$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/45EBBB492A42A7E609E5FE4D4A3679356609CA46.cer File: 45EBBB492A42A7E609E5FE4D4A3679356609CA46.cer (raw, json) Hash identifier: Dc3hcyuoJ2pArFw9nh1jo+HCJ7F+Xjd+SfRgwzuSMDg= Subject key identifier: 45:EB:BB:49:2A:42:A7:E6:09:E5:FE:4D:4A:36:79:35:66:09:CA:46 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 5B5CA757AA5696C2CCF8CCCF344DFA1613A49785 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CHIHTAI/0/45EBBB492A42A7E609E5FE4D4A3679356609CA46.mft caRepository: rsync://rpkica.twnic.tw/rpki/CHIHTAI/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:55 +0000 Certificate not after: Mon 10 May 2027 15:48:55 +0000 Subordinate resources: IP: 103.169.106.0/23 IP: 2407:9fc0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:5c:a7:57:aa:56:96:c2:cc:f8:cc:cf:34:4d:fa:16:13:a4:97:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:43:55 2026 GMT Not After : May 10 15:48:55 2027 GMT Subject: CN=45EBBB492A42A7E609E5FE4D4A3679356609CA46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ff:48:4e:e6:00:d2:fa:25:00:2d:8c:8c:39: 29:02:fc:70:2b:4d:f1:9b:00:a3:e6:87:7e:9b:93: 15:30:fb:e6:8a:20:49:dd:56:4c:e9:c6:67:3e:fa: bb:c4:49:1a:b0:32:64:f0:16:5b:60:13:ab:96:4e: ce:27:04:fc:0f:e7:bd:12:11:36:e3:a3:68:a5:80: 93:97:0a:39:47:ba:25:37:42:7d:d9:27:94:22:36: 34:dd:82:1e:9a:ac:09:a1:64:47:89:ab:9a:5d:77: 23:dc:02:33:f1:a7:65:f4:24:87:6e:2a:0a:07:ea: 9e:b1:7d:86:f2:eb:ef:b7:b6:cc:b2:aa:85:05:ca: d3:28:94:7b:15:2d:12:48:7a:da:fd:a1:ac:79:08: 5c:15:d8:f9:e3:25:09:fd:98:e9:d3:c5:a7:db:e1: 8f:12:9f:f5:b2:c3:4a:14:06:a4:5c:28:c7:f5:3b: 22:a6:8d:be:a6:0c:d2:97:68:b8:42:93:20:c5:1e: 27:87:e3:52:5d:27:76:04:b4:9d:87:d0:06:a7:d9: 50:06:6d:7f:a3:f4:af:e9:fa:92:d5:7f:14:ad:6c: 97:1f:b8:f9:e3:ef:3a:1e:03:a3:4c:d8:21:98:40: a7:8e:92:04:cd:23:e8:b4:ea:f2:b7:aa:29:9d:3f: 92:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 45:EB:BB:49:2A:42:A7:E6:09:E5:FE:4D:4A:36:79:35:66:09:CA:46 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CHIHTAI/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CHIHTAI/0/45EBBB492A42A7E609E5FE4D4A3679356609CA46.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.106.0/23 IPv6: 2407:9fc0::/32 Signature Algorithm: sha256WithRSAEncryption 16:42:93:85:89:8f:30:18:6f:17:ce:06:af:98:aa:99:4f:6f: ab:47:d4:a4:9b:08:32:ca:91:56:ed:11:3b:8c:f3:fb:c6:78: 7d:77:52:6b:59:dd:f5:8c:c6:ae:fb:22:0e:a8:5d:51:af:81: 9f:77:e2:5c:03:5f:53:f7:44:83:a7:0e:27:01:25:52:f2:fd: f2:1f:6e:ab:d4:c2:5f:b2:77:f0:76:5e:4a:41:e7:88:99:46: 3d:3a:8b:5c:d5:d3:c4:6c:42:1b:ca:75:18:fc:37:7b:8c:22: 5c:4b:c3:05:c4:1c:95:f6:e4:c5:51:8c:e3:c7:c8:7a:be:3b: b1:5e:2a:21:b2:67:b5:5c:6e:e0:05:56:55:5a:4b:99:41:19: b9:37:b2:27:25:28:c8:b1:ae:b8:0c:db:9b:0f:62:ff:39:23: 62:9c:6b:96:cd:e4:bc:5a:97:6a:15:cd:61:37:d3:1c:8a:10: 38:f1:c4:6d:fb:09:6d:1b:00:b3:33:6b:0a:b7:58:c0:d7:d7: 55:7f:64:c8:56:de:30:4b:eb:a4:7a:aa:6c:a7:8a:02:64:e5: 4d:93:17:d4:aa:ce:c8:ae:c5:fa:bc:ea:d5:22:28:72:af:df: 70:94:3a:22:80:8f:09:77:19:a2:92:6c:16:d7:08:d8:43:b6: 0c:01:3c:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUW1ynV6pWlsLM+MzPNE36FhOkl4UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDM1NVoX DTI3MDUxMDE1NDg1NVowMzExMC8GA1UEAxMoNDVFQkJCNDkyQTQyQTdFNjA5RTVG RTRENEEzNjc5MzU2NjA5Q0E0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALn/SE7mANL6JQAtjIw5KQL8cCtN8ZsAo+aHfpuTFTD75oogSd1WTOnGZz76 u8RJGrAyZPAWW2ATq5ZOzicE/A/nvRIRNuOjaKWAk5cKOUe6JTdCfdknlCI2NN2C HpqsCaFkR4mrml13I9wCM/GnZfQkh24qCgfqnrF9hvLr77e2zLKqhQXK0yiUexUt Ekh62v2hrHkIXBXY+eMlCf2Y6dPFp9vhjxKf9bLDShQGpFwox/U7IqaNvqYM0pdo uEKTIMUeJ4fjUl0ndgS0nYfQBqfZUAZtf6P0r+n6ktV/FK1slx+4+ePvOh4Do0zY IZhAp46SBM0j6LTq8reqKZ0/kkMCAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEXru0kqQqfmCeX+TUo2eTVmCcpGMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElIVEFJLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NISUhU QUkvMC80NUVCQkI0OTJBNDJBN0U2MDlFNUZFNEQ0QTM2NzkzNTY2MDlDQTQ2Lm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ6lqMA0EAgACMAcDBQAkB5/AMA0GCSqGSIb3DQEB CwUAA4IBAQAWQpOFiY8wGG8XzgavmKqZT2+rR9SkmwgyypFW7RE7jPP7xnh9d1Jr Wd31jMau+yIOqF1Rr4Gfd+JcA19T90SDpw4nASVS8v3yH26r1MJfsnfwdl5KQeeI mUY9Ootc1dPEbEIbynUY/Dd7jCJcS8MFxByV9uTFUYzjx8h6vjuxXiohsme1XG7g BVZVWkuZQRm5N7InJSjIsa64DNubD2L/OSNinGuWzeS8WpdqFc1hN9McihA48cRt +wltGwCzM2sKt1jA19dVf2TIVt4wS+ukeqpsp4oCZOVNkxfUqs7IrsX6vOrVIihy r99wlDoigI8JdxmikmwW1wjYQ7YMATx6 -----END CERTIFICATE-----Generated at Wed May 13 19:58:27 2026 by rpki-client