$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0/18D1FE81C173554ED00687499D810AFDA7832B87.cer File: 18D1FE81C173554ED00687499D810AFDA7832B87.cer (raw, json) Hash identifier: 5/UxH2iNGYxfRSdX0w+abPEzbtY9Nrfei3BB43ggQ+w= Subject key identifier: 18:D1:FE:81:C1:73:55:4E:D0:06:87:49:9D:81:0A:FD:A7:83:2B:87 Authority key identifier: C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 Certificate issuer: /CN=A91BDB290000/serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Certificate serial: 4326284B6CD4C40DB9A013E28B57BE74E3CD91FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Manifest: rsync://rpkica.twnic.tw/rpki/SKIPTECH/1/18D1FE81C173554ED00687499D810AFDA7832B87.mft caRepository: rsync://rpkica.twnic.tw/rpki/SKIPTECH/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:54 +0000 Certificate not after: Mon 10 May 2027 16:01:54 +0000 Subordinate resources: IP: 160.25.220.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:26:28:4b:6c:d4:c4:0d:b9:a0:13:e2:8b:57:be:74:e3:cd:91:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Validity Not Before: May 11 15:56:54 2026 GMT Not After : May 10 16:01:54 2027 GMT Subject: CN=18D1FE81C173554ED00687499D810AFDA7832B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b4:9f:dd:fb:51:ee:ec:c5:0d:a1:66:b4:31: 53:35:7e:b8:45:d1:d4:a7:c0:d5:67:75:3b:d8:c6: 48:86:13:ab:8c:a0:49:2e:1b:b6:aa:d3:82:77:81: f5:d4:ae:0c:f9:6b:3b:f0:65:89:e9:2f:4c:69:5c: 5e:64:f8:30:19:f2:4c:6a:41:9b:d3:21:9f:b3:3a: dd:4d:31:39:e1:60:0c:83:1f:5c:66:b5:4b:de:22: 80:7b:33:04:cb:ef:c7:0d:2f:9a:f2:33:72:25:9b: 95:01:c5:68:76:72:52:fd:1a:35:32:c0:80:e5:7d: 35:8b:14:e4:96:f8:db:47:79:21:67:3a:a7:7b:28: 34:01:fd:cb:ff:76:ec:db:22:5b:54:3d:af:10:30: a0:b3:35:18:5d:40:92:3f:96:28:41:c0:df:4e:da: cf:5a:7e:a7:6b:50:19:48:bb:f8:12:30:6f:bb:c2: 9d:53:4f:95:53:99:3e:90:92:a4:d1:f2:a4:0f:13: 49:d6:c2:6e:47:51:8a:0d:f9:58:1a:69:b3:6f:b1: f0:87:f0:47:a7:b3:8c:78:3d:2d:4b:09:16:ec:90: 0b:89:0c:9f:1a:fc:b4:ad:9f:ba:3f:5f:c8:00:fb: 87:d5:f5:53:65:1d:5b:25:fd:37:f9:96:de:81:b5: 80:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 18:D1:FE:81:C1:73:55:4E:D0:06:87:49:9D:81:0A:FD:A7:83:2B:87 X509v3 Authority Key Identifier: keyid:C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SKIPTECH/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SKIPTECH/1/18D1FE81C173554ED00687499D810AFDA7832B87.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.220.