$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0/8E0565D2526D4F41D07E73B0B5CA69AF65FF6B7D.cer File: 8E0565D2526D4F41D07E73B0B5CA69AF65FF6B7D.cer (raw, json) Hash identifier: eSxxtTplWiGgbu39LV0DSFTOrOUNl6HPAfnh+0aVB4A= Subject key identifier: 8E:05:65:D2:52:6D:4F:41:D0:7E:73:B0:B5:CA:69:AF:65:FF:6B:7D Authority key identifier: C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 Certificate issuer: /CN=A91BDB290000/serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Certificate serial: 4F5D8368ED9108BD3F33E7E94BC1BBC47C4E077F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Manifest: rsync://rpkica.twnic.tw/rpki/HINET/1/8E0565D2526D4F41D07E73B0B5CA69AF65FF6B7D.mft caRepository: rsync://rpkica.twnic.tw/rpki/HINET/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:33 +0000 Certificate not after: Mon 10 May 2027 15:51:33 +0000 Subordinate resources: IP: 168.95.0.0/16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5d:83:68:ed:91:08:bd:3f:33:e7:e9:4b:c1:bb:c4:7c:4e:07:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Validity Not Before: May 11 15:46:33 2026 GMT Not After : May 10 15:51:33 2027 GMT Subject: CN=8E0565D2526D4F41D07E73B0B5CA69AF65FF6B7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:5c:90:f8:78:39:c2:e8:2c:32:ee:ee:65: 94:f2:9c:4d:7e:1c:fd:3f:7f:bb:60:a9:30:6c:37: 02:c3:1e:c8:f7:b2:65:21:d1:45:21:a6:ab:b1:b6: 04:2f:da:54:c2:58:6f:04:39:f7:c2:50:63:85:3b: 95:0e:16:8d:fe:fc:14:b4:e8:69:4e:5c:87:af:61: 33:b6:6b:1d:08:ce:9a:db:ed:ce:00:6e:eb:35:a4: 86:ea:9d:80:da:be:25:b9:27:a5:5c:25:e7:ce:42: ab:a4:bc:9d:b8:fa:74:8c:9f:f0:1e:cb:91:df:6d: 17:c6:6c:28:e0:31:6c:15:89:39:22:86:9f:56:1d: 1b:57:79:93:13:12:b5:8b:04:58:95:16:06:04:13: 66:5a:6a:e5:b6:8c:1a:bb:b3:2e:9a:a7:04:fe:1e: 2f:7d:cb:de:82:dd:de:a1:c4:7d:1d:f0:b6:bd:b3: 02:e0:51:35:d5:52:43:e8:ff:f7:cb:18:e7:54:11: fc:7b:3a:f2:26:c0:09:40:7c:d3:5a:f2:d3:26:63: b3:45:e6:e9:ff:f6:3c:3c:ab:f5:9c:77:6f:7d:8c: 99:69:51:45:db:48:39:b3:e7:eb:56:38:57:54:8c: 89:74:a2:11:4b:e3:9b:4e:c5:85:57:f7:9e:3f:4a: 85:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8E:05:65:D2:52:6D:4F:41:D0:7E:73:B0:B5:CA:69:AF:65:FF:6B:7D X509v3 Authority Key Identifier: keyid:C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/HINET/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/HINET/1/8E0565D2526D4F41D07E73B0B5CA69AF65FF6B7D.