$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/B64BDE0841E1E027F1A23036D9C779A108C22EE1.cer File: B64BDE0841E1E027F1A23036D9C779A108C22EE1.cer (raw, json) Hash identifier: 8ya7buDBglc54cK2KyyBMm0D0pwUkZWUACtTPduaytA= Subject key identifier: B6:4B:DE:08:41:E1:E0:27:F1:A2:30:36:D9:C7:79:A1:08:C2:2E:E1 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 5693BD15A972D04100FF71A33E128F4FEEE743F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/B64BDE0841E1E027F1A23036D9C779A108C22EE1.mft caRepository: rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:15 +0000 Certificate not after: Mon 10 May 2027 16:02:15 +0000 Subordinate resources: IP: 211.76.128.0/20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:93:bd:15:a9:72:d0:41:00:ff:71:a3:3e:12:8f:4f:ee:e7:43:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:15 2026 GMT Not After : May 10 16:02:15 2027 GMT Subject: CN=B64BDE0841E1E027F1A23036D9C779A108C22EE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:90:3d:e8:27:40:dc:70:f3:c9:f8:0f:c8:42: f1:89:dc:2b:3d:71:3a:f3:da:1f:8b:c5:13:e1:0c: ee:dc:b3:5d:44:e7:0e:85:07:cb:fa:42:06:ab:bc: 59:48:d7:96:5b:79:6f:58:0f:aa:ab:51:8e:f6:e0: 8e:8b:e6:fe:07:4f:36:71:d7:3d:77:eb:d5:96:8b: 8f:1a:ab:d9:fb:ec:f6:f3:1e:c2:89:f4:67:2e:11: 5d:84:e8:2d:59:5f:81:fa:e0:35:a0:05:05:7d:5b: 80:11:88:6c:b8:c0:5a:cf:db:da:b9:0c:0a:b8:2f: d2:5f:c7:07:a7:31:84:ec:b9:46:45:fa:29:26:d0: ce:7f:f8:fb:ca:b5:b2:a5:80:fd:15:eb:f5:4f:5e: 6f:c5:a9:a7:c6:e2:49:d2:7f:05:a8:62:ca:dc:3a: 97:65:48:68:a2:ab:40:41:60:6c:50:47:c9:5f:f6: cd:47:1b:9b:60:30:80:a1:06:87:3b:1a:e6:cf:45: 29:ee:ef:2e:a2:61:f9:8a:c9:3b:06:a2:c1:73:70: ab:ac:fa:49:b4:87:ad:fc:38:d5:c0:0d:a4:85:c2: ee:7b:c3:2b:59:64:b4:72:b4:52:0a:f9:f5:c3:1e: 33:2c:3f:e3:6a:1b:87:8c:d3:ea:7c:47:12:c2:a5: 92:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B6:4B:DE:08:41:E1:E0:27:F1:A2:30:36:D9:C7:79:A1:08:C2:2E:E1 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/B64BDE0841E1E027F1A23036D9C779A108C22EE1.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.76.128.0/20 Signature Algorithm: sha256WithRSAEncryption 25:86:1d:d3:1f:78:f2:b6:41:70:f1:b3:d3:9c:65:33:91:56: ae:f2:40:7c:9c:47:f9:7f:c3:30:58:c0:d0:f9:15:3f:07:13: b4:4e:d3:98:56:c9:97:e0:7a:8f:58:2d:bb:8a:21:2a:91:97: 3f:50:04:db:08:d4:24:26:1b:9b:19:7e:d9:96:bd:eb:5d:81: ce:4c:ec:5b:ad:01:39:3c:05:f4:f5:73:5c:2a:e9:9c:31:dd: c9:86:9f:cf:2e:6f:cf:b1:29:c7:0f:fa:ff:a3:3c:67:2c:cd: f9:c3:a9:b1:32:2b:c3:89:8d:d8:28:b5:9e:2a:09:fa:5a:c0: 16:4b:6f:6d:06:83:64:88:fd:5d:9d:1e:10:9e:4e:b0:86:1c: 7d:e3:93:57:9d:25:96:7b:75:b0:c1:5b:f5:f6:03:a9:f4:10: 20:79:da:ac:b5:56:0a:93:15:e4:20:9c:e3:28:81:06:b1:0d: 13:eb:67:53:7e:03:75:54:a0:aa:08:ea:64:d5:c1:13:f9:bf: bd:b9:53:a9:0d:ca:db:81:cb:70:54:72:8c:b2:9e:cb:c1:9d: 81:8c:be:03:59:9c:21:8d:04:4d:e9:f3:1f:8a:11:a7:2b:a3: 35:4b:6f:16:05:a4:4f:d2:7d:2b:5e:ad:c6:84:a9:24:63:aa: 0b:3d:11:fe -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUVpO9Faly0EEA/3GjPhKPT+7nQ/MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTcxNVoX DTI3MDUxMDE2MDIxNVowMzExMC8GA1UEAxMoQjY0QkRFMDg0MUUxRTAyN0YxQTIz MDM2RDlDNzc5QTEwOEMyMkVFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyQPegnQNxw88n4D8hC8YncKz1xOvPaH4vFE+EM7tyzXUTnDoUHy/pCBqu8 WUjXllt5b1gPqqtRjvbgjovm/gdPNnHXPXfr1ZaLjxqr2fvs9vMewon0Zy4RXYTo LVlfgfrgNaAFBX1bgBGIbLjAWs/b2rkMCrgv0l/HB6cxhOy5RkX6KSbQzn/4+8q1 sqWA/RXr9U9eb8Wpp8biSdJ/Bahiytw6l2VIaKKrQEFgbFBHyV/2zUcbm2AwgKEG hzsa5s9FKe7vLqJh+YrJOwaiwXNwq6z6SbSHrfw41cANpIXC7nvDK1lktHK0Ugr5 9cMeMyw/42obh4zT6nxHEsKlkocCAwEAAaOCAmgwggJkMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLZL3ghB4eAn8aIwNtnHeaEIwi7hMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TWU1QSE9YLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NZTVBI T1gvMC9CNjRCREUwODQxRTFFMDI3RjFBMjMwMzZEOUM3NzlBMTA4QzIyRUUxLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQE00yAMA0GCSqGSIb3DQEBCwUAA4IBAQAlhh3TH3jy tkFw8bPTnGUzkVau8kB8nEf5f8MwWMDQ+RU/BxO0TtOYVsmX4HqPWC27iiEqkZc/ UATbCNQkJhubGX7Zlr3rXYHOTOxbrQE5PAX09XNcKumcMd3Jhp/PLm/PsSnHD/r/ ozxnLM35w6mxMivDiY3YKLWeKgn6WsAWS29tBoNkiP1dnR4Qnk6whhx945NXnSWW e3WwwVv19gOp9BAgedqstVYKkxXkIJzjKIEGsQ0T62dTfgN1VKCqCOpk1cET+b+9 uVOpDcrbgctwVHKMsp7LwZ2BjL4DWZwhjQRN6fMfihGnK6M1S28WBaRP0n0rXq3G hKkkY6oLPRH+ -----END CERTIFICATE-----Generated at Wed May 13 19:58:24 2026 by rpki-client