$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/871CAAF878DE3ED85E4A8808C423FBB08332AF33.cer File: 871CAAF878DE3ED85E4A8808C423FBB08332AF33.cer (raw, json) Hash identifier: 2Rf50YeKGEwoYJPwacMHqoq7eV0Z6mqqn+Iav1izEN4= Subject key identifier: 87:1C:AA:F8:78:DE:3E:D8:5E:4A:88:08:C4:23:FB:B0:83:32:AF:33 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 703613BC9D7CF5304AD3AFDB8AB905002732731E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/GAMANIA/0/871CAAF878DE3ED85E4A8808C423FBB08332AF33.mft caRepository: rsync://rpkica.twnic.tw/rpki/GAMANIA/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:58 +0000 Certificate not after: Mon 10 May 2027 15:50:58 +0000 Subordinate resources: AS: 7532 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:36:13:bc:9d:7c:f5:30:4a:d3:af:db:8a:b9:05:00:27:32:73:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:58 2026 GMT Not After : May 10 15:50:58 2027 GMT Subject: CN=871CAAF878DE3ED85E4A8808C423FBB08332AF33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:44:a8:e5:d2:44:12:2b:9a:48:8b:fa:a9:d5: 77:5d:23:8c:11:2e:76:fd:04:1d:4e:00:04:da:30: 4e:3e:91:2a:3b:50:13:9a:af:66:b7:e8:3b:1b:9d: c2:e9:df:b4:62:e6:a5:2f:6f:da:b4:0f:f5:5d:4a: 4d:d7:fd:86:0c:a8:45:c4:1f:62:e5:54:7a:dd:90: 53:bd:3c:25:01:eb:95:4b:01:5c:5d:d8:da:9a:65: 67:5b:54:a5:12:92:48:db:f7:7a:79:8d:c2:41:bd: f8:31:72:89:d7:a4:2e:f0:07:9a:33:3c:4c:2f:d2: dd:b3:31:3f:83:74:2d:83:c6:65:07:de:94:19:0a: ed:9c:57:85:9c:78:93:8c:07:06:cf:78:bd:0b:af: a8:7d:be:4c:f5:49:2b:5a:ad:72:7b:80:15:16:05: b3:9c:88:af:52:a1:fd:68:eb:5c:cf:6b:36:37:80: 50:13:3b:91:b1:fd:26:57:36:ed:b0:fc:06:e0:03: cf:03:e9:a6:c8:6d:83:9d:fc:d1:60:6f:34:e3:76: ea:58:aa:78:97:3a:97:71:eb:7a:e1:e8:72:b2:15: 55:0b:36:e6:77:16:c4:54:74:15:11:fb:33:74:0a: 41:9d:de:10:f4:3d:de:4a:e7:27:3f:31:51:7a:95: f8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:1C:AA:F8:78:DE:3E:D8:5E:4A:88:08:C4:23:FB:B0:83:32:AF:33 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/GAMANIA/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/GAMANIA/0/871CAAF878DE3ED85E4A8808C423FBB08332AF33.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 7532 Signature Algorithm: sha256WithRSAEncryption b8:5c:7d:2b:bd:de:e0:24:0e:35:a4:bd:eb:d3:e8:cf:ae:60: 5a:99:94:ae:50:c1:19:78:28:21:05:c4:89:9e:27:b0:c5:f7: 2f:e8:b9:c2:d6:13:a1:b1:fb:3f:0f:62:eb:13:de:2c:2c:43: 4d:3b:ba:c9:3e:3b:7c:8d:01:d9:d3:b1:8f:2b:6d:57:49:1b: bb:89:79:66:3b:fd:ee:15:2e:94:ba:45:d4:0d:d6:29:41:86: e7:f3:ca:e4:91:ea:e4:7f:9c:8f:18:e6:9d:f3:92:ee:83:f0: 1d:2c:05:91:2c:74:a4:6c:f3:1a:fd:a6:11:38:0b:e2:3d:bb: 75:ae:4c:dd:5f:63:c2:a9:d4:d8:ea:78:7a:0b:dd:50:de:03: f4:ba:19:8b:fb:25:63:69:2e:71:ac:62:bf:af:59:fe:ac:92: 09:59:fb:26:d8:aa:16:89:96:5b:40:77:ec:e3:bb:b4:4d:ed: 56:b9:d7:ee:f2:ad:1f:92:60:49:f5:67:f4:74:7f:21:5b:55: 73:61:2b:cb:3c:1e:1e:87:ca:4d:b2:9e:25:f0:4b:6e:e4:00: 24:7b:f3:5f:bd:85:d5:47:e9:3a:8a:5d:f7:89:b2:3e:be:06: 9a:aa:39:5a:26:e7:5c:c2:01:3d:ee:70:5d:44:68:45:3e:99: 76:e2:09:cd -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUcDYTvJ189TBK06/birkFACcycx4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDU1OFoX DTI3MDUxMDE1NTA1OFowMzExMC8GA1UEAxMoODcxQ0FBRjg3OERFM0VEODVFNEE4 ODA4QzQyM0ZCQjA4MzMyQUYzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ9EqOXSRBIrmkiL+qnVd10jjBEudv0EHU4ABNowTj6RKjtQE5qvZrfoOxud wunftGLmpS9v2rQP9V1KTdf9hgyoRcQfYuVUet2QU708JQHrlUsBXF3Y2pplZ1tU pRKSSNv3enmNwkG9+DFyidekLvAHmjM8TC/S3bMxP4N0LYPGZQfelBkK7ZxXhZx4 k4wHBs94vQuvqH2+TPVJK1qtcnuAFRYFs5yIr1Kh/WjrXM9rNjeAUBM7kbH9Jlc2 7bD8BuADzwPppshtg5380WBvNON26liqeJc6l3HreuHocrIVVQs25ncWxFR0FRH7 M3QKQZ3eEPQ93krnJz8xUXqV+OUCAwEAAaOCAmIwggJeMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIccqvh43j7YXkqICMQj+7CDMq8zMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1BTklBLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0dBTUFO SUEvMC84NzFDQUFGODc4REUzRUQ4NUU0QTg4MDhDNDIzRkJCMDgzMzJBRjMzLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBkGCCsGAQUFBwEI AQH/BAowCKAGMAQCAh1sMA0GCSqGSIb3DQEBCwUAA4IBAQC4XH0rvd7gJA41pL3r 0+jPrmBamZSuUMEZeCghBcSJniewxfcv6LnC1hOhsfs/D2LrE94sLENNO7rJPjt8 jQHZ07GPK21XSRu7iXlmO/3uFS6UukXUDdYpQYbn88rkkerkf5yPGOad85Lug/Ad LAWRLHSkbPMa/aYROAviPbt1rkzdX2PCqdTY6nh6C91Q3gP0uhmL+yVjaS5xrGK/ r1n+rJIJWfsm2KoWiZZbQHfs47u0Te1Wudfu8q0fkmBJ9Wf0dH8hW1VzYSvLPB4e h8pNsp4l8Etu5AAke/NfvYXVR+k6il33ibI+vgaaqjlaJudcwgE97nBdRGhFPpl2 4gnN -----END CERTIFICATE-----Generated at Wed May 13 19:57:51 2026 by rpki-client