$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/iaQWkeV56utiReCvcK9sL-LsHRk.cer File: iaQWkeV56utiReCvcK9sL-LsHRk.cer (raw, json) Hash identifier: hiA5xoaZGc8biLIGpf0/ER6hQbKjSXB0F7N6p+ii+iE= Subject key identifier: 89:A4:16:91:E5:79:EA:EB:62:45:E0:AF:70:AF:6C:2F:E2:EC:1D:19 Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Certificate serial: 426D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/iaQWkeV56utiReCvcK9sL-LsHRk.mft caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/ Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml Certificate not before: Fri 27 Mar 2026 02:29:09 +0000 Certificate not after: Sat 22 Aug 2026 08:14:28 +0000 Subordinate resources: AS: 63901 IP: 103.28.18.0/23 IP: 2400:bb20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 22:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17005 (0x426d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E Validity Not Before: Mar 27 02:29:09 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=89A41691E579EAEB6245E0AF70AF6C2FE2EC1D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e9:33:63:12:90:83:48:c8:8b:7f:e8:30:f5: 53:2b:a4:cb:9c:8d:b0:e7:29:02:f4:a5:db:9c:93: bb:39:91:22:86:06:c8:3a:2c:05:b2:e3:71:5a:29: ac:46:a3:5b:8d:04:c0:88:93:d4:28:0f:3c:16:99: bf:c8:c4:fb:d8:ec:d9:4d:4a:85:c5:cd:b4:b8:b5: 05:19:fd:1f:92:08:79:11:dc:2c:3a:6a:84:70:85: 8a:46:83:26:75:89:1d:fb:04:f3:17:9c:c0:94:d2: c0:db:76:bc:8d:e4:42:65:0e:22:6b:ee:fb:53:24: fb:7c:10:11:2e:a6:b7:96:bc:ba:cf:0b:39:cd:3e: 15:22:ae:64:61:45:02:46:05:18:4c:7b:8c:79:2c: 98:1a:7e:9f:34:6a:27:73:d1:fe:97:72:32:f4:a7: c6:ec:db:d9:ca:3a:65:ee:76:3f:53:6f:19:5e:84: bc:fd:d4:43:73:63:3a:04:79:61:24:42:dc:a4:07: 95:f4:e4:a5:c8:ef:0f:98:ff:ca:70:ba:bf:ea:93: 79:aa:4e:e4:63:35:ca:93:65:3e:69:2e:28:30:8d: b1:54:cd:15:5a:d9:d8:33:e1:a1:b5:f0:5e:02:2c: 25:95:83:ce:d8:67:87:5e:01:2f:54:25:5f:db:46: 69:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A4:16:91:E5:79:EA:EB:62:45:E0:AF:70:AF:6C:2F:E2:EC:1D:19 X509v3 Authority Key Identifier: keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/iaQWkeV56utiReCvcK9sL-LsHRk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63901 sbgp-ipAddrBlock: critical IPv4: 103.28.18.0/23 IPv6: 2400:bb20::/32 Signature Algorithm: sha256WithRSAEncryption 0e:80:17:79:c0:d7:80:b2:a9:57:62:be:e5:3c:9c:43:79:36: 17:0d:38:35:b1:1a:03:43:90:54:0a:2c:45:a1:36:c6:c7:be: c7:9b:a1:e9:71:82:7a:36:b5:dc:79:bf:25:be:73:7c:89:a3: e9:7b:bf:a8:c6:2d:97:4b:2a:c1:4c:02:4d:4e:a2:ce:2c:17: 3c:87:38:4f:20:0d:08:b6:9a:26:3b:c4:d8:ca:90:6f:d1:dd: 0c:02:93:17:31:0b:5b:b1:a1:e5:f8:d6:0d:d5:3a:ec:04:fb: 20:8b:0c:b7:f2:c1:74:85:63:53:dd:d4:10:f7:a0:95:4f:ce: 4a:8f:6c:8f:e2:7d:d0:e1:60:ab:fc:f1:15:24:33:ff:f1:66: 35:35:ba:e7:fb:4b:ba:0a:97:32:81:c4:26:4c:dd:02:de:a1: 96:4e:ae:26:d9:2c:e8:0f:41:66:a4:24:87:24:1d:b1:f7:1b: a2:e4:b7:f6:29:b7:e2:9d:f6:69:51:e8:93:83:6b:96:9a:4b: 76:cc:eb:d6:66:10:a5:fa:b1:4a:b9:10:5d:5d:18:0e:73:e8: a6:74:1b:10:87:65:b0:12:32:8a:8b:f0:2f:74:90:34:dc:e4: 63:40:3f:3c:dc:fd:b6:0e:cd:0f:67:3a:63:09:8d:1f:1a:13: 9b:b8:41:41 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICQm0wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy MUM5NkFCMzQ1NDdFMB4XDTI2MDMyNzAyMjkwOVoXDTI2MDgyMjA4MTQyOFowMzEx MC8GA1UEAxMoODlBNDE2OTFFNTc5RUFFQjYyNDVFMEFGNzBBRjZDMkZFMkVDMUQx OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMPpM2MSkINIyIt/6DD1 Uyuky5yNsOcpAvSl25yTuzmRIoYGyDosBbLjcVoprEajW40EwIiT1CgPPBaZv8jE +9js2U1KhcXNtLi1BRn9H5IIeRHcLDpqhHCFikaDJnWJHfsE8xecwJTSwNt2vI3k QmUOImvu+1Mk+3wQES6mt5a8us8LOc0+FSKuZGFFAkYFGEx7jHksmBp+nzRqJ3PR /pdyMvSnxuzb2co6Ze52P1NvGV6EvP3UQ3NjOgR5YSRC3KQHlfTkpcjvD5j/ynC6 v+qTeapO5GM1ypNlPmkuKDCNsVTNFVrZ2DPhobXwXgIsJZWDzthnh14BL1QlX9tG aZsCAwEAAaOCAnswggJ3MB0GA1UdDgQWBBSJpBaR5Xnq62JF4K9wr2wv4uwdGTAf BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAQYwgdYGCCsGAQUFBwELBIHJMIHGMDgGCCsGAQUFBzAF hixyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDT1JFLzBX BggrBgEFBQcwCoZLcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0NZQ09SRS9pYVFXa2VWNTZ1dGlSZUN2Y0s5c0wtTHNIUmsubWZ0MDEGCCsGAQUF BzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBoGCCsG AQUFBwEIAQH/BAswCaAHMAUCAwD5nTAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEw BgMEAWccEjANBAIAAjAHAwUAJAC7IDANBgkqhkiG9w0BAQsFAAOCAQEADoAXecDX gLKpV2K+5TycQ3k2Fw04NbEaA0OQVAosRaE2xse+x5uh6XGCeja13Hm/Jb5zfImj 6Xu/qMYtl0sqwUwCTU6iziwXPIc4TyANCLaaJjvE2MqQb9HdDAKTFzELW7Gh5fjW DdU67AT7IIsMt/LBdIVjU93UEPeglU/OSo9sj+J90OFgq/zxFSQz//FmNTW65/tL ugqXMoHEJkzdAt6hlk6uJtks6A9BZqQkhyQdsfcbouS39im34p32aVHok4NrlppL dszr1mYQpfqxSrkQXV0YDnPopnQbEIdlsBIyiovwL3SQNNzkY0A/PNz9tg7ND2c6 YwmNHxoTm7hBQQ== -----END CERTIFICATE-----Generated at Wed Apr 15 19:07:30 2026 by rpki-client