$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/A7A7EEF7E5627111AA1595BF2BD416299AA94638.cer File: A7A7EEF7E5627111AA1595BF2BD416299AA94638.cer (raw, json) Hash identifier: RuEd4NQWIJgeHJmIP0OUIWT/GaTepp3XjcqjsJnQreU= Subject key identifier: A7:A7:EE:F7:E5:62:71:11:AA:15:95:BF:2B:D4:16:29:9A:A9:46:38 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 2CD19EA85B05F0F3303AA68F1B06837AC9274E14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/MORICLOUD/0/A7A7EEF7E5627111AA1595BF2BD416299AA94638.mft caRepository: rsync://rpkica.twnic.tw/rpki/MORICLOUD/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:45 +0000 Certificate not after: Mon 10 May 2027 15:53:45 +0000 Subordinate resources: IP: 103.129.160.0/22 IP: 2403:80c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d1:9e:a8:5b:05:f0:f3:30:3a:a6:8f:1b:06:83:7a:c9:27:4e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:45 2026 GMT Not After : May 10 15:53:45 2027 GMT Subject: CN=A7A7EEF7E5627111AA1595BF2BD416299AA94638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:60:34:ef:e5:f0:de:a1:fc:d0:79:a2:5c:f8: f7:19:c0:99:05:de:6a:83:98:19:98:e9:88:43:9d: 73:7d:b8:26:40:9c:85:1b:0e:17:d8:6a:74:ee:fe: 4a:46:08:28:00:ac:1d:e6:6a:a7:32:18:96:df:b8: c5:8f:b5:0a:5e:18:17:aa:d0:1c:91:c0:8e:a2:84: 95:87:1d:01:41:4e:88:97:4a:ba:46:6d:95:d8:d6: 08:0d:60:d0:99:bc:4b:3f:a3:ac:bd:48:3c:48:83: 53:48:40:d8:32:dc:3b:dc:0d:6e:25:1c:e9:78:79: 85:64:9a:87:25:f5:a4:8e:af:bb:5a:16:a2:33:b3: 2b:45:82:b4:18:34:cc:93:e8:2c:6c:8b:df:33:f2: 3a:56:38:ca:a7:c6:b1:73:26:0e:29:a2:92:b6:8c: e4:c7:92:31:2b:e4:62:f6:13:76:5b:81:bd:e7:52: fa:50:c4:bb:27:0a:71:e4:8f:3d:08:d3:7a:12:05: 92:7d:99:cf:4d:4d:a9:c5:d6:7c:ca:40:92:00:49: 6d:2d:04:98:f4:20:7d:e0:cf:63:a0:9d:3a:3d:d9: 6d:08:45:61:fa:f8:0c:de:41:5d:dc:1c:26:be:9e: 8a:19:f7:c0:05:18:59:44:d7:a5:f9:2d:c0:0e:5b: 9b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A7:A7:EE:F7:E5:62:71:11:AA:15:95:BF:2B:D4:16:29:9A:A9:46:38 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/MORICLOUD/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/MORICLOUD/0/A7A7EEF7E5627111AA1595BF2BD416299AA94638.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.160.0/22 IPv6: 2403:80c0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:39:a4:51:f5:7a:5d:f1:fa:d1:dc:64:2f:eb:70:08:d5:04: a4:ef:34:f5:06:f5:88:74:3c:06:79:e1:be:46:c5:e9:4b:78: 2c:74:83:e6:a7:1b:d5:a5:c3:2e:44:60:a4:5d:9a:39:b6:79: e9:0f:ab:35:01:b7:2b:6a:b1:a4:2a:f7:b0:97:b1:37:7f:f5: db:42:2a:64:77:da:3d:ee:1b:62:ab:38:4b:99:37:57:8e:4a: 7a:dd:4f:59:73:18:30:05:43:f1:98:22:94:2f:8e:a0:a9:2e: 7a:80:ec:af:09:4e:2f:df:76:f8:24:31:c3:e1:ae:d6:7d:e8: 58:28:17:68:51:a9:c6:6e:81:79:63:ed:34:6c:39:68:5c:52: 0c:36:3d:5a:0a:66:1f:02:8f:70:b2:23:fc:52:0c:94:41:67: 91:11:33:89:60:fb:72:fd:4f:0b:0b:2b:98:fc:4b:10:6a:f8: 13:3a:ec:12:a9:70:64:b1:10:a2:95:c4:c4:48:0b:f8:7f:ab: 21:18:67:18:d4:f4:b1:5e:c3:31:78:07:34:5b:c2:d2:f2:07: 01:a6:d9:a6:a3:66:a6:e6:39:31:01:dc:e7:33:2c:5e:79:d5: ce:84:a3:0d:03:c6:58:3d:c4:1b:82:42:7b:bb:ea:f7:ad:55: 5f:85:8a:37 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIULNGeqFsF8PMwOqaPGwaDesknThQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDg0NVoX DTI3MDUxMDE1NTM0NVowMzExMC8GA1UEAxMoQTdBN0VFRjdFNTYyNzExMUFBMTU5 NUJGMkJENDE2Mjk5QUE5NDYzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtgNO/l8N6h/NB5olz49xnAmQXeaoOYGZjpiEOdc324JkCchRsOF9hqdO7+ SkYIKACsHeZqpzIYlt+4xY+1Cl4YF6rQHJHAjqKElYcdAUFOiJdKukZtldjWCA1g 0Jm8Sz+jrL1IPEiDU0hA2DLcO9wNbiUc6Xh5hWSahyX1pI6vu1oWojOzK0WCtBg0 zJPoLGyL3zPyOlY4yqfGsXMmDimikraM5MeSMSvkYvYTdluBvedS+lDEuycKceSP PQjTehIFkn2Zz01NqcXWfMpAkgBJbS0EmPQgfeDPY6CdOj3ZbQhFYfr4DN5BXdwc Jr6eihn3wAUYWUTXpfktwA5bm8sCAwEAAaOCAnswggJ3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKen7vflYnERqhWVvyvUFimaqUY4MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NT1JJQ0xPVUQv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTU9S SUNMT1VELzAvQTdBN0VFRjdFNTYyNzExMUFBMTU5NUJGMkJENDE2Mjk5QUE5NDYz OC5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAmeBoDANBAIAAjAHAwUAJAOAwDANBgkqhkiG 9w0BAQsFAAOCAQEAGzmkUfV6XfH60dxkL+twCNUEpO809Qb1iHQ8BnnhvkbF6Ut4 LHSD5qcb1aXDLkRgpF2aObZ56Q+rNQG3K2qxpCr3sJexN3/120IqZHfaPe4bYqs4 S5k3V45Ket1PWXMYMAVD8ZgilC+OoKkueoDsrwlOL992+CQxw+Gu1n3oWCgXaFGp xm6BeWPtNGw5aFxSDDY9WgpmHwKPcLIj/FIMlEFnkREziWD7cv1PCwsrmPxLEGr4 EzrsEqlwZLEQopXExEgL+H+rIRhnGNT0sV7DMXgHNFvC0vIHAabZpqNmpuY5MQHc 5zMsXnnVzoSjDQPGWD3EG4JCe7vq961VX4WKNw== -----END CERTIFICATE-----Generated at Wed May 13 19:58:26 2026 by rpki-client