$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.cer File: 8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.cer (raw, json) Hash identifier: kNgLJp1xbjbHNL2Q3euDBHFde5bEyWaD53K0ttnOwuI= Subject key identifier: 82:42:A3:9E:05:77:E8:E8:2B:F8:63:D0:12:4F:F5:AF:2F:53:C9:C8 Authority key identifier: C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 Certificate issuer: /CN=A91BDB290000/serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Certificate serial: 4A30CB5149B8A689A7DFAF00BC89800B80E4384A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Manifest: rsync://rpkica.twnic.tw/rpki/CATHDD/1/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.mft caRepository: rsync://rpkica.twnic.tw/rpki/CATHDD/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:33 +0000 Certificate not after: Mon 10 May 2027 15:48:33 +0000 Subordinate resources: IP: 160.191.8.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:30:cb:51:49:b8:a6:89:a7:df:af:00:bc:89:80:0b:80:e4:38:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Validity Not Before: May 11 15:43:33 2026 GMT Not After : May 10 15:48:33 2027 GMT Subject: CN=8242A39E0577E8E82BF863D0124FF5AF2F53C9C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:86:52:0b:01:a9:2c:7c:cb:75:65:57:f1: 93:c7:2e:6e:6c:2f:c3:66:f3:9e:bb:9b:cd:db:68: 19:d2:2b:21:ef:a0:64:67:c4:01:20:99:d0:99:52: c8:26:32:aa:63:f4:21:9c:b0:19:e5:4f:d0:91:29: 74:c6:66:cb:e4:d9:62:7a:d7:33:03:2e:c1:fa:bb: 53:fd:77:7d:3d:d1:ba:c1:3e:f8:d7:e0:9d:4f:f5: 2b:05:c9:a3:fa:a2:f9:2a:1c:6f:23:39:51:a0:4e: d9:ed:c7:8b:d0:ae:ac:6c:af:83:f3:e8:6a:62:c2: 6b:a8:7f:26:1d:5e:09:32:48:93:0e:2a:66:07:a0: 7a:e4:70:32:40:be:3a:5a:37:ba:7c:bf:a5:45:69: e7:18:99:d7:ee:88:3a:29:84:9a:2c:3c:cf:df:5f: 63:ad:38:58:83:22:2e:9a:ee:f5:79:c0:eb:c3:b5: f7:98:ed:8c:29:52:91:23:46:d5:4a:81:bd:63:06: a8:ea:29:5c:b3:63:7c:56:7a:44:09:71:d7:8b:44: 13:5c:17:42:53:b7:43:c2:04:5e:7d:d2:42:09:c4: ca:9d:31:a9:69:08:7c:1c:fd:a4:d4:89:c2:d3:b7: b5:d4:00:56:6c:70:3d:9b:ad:db:d7:ea:60:6d:61: 38:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 82:42:A3:9E:05:77:E8:E8:2B:F8:63:D0:12:4F:F5:AF:2F:53:C9:C8 X509v3 Authority Key Identifier: keyid:C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/1/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.8.0/23 Signature Algorithm: sha256WithRSAEncryption 05:45:d2:94:de:d2:89:32:10:c6:33:e2:64:be:d2:86:b3:fd: a5:61:19:b1:a4:9d:20:1b:46:cd:6f:38:4d:f8:79:79:b1:51: 36:ef:db:c2:da:38:b4:a4:66:87:d4:95:36:10:f6:8d:c6:47: 4c:b8:90:60:79:a4:b5:a3:fc:a8:7d:4c:d7:8e:04:17:62:6c: 4a:ae:ea:0e:e3:e0:ec:bd:0b:00:7f:4e:98:20:76:55:f4:65: 61:b4:91:cb:dc:9e:71:91:4d:54:b0:ad:86:ee:b8:d5:94:62: f2:eb:fe:6a:15:60:28:93:ec:f7:fb:5f:b7:63:5e:2b:e1:5a: 42:ba:65:3d:a1:b3:f1:30:03:24:e7:58:c2:3a:2e:b3:8b:c1: f2:c9:e9:17:69:66:c8:ab:9a:18:bc:ce:ab:3a:b0:ae:0d:ea: f2:b0:53:00:43:06:ed:ce:14:3b:17:99:1e:01:58:7e:81:11: b2:02:a8:f8:5a:84:0e:1c:c2:71:50:1d:ac:0f:53:a1:f1:d9: 02:5a:0f:d7:21:ed:31:19:f5:f9:c5:7f:82:44:22:81:a6:1a: 2a:45:f0:1e:1f:31:d2:75:fe:01:d2:d8:5a:27:45:c6:3a:b0: db:ca:7a:79:17:1d:ef:29:3a:99:57:a4:19:a2:a8:86:a3:0f: 54:70:4c:b5 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIUSjDLUUm4pomn368AvImAC4DkOEowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhDM0YyN0FCQkE0 MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzMB4XDTI2MDUxMTE1NDMzM1oX DTI3MDUxMDE1NDgzM1owMzExMC8GA1UEAxMoODI0MkEzOUUwNTc3RThFODJCRjg2 M0QwMTI0RkY1QUYyRjUzQzlDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEJhlILAaksfMt1ZVfxk8cubmwvw2bznrubzdtoGdIrIe+gZGfEASCZ0JlS yCYyqmP0IZywGeVP0JEpdMZmy+TZYnrXMwMuwfq7U/13fT3RusE++NfgnU/1KwXJ o/qi+SocbyM5UaBO2e3Hi9CurGyvg/PoamLCa6h/Jh1eCTJIkw4qZgegeuRwMkC+ Olo3uny/pUVp5xiZ1+6IOimEmiw8z99fY604WIMiLpru9XnA68O195jtjClSkSNG 1UqBvWMGqOopXLNjfFZ6RAlx14tEE1wXQlO3Q8IEXn3SQgnEyp0xqWkIfBz9pNSJ wtO3tdQAVmxwPZut29fqYG1hOKsCAwEAAaOCAmYwggJiMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIJCo54Fd+joK/hj0BJP9a8vU8nIMB8GA1UdIwQYMBaAFMPy erukDQwUbmWZ4xmy+LeWVqbzMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMC9DM0Yy N0FCQkE0MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzLmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi93X0o2dTZR TkRCUnVaWm5qR2JMNHQ1Wldwdk0uY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DQVRIREQvMS8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERE LzEvODI0MkEzOUUwNTc3RThFODJCRjg2M0QwMTI0RkY1QUYyRjUzQzlDOC5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAaC/CDANBgkqhkiG9w0BAQsFAAOCAQEABUXSlN7SiTIQ xjPiZL7ShrP9pWEZsaSdIBtGzW84Tfh5ebFRNu/bwto4tKRmh9SVNhD2jcZHTLiQ YHmktaP8qH1M144EF2JsSq7qDuPg7L0LAH9OmCB2VfRlYbSRy9yecZFNVLCthu64 1ZRi8uv+ahVgKJPs9/tft2NeK+FaQrplPaGz8TADJOdYwjous4vB8snpF2lmyKua GLzOqzqwrg3q8rBTAEMG7c4UOxeZHgFYfoERsgKo+FqEDhzCcVAdrA9TofHZAloP 1yHtMRn1+cV/gkQigaYaKkXwHh8x0nX+AdLYWidFxjqw28p6eRcd7yk6mVekGaKo hqMPVHBMtQ== -----END CERTIFICATE-----Generated at Tue May 12 22:16:04 2026 by rpki-client