$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer File: 5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer (raw, json) Hash identifier: JPKJhguXGBTh/H9ol8KSAPBvfhX1ypHZ/Mz4/VziZI8= Subject key identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0EA9F6CC0CDF928420C589D1D2A944DEF36BDA68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft caRepository: rsync://rpkica.twnic.tw/rpki/NKBNET/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:49:08 +0000 Certificate not after: Mon 10 May 2027 15:54:08 +0000 Subordinate resources: AS: 9922 IP: 103.130.48.0/22 IP: 2403:b340::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:a9:f6:cc:0c:df:92:84:20:c5:89:d1:d2:a9:44:de:f3:6b:da:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:49:08 2026 GMT Not After : May 10 15:54:08 2027 GMT Subject: CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:89:1e:17:a4:92:87:04:32:4c:e4:6c:08:8f: b6:56:06:82:a4:a3:f2:bd:d6:2f:48:d5:33:e2:c8: 92:09:47:c8:16:a4:bd:c7:ea:0d:1a:9a:11:a2:58: 66:ed:60:23:0b:b3:e4:0b:2b:3c:bf:df:1f:b0:eb: 1f:b0:50:c5:38:5f:b5:22:df:a3:d3:7d:df:01:16: c3:ff:94:67:73:f0:6f:cd:cf:14:42:99:32:08:4b: 19:64:63:ba:1f:85:85:6d:01:28:e3:36:34:24:94: 75:c6:d4:f8:cd:b0:4b:73:8e:d3:67:96:29:43:a8: 5a:92:63:da:e9:4e:30:a7:bf:88:5a:b3:60:41:9a: b0:a7:81:80:6e:74:88:3d:b9:b9:0c:13:4b:ae:96: f2:cf:f0:36:14:55:dc:86:0f:3a:5f:71:2c:9c:79: 89:f5:e9:31:02:cf:50:3d:5d:fa:4d:bf:18:6f:a1: f9:0e:e4:df:15:6d:09:c9:4a:23:68:d7:88:9b:2e: dc:dd:a2:a0:17:a3:dd:13:76:25:40:04:86:1f:f1: e5:0a:d0:03:c7:b7:b9:cc:35:87:0e:ea:db:ef:6d: 0d:19:18:9c:58:07:92:1d:9b:c2:88:ae:06:e8:fc: 5a:c6:32:20:09:5b:5c:e7:bd:eb:02:77:f8:71:b1: 65:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.48.0/22 IPv6: 2403:b340::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 9922 Signature Algorithm: sha256WithRSAEncryption 83:93:cb:fa:80:d9:0a:aa:b5:05:45:65:db:b9:f5:de:ce:8a: 4e:f4:46:81:95:77:0d:29:f6:1c:85:ea:a8:f4:3f:d7:f0:5a: 29:7b:cb:c4:27:1e:92:6d:f2:6c:ca:8d:01:06:a3:80:09:0e: 09:10:22:4f:45:1f:0f:0c:56:75:92:61:bc:40:fb:f8:f2:36: 8c:f4:1d:1b:c5:56:95:29:51:94:76:88:f3:b4:a2:27:ab:47: d3:2e:7a:f0:61:2b:aa:a4:12:34:f3:08:e0:77:f8:4c:fd:42: 33:2e:38:17:d0:38:42:27:60:3e:a3:c7:a8:59:6f:21:22:75: c0:df:0c:ec:f9:06:b1:9e:b4:72:0a:d7:cd:85:46:19:f4:e2: 89:c7:aa:93:49:f0:b7:71:77:11:72:2b:49:49:76:3e:02:52: 6a:3c:f9:25:ac:b3:04:97:95:b1:5a:57:0d:32:a5:c9:71:b6: 24:f1:7a:46:71:82:bd:ef:c5:49:8d:fd:73:07:20:7f:1b:b1: ff:60:c8:0c:a9:0e:45:d0:21:ac:23:7c:52:33:95:84:d7:d1: 13:2e:bb:4d:8d:8e:7d:4b:8b:bb:b6:67:84:ef:a2:d8:13:6e: e3:3b:66:10:19:c3:b1:7a:ed:6c:f5:b8:09:dc:c8:c7:c2:58: 8c:48:0b:cd -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUDqn2zAzfkoQgxYnR0qlE3vNr2mgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDkwOFoX DTI3MDUxMDE1NTQwOFowMzExMC8GA1UEAxMoNUEyQkVFMjQzOTVCMzZGNEZGQTk1 NzUzRjY3MzE1MTVDNTg4QkE5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPeJHhekkocEMkzkbAiPtlYGgqSj8r3WL0jVM+LIkglHyBakvcfqDRqaEaJY Zu1gIwuz5AsrPL/fH7DrH7BQxThftSLfo9N93wEWw/+UZ3Pwb83PFEKZMghLGWRj uh+FhW0BKOM2NCSUdcbU+M2wS3OO02eWKUOoWpJj2ulOMKe/iFqzYEGasKeBgG50 iD25uQwTS66W8s/wNhRV3IYPOl9xLJx5ifXpMQLPUD1d+k2/GG+h+Q7k3xVtCclK I2jXiJsu3N2ioBej3RN2JUAEhh/x5QrQA8e3ucw1hw7q2+9tDRkYnFgHkh2bwoiu Buj8WsYyIAlbXOe96wJ3+HGxZWECAwEAAaOCApAwggKMMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFor7iQ5Wzb0/6lXU/ZzFRXFiLqeMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OS0JORVQvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVU LzAvNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB /wQfMB0wDAQCAAEwBgMEAmeCMDANBAIAAjAHAwUAJAOzQDAZBggrBgEFBQcBCAEB /wQKMAigBjAEAgImwjANBgkqhkiG9w0BAQsFAAOCAQEAg5PL+oDZCqq1BUVl27n1 3s6KTvRGgZV3DSn2HIXqqPQ/1/BaKXvLxCcekm3ybMqNAQajgAkOCRAiT0UfDwxW dZJhvED7+PI2jPQdG8VWlSlRlHaI87SiJ6tH0y568GErqqQSNPMI4Hf4TP1CMy44 F9A4QidgPqPHqFlvISJ1wN8M7PkGsZ60cgrXzYVGGfTiiceqk0nwt3F3EXIrSUl2 PgJSajz5JayzBJeVsVpXDTKlyXG2JPF6RnGCve/FSY39cwcgfxux/2DIDKkORdAh rCN8UjOVhNfREy67TY2OfUuLu7ZnhO+i2BNu4ztmEBnDsXrtbPW4CdzIx8JYjEgL zQ== -----END CERTIFICATE-----Generated at Wed May 13 19:58:01 2026 by rpki-client