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3f:c5:c4:c0:02:01:a1:98:94:ca:30:69:c8:7a:ea:77:2d:e7: e6:70:8d:e4:90:67:cb:b0:c8:e5:3e:af:57:24:be:65:30:f6: 87:ab:d3:1e:04:63:bc:3d:c0:04:1d:9e:36:46:9a:eb:bd:df: 3c:a2:ca:74:48:18:01:d4:42:b7:70:4d:c6:82:1c:33:65:df: 87:1f:67:4d:f6:3c:65:72:56:0e:65:e3:ae:9d:d5:43:b2:2c: c9:be:d8:24:58:3d:1d:83:13:29:58:78:4a:a7:e9:4b:cd:f2: ca:af:9f:28:b9:df:d1:b7:9d:5e:69:b7:01:5a:63:d7:06:0e: bf:0c:89:65:2f:ef:30:1a:b6:b0:a2:e0:c4:07:83:23:d2:3a: 11:10:52:97:7a:b5:88:a9:91:b9:8d:20:36:f3:55:1b:03:43: 58:8a:8c:93:a6:10:d8:38:36:36:67:0d:e8:fa:8f:38:bf:7b: 1a:e6:d9:3c:66:a6:2a:e9:e6:cb:c7:88:24:9e:c6:4c:35:2d: 62:95:61:6a:90:0f:0e:86:4b:b0:fc:40:54:a4:e8:b6:32:95: ac:21:41:32:6f:8e:ce:1f:32:1c:ea:d9:68:3d:45:d3:cb:d0: 4e:d1:7d:43:e6:5c:b4:73:3a:a4:28:47:f9:68:17:03:21:8e: 8c:39:6b:21 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUT12DaO2RCL0/M+fpS8G7xHxOB38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhDM0YyN0FCQkE0 MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzMB4XDTI2MDUxMTE1NDYzM1oX DTI3MDUxMDE1NTEzM1owMzExMC8GA1UEAxMoOEUwNTY1RDI1MjZENEY0MUQwN0U3 M0IwQjVDQTY5QUY2NUZGNkI3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALMEXJD4eDnC6Cwy7u5llPKcTX4c/T9/u2CpMGw3AsMeyPeyZSHRRSGmq7G2 BC/aVMJYbwQ598JQY4U7lQ4Wjf78FLToaU5ch69hM7ZrHQjOmtvtzgBu6zWkhuqd gNq+JbknpVwl585Cq6S8nbj6dIyf8B7Lkd9tF8ZsKOAxbBWJOSKGn1YdG1d5kxMS tYsEWJUWBgQTZlpq5baMGruzLpqnBP4eL33L3oLd3qHEfR3wtr2zAuBRNdVSQ+j/ 98sY51QR/Hs68ibACUB801ry0yZjs0Xm6f/2PDyr9Zx3b32MmWlRRdtIObPn61Y4 V1SMiXSiEUvjm07FhVf3nj9KhS8CAwEAAaOCAmMwggJfMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI4FZdJSbU9B0H5zsLXKaa9l/2t9MB8GA1UdIwQYMBaAFMPy erukDQwUbmWZ4xmy+LeWVqbzMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMC9DM0Yy N0FCQkE0MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzLmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi93X0o2dTZR TkRCUnVaWm5qR2JMNHQ1Wldwdk0uY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8xLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8x LzhFMDU2NUQyNTI2RDRGNDFEMDdFNzNCMEI1Q0E2OUFGNjVGRjZCN0QubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCoXzANBgkqhkiG9w0BAQsFAAOCAQEAP8XEwAIBoZiUyjBp yHrqdy3n5nCN5JBny7DI5T6vVyS+ZTD2h6vTHgRjvD3ABB2eNkaa673fPKLKdEgY AdRCt3BNxoIcM2Xfhx9nTfY8ZXJWDmXjrp3VQ7Isyb7YJFg9HYMTKVh4SqfpS83y yq+fKLnf0bedXmm3AVpj1wYOvwyJZS/vMBq2sKLgxAeDI9I6ERBSl3q1iKmRuY0g NvNVGwNDWIqMk6YQ2Dg2NmcN6PqPOL97GubZPGamKunmy8eIJJ7GTDUtYpVhapAP DoZLsPxAVKTotjKVrCFBMm+Ozh8yHOrZaD1F08vQTtF9Q+ZctHM6pChH+WgXAyGO jDlrIQ== -----END CERTIFICATE-----Generated at Tue May 12 22:16:17 2026 by rpki-client