$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/D7FDD2309EFAC257359F67A560160D59D372E164.cer File: D7FDD2309EFAC257359F67A560160D59D372E164.cer (raw, json) Hash identifier: cLwhsXClhVazzrXzg2D5SeslSFEXB3PhGSmozOWcTg0= Subject key identifier: D7:FD:D2:30:9E:FA:C2:57:35:9F:67:A5:60:16:0D:59:D3:72:E1:64 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 1BDAAE50B91DBAA22F14E859484448BBEE0A7059 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/JFT/0/D7FDD2309EFAC257359F67A560160D59D372E164.mft caRepository: rsync://rpkica.twnic.tw/rpki/JFT/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:47:16 +0000 Certificate not after: Mon 10 May 2027 15:52:16 +0000 Subordinate resources: IP: 103.236.226.0/23 IP: 2401:16a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:da:ae:50:b9:1d:ba:a2:2f:14:e8:59:48:44:48:bb:ee:0a:70:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:47:16 2026 GMT Not After : May 10 15:52:16 2027 GMT Subject: CN=D7FDD2309EFAC257359F67A560160D59D372E164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2c:c5:5e:d3:f3:a1:7a:2d:c8:65:8f:8e:6e: 2b:f6:0a:9e:77:38:72:7d:cc:3f:d2:09:a2:fe:e0: 7e:7c:97:d3:b2:6e:9e:a4:1b:ea:79:f5:21:7a:98: 02:4e:d0:fe:63:53:9b:f7:0e:5a:24:d9:75:b4:36: 9b:f2:d4:4b:20:e3:b2:30:37:67:d6:a6:88:f7:f7: bd:91:a2:53:bd:b9:b9:5c:3d:31:07:fd:eb:37:b5: 80:20:1e:09:cb:03:0a:42:80:ac:90:10:64:42:61: 64:21:0b:52:e3:b2:6a:0f:9a:dd:86:69:fb:40:e4: 7b:eb:9a:bb:8d:94:67:57:93:80:df:e9:43:18:89: bb:a0:76:af:5e:6f:f3:c9:57:68:13:59:79:e6:dc: 9d:0b:64:46:bc:9c:37:96:44:5a:21:8f:af:24:f2: 4c:cf:5f:05:3f:b8:1f:80:5d:f0:18:74:10:d0:e2: cb:7a:1a:2c:5a:69:da:4a:4a:3a:03:88:74:91:a6: 86:5e:20:bd:18:65:d2:e3:74:fe:40:f2:2d:dd:6e: 0e:44:61:b0:17:f5:9d:f1:21:43:6a:9e:36:b2:01: 01:ca:73:08:fd:48:f0:0d:c9:03:8f:ff:9e:11:f8: 97:11:09:16:68:6e:dc:79:58:c0:54:51:78:65:d0: a2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D7:FD:D2:30:9E:FA:C2:57:35:9F:67:A5:60:16:0D:59:D3:72:E1:64 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/JFT/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/JFT/0/D7FDD2309EFAC257359F67A560160D59D372E164.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.226.0/23 IPv6: 2401:16a0::/32 Signature Algorithm: sha256WithRSAEncryption a2:ea:33:8d:c4:73:23:d0:0a:c5:f4:2e:71:2d:77:c9:68:dc: 1d:6a:38:ef:ca:3c:00:ac:27:1c:1e:a4:e3:fd:85:79:d4:fe: b4:da:5c:37:fb:de:68:c1:11:be:0d:7a:37:49:47:33:67:5f: f8:be:8f:b9:6e:ee:d4:e5:74:87:7d:5f:f9:83:bc:90:6a:83: e5:bb:38:14:b2:d3:37:b7:b6:f0:6a:b2:89:a2:c5:24:a2:7f: 39:c3:4c:c4:fe:fa:3b:b1:66:5d:09:ee:f3:97:3d:ea:82:66: d3:f7:a6:14:9a:d9:0b:7f:82:cd:c3:28:ff:bd:61:13:ff:8e: b8:70:8e:7f:93:b0:0d:28:b0:dc:88:4a:10:1a:cf:07:3a:e1: c8:7e:aa:91:2b:21:ba:b5:27:16:fa:f2:48:cd:c3:22:3e:20: 1f:29:48:da:e6:9f:56:6c:65:05:95:6e:b4:78:d7:4b:cb:35: 22:66:74:ac:63:0e:cd:10:62:1a:02:3c:69:36:56:99:c3:da: 25:70:1a:d8:b0:f5:d0:1d:56:05:63:28:6c:a9:a9:60:74:cf: d2:fa:9a:3f:e5:0e:10:fc:33:df:bf:88:84:2f:f6:4d:d0:0f: d0:57:51:6d:32:a2:d2:21:9a:09:77:ea:b8:28:84:15:0a:57: 8d:13:19:5b -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUG9quULkduqIvFOhZSERIu+4KcFkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDcxNloX DTI3MDUxMDE1NTIxNlowMzExMC8GA1UEAxMoRDdGREQyMzA5RUZBQzI1NzM1OUY2 N0E1NjAxNjBENTlEMzcyRTE2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANosxV7T86F6Lchlj45uK/YKnnc4cn3MP9IJov7gfnyX07JunqQb6nn1IXqY Ak7Q/mNTm/cOWiTZdbQ2m/LUSyDjsjA3Z9amiPf3vZGiU725uVw9MQf96ze1gCAe CcsDCkKArJAQZEJhZCELUuOyag+a3YZp+0Dke+uau42UZ1eTgN/pQxiJu6B2r15v 88lXaBNZeebcnQtkRrycN5ZEWiGPryTyTM9fBT+4H4Bd8Bh0ENDiy3oaLFpp2kpK OgOIdJGmhl4gvRhl0uN0/kDyLd1uDkRhsBf1nfEhQ2qeNrIBAcpzCP1I8A3JA4// nhH4lxEJFmhu3HlYwFRReGXQoi0CAwEAAaOCAm8wggJrMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNf90jCe+sJXNZ9npWAWDVnTcuFkMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9KRlQvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSkZULzAvRDdG REQyMzA5RUZBQzI1NzM1OUY2N0E1NjAxNjBENTlEMzcyRTE2NC5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWfs4jANBAIAAjAHAwUAJAEWoDANBgkqhkiG9w0BAQsFAAOCAQEA ouozjcRzI9AKxfQucS13yWjcHWo478o8AKwnHB6k4/2FedT+tNpcN/veaMERvg16 N0lHM2df+L6PuW7u1OV0h31f+YO8kGqD5bs4FLLTN7e28GqyiaLFJKJ/OcNMxP76 O7FmXQnu85c96oJm0/emFJrZC3+CzcMo/71hE/+OuHCOf5OwDSiw3IhKEBrPBzrh yH6qkSshurUnFvrySM3DIj4gHylI2uafVmxlBZVutHjXS8s1ImZ0rGMOzRBiGgI8 aTZWmcPaJXAa2LD10B1WBWMobKmpYHTP0vqaP+UOEPwz37+IhC/2TdAP0FdRbTKi 0iGaCXfquCiEFQpXjRMZWw== -----END CERTIFICATE-----Generated at Wed May 13 19:57:51 2026 by rpki-client