$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/8E6678972CBE31F9E346E4E77FD8792F4B10690A.cer File: 8E6678972CBE31F9E346E4E77FD8792F4B10690A.cer (raw, json) Hash identifier: SZbP7VFXdDQpeAT2WHX9Kj6hoYmWcmJKlINAD16dhoA= Subject key identifier: 8E:66:78:97:2C:BE:31:F9:E3:46:E4:E7:7F:D8:79:2F:4B:10:69:0A Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: B56A5B5A5203CB467A4F783996047327ED2DDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft caRepository: rsync://rpkica.twnic.tw/rpki/COMPAL/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:33 +0000 Certificate not after: Mon 10 May 2027 15:49:33 +0000 Subordinate resources: AS: 131680 IP: 103.122.216.0/22 IP: 2403:95c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b5:6a:5b:5a:52:03:cb:46:7a:4f:78:39:96:04:73:27:ed:2d:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:33 2026 GMT Not After : May 10 15:49:33 2027 GMT Subject: CN=8E6678972CBE31F9E346E4E77FD8792F4B10690A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e8:64:74:ad:8e:cc:e0:cb:d0:22:69:3e:52: 7b:2d:9a:66:f3:91:5d:07:3b:1b:8f:e1:06:40:e8: 1b:d9:27:84:33:6d:00:c3:4a:c4:8f:f9:53:e7:15: 25:8c:b0:d2:f7:e5:ca:c6:14:9d:fe:77:18:40:51: 19:44:e6:19:dc:5f:c1:8f:9b:86:11:b4:4d:87:43: f8:a3:be:10:2a:c7:c6:aa:48:5f:24:0a:eb:6c:5c: e5:3c:b1:f1:49:3f:0f:18:15:a6:02:4f:64:b6:26: 96:ee:b2:39:71:a1:80:2c:fa:d8:89:a7:3a:63:95: 03:c9:fb:c2:7d:dd:ec:44:5c:59:91:50:ab:4b:ad: fc:02:b2:2a:f0:14:86:30:6e:ff:c6:46:e6:46:74: ff:98:fc:71:49:fa:95:1a:6d:60:5c:f4:39:33:ff: 6c:a1:cf:8a:5f:1e:35:6e:30:6c:e5:3e:01:d4:1e: ab:17:23:a5:06:9d:2d:78:69:81:b1:fb:fd:e7:a6: 75:76:81:6b:fd:7c:ed:39:5f:62:d1:db:cc:6e:76: 81:6c:f3:d2:8e:06:ca:46:ba:b4:5a:1e:1f:15:5d: a4:25:36:52:30:dd:34:ae:c6:cd:7d:7a:5b:8d:6a: a6:f1:4d:14:45:2b:9b:95:4c:35:e9:9a:47:2a:4e: 80:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8E:66:78:97:2C:BE:31:F9:E3:46:E4:E7:7F:D8:79:2F:4B:10:69:0A X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/COMPAL/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.216.0/22 IPv6: 2403:95c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131680 Signature Algorithm: sha256WithRSAEncryption 33:4a:6f:76:b2:40:05:5c:f2:d1:46:7e:0a:0e:17:21:46:df: cf:6d:3f:d5:13:d0:0e:9a:1d:2f:09:5a:39:1d:5f:6e:4a:dd: b7:98:f2:99:9d:57:51:57:1b:47:3a:63:fa:8f:f6:40:24:32: 6e:ab:55:af:c1:21:c2:85:05:a3:9a:68:fa:b0:0b:b4:06:5a: f2:82:87:70:dd:75:d7:46:bd:32:5a:56:4b:19:e9:aa:aa:06: 6c:d4:a7:66:8a:81:03:4d:8c:0a:5c:7f:a7:b0:2c:5a:bf:14: 26:b6:12:9e:8f:9a:3f:7d:30:2c:13:2b:21:9b:45:6d:95:6a: e7:b6:37:4a:76:35:f0:57:6f:d3:53:bb:43:be:7c:0c:58:14: 6e:cb:44:ff:88:ad:4a:91:fa:54:a8:9d:d5:4f:1b:24:b8:e6: f6:54:7a:20:94:30:7e:76:2c:ec:4d:7c:7d:64:a4:0f:67:50: 60:3a:28:bd:da:8d:43:cb:23:29:06:b0:dd:b5:78:4f:80:23: 37:bd:60:ae:89:1d:8e:09:b5:e5:59:af:76:e1:02:89:d8:19: f2:7b:8e:2f:f5:3f:55:06:e6:1c:45:0c:ee:70:10:b5:79:1e: e1:bc:e4:ef:e7:d9:38:e0:af:b7:ea:9e:aa:3b:75:bb:41:d4: 84:aa:31:a4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUALVqW1pSA8tGek94OZYEcyftLd8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQzM1oX DTI3MDUxMDE1NDkzM1owMzExMC8GA1UEAxMoOEU2Njc4OTcyQ0JFMzFGOUUzNDZF NEU3N0ZEODc5MkY0QjEwNjkwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANToZHStjszgy9AiaT5Sey2aZvORXQc7G4/hBkDoG9knhDNtAMNKxI/5U+cV JYyw0vflysYUnf53GEBRGUTmGdxfwY+bhhG0TYdD+KO+ECrHxqpIXyQK62xc5Tyx 8Uk/DxgVpgJPZLYmlu6yOXGhgCz62ImnOmOVA8n7wn3d7ERcWZFQq0ut/AKyKvAU hjBu/8ZG5kZ0/5j8cUn6lRptYFz0OTP/bKHPil8eNW4wbOU+AdQeqxcjpQadLXhp gbH7/eemdXaBa/187TlfYtHbzG52gWzz0o4Gyka6tFoeHxVdpCU2UjDdNK7GzX16 W41qpvFNFEUrm5VMNemaRypOgFMCAwEAAaOCApEwggKNMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI5meJcsvjH540bk53/YeS9LEGkKMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DT01QQUwvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ09NUEFM LzAvOEU2Njc4OTcyQ0JFMzFGOUUzNDZFNEU3N0ZEODc5MkY0QjEwNjkwQS5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB /wQfMB0wDAQCAAEwBgMEAmd62DANBAIAAjAHAwUAJAOVwDAaBggrBgEFBQcBCAEB /wQLMAmgBzAFAgMCAmAwDQYJKoZIhvcNAQELBQADggEBADNKb3ayQAVc8tFGfgoO FyFG389tP9UT0A6aHS8JWjkdX25K3beY8pmdV1FXG0c6Y/qP9kAkMm6rVa/BIcKF BaOaaPqwC7QGWvKCh3DddddGvTJaVksZ6aqqBmzUp2aKgQNNjApcf6ewLFq/FCa2 Ep6Pmj99MCwTKyGbRW2Vaue2N0p2NfBXb9NTu0O+fAxYFG7LRP+IrUqR+lSondVP GyS45vZUeiCUMH52LOxNfH1kpA9nUGA6KL3ajUPLIykGsN21eE+AIze9YK6JHY4J teVZr3bhAonYGfJ7ji/1P1UG5hxFDO5wELV5HuG85O/n2Tjgr7fqnqo7dbtB1ISq MaQ= -----END CERTIFICATE-----Generated at Wed May 13 19:57:50 2026 by rpki-client