$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/0/DEE3AB4AD27AA4EED09C8E4740E900F2B15A8F13.cer File: DEE3AB4AD27AA4EED09C8E4740E900F2B15A8F13.cer (raw, json) Hash identifier: h8vJBItE2zWbWPbq04skJMhSHqoTgbZj/TtSeChd3tA= Subject key identifier: DE:E3:AB:4A:D2:7A:A4:EE:D0:9C:8E:47:40:E9:00:F2:B1:5A:8F:13 Authority key identifier: C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 Certificate issuer: /CN=A91BDB290000/serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Certificate serial: 4A48FA83B1771601466823F8F5C1F11F88EE2DEC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Manifest: rsync://rpkica.twnic.tw/rpki/GMICLOUD/1/DEE3AB4AD27AA4EED09C8E4740E900F2B15A8F13.mft caRepository: rsync://rpkica.twnic.tw/rpki/GMICLOUD/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:04 +0000 Certificate not after: Mon 10 May 2027 15:51:04 +0000 Subordinate resources: IP: 138.252.192.0/24 IP: 192.160.29.0/24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:48:fa:83:b1:77:16:01:46:68:23:f8:f5:c1:f1:1f:88:ee:2d:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=C3F27ABBA40D0C146E6599E319B2F8B79656A6F3 Validity Not Before: May 11 15:46:04 2026 GMT Not After : May 10 15:51:04 2027 GMT Subject: CN=DEE3AB4AD27AA4EED09C8E4740E900F2B15A8F13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cf:40:6f:c3:10:02:fb:47:37:a5:f5:f4:aa: ba:6b:36:d2:9b:80:24:6d:8b:4b:09:73:f9:1b:f6: 3a:d6:a9:6d:c7:8c:0b:04:74:b9:64:2f:7d:76:73: c2:c4:99:c7:88:9b:ad:ad:61:4a:54:b9:47:74:9d: 1b:01:d3:07:46:37:e4:7e:44:1f:9e:ec:87:7d:cc: ed:78:2c:db:74:cb:0e:25:48:cd:dd:e2:ba:88:18: e8:08:41:a8:42:95:ae:73:bb:6c:8e:d7:d1:4b:7c: 51:84:53:0c:59:43:aa:d4:d6:c3:76:3f:43:b9:fe: 77:84:6f:53:4f:f1:a4:f5:85:ae:d8:ef:e3:fe:58: 87:e1:4f:e4:25:4b:4e:51:da:9d:20:71:a0:d5:7c: 65:25:cb:5b:d6:db:ee:ca:d9:cb:65:7d:6a:40:1f: 56:cc:d3:f7:f7:a8:99:19:a9:d5:ff:a0:ec:ed:09: bb:52:45:83:a6:78:1a:26:4e:38:0a:dd:c8:5a:63: 42:1a:b4:f9:9b:56:f7:09:83:0e:84:a1:e5:e9:53: d8:f0:bb:0f:3c:64:22:3a:22:53:f1:f9:19:94:7e: b0:2f:cf:49:31:f7:59:38:86:2b:dc:54:57:83:1e: 2f:3d:02:52:ec:dd:0a:21:d6:f6:4e:24:bf:82:61: 79:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DE:E3:AB:4A:D2:7A:A4:EE:D0:9C:8E:47:40:E9:00:F2:B1:5A:8F:13 X509v3 Authority Key Identifier: keyid:C3:F2:7A:BB:A4:0D:0C:14:6E:65:99:E3:19:B2:F8:B7:96:56:A6:F3 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/GMICLOUD/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/GMICLOUD/1/DEE3AB4AD27AA4EED09C8E4740E900F2B15A8F13.