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:cf:25:ea:c4:83:37:e3:1d:1e:8b:3d:5e:94:6b:e6:d5:9a: b4:ee:bc:44:25:bf:6b:fc:21:20:4a:b3:07:b1:17:79:ac:62: 7c:f1:42:9d:0f:66:a2:88:0c:1e:3e:23:d7:06:eb:95:16:f0: fd:db:ca:9f:ac:50:f3:13:a1:65:9a:b8:0e:ee:cc:20:79:95: 98:50:fb:ea:d1:39:f2:f3:3f:44:12:c0:11:0f:19:52:61:fe: d2:f5:20:9a:b1:88:34:bd:31:02:dc:f0:20:77:76:d6:0a:b5: 2f:69:3c:8f:30:e7:47:66:ea:0d:e3:11:f7:8b:0a:11:80:4b: e4:52:e7:2b:4f:8c:81:07:1a:10:f9:8a:e0:5d:d8:49:48:79: dd:96:d6:05:ba:c2:52:54:cc:64:82:d4:e1:df:3e:58:1d:9b: fb:20:e7:f9:c4:b7:18:22:22:f4:9b:91:dd:78:29:5c:67:d9: 43:0c:b5:73:94:56:03:73:f3:28:df:7e:ee:89:24:27:b0:b7: ba:96:0c:e0:39:db:a0:a4:fe:52:ec:5b:b2:bc:77:6d:a0:94: b7:8e:d7:db:3b:12:f4:8c:54:ed:c3:68:c7:dd:08:38:48:fd: 76:2d:58:bb:9c:9d:32:6b:55:12:16:5e:0f:62:09:cd:54:22: 67:86:04:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUQyYoS2zUxA25oBPii1e+dOPNkf8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhDM0YyN0FCQkE0 MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzMB4XDTI2MDUxMTE1NTY1NFoX DTI3MDUxMDE2MDE1NFowMzExMC8GA1UEAxMoMThEMUZFODFDMTczNTU0RUQwMDY4 NzQ5OUQ4MTBBRkRBNzgzMkI4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKO0n937Ue7sxQ2hZrQxUzV+uEXR1KfA1Wd1O9jGSIYTq4ygSS4btqrTgneB 9dSuDPlrO/BliekvTGlcXmT4MBnyTGpBm9Mhn7M63U0xOeFgDIMfXGa1S94igHsz BMvvxw0vmvIzciWblQHFaHZyUv0aNTLAgOV9NYsU5Jb420d5IWc6p3soNAH9y/92 7NsiW1Q9rxAwoLM1GF1Akj+WKEHA307az1p+p2tQGUi7+BIwb7vCnVNPlVOZPpCS pNHypA8TSdbCbkdRig35WBpps2+x8IfwR6ezjHg9LUsJFuyQC4kMnxr8tK2fuj9f yAD7h9X1U2UdWyX9N/mW3oG1gNkCAwEAAaOCAmowggJmMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBjR/oHBc1VO0AaHSZ2BCv2ngyuHMB8GA1UdIwQYMBaAFMPy erukDQwUbmWZ4xmy+LeWVqbzMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMC9DM0Yy N0FCQkE0MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzLmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi93X0o2dTZR TkRCUnVaWm5qR2JMNHQ1Wldwdk0uY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TS0lQVEVDSC8x LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TS0lQ VEVDSC8xLzE4RDFGRTgxQzE3MzU1NEVEMDA2ODc0OTlEODEwQUZEQTc4MzJCODcu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAGgGdwwDQYJKoZIhvcNAQELBQADggEBAGvPJerE gzfjHR6LPV6Ua+bVmrTuvEQlv2v8ISBKswexF3msYnzxQp0PZqKIDB4+I9cG65UW 8P3byp+sUPMToWWauA7uzCB5lZhQ++rROfLzP0QSwBEPGVJh/tL1IJqxiDS9MQLc 8CB3dtYKtS9pPI8w50dm6g3jEfeLChGAS+RS5ytPjIEHGhD5iuBd2ElIed2W1gW6 wlJUzGSC1OHfPlgdm/sg5/nEtxgiIvSbkd14KVxn2UMMtXOUVgNz8yjffu6JJCew t7qWDOA526Ck/lLsW7K8d22glLeO19s7EvSMVO3DaMfdCDhI/XYtWLucnTJrVRIW Xg9iCc1UImeGBJA= -----END CERTIFICATE-----Generated at Tue May 12 22:16:46 2026 by rpki-client