$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/D08DE0CF42746B1C306BD25ADE9B2BD0FC9887A3.cer File: D08DE0CF42746B1C306BD25ADE9B2BD0FC9887A3.cer (raw, json) Hash identifier: VXR4ZVyz6WufSpRqLRcbbTuwrtJEPsy48+gqVMryMOg= Subject key identifier: D0:8D:E0:CF:42:74:6B:1C:30:6B:D2:5A:DE:9B:2B:D0:FC:98:87:A3 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 4BCDF71C9EA9B80990258879CC9819DB62C3A9E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/GODGAME/0/D08DE0CF42746B1C306BD25ADE9B2BD0FC9887A3.mft caRepository: rsync://rpkica.twnic.tw/rpki/GODGAME/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:10 +0000 Certificate not after: Mon 10 May 2027 15:51:10 +0000 Subordinate resources: IP: 103.18.128.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:cd:f7:1c:9e:a9:b8:09:90:25:88:79:cc:98:19:db:62:c3:a9:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:46:10 2026 GMT Not After : May 10 15:51:10 2027 GMT Subject: CN=D08DE0CF42746B1C306BD25ADE9B2BD0FC9887A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c2:a0:c3:16:9a:e2:27:c1:eb:94:dc:df:71: 64:fe:5e:25:48:99:16:fa:24:90:b1:1a:7b:a0:e9: ab:63:89:4a:04:f4:44:bd:29:29:b5:8e:65:37:3e: 3c:46:d3:8e:ae:5b:be:7d:6f:1e:e5:22:6b:24:c9: 75:85:ed:37:7b:1b:8b:81:13:30:29:15:49:cd:b0: 48:a7:1b:fe:36:65:e3:a0:0b:4b:c2:ef:76:6e:be: d3:11:d8:5b:d2:df:e0:ba:81:d4:3b:52:6b:bc:a6: f8:86:86:8b:22:f2:e5:d7:fc:46:d6:77:e5:40:67: 55:aa:a4:21:69:3b:e4:31:d7:40:c7:b1:63:18:68: 0f:50:05:00:e2:23:96:b0:30:5b:f3:b6:40:27:aa: b7:a7:d9:76:53:87:57:9c:e4:86:b1:29:ba:d2:b8: c6:ba:de:a7:7a:28:b7:db:3f:0e:5b:e6:28:96:c0: 22:b4:72:46:fc:69:e7:2b:85:c0:e9:9b:82:0e:4f: d8:80:ad:35:23:61:69:6e:50:06:90:9b:0b:0f:4e: f5:4f:fe:39:57:08:17:0c:26:ca:41:27:ce:47:29: 8c:bf:d0:ba:af:b9:22:09:0f:82:ed:99:d4:0d:73: 7a:43:d3:06:18:09:6e:fc:e9:2f:c5:6c:71:87:32: 99:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D0:8D:E0:CF:42:74:6B:1C:30:6B:D2:5A:DE:9B:2B:D0:FC:98:87:A3 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/GODGAME/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/GODGAME/0/D08DE0CF42746B1C306BD25ADE9B2BD0FC9887A3.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.128.0/22 Signature Algorithm: sha256WithRSAEncryption a1:69:e1:ea:ed:16:94:6e:9b:13:57:39:37:72:8d:7f:e4:c4: 0e:b4:e4:42:a9:48:88:f2:12:c0:f2:c5:2a:f0:1c:d8:2e:d1: 81:08:9b:b6:ca:07:60:86:65:b1:99:ce:c5:3b:35:4e:4d:04: 0c:9e:c1:6a:cf:7a:6e:98:9d:2a:6e:7f:60:29:0f:0e:93:14: 50:b8:e2:49:85:f7:10:fe:9e:31:cb:e5:3d:0a:3c:e1:8c:b2: fe:73:33:2a:cb:8d:cf:7c:fd:9e:2d:46:69:36:0b:7c:1f:3b: f0:2e:c1:6f:3e:76:b3:05:e0:60:80:12:68:73:e8:a0:dc:86: 91:7c:2e:af:72:4f:db:ef:d5:27:2e:c2:c5:62:8d:52:23:33: 7a:69:9e:42:26:be:41:d5:c2:bb:39:9f:72:c4:de:57:18:5d: 27:81:28:6a:98:52:e7:4f:8d:a9:21:cc:80:42:fe:03:fe:fd: 05:6a:98:4a:27:e4:36:e0:da:a0:c2:50:df:1d:66:76:35:9f: 4e:10:c7:15:5f:8f:1b:95:1d:f6:6b:e7:b3:6a:df:4f:45:ef: 09:44:a9:8c:56:99:3e:7a:7b:e8:31:3b:73:fb:2c:f5:4d:c0: 18:ed:69:17:eb:86:f2:49:7d:63:ab:d5:08:1e:1d:f7:70:02: 6e:ca:fb:ee -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUS833HJ6puAmQJYh5zJgZ22LDqecwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDYxMFoX DTI3MDUxMDE1NTExMFowMzExMC8GA1UEAxMoRDA4REUwQ0Y0Mjc0NkIxQzMwNkJE MjVBREU5QjJCRDBGQzk4ODdBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANHCoMMWmuInweuU3N9xZP5eJUiZFvokkLEae6Dpq2OJSgT0RL0pKbWOZTc+ PEbTjq5bvn1vHuUiayTJdYXtN3sbi4ETMCkVSc2wSKcb/jZl46ALS8Lvdm6+0xHY W9Lf4LqB1DtSa7ym+IaGiyLy5df8RtZ35UBnVaqkIWk75DHXQMexYxhoD1AFAOIj lrAwW/O2QCeqt6fZdlOHV5zkhrEputK4xrrep3oot9s/DlvmKJbAIrRyRvxp5yuF wOmbgg5P2ICtNSNhaW5QBpCbCw9O9U/+OVcIFwwmykEnzkcpjL/Quq+5IgkPgu2Z 1A1zekPTBhgJbvzpL8VscYcymf8CAwEAAaOCAmgwggJkMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNCN4M9CdGscMGvSWt6bK9D8mIejMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HT0RHQU1FLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0dPREdB TUUvMC9EMDhERTBDRjQyNzQ2QjFDMzA2QkQyNUFERTlCMkJEMEZDOTg4N0EzLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCZxKAMA0GCSqGSIb3DQEBCwUAA4IBAQChaeHq7RaU bpsTVzk3co1/5MQOtORCqUiI8hLA8sUq8BzYLtGBCJu2ygdghmWxmc7FOzVOTQQM nsFqz3pumJ0qbn9gKQ8OkxRQuOJJhfcQ/p4xy+U9CjzhjLL+czMqy43PfP2eLUZp Ngt8HzvwLsFvPnazBeBggBJoc+ig3IaRfC6vck/b79UnLsLFYo1SIzN6aZ5CJr5B 1cK7OZ9yxN5XGF0ngShqmFLnT42pIcyAQv4D/v0FaphKJ+Q24NqgwlDfHWZ2NZ9O EMcVX48blR32a+ezat9PRe8JRKmMVpk+envoMTtz+yz1TcAY7WkX64bySX1jq9UI Hh33cAJuyvvu -----END CERTIFICATE-----Generated at Wed May 13 19:57:43 2026 by rpki-client