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.192.0/24 192.160.29.0/24 Signature Algorithm: sha256WithRSAEncryption 65:c4:96:ae:42:dc:31:70:ad:5f:71:75:92:b6:0b:06:ed:49: e2:69:d7:2d:6b:6f:a5:6d:e4:c4:3d:20:d9:88:9d:bc:5a:87: 57:b3:23:b8:31:03:88:1f:dc:ac:b0:77:68:6a:0b:cd:97:46: 19:8f:f7:6f:5b:e2:bd:24:87:61:a0:7e:c3:18:d4:1c:9d:ab: 13:a5:32:a2:1d:12:96:88:db:15:1e:3e:8b:ba:c5:ba:59:24: c6:00:1e:59:a5:9c:a1:bb:5d:9c:6c:82:4b:97:f0:b0:19:4a: b3:d1:1c:db:9c:00:64:0e:c7:49:fb:fa:58:06:ce:de:fc:99: 1e:1a:d7:ce:3b:d0:8e:0a:e2:25:1d:28:4b:cf:e0:31:79:9c: 41:57:27:2e:93:20:2b:40:ec:2b:53:a2:e9:f2:d7:66:cc:97: 2c:28:d6:47:99:52:cd:8b:80:ae:f2:e9:26:11:c3:b2:75:5a: b2:93:52:c1:08:0b:05:59:0a:ef:6c:ab:d4:31:cb:70:99:60: c9:66:4a:99:41:22:51:d8:5e:89:bb:f5:79:76:e5:0b:f6:0b: ae:a4:bf:ee:c0:32:5f:9b:0c:75:2e:9a:56:5f:dd:56:3b:18: 27:00:24:21:3f:25:0f:f4:26:09:49:8c:db:d2:c1:26:f0:ad: 45:e2:2a:63 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUSkj6g7F3FgFGaCP49cHxH4juLewwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhDM0YyN0FCQkE0 MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzMB4XDTI2MDUxMTE1NDYwNFoX DTI3MDUxMDE1NTEwNFowMzExMC8GA1UEAxMoREVFM0FCNEFEMjdBQTRFRUQwOUM4 RTQ3NDBFOTAwRjJCMTVBOEYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfPQG/DEAL7Rzel9fSqums20puAJG2LSwlz+Rv2OtapbceMCwR0uWQvfXZz wsSZx4ibra1hSlS5R3SdGwHTB0Y35H5EH57sh33M7Xgs23TLDiVIzd3iuogY6AhB qEKVrnO7bI7X0Ut8UYRTDFlDqtTWw3Y/Q7n+d4RvU0/xpPWFrtjv4/5Yh+FP5CVL TlHanSBxoNV8ZSXLW9bb7srZy2V9akAfVszT9/eomRmp1f+g7O0Ju1JFg6Z4GiZO OArdyFpjQhq0+ZtW9wmDDoSh5elT2PC7DzxkIjoiU/H5GZR+sC/PSTH3WTiGK9xU V4MeLz0CUuzdCiHW9k4kv4JheQECAwEAAaOCAnAwggJsMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN7jq0rSeqTu0JyOR0DpAPKxWo8TMB8GA1UdIwQYMBaAFMPy erukDQwUbmWZ4xmy+LeWVqbzMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMC9DM0Yy N0FCQkE0MEQwQzE0NkU2NTk5RTMxOUIyRjhCNzk2NTZBNkYzLmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi93X0o2dTZR TkRCUnVaWm5qR2JMNHQ1Wldwdk0uY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HTUlDTE9VRC8x LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HTUlD TE9VRC8xL0RFRTNBQjRBRDI3QUE0RUVEMDlDOEU0NzQwRTkwMEYyQjE1QThGMTMu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUH AQcBAf8EFjAUMBIEAgABMAwDBACK/MADBADAoB0wDQYJKoZIhvcNAQELBQADggEB AGXElq5C3DFwrV9xdZK2CwbtSeJp1y1rb6Vt5MQ9INmInbxah1ezI7gxA4gf3Kyw d2hqC82XRhmP929b4r0kh2GgfsMY1BydqxOlMqIdEpaI2xUePou6xbpZJMYAHlml nKG7XZxsgkuX8LAZSrPRHNucAGQOx0n7+lgGzt78mR4a18470I4K4iUdKEvP4DF5 nEFXJy6TICtA7CtTouny12bMlywo1keZUs2LgK7y6SYRw7J1WrKTUsEICwVZCu9s q9Qxy3CZYMlmSplBIlHYXom79Xl25Qv2C66kv+7AMl+bDHUumlZf3VY7GCcAJCE/ JQ/0JglJjNvSwSbwrUXiKmM= -----END CERTIFICATE-----Generated at Tue May 12 22:16:11 2026 by rpki-client