$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Az4pLp_43JLzZMTyh5zYxyHUick.cer File: Az4pLp_43JLzZMTyh5zYxyHUick.cer (raw, json) Hash identifier: d4j9ETb3a/oQArIjm0ZrTaD15+6KnBgiOzhnmRRQcdc= Subject key identifier: 03:3E:29:2E:9F:F8:DC:92:F3:64:C4:F2:87:9C:D8:C7:21:D4:89:C9 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 426B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/DLER/Az4pLp_43JLzZMTyh5zYxyHUick.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/DLER/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 27 Mar 2026 02:28:06 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: IP: 163.223.248.0/23 IP: 2401:fae0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 02:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17003 (0x426b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Mar 27 02:28:06 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=033E292E9FF8DC92F364C4F2879CD8C721D489C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:59:44:8d:5d:56:7d:ac:47:64:53:b6:e6:1e: a4:21:97:63:31:d3:e8:6c:4d:23:0d:18:e3:c6:fe: 2a:28:33:a4:a1:5a:97:f6:96:43:fb:fd:49:af:29: b2:40:09:7a:eb:b9:39:69:c4:5e:71:87:47:a6:ec: c3:9b:7f:3a:e6:f2:78:66:68:2b:c6:ea:0a:b4:1f: 50:f8:7f:7c:8c:e6:a2:d8:3b:23:03:3a:5b:27:69: 32:1b:c1:f8:be:44:51:e6:1e:b9:fe:5e:82:89:77: 25:90:e0:99:46:46:cb:ba:b4:fb:79:65:88:7f:9a: 21:2f:e9:cf:b7:ae:33:de:65:4b:ac:75:74:64:86: fe:ba:0e:8d:f2:58:bd:34:0b:05:7b:db:89:0c:c2: bd:17:a0:b8:58:4a:12:56:49:ed:94:a8:a1:d2:aa: f7:98:d4:d5:e4:ef:6a:63:11:fe:ca:05:a7:83:74: a5:2e:3c:ec:a2:f0:6f:15:e1:2b:7e:26:38:a0:cc: 75:16:1c:4b:5d:1c:b3:99:a7:de:e9:e1:7b:5c:35: a7:a0:a2:e7:f3:19:91:1f:1a:1d:50:fa:47:a7:36: 6a:ec:33:98:2a:cb:64:00:8f:61:b2:34:a6:f3:61: b6:7c:d3:8a:ec:1f:4a:f8:ea:c6:c3:6e:43:83:ea: 8c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3E:29:2E:9F:F8:DC:92:F3:64:C4:F2:87:9C:D8:C7:21:D4:89:C9 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DLER/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DLER/Az4pLp_43JLzZMTyh5zYxyHUick.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.223.248.0/23 IPv6: 2401:fae0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:7d:e8:39:8a:b6:87:9b:ce:36:9b:09:14:43:52:8b:3b:3c: 65:ad:dd:0d:51:f8:81:eb:a3:51:89:bd:c8:08:04:e6:38:82: 04:7b:31:86:aa:df:2e:d0:9e:2f:61:68:d9:bc:81:2b:dc:03: 40:3f:10:8c:77:54:ef:c4:68:7c:2f:c4:5e:9c:c7:5e:e1:1b: 9a:89:e0:dc:09:d3:c2:7d:73:6e:4b:06:4b:60:8e:4d:db:16: 7f:2e:3c:45:1a:5f:37:03:9b:16:83:8d:f4:3e:75:2d:d5:cd: c5:19:dd:23:f6:2c:6b:e8:5e:57:d4:84:69:08:db:09:89:05: 59:a7:34:5c:d3:fe:d6:b1:35:b7:19:b1:35:f3:e1:d6:c7:0b: d7:41:2a:fc:eb:90:3c:86:e9:65:01:51:45:67:1f:04:3b:d4: 9c:d2:4a:d6:a1:a8:a9:40:47:8b:6c:b4:9f:d7:f7:10:ab:00: 94:1f:b2:85:24:01:c5:16:7e:91:f3:92:f3:21:cf:ec:eb:12: 38:0d:75:d1:39:d6:50:2f:4a:14:41:42:42:d0:ee:74:6f:dd: c0:64:20:5e:26:46:e5:97:22:9e:b3:1c:9a:52:c0:cd:7f:65: 05:b2:7b:79:4a:83:99:9f:ae:3e:8b:63:e6:17:45:66:2c:8e: 88:ad:f3:04 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICQmswDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI2MDMyNzAyMjgwNloXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoMDMzRTI5MkU5RkY4REM5MkYzNjRDNEYyODc5Q0Q4QzcyMUQ0ODlD OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKNZRI1dVn2sR2RTtuYe pCGXYzHT6GxNIw0Y48b+KigzpKFal/aWQ/v9Sa8pskAJeuu5OWnEXnGHR6bsw5t/ OubyeGZoK8bqCrQfUPh/fIzmotg7IwM6WydpMhvB+L5EUeYeuf5egol3JZDgmUZG y7q0+3lliH+aIS/pz7euM95lS6x1dGSG/roOjfJYvTQLBXvbiQzCvReguFhKElZJ 7ZSoodKq95jU1eTvamMR/soFp4N0pS487KLwbxXhK34mOKDMdRYcS10cs5mn3unh e1w1p6Ci5/MZkR8aHVD6R6c2auwzmCrLZACPYbI0pvNhtnzTiuwfSvjqxsNuQ4Pq jN8CAwEAAaOCAlswggJXMB0GA1UdDgQWBBQDPikun/jckvNkxPKHnNjHIdSJyTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdIGCCsGAQUFBwELBIHFMIHCMDYGCCsGAQUFBzAF hipyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRExFUi8wVQYI KwYBBQUHMAqGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9E TEVSL0F6NHBMcF80M0pMelpNVHloNXpZeHlIVWljay5tZnQwMQYIKwYBBQUHMA2G JWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAGj3/gwDQQCAAIwBwMFACQB+uAwDQYJKoZIhvcN AQELBQADggEBAGt96DmKtoebzjabCRRDUos7PGWt3Q1R+IHro1GJvcgIBOY4ggR7 MYaq3y7Qni9haNm8gSvcA0A/EIx3VO/EaHwvxF6cx17hG5qJ4NwJ08J9c25LBktg jk3bFn8uPEUaXzcDmxaDjfQ+dS3VzcUZ3SP2LGvoXlfUhGkI2wmJBVmnNFzT/tax NbcZsTXz4dbHC9dBKvzrkDyG6WUBUUVnHwQ71JzSStahqKlAR4tstJ/X9xCrAJQf soUkAcUWfpHzkvMhz+zrEjgNddE51lAvShRBQkLQ7nRv3cBkIF4mRuWXIp6zHJpS wM1/ZQWye3lKg5mfrj6LY+YXRWYsjoit8wQ= -----END CERTIFICATE-----Generated at Fri Mar 27 22:43:02 2026 by rpki-client