$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer File: 35C866BE000DEAB870C97BED72D0A7807B829E4D.cer (raw, json) Hash identifier: S5BKtKmnCsxS0JmJ25W5E8GHCuFMsxlLPXf4b5IzBsk= Subject key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 7373D6F1D3E338CCAF7845BDDCFB81C2CD4F1E1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft caRepository: rsync://rpkica.twnic.tw/rpki/IDT/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:47 +0000 Certificate not after: Mon 10 May 2027 15:51:47 +0000 Subordinate resources: IP: 103.152.220.0/23 IP: 202.148.210.0/23 IP: 223.26.4.0/23 IP: 2406:2fc0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:73:d6:f1:d3:e3:38:cc:af:78:45:bd:dc:fb:81:c2:cd:4f:1e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:46:47 2026 GMT Not After : May 10 15:51:47 2027 GMT Subject: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:c9:27:5d:53:78:6d:d6:df:b8:d0:f8:99: c0:bb:e0:5d:ac:c6:0e:df:2b:ec:51:da:ec:f8:fe: 40:cb:88:4d:4a:80:a7:9f:9a:74:b4:fa:e2:40:37: 2e:c2:db:9e:91:0c:57:93:8c:2c:b6:01:e1:32:b6: 46:a7:70:db:14:4e:0a:01:82:ab:da:25:20:88:36: 5e:40:48:43:5d:86:42:eb:6d:28:a2:01:59:1e:26: b3:18:94:76:be:c2:81:f9:93:2c:6e:d3:d6:4d:9d: 87:9c:3b:74:32:c8:c5:3d:7c:8d:a5:67:89:45:79: a6:13:5f:71:e2:58:1b:68:71:86:23:2a:d1:7b:e7: 8b:51:73:da:52:9b:69:67:55:2c:4a:85:d6:2f:44: d2:49:f6:cc:d2:6f:20:fe:aa:5e:af:7a:5c:5b:34: 98:8f:87:04:97:fa:7c:35:84:95:ac:cf:a3:2a:4c: 9e:f8:d2:ed:89:78:46:d8:06:6b:91:fb:74:4a:c2: b5:fa:a7:c3:7f:1d:6a:ca:63:37:ac:ad:a9:fe:ce: b2:ef:e4:12:a7:67:a8:69:11:ee:31:2e:ed:fb:eb: b2:23:a1:4e:07:ae:dd:0b:a1:e6:6e:c2:4d:2b:fd: 92:3c:3a:90:3d:3f:b6:05:a5:fa:4a:bf:15:eb:f9: 75:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.220.0/23 202.148.210.0/23 223.26.4.0/23 IPv6: 2406:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption 44:b6:82:fb:71:0d:ad:74:db:0c:2e:c2:49:79:9b:11:74:f8: f6:9c:54:4e:ab:54:7d:03:0b:a5:ca:9d:9a:9f:09:3b:61:2d: 54:4b:38:f9:d2:73:6f:6d:1d:69:2e:35:14:57:8b:8e:73:b0: 34:24:e9:48:ad:ed:b1:78:a8:d7:bf:45:af:56:81:fb:c8:f8: 1a:7f:98:43:5e:e5:3a:e6:f7:70:bc:a6:86:74:35:4f:e0:24: 56:5f:e7:5e:04:7c:60:4e:84:bc:9a:63:3e:3c:f0:37:86:26: 5e:15:06:fe:71:ae:30:23:2d:83:f7:b7:59:1c:87:9c:97:31: af:02:72:ec:f5:1c:bc:52:da:81:b8:6c:5e:e4:dc:f2:8f:7a: 7a:31:eb:10:88:b8:f5:a6:78:c8:cb:dc:3c:86:88:9a:03:ac: 8c:6f:84:3d:a6:4f:98:1c:2c:0d:56:62:16:a2:b7:d6:2e:f5: c0:1b:14:32:e0:da:4d:10:2f:9d:d9:84:69:f6:d6:ed:9a:de: 16:dc:92:22:1e:23:9d:18:33:e1:cc:dc:c9:b6:ab:28:c2:f2: 88:1e:f6:17:18:e0:00:6f:c0:fd:8b:8b:70:84:81:d2:ab:a1: bc:ba:39:59:ce:f1:59:00:8d:ca:48:66:71:78:36:d3:e3:b6: ae:24:22:51 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIUc3PW8dPjOMyveEW93PuBws1PHh8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDY0N1oX DTI3MDUxMDE1NTE0N1owMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3 QkVENzJEMEE3ODA3QjgyOUU0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBpySddU3ht1t+40PiZwLvgXazGDt8r7FHa7Pj+QMuITUqAp5+adLT64kA3 LsLbnpEMV5OMLLYB4TK2Rqdw2xROCgGCq9olIIg2XkBIQ12GQuttKKIBWR4msxiU dr7CgfmTLG7T1k2dh5w7dDLIxT18jaVniUV5phNfceJYG2hxhiMq0Xvni1Fz2lKb aWdVLEqF1i9E0kn2zNJvIP6qXq96XFs0mI+HBJf6fDWElazPoypMnvjS7Yl4RtgG a5H7dErCtfqnw38daspjN6ytqf7Osu/kEqdnqGkR7jEu7fvrsiOhTgeu3Quh5m7C TSv9kjw6kD0/tgWl+kq/Fev5dQ8CAwEAAaOCAnswggJ3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDXIZr4ADeq4cMl77XLQp4B7gp5NMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JRFQvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzVD ODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6BggrBgEFBQcBBwEB/wQrMCkw GAQCAAEwEgMEAWeY3AMEAcqU0gMEAd8aBDANBAIAAjAHAwUAJAYvwDANBgkqhkiG 9w0BAQsFAAOCAQEARLaC+3ENrXTbDC7CSXmbEXT49pxUTqtUfQMLpcqdmp8JO2Et VEs4+dJzb20daS41FFeLjnOwNCTpSK3tsXio179Fr1aB+8j4Gn+YQ17lOub3cLym hnQ1T+AkVl/nXgR8YE6EvJpjPjzwN4YmXhUG/nGuMCMtg/e3WRyHnJcxrwJy7PUc vFLagbhsXuTc8o96ejHrEIi49aZ4yMvcPIaImgOsjG+EPaZPmBwsDVZiFqK31i71 wBsUMuDaTRAvndmEafbW7ZreFtySIh4jnRgz4czcybarKMLyiB72FxjgAG/A/YuL cISB0quhvLo5Wc7xWQCNykhmcXg20+O2riQiUQ== -----END CERTIFICATE-----Generated at Wed May 13 19:57:58 2026 by rpki-client