$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/27E99028E687CF3D07E1A45E549685C8F7776153.cer File: 27E99028E687CF3D07E1A45E549685C8F7776153.cer (raw, json) Hash identifier: Z2RyjGeBySIeb9jOLSd/s1TfO8WDaHhWZLFSJRZVe+o= Subject key identifier: 27:E9:90:28:E6:87:CF:3D:07:E1:A4:5E:54:96:85:C8:F7:77:61:53 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 1FC53EAB4A1D814D45298BD51CEE7F0892A2C6F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/WOQUAN/0/27E99028E687CF3D07E1A45E549685C8F7776153.mft caRepository: rsync://rpkica.twnic.tw/rpki/WOQUAN/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 16:00:56 +0000 Certificate not after: Mon 10 May 2027 16:05:56 +0000 Subordinate resources: AS: 152623 IP: 163.61.184.0/23 IP: 2401:f120::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c5:3e:ab:4a:1d:81:4d:45:29:8b:d5:1c:ee:7f:08:92:a2:c6:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 16:00:56 2026 GMT Not After : May 10 16:05:56 2027 GMT Subject: CN=27E99028E687CF3D07E1A45E549685C8F7776153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dd:8b:d1:fa:e5:58:aa:cc:cb:4e:50:44:71: f6:6f:b2:ad:0d:bf:2c:eb:a6:22:3c:8f:76:c9:93: 5c:bc:dd:06:aa:ab:f0:4a:53:20:05:ee:89:02:77: a2:a1:b7:68:b8:2c:76:4c:ef:e9:7e:f6:bb:73:7b: 5f:9e:f5:41:28:7b:b4:8e:d0:ca:58:83:6e:2b:bc: 0e:33:93:14:27:80:e9:3b:77:48:96:c5:3e:e2:64: d7:da:c6:56:61:09:48:92:8b:5b:96:ba:1d:32:85: 32:4a:ad:d5:63:8e:69:b0:5b:8c:46:9e:c5:5b:a7: b8:a0:c5:1c:91:92:3f:0a:1b:ea:fd:bc:49:0b:78: f8:25:25:e0:56:39:64:d2:ca:62:a6:cd:50:d4:e7: fc:21:5b:f5:f2:83:f8:81:76:ef:06:e4:41:ee:99: a6:6b:a8:84:85:23:00:1d:0d:5a:5d:fd:14:ae:ee: c2:db:5e:8c:74:3d:6f:fd:59:c0:04:e3:bc:83:35: 6e:d7:83:de:7e:b9:fe:8f:c1:2f:cb:f7:e3:4e:79: 52:04:3b:1e:22:65:10:1d:10:29:a6:82:36:0f:ec: 92:76:3e:b5:49:39:3a:9b:db:3e:95:e4:8b:ad:de: fc:8e:95:b9:44:87:a6:83:da:e3:27:e6:95:5e:4c: 67:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 27:E9:90:28:E6:87:CF:3D:07:E1:A4:5E:54:96:85:C8:F7:77:61:53 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/WOQUAN/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/WOQUAN/0/27E99028E687CF3D07E1A45E549685C8F7776153.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.184.0/23 IPv6: 2401:f120::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 152623 Signature Algorithm: sha256WithRSAEncryption 60:09:f8:05:10:31:11:e6:85:0e:11:8d:39:6d:a3:47:73:75: 2b:e0:d0:27:71:80:bb:c1:58:c7:cd:5f:4d:35:45:b1:c3:07: 26:7b:fd:e7:82:43:d2:66:c7:1e:e0:81:7d:f6:28:37:01:d7: fe:f6:ef:e2:59:3f:b6:a8:66:a8:3d:74:4d:d8:5b:d6:25:24: b1:10:15:be:55:c7:1e:98:2c:45:2f:5c:d0:6b:bb:38:7e:ce: 9d:26:50:9e:04:5f:4f:15:90:46:58:41:c8:7d:23:a9:9a:ef: eb:03:36:e7:ed:e2:0d:0b:2e:3f:26:90:79:19:0a:1b:60:31: 0b:7c:3b:b1:b2:fc:bc:50:39:01:48:17:31:5a:7d:5c:13:54: b8:75:c2:01:15:b9:2c:0d:4e:7c:44:9f:7a:35:56:6d:8a:37: 14:4a:12:d4:a5:83:5d:2c:fc:8f:76:05:ec:12:da:47:44:0a: cf:07:63:31:b7:64:dc:f5:00:cc:b9:ce:39:90:70:dc:a9:6b: d0:aa:a0:2e:e9:61:f6:a4:b4:e9:6a:c6:de:fa:c6:04:a7:fb: da:82:74:17:8e:d8:ac:b6:33:42:4c:06:66:44:91:0f:00:52: ed:17:e5:3a:b5:d3:de:96:9c:ba:db:30:01:af:17:81:4f:3d: 37:a4:b1:0f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUH8U+q0odgU1FKYvVHO5/CJKixvQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE2MDA1NloX DTI3MDUxMDE2MDU1NlowMzExMC8GA1UEAxMoMjdFOTkwMjhFNjg3Q0YzRDA3RTFB NDVFNTQ5Njg1QzhGNzc3NjE1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXdi9H65ViqzMtOUERx9m+yrQ2/LOumIjyPdsmTXLzdBqqr8EpTIAXuiQJ3 oqG3aLgsdkzv6X72u3N7X571QSh7tI7QyliDbiu8DjOTFCeA6Tt3SJbFPuJk19rG VmEJSJKLW5a6HTKFMkqt1WOOabBbjEaexVunuKDFHJGSPwob6v28SQt4+CUl4FY5 ZNLKYqbNUNTn/CFb9fKD+IF27wbkQe6ZpmuohIUjAB0NWl39FK7uwttejHQ9b/1Z wATjvIM1bteD3n65/o/BL8v34055UgQ7HiJlEB0QKaaCNg/sknY+tUk5OpvbPpXk i63e/I6VuUSHpoPa4yfmlV5MZ10CAwEAAaOCApEwggKNMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCfpkCjmh889B+GkXlSWhcj3d2FTMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9XT1FVQU4vMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvV09RVUFO LzAvMjdFOTkwMjhFNjg3Q0YzRDA3RTFBNDVFNTQ5Njg1QzhGNzc3NjE1My5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB /wQfMB0wDAQCAAEwBgMEAaM9uDANBAIAAjAHAwUAJAHxIDAaBggrBgEFBQcBCAEB /wQLMAmgBzAFAgMCVC8wDQYJKoZIhvcNAQELBQADggEBAGAJ+AUQMRHmhQ4RjTlt o0dzdSvg0CdxgLvBWMfNX001RbHDByZ7/eeCQ9Jmxx7ggX32KDcB1/727+JZP7ao Zqg9dE3YW9YlJLEQFb5Vxx6YLEUvXNBruzh+zp0mUJ4EX08VkEZYQch9I6ma7+sD Nuft4g0LLj8mkHkZChtgMQt8O7Gy/LxQOQFIFzFafVwTVLh1wgEVuSwNTnxEn3o1 Vm2KNxRKEtSlg10s/I92BewS2kdECs8HYzG3ZNz1AMy5zjmQcNypa9CqoC7pYfak tOlqxt76xgSn+9qCdBeO2Ky2M0JMBmZEkQ8AUu0X5Tq1096WnLrbMAGvF4FPPTek sQ8= -----END CERTIFICATE-----Generated at Wed May 13 19:58:00 2026 by rpki-client