$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/96EC32418F5DB7D272132F4F615EEE14EBFCC789.cer File: 96EC32418F5DB7D272132F4F615EEE14EBFCC789.cer (raw, json) Hash identifier: vTWGukVZvlm4s+WbDbYC6gD+NLbdf5oYpnUDpBFlNtg= Subject key identifier: 96:EC:32:41:8F:5D:B7:D2:72:13:2F:4F:61:5E:EE:14:EB:FC:C7:89 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 2EB4D0700BC8088178CF2A694C4DD4AE4FD9575B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CTII/0/96EC32418F5DB7D272132F4F615EEE14EBFCC789.mft caRepository: rsync://rpkica.twnic.tw/rpki/CTII/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:40 +0000 Certificate not after: Mon 10 May 2027 15:49:40 +0000 Subordinate resources: IP: 103.130.248.0/22 IP: 2403:c1c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b4:d0:70:0b:c8:08:81:78:cf:2a:69:4c:4d:d4:ae:4f:d9:57:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:40 2026 GMT Not After : May 10 15:49:40 2027 GMT Subject: CN=96EC32418F5DB7D272132F4F615EEE14EBFCC789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:69:2a:64:c7:28:94:9e:93:f8:82:75:6e:65: 10:b6:7d:06:7a:e1:95:32:58:68:c2:d7:c2:bd:0c: 33:44:b9:b5:b5:ab:2b:6d:19:05:e5:ed:a9:8d:17: 17:93:9f:57:bc:e4:e3:23:9a:5e:35:4d:1d:8e:21: 02:57:d9:c2:72:fe:65:4b:3b:55:bc:41:58:03:53: 11:dd:1c:fd:fd:81:8d:16:e2:9e:4c:51:95:e8:db: b5:ab:41:31:b2:b3:da:fb:c5:3c:94:e2:c8:e5:8a: e5:07:1e:a9:3f:f7:79:df:97:91:83:88:51:18:c3: ad:db:52:05:17:2f:d5:4a:13:46:c8:2d:d8:e3:8e: 85:67:e4:0f:6d:b9:0f:6b:63:ad:c8:66:ba:06:d2: 3f:70:67:98:ac:15:0a:33:b3:10:bb:30:67:6f:8e: 86:be:75:a6:e0:04:b2:50:cf:4d:e3:83:33:ae:61: ff:a5:90:64:55:e8:fd:ac:f4:51:e3:24:af:7d:c5: 56:1a:62:b8:5c:60:f8:93:ca:3e:34:70:29:ad:96: 57:d6:a7:56:99:33:38:69:4d:84:38:57:1c:ef:e1: e3:9e:c9:47:a5:3c:56:3d:dc:17:61:76:5a:8f:6d: ab:3e:c9:37:6b:3c:27:c1:e8:b5:e3:dd:60:8e:5b: 8c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 96:EC:32:41:8F:5D:B7:D2:72:13:2F:4F:61:5E:EE:14:EB:FC:C7:89 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CTII/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CTII/0/96EC32418F5DB7D272132F4F615EEE14EBFCC789.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.248.0/22 IPv6: 2403:c1c0::/32 Signature Algorithm: sha256WithRSAEncryption b7:bf:84:69:c9:55:c1:79:2a:32:93:8d:1a:10:b0:b2:74:fe: 2b:2c:8a:d9:44:54:59:68:23:82:e6:c8:69:d0:7a:68:5a:b6: f2:f9:1e:cf:86:be:98:e0:c0:fe:85:ce:a5:67:70:f7:85:86: d8:e0:58:bb:88:7c:9b:a0:7a:ae:fb:97:b5:6f:9e:50:bc:14: 01:4a:50:97:8a:9a:17:a6:aa:a6:05:73:ae:2e:dd:1a:59:b8: ff:81:20:f1:01:b2:54:6a:74:81:ac:02:2e:03:2e:30:d9:00: f0:ae:a8:7b:73:62:c1:ab:aa:4f:67:7b:5c:27:68:6c:3e:6c: 0f:28:be:57:00:74:08:65:3c:2a:5e:50:1d:be:6f:a1:d2:1f: 70:e4:29:46:bd:37:d5:c9:12:c3:6b:e3:e4:26:ac:f1:8b:75: 52:b7:da:b6:c1:31:ee:b1:7c:d5:89:3a:8f:8d:99:a4:cb:31: 07:e9:3a:ad:00:55:b5:2d:f1:64:bf:d9:26:34:72:bc:59:fc: 06:2e:59:25:79:57:37:e2:bf:6e:94:ce:6a:2b:3d:9e:c4:9c: b7:2b:01:a6:81:94:13:d5:6d:c6:42:78:dd:b2:78:f2:30:93: fb:cc:86:c8:b9:60:1b:84:08:ce:6e:2b:c7:55:41:b3:13:f2: e9:d0:d1:b9 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIULrTQcAvICIF4zyppTE3Urk/ZV1swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQ0MFoX DTI3MDUxMDE1NDk0MFowMzExMC8GA1UEAxMoOTZFQzMyNDE4RjVEQjdEMjcyMTMy RjRGNjE1RUVFMTRFQkZDQzc4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdpKmTHKJSek/iCdW5lELZ9BnrhlTJYaMLXwr0MM0S5tbWrK20ZBeXtqY0X F5OfV7zk4yOaXjVNHY4hAlfZwnL+ZUs7VbxBWANTEd0c/f2BjRbinkxRlejbtatB MbKz2vvFPJTiyOWK5QceqT/3ed+XkYOIURjDrdtSBRcv1UoTRsgt2OOOhWfkD225 D2tjrchmugbSP3BnmKwVCjOzELswZ2+Ohr51puAEslDPTeODM65h/6WQZFXo/az0 UeMkr33FVhpiuFxg+JPKPjRwKa2WV9anVpkzOGlNhDhXHO/h457JR6U8Vj3cF2F2 Wo9tqz7JN2s8J8HotePdYI5bjO0CAwEAAaOCAnEwggJtMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJbsMkGPXbfSchMvT2Fe7hTr/MeJMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DVElJLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NUSUkvMC85 NkVDMzI0MThGNURCN0QyNzIxMzJGNEY2MTVFRUUxNEVCRkNDNzg5Lm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8w HTAMBAIAATAGAwQCZ4L4MA0EAgACMAcDBQAkA8HAMA0GCSqGSIb3DQEBCwUAA4IB AQC3v4RpyVXBeSoyk40aELCydP4rLIrZRFRZaCOC5shp0HpoWrby+R7Phr6Y4MD+ hc6lZ3D3hYbY4Fi7iHyboHqu+5e1b55QvBQBSlCXipoXpqqmBXOuLt0aWbj/gSDx AbJUanSBrAIuAy4w2QDwrqh7c2LBq6pPZ3tcJ2hsPmwPKL5XAHQIZTwqXlAdvm+h 0h9w5ClGvTfVyRLDa+PkJqzxi3VSt9q2wTHusXzViTqPjZmkyzEH6TqtAFW1LfFk v9kmNHK8WfwGLlkleVc34r9ulM5qKz2exJy3KwGmgZQT1W3GQnjdsnjyMJP7zIbI uWAbhAjObivHVUGzE/Lp0NG5 -----END CERTIFICATE-----Generated at Wed May 13 19:57:18 2026 by rpki-client