$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/E7B5A3615C62BA0DA89B6CA2A62E20CD80008620.cer File: E7B5A3615C62BA0DA89B6CA2A62E20CD80008620.cer (raw, json) Hash identifier: N3PdDquyCkcm6VK5VUCd/11YqMfmc7ZLKogcCVLFOuo= Subject key identifier: E7:B5:A3:61:5C:62:BA:0D:A8:9B:6C:A2:A6:2E:20:CD:80:00:86:20 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 2045943DE1C765A0F286A9E58D0A55210A50D0A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SHIL/0/E7B5A3615C62BA0DA89B6CA2A62E20CD80008620.mft caRepository: rsync://rpkica.twnic.tw/rpki/SHIL/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:36 +0000 Certificate not after: Mon 10 May 2027 16:01:36 +0000 Subordinate resources: IP: 103.117.134.0/23 IP: 2401:3ba0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:45:94:3d:e1:c7:65:a0:f2:86:a9:e5:8d:0a:55:21:0a:50:d0:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:36 2026 GMT Not After : May 10 16:01:36 2027 GMT Subject: CN=E7B5A3615C62BA0DA89B6CA2A62E20CD80008620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:78:22:9b:c5:cb:f5:d5:04:c6:80:92:e3:03: 88:3d:40:b6:49:a1:5b:c3:05:33:f3:21:2c:5a:5b: 9d:38:c9:4c:e0:6f:60:8e:4b:21:43:a1:fd:ed:cb: 84:b6:f4:ce:b0:e6:01:ff:17:50:67:e5:e3:6d:27: 26:44:96:39:f7:f0:7a:81:5e:eb:f3:27:db:10:f5: 33:6c:0e:7a:57:e6:33:a8:2c:e1:e4:21:1e:a6:cb: 3a:26:ee:39:69:f8:13:3a:b0:e4:80:77:c8:3f:96: b5:66:23:72:1d:a5:46:ea:8a:86:b2:fe:68:b6:f3: d5:b3:b8:27:64:33:a0:c0:a5:9e:00:91:6a:6a:3a: 56:33:9b:85:f2:bf:31:d4:d1:32:67:64:0c:87:f9: d6:b1:5a:89:93:2b:6f:f3:72:5d:23:21:a0:be:21: 35:78:2f:c4:a7:42:3d:3e:9e:e0:fd:2c:71:61:3b: 5b:3e:9e:2d:be:39:c2:a4:d3:7f:80:cf:22:d9:0a: c7:ef:fb:59:af:4a:83:c4:5c:84:ce:97:e5:18:f2: 40:ee:90:cf:d2:73:7a:53:18:fe:be:9f:5f:67:e0: 85:4e:b8:87:b1:6e:57:83:42:ae:bf:a8:76:4a:ad: 34:64:44:be:37:1c:a2:d5:c5:f1:61:6e:08:e4:c4: a3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E7:B5:A3:61:5C:62:BA:0D:A8:9B:6C:A2:A6:2E:20:CD:80:00:86:20 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SHIL/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SHIL/0/E7B5A3615C62BA0DA89B6CA2A62E20CD80008620.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.134.0/23 IPv6: 2401:3ba0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:85:7e:af:df:27:53:6a:b8:6b:d4:0e:3f:f0:55:07:e2:54: ee:ec:2a:24:d4:52:d8:bf:67:69:ee:fc:ae:28:6f:7d:4a:e4: f7:f6:6b:7f:86:0a:8e:ef:92:04:7f:e9:7e:be:b4:07:3f:82: bc:e8:88:9f:d8:75:ea:c2:0d:5a:43:02:98:81:a0:fb:30:00: 8f:ba:81:a9:15:96:43:e2:41:f2:8d:e2:9c:1b:c3:ff:46:8b: e7:63:fa:31:d9:e1:23:60:14:75:ce:c4:e5:84:05:23:29:a5: 6e:50:13:08:1a:20:c7:10:9a:9a:f2:da:44:55:ec:e4:d0:4b: 01:6e:53:d2:5b:0a:f7:f8:04:8e:ae:bf:cf:93:0e:0e:38:ea: e2:a6:dd:55:c9:ec:d8:6d:0e:44:5b:d5:4b:e0:a9:40:96:0a: 6e:e8:ce:c5:1a:68:75:7f:7b:94:ff:bf:8b:dc:34:79:fa:96: 6b:a3:4c:5d:b5:6c:ec:a7:cc:86:93:55:97:20:68:ec:24:12: 60:bb:06:fe:6a:05:e5:ed:bd:6b:a9:e1:28:63:31:5d:bf:21: 60:33:b1:1b:40:e1:74:4e:28:b4:7c:cc:93:94:40:75:45:d4: 3a:44:33:ca:cf:05:b3:8a:b1:fb:7f:31:f1:15:36:e8:fe:59: 3b:cc:40:26 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUIEWUPeHHZaDyhqnljQpVIQpQ0KcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYzNloX DTI3MDUxMDE2MDEzNlowMzExMC8GA1UEAxMoRTdCNUEzNjE1QzYyQkEwREE4OUI2 Q0EyQTYyRTIwQ0Q4MDAwODYyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMp4IpvFy/XVBMaAkuMDiD1AtkmhW8MFM/MhLFpbnTjJTOBvYI5LIUOh/e3L hLb0zrDmAf8XUGfl420nJkSWOffweoFe6/Mn2xD1M2wOelfmM6gs4eQhHqbLOibu OWn4Ezqw5IB3yD+WtWYjch2lRuqKhrL+aLbz1bO4J2QzoMClngCRamo6VjObhfK/ MdTRMmdkDIf51rFaiZMrb/NyXSMhoL4hNXgvxKdCPT6e4P0scWE7Wz6eLb45wqTT f4DPItkKx+/7Wa9Kg8RchM6X5RjyQO6Qz9JzelMY/r6fX2fghU64h7FuV4NCrr+o dkqtNGREvjccotXF8WFuCOTEowcCAwEAAaOCAnEwggJtMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOe1o2FcYroNqJtsoqYuIM2AAIYgMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSElMLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISUwvMC9F N0I1QTM2MTVDNjJCQTBEQTg5QjZDQTJBNjJFMjBDRDgwMDA4NjIwLm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8w HTAMBAIAATAGAwQBZ3WGMA0EAgACMAcDBQAkATugMA0GCSqGSIb3DQEBCwUAA4IB AQCchX6v3ydTarhr1A4/8FUH4lTu7Cok1FLYv2dp7vyuKG99SuT39mt/hgqO75IE f+l+vrQHP4K86Iif2HXqwg1aQwKYgaD7MACPuoGpFZZD4kHyjeKcG8P/RovnY/ox 2eEjYBR1zsTlhAUjKaVuUBMIGiDHEJqa8tpEVezk0EsBblPSWwr3+ASOrr/Pkw4O OOript1VyezYbQ5EW9VL4KlAlgpu6M7FGmh1f3uU/7+L3DR5+pZro0xdtWzsp8yG k1WXIGjsJBJguwb+agXl7b1rqeEoYzFdvyFgM7EbQOF0Tii0fMyTlEB1RdQ6RDPK zwWzirH7fzHxFTbo/lk7zEAm -----END CERTIFICATE-----Generated at Wed May 13 19:57:49 2026 by rpki-client