$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer File: F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer (raw, json) Hash identifier: bMl25ugMQO6+S2Skl8RLYlzz+xNohzvYODPq5+UsoAw= Subject key identifier: F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 1CB11F3EEFC378D765CFC12751B0E5C3F4902807 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft caRepository: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:55:34 +0000 Certificate not after: Mon 10 May 2027 16:00:34 +0000 Subordinate resources: IP: 103.131.148.0/23 IP: 2400:f520::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b1:1f:3e:ef:c3:78:d7:65:cf:c1:27:51:b0:e5:c3:f4:90:28:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:55:34 2026 GMT Not After : May 10 16:00:34 2027 GMT Subject: CN=F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:78:f6:b4:33:2e:fa:93:9d:aa:76:50:01:31: 53:25:f7:53:8f:42:76:4f:c6:9b:6d:ef:7c:67:8a: 4b:f2:43:c1:2d:23:e9:4c:a0:59:80:f6:4c:05:36: b2:df:df:51:ef:bd:69:94:e6:66:f1:a2:02:22:36: 8a:00:55:5d:af:ff:8c:89:19:0f:68:7e:e6:27:59: c2:6b:43:68:ef:86:b6:6f:b5:bd:4f:3a:83:f3:9c: 1c:15:5e:65:76:39:f2:7b:64:58:3e:d5:8d:09:b8: 73:3e:64:ee:f8:2f:bf:c1:b0:66:66:0d:92:2a:68: fc:a3:6f:80:7e:95:82:11:37:bf:7d:6c:91:f8:cd: fa:7b:4d:8f:48:49:43:50:8c:b1:ec:22:94:34:c3: af:2d:1d:bf:70:73:b1:14:ee:96:a0:62:8d:97:f1: 81:41:d2:b9:f2:3e:35:c7:da:d5:03:c1:64:9e:43: 46:aa:0a:24:fc:eb:c9:73:ee:e8:d2:46:2e:37:80: 4c:f5:cd:1c:4d:7b:a8:7e:3d:62:a9:d8:93:d9:45: d3:72:2a:81:a8:13:b1:08:dc:bc:d6:6c:34:cc:d1: ac:74:9e:2e:9c:d5:e8:bc:45:70:45:42:1a:f0:a7: 3b:89:1b:5b:40:ab:7c:31:32:5a:74:40:f7:de:25: d5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.148.0/23 IPv6: 2400:f520::/32 Signature Algorithm: sha256WithRSAEncryption 16:a3:42:bd:b8:dc:16:89:3a:0e:60:74:a5:e2:0a:8d:bf:57: bb:60:3b:97:07:74:f2:48:bb:ed:d8:60:ed:a3:1c:54:e9:58: 8b:3c:cc:f3:26:30:41:fa:ed:d1:f1:78:6d:fa:28:db:2d:4b: a9:99:3b:0b:6e:8e:5f:01:47:ef:22:39:c2:7f:fa:f8:15:b3: 68:45:37:7c:c9:b6:0d:35:7b:9c:00:49:8b:a3:70:1b:73:71: e0:63:f2:b4:ce:f3:92:d0:9c:87:e8:6c:1f:a4:12:dd:5f:83: 40:d7:89:a1:81:24:f6:e3:0f:c1:4f:56:62:f4:d2:c5:1a:27: 1b:33:5c:7e:ac:cf:5b:ed:92:47:92:5b:08:46:52:0e:15:9f: dc:c5:67:ea:2e:d4:29:81:51:77:07:5f:0d:36:a9:35:98:be: 3d:db:30:2a:f7:42:c3:f2:83:3c:97:a9:98:2c:13:c9:72:88: d2:55:64:6a:e5:61:24:b9:5e:df:7d:34:f5:9a:52:ec:cc:f2: 54:1f:b6:cf:ba:3c:91:77:56:75:26:3d:53:5b:88:65:d0:43: 00:55:2e:5e:70:7b:58:9b:15:9d:bf:7e:07:73:fa:c8:14:dd: 24:c2:e5:bb:f4:4a:26:f8:61:80:72:57:17:0e:eb:da:55:81: 83:22:98:f8 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIUHLEfPu/DeNdlz8EnUbDlw/SQKAcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTUzNFoX DTI3MDUxMDE2MDAzNFowMzExMC8GA1UEAxMoRjFGOTFEMDNDRjlDMDVENUQ1QjFB N0I1ODIzNDY3NzI3NUFEQTFBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIl49rQzLvqTnap2UAExUyX3U49Cdk/Gm23vfGeKS/JDwS0j6UygWYD2TAU2 st/fUe+9aZTmZvGiAiI2igBVXa//jIkZD2h+5idZwmtDaO+Gtm+1vU86g/OcHBVe ZXY58ntkWD7VjQm4cz5k7vgvv8GwZmYNkipo/KNvgH6VghE3v31skfjN+ntNj0hJ Q1CMsewilDTDry0dv3BzsRTulqBijZfxgUHSufI+Ncfa1QPBZJ5DRqoKJPzryXPu 6NJGLjeATPXNHE17qH49YqnYk9lF03IqgagTsQjcvNZsNMzRrHSeLpzV6LxFcEVC GvCnO4kbW0CrfDEyWnRA994l1WsCAwEAAaOCAnswggJ3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPH5HQPPnAXV1bGntYI0Z3J1raGoMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PTkVERUdSRUUv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT05F REVHUkVFLzAvRjFGOTFEMDNDRjlDMDVENUQ1QjFBN0I1ODIzNDY3NzI3NUFEQTFB OC5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAWeDlDANBAIAAjAHAwUAJAD1IDANBgkqhkiG 9w0BAQsFAAOCAQEAFqNCvbjcFok6DmB0peIKjb9Xu2A7lwd08ki77dhg7aMcVOlY izzM8yYwQfrt0fF4bfoo2y1LqZk7C26OXwFH7yI5wn/6+BWzaEU3fMm2DTV7nABJ i6NwG3Nx4GPytM7zktCch+hsH6QS3V+DQNeJoYEk9uMPwU9WYvTSxRonGzNcfqzP W+2SR5JbCEZSDhWf3MVn6i7UKYFRdwdfDTapNZi+PdswKvdCw/KDPJepmCwTyXKI 0lVkauVhJLle33009ZpS7MzyVB+2z7o8kXdWdSY9U1uIZdBDAFUuXnB7WJsVnb9+ B3P6yBTdJMLlu/RKJvhhgHJXFw7r2lWBgyKY+A== -----END CERTIFICATE-----Generated at Wed May 13 19:57:56 2026 by rpki-client