02/sLbQZDFiMHNKk= Subject key identifier: 1A:5D:E0:B5:C7:2E:02:E2:A2:38:0C:A2:7C:ED:A3:32:99:59:C5:32 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0F837DAF4F6FCC73E7CD68CAF3C322C7FB248929 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.mft caRepository: rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:33 +0000 Certificate not after: Mon 10 May 2027 16:01:33 +0000 Subordinate resources: AS: 150767 IP: 36.50.248.0/23 IP: 2401:5f20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:83:7d:af:4f:6f:cc:73:e7:cd:68:ca:f3:c3:22:c7:fb:24:89:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:33 2026 GMT Not After : May 10 16:01:33 2027 GMT Subject: CN=1A5DE0B5C72E02E2A2380CA27CEDA3329959C532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:bc:58:a6:72:68:7e:8c:e8:5f:e5:1b:73: e6:28:cd:37:4f:c6:04:a2:2e:c5:77:fb:6c:36:71: 26:d2:03:ba:0b:9a:df:1f:d2:d7:0b:70:da:46:0c: 2f:69:a3:70:4d:df:8d:37:a8:e5:e3:79:95:17:e9: fc:ef:5a:2d:c8:63:bf:52:18:fd:75:36:35:8a:23: c7:fe:22:fd:0c:69:ca:57:a8:8e:75:54:d4:58:17: 9b:7f:de:ea:71:89:b6:40:9c:f1:53:ff:f3:77:49: 86:0b:47:20:c2:5c:f6:1d:de:70:96:f5:99:11:76: aa:e0:c5:a4:a5:5f:1a:07:78:19:15:fe:d2:ec:d5: fd:8d:b2:63:ff:22:88:cc:67:2a:fa:e5:91:59:37: 71:f0:3e:fc:1a:10:51:5d:0a:6c:47:46:16:a0:7f: fe:ad:30:b7:59:2f:63:ba:56:5e:a3:c7:53:63:7d: 11:19:f9:de:4b:bd:69:3b:34:bc:82:c4:41:50:0b: 0a:a1:6d:8b:93:d2:e3:eb:3e:c0:d9:88:57:fe:6e: 95:a5:80:2c:0a:5a:10:ec:a0:c6:95:9d:d3:4b:eb: cb:1b:08:d7:da:6d:32:a8:bf:99:4c:ea:97:a5:41: 4e:39:3f:03:7d:c9:2e:4c:ad:93:ab:78:52:15:58: d2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1A:5D:E0:B5:C7:2E:02:E2:A2:38:0C:A2:7C:ED:A3:32:99:59:C5:32 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.248.0/23 IPv6: 2401:5f20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 150767 Signature Algorithm: sha256WithRSAEncryption 31:d2:16:6f:be:d5:98:80:c1:80:8e:99:2c:42:17:22:78:39: c4:83:a9:a3:ee:9c:2c:af:10:0f:e0:dd:20:97:35:03:28:af: 27:a2:50:e9:cc:d6:e3:4e:5d:b2:ee:3f:58:96:67:46:61:8f: 0c:4b:21:8f:5a:0c:86:23:5e:39:2a:43:1a:9f:06:eb:3f:59: 7a:59:4a:7a:41:4c:2e:a9:83:27:7c:e8:cc:5b:ad:70:12:21: 29:db:79:ab:b8:e6:3f:c9:61:b2:f1:6c:94:2a:e5:fe:76:45: 07:10:24:21:a1:67:a5:bb:fc:f3:21:49:f9:8c:11:9e:2a:89: c7:53:3e:73:2f:02:f2:dd:63:fb:a0:d5:5a:0b:e4:6e:7b:cd: aa:1e:a8:d8:f8:4e:e3:76:fc:90:6a:6a:10:bf:c0:cd:06:db: 1f:ab:34:19:27:31:8b:ae:80:dd:87:a4:41:70:32:15:23:f9: 1b:80:43:d9:3b:da:4f:a2:64:71:8a:72:0b:37:ce:88:8b:05: 7c:26:13:d4:88:6d:3b:89:a9:e2:90:c4:67:09:b5:e6:dd:b4: 65:ab:d5:11:65:a1:a4:ac:57:2d:9e:b0:59:84:57:c7:aa:29: bf:58:a9:0c:c4:8f:94:6f:9b:0f:69:f2:18:8d:19:21:37:55: 2f:1a:2d:8b -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgIUD4N9r09vzHPnzWjK88Mix/skiSkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYzM1oX DTI3MDUxMDE2MDEzM1owMzExMC8GA1UEAxMoMUE1REUwQjVDNzJFMDJFMkEyMzgw Q0EyN0NFREEzMzI5OTU5QzUzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRevFimcmh+jOhf5Rtz5ijNN0/GBKIuxXf7bDZxJtIDugua3x/S1wtw2kYM L2mjcE3fjTeo5eN5lRfp/O9aLchjv1IY/XU2NYojx/4i/QxpyleojnVU1FgXm3/e 6nGJtkCc8VP/83dJhgtHIMJc9h3ecJb1mRF2quDFpKVfGgd4GRX+0uzV/Y2yY/8i iMxnKvrlkVk3cfA+/BoQUV0KbEdGFqB//q0wt1kvY7pWXqPHU2N9ERn53ku9aTs0 vILEQVALCqFti5PS4+s+wNmIV/5ulaWALApaEOygxpWd00vryxsI19ptMqi/mUzq l6VBTjk/A33JLkytk6t4UhVY0isCAwEAAaOCApkwggKVMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBpd4LXHLgLiojgMonztozKZWcUyMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHlBggrBgEFBQcBCwSB2DCB1TA2Bggr BgEFBQcwBYYqcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSElKSUNPTFRE LzAvMGIGCCsGAQUFBzAKhlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NI SUpJQ09MVEQvMC8xQTVERTBCNUM3MkUwMkUyQTIzODBDQTI3Q0VEQTMzMjk5NTlD NTMyLm1mdDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBJDL4MA0EAgACMAcDBQAkAV8gMBoGCCsG AQUFBwEIAQH/BAswCaAHMAUCAwJM7zANBgkqhkiG9w0BAQsFAAOCAQEAMdIWb77V mIDBgI6ZLEIXIng5xIOpo+6cLK8QD+DdIJc1AyivJ6JQ6czW405dsu4/WJZnRmGP DEshj1oMhiNeOSpDGp8G6z9ZellKekFMLqmDJ3zozFutcBIhKdt5q7jmP8lhsvFs lCrl/nZFBxAkIaFnpbv88yFJ+YwRniqJx1M+cy8C8t1j+6DVWgvkbnvNqh6o2PhO 43b8kGpqEL/AzQbbH6s0GScxi66A3YekQXAyFSP5G4BD2TvaT6JkcYpyCzfOiIsF fCYT1IhtO4mp4pDEZwm15t20ZavVEWWhpKxXLZ6wWYRXx6opv1ipDMSPlG+bD2ny GI0ZITdVLxotiw== -----END CERTIFICATE-----Generated at Wed May 13 19:58:08 2026 by rpki-client