$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/AD79CBDEB391C70F0A9DAD7888224213297EEB3A.cer File: AD79CBDEB391C70F0A9DAD7888224213297EEB3A.cer (raw, json) Hash identifier: msLmLNYA9nB+vGXWG4Gw076GzcpooxZihHRORrOhLHo= Subject key identifier: AD:79:CB:DE:B3:91:C7:0F:0A:9D:AD:78:88:22:42:13:29:7E:EB:3A Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 2DB8000C38040807F7AABB0144E1B47FD2C559A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWD-COM-TW/0/AD79CBDEB391C70F0A9DAD7888224213297EEB3A.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWD-COM-TW/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:58:09 +0000 Certificate not after: Mon 10 May 2027 16:03:09 +0000 Subordinate resources: IP: 223.165.8.0/21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b8:00:0c:38:04:08:07:f7:aa:bb:01:44:e1:b4:7f:d2:c5:59:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:58:09 2026 GMT Not After : May 10 16:03:09 2027 GMT Subject: CN=AD79CBDEB391C70F0A9DAD7888224213297EEB3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:21:d8:d7:ff:0e:65:39:15:f8:d5:05:a0:3f: 5b:94:2f:09:a5:dd:d3:23:56:24:a7:83:c3:40:7e: 35:a8:cb:69:7a:c0:d2:85:da:d9:fe:3b:9f:1c:65: f0:13:fc:e7:8f:e7:1f:e4:1e:e8:8f:38:fe:17:58: c2:53:26:46:10:eb:51:25:6c:ce:cf:b7:a1:51:3f: 68:93:f5:62:d4:de:35:b0:82:b1:5a:19:fc:41:7b: c2:ed:50:5c:90:72:b7:62:2a:e5:d3:98:c8:02:62: 96:00:38:f2:eb:78:bd:91:92:bf:74:14:3a:d9:5d: 43:97:c5:03:90:80:55:ff:d1:6f:e0:81:d0:08:81: 43:61:08:d5:08:f6:76:df:e5:f9:10:3e:3b:9b:76: 1f:8d:58:60:ba:bc:0b:09:94:fc:d2:b5:66:eb:3e: 12:a3:01:2d:6b:7b:e4:6e:7e:b9:25:70:88:76:0b: 15:53:c6:d7:04:33:4d:31:45:e8:fd:29:81:a8:6f: 81:2d:71:2e:64:32:a2:1a:72:cb:03:5f:c7:52:e2: 9d:9b:27:54:3d:46:35:44:09:37:7b:55:a0:2c:64: 88:57:0b:f6:b4:1e:74:48:a0:06:37:93:3c:20:6c: 8d:28:07:da:e3:e8:dd:8f:f9:8d:a7:c7:f5:9e:b1: 70:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AD:79:CB:DE:B3:91:C7:0F:0A:9D:AD:78:88:22:42:13:29:7E:EB:3A X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWD-COM-TW/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWD-COM-TW/0/AD79CBDEB391C70F0A9DAD7888224213297EEB3A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.165.8.0/21 Signature Algorithm: sha256WithRSAEncryption 23:df:ff:4e:68:89:fe:8b:68:ac:c9:85:81:91:c4:e7:41:95: ce:5c:b2:e9:74:c8:f5:e6:cb:66:a1:3d:40:db:d3:3e:00:81: 99:0d:1c:d5:06:68:32:c1:f6:a1:97:cb:b5:aa:01:ee:96:e7: 6a:15:05:14:48:25:bf:02:dc:e6:d7:1b:4e:04:57:f8:d5:bf: 0c:9c:16:1d:d4:a0:93:29:3e:a1:bb:f2:fa:a2:a9:68:18:e8: 1c:a9:b7:9f:de:2f:eb:f6:84:a9:92:dc:d6:4a:0c:e8:96:36: 7b:38:47:79:5d:47:7a:c1:d4:e6:c5:33:1e:53:5c:70:fb:d3: c1:84:69:dd:5a:3f:16:1d:86:93:8e:54:d8:4f:1f:f0:1d:00: 74:2f:fe:dd:ee:ab:b7:4d:59:cb:fa:0b:11:b8:9a:8c:f3:22: fa:15:3a:f3:6b:aa:cd:58:d3:3c:fa:0f:5f:39:21:0c:56:f7: ad:2d:bd:bf:28:6e:68:8e:9a:27:f8:2e:a7:9c:02:9a:9e:60: 18:ec:96:dc:78:d3:6d:62:6b:dc:94:ce:20:ab:c5:1f:31:73: bd:4b:66:ff:bc:ed:ce:08:97:17:1f:de:ee:03:c7:27:88:fd: 52:85:c7:d1:4c:1f:e7:04:12:51:1e:10:6d:4c:14:c2:58:be: 40:ac:6a:fa -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIULbgADDgECAf3qrsBROG0f9LFWakwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTgwOVoX DTI3MDUxMDE2MDMwOVowMzExMC8GA1UEAxMoQUQ3OUNCREVCMzkxQzcwRjBBOURB RDc4ODgyMjQyMTMyOTdFRUIzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsh2Nf/DmU5FfjVBaA/W5QvCaXd0yNWJKeDw0B+NajLaXrA0oXa2f47nxxl 8BP854/nH+Qe6I84/hdYwlMmRhDrUSVszs+3oVE/aJP1YtTeNbCCsVoZ/EF7wu1Q XJByt2Iq5dOYyAJilgA48ut4vZGSv3QUOtldQ5fFA5CAVf/Rb+CB0AiBQ2EI1Qj2 dt/l+RA+O5t2H41YYLq8CwmU/NK1Zus+EqMBLWt75G5+uSVwiHYLFVPG1wQzTTFF 6P0pgahvgS1xLmQyohpyywNfx1LinZsnVD1GNUQJN3tVoCxkiFcL9rQedEigBjeT PCBsjSgH2uPo3Y/5jafH9Z6xcGUCAwEAAaOCAm4wggJqMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK15y96zkccPCp2teIgiQhMpfus6MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHlBggrBgEFBQcBCwSB2DCB1TA2Bggr BgEFBQcwBYYqcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV0QtQ09NLVRX LzAvMGIGCCsGAQUFBzAKhlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX RC1DT00tVFcvMC9BRDc5Q0JERUIzOTFDNzBGMEE5REFENzg4ODIyNDIxMzI5N0VF QjNBLm1mdDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD36UIMA0GCSqGSIb3DQEBCwUAA4IBAQAj 3/9OaIn+i2isyYWBkcTnQZXOXLLpdMj15stmoT1A29M+AIGZDRzVBmgywfahl8u1 qgHuludqFQUUSCW/Atzm1xtOBFf41b8MnBYd1KCTKT6hu/L6oqloGOgcqbef3i/r 9oSpktzWSgzoljZ7OEd5XUd6wdTmxTMeU1xw+9PBhGndWj8WHYaTjlTYTx/wHQB0 L/7d7qu3TVnL+gsRuJqM8yL6FTrza6rNWNM8+g9fOSEMVvetLb2/KG5ojpon+C6n nAKanmAY7JbceNNtYmvclM4gq8UfMXO9S2b/vO3OCJcXH97uA8cniP1ShcfRTB/n BBJRHhBtTBTCWL5ArGr6 -----END CERTIFICATE-----Generated at Wed May 13 19:58:01 2026 by rpki-client