$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/67919719E801E94CCA89D7569D37B67D252A261F.cer File: 67919719E801E94CCA89D7569D37B67D252A261F.cer (raw, json) Hash identifier: DNpuzbHyPsy3sTpUDMYSrjrIc3j+E0e70AdjoCpqiEo= Subject key identifier: 67:91:97:19:E8:01:E9:4C:CA:89:D7:56:9D:37:B6:7D:25:2A:26:1F Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 6DFDC487E3587FC66CFBC8C6DF78803B5EB84A1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/DCC1223342/0/67919719E801E94CCA89D7569D37B67D252A261F.mft caRepository: rsync://rpkica.twnic.tw/rpki/DCC1223342/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:57 +0000 Certificate not after: Mon 10 May 2027 15:49:57 +0000 Subordinate resources: IP: 103.180.18.0/23 IP: 2400:50e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fd:c4:87:e3:58:7f:c6:6c:fb:c8:c6:df:78:80:3b:5e:b8:4a:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:57 2026 GMT Not After : May 10 15:49:57 2027 GMT Subject: CN=67919719E801E94CCA89D7569D37B67D252A261F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:41:b3:df:57:9c:d4:11:aa:1e:f4:a8:10: 45:af:7f:a0:2e:70:57:4b:5f:1c:f4:20:2a:cb:80: d9:ad:f3:77:a4:e7:3f:08:85:83:96:0a:c5:bb:6f: 74:e5:6f:85:f8:0a:ec:8a:28:d6:c3:45:21:37:00: 2c:1e:c1:09:b7:ce:46:5c:a8:3f:19:dd:f7:ac:8b: dc:e4:52:e4:36:52:f5:30:2d:b4:e1:66:c9:f2:ab: 19:36:d6:34:46:1f:28:9e:c6:44:d9:e8:f0:e8:16: a1:9a:8d:8a:1a:67:6a:26:d1:1e:53:2a:75:55:8f: 6e:90:68:8a:3b:a6:70:f6:84:6a:30:fd:0b:47:ef: ab:dc:91:d9:07:b3:42:29:5a:b8:59:a9:65:ad:0a: ca:a8:d4:82:45:e6:42:9e:c7:da:12:4f:ee:7a:9b: fe:77:72:a4:40:5d:ea:15:88:57:9a:4a:dd:89:0d: 53:b5:52:e8:c3:15:84:23:3d:e0:9b:ab:bc:80:ee: 29:fb:cd:d3:8d:bf:ae:58:b9:8a:47:38:14:ce:fe: 2c:fb:08:9c:89:23:53:62:c1:a9:91:94:89:18:2d: e4:55:77:af:c5:d5:9a:ce:78:e3:fb:65:cb:56:6a: 27:24:74:a9:e7:c4:80:4b:29:bb:83:49:02:24:cf: 1a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 67:91:97:19:E8:01:E9:4C:CA:89:D7:56:9D:37:B6:7D:25:2A:26:1F X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/DCC1223342/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/DCC1223342/0/67919719E801E94CCA89D7569D37B67D252A261F.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.18.0/23 IPv6: 2400:50e0::/32 Signature Algorithm: sha256WithRSAEncryption 01:71:f6:d5:fb:fa:3e:5b:fc:9d:31:6c:a8:09:6f:40:2e:66: e5:ed:0d:bf:be:8a:d6:f4:e6:f5:9d:5c:e5:27:ee:8a:4b:96: 6a:09:6b:a0:15:9d:d1:23:06:c9:cb:5c:35:53:31:d1:3f:ee: e2:7b:a8:d1:01:ac:60:9b:90:2f:c1:c8:7c:25:5a:e5:fb:d2: e2:9f:6c:62:a3:90:df:b6:a0:2d:72:0b:fe:49:9b:26:3a:b9: c2:a6:ff:08:cf:d9:c6:6c:81:18:23:da:4e:2c:48:4a:f9:d2: 99:7b:84:c0:57:31:37:bc:33:22:7a:6c:d5:94:5f:8b:11:eb: 73:58:69:14:98:c1:bb:65:a2:39:81:7c:a8:80:68:c1:3f:f0: 13:b7:26:eb:61:e4:40:0d:60:6e:c4:7b:16:46:4e:63:e3:f5: 1e:f9:2d:42:f1:e9:76:da:9a:c0:36:49:9d:ba:49:16:45:fb: 3d:4e:31:90:62:88:2d:ad:bb:eb:ac:27:28:80:91:87:71:3e: 51:34:bc:f8:9c:f8:bc:cd:79:52:8b:74:bd:cc:7f:1b:13:b0: c1:38:89:b2:d5:a6:06:de:54:7c:20:dc:85:2f:bc:3f:ff:93: 78:bb:e8:83:a7:e0:0d:bc:3d:24:cb:fa:2b:d2:e0:ce:d6:6c: 66:01:cf:7e -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIUbf3Eh+NYf8Zs+8jG33iAO164Sh8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQ1N1oX DTI3MDUxMDE1NDk1N1owMzExMC8GA1UEAxMoNjc5MTk3MTlFODAxRTk0Q0NBODlE NzU2OUQzN0I2N0QyNTJBMjYxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKIJQbPfV5zUEaoe9KgQRa9/oC5wV0tfHPQgKsuA2a3zd6TnPwiFg5YKxbtv dOVvhfgK7Ioo1sNFITcALB7BCbfORlyoPxnd96yL3ORS5DZS9TAttOFmyfKrGTbW NEYfKJ7GRNno8OgWoZqNihpnaibRHlMqdVWPbpBoijumcPaEajD9C0fvq9yR2Qez QilauFmpZa0KyqjUgkXmQp7H2hJP7nqb/ndypEBd6hWIV5pK3YkNU7VS6MMVhCM9 4JurvIDuKfvN042/rli5ikc4FM7+LPsInIkjU2LBqZGUiRgt5FV3r8XVms544/tl y1ZqJyR0qefEgEspu4NJAiTPGtcCAwEAAaOCAn0wggJ5MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGeRlxnoAelMyonXVp03tn0lKiYfMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHlBggrBgEFBQcBCwSB2DCB1TA2Bggr BgEFBQcwBYYqcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9EQ0MxMjIzMzQy LzAvMGIGCCsGAQUFBzAKhlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RD QzEyMjMzNDIvMC82NzkxOTcxOUU4MDFFOTRDQ0E4OUQ3NTY5RDM3QjY3RDI1MkEy NjFGLm1mdDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsG AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ7QSMA0EAgACMAcDBQAkAFDgMA0GCSqG SIb3DQEBCwUAA4IBAQABcfbV+/o+W/ydMWyoCW9ALmbl7Q2/vorW9Ob1nVzlJ+6K S5ZqCWugFZ3RIwbJy1w1UzHRP+7ie6jRAaxgm5Avwch8JVrl+9Lin2xio5DftqAt cgv+SZsmOrnCpv8Iz9nGbIEYI9pOLEhK+dKZe4TAVzE3vDMiemzVlF+LEetzWGkU mMG7ZaI5gXyogGjBP/ATtybrYeRADWBuxHsWRk5j4/Ue+S1C8el22prANkmdukkW Rfs9TjGQYogtrbvrrCcogJGHcT5RNLz4nPi8zXlSi3S9zH8bE7DBOImy1aYG3lR8 INyFL7w//5N4u+iDp+ANvD0ky/or0uDO1mxmAc9+ -----END CERTIFICATE-----Generated at Wed May 13 19:57:55 2026 by rpki-client