$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/034B41A13ABB0D61A154AB3189C9BFD2DAED4DEA.cer File: 034B41A13ABB0D61A154AB3189C9BFD2DAED4DEA.cer (raw, json) Hash identifier: GU7wlqzU8GwKP7ljjlCGCOUuMP4xXAw/YaAozZSbWis= Subject key identifier: 03:4B:41:A1:3A:BB:0D:61:A1:54:AB:31:89:C9:BF:D2:DA:ED:4D:EA Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 559AF9896461645D53426D141CB397F9D34336E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/LUOSI/0/034B41A13ABB0D61A154AB3189C9BFD2DAED4DEA.mft caRepository: rsync://rpkica.twnic.tw/rpki/LUOSI/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:08 +0000 Certificate not after: Mon 10 May 2027 15:53:08 +0000 Subordinate resources: IP: 103.176.50.0/23 IP: 2400:30a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:9a:f9:89:64:61:64:5d:53:42:6d:14:1c:b3:97:f9:d3:43:36:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:08 2026 GMT Not After : May 10 15:53:08 2027 GMT Subject: CN=034B41A13ABB0D61A154AB3189C9BFD2DAED4DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6a:0a:ea:d3:25:85:6d:47:d6:82:a5:77:94: 4c:ad:a2:aa:62:6b:c0:49:62:f5:0e:a1:ce:89:31: 6c:bd:60:71:db:0b:4a:f7:c1:6e:a6:0e:25:69:8d: 80:6a:74:ba:64:57:22:59:30:be:ee:be:4b:0f:1d: 59:4c:78:67:16:4c:f9:35:69:94:42:bb:63:e3:e5: f9:08:1c:6c:16:03:87:fe:f6:95:d6:04:85:77:9c: 99:ec:d1:ea:de:3d:20:76:1a:b4:e0:c4:cb:3e:8c: 85:2e:86:14:81:8d:0a:ce:d9:be:ae:77:0a:a9:d7: 88:53:f9:31:80:a2:78:4b:d3:48:cf:3f:21:5d:c6: 3c:cc:c3:32:c3:8a:80:de:f1:08:07:97:d9:a8:8c: 0f:a6:47:96:65:4c:8c:b5:a6:85:df:c9:b0:7b:f4: ac:70:6d:2e:08:d6:33:21:f7:47:da:a7:98:ae:54: 11:d5:bd:8c:6b:1d:f3:a4:5b:0c:33:ba:69:82:31: e4:34:f8:6e:54:bf:9c:7e:45:0e:33:c1:19:30:04: 98:b8:ce:19:07:67:ba:12:54:cb:2c:9c:40:8c:af: a7:94:f7:66:bd:b6:d7:9a:82:5d:31:5b:62:49:cb: 89:41:cf:bf:6b:ef:2f:3e:f1:c8:33:7a:88:1a:ab: 9a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 03:4B:41:A1:3A:BB:0D:61:A1:54:AB:31:89:C9:BF:D2:DA:ED:4D:EA X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/LUOSI/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/LUOSI/0/034B41A13ABB0D61A154AB3189C9BFD2DAED4DEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.50.0/23 IPv6: 2400:30a0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:a7:ac:cf:02:2b:23:a4:86:e2:d0:37:3a:fd:23:ce:ae:39: 70:92:09:c2:97:af:4a:65:60:1f:ef:51:d6:9a:13:08:6d:da: 3a:d2:10:cd:8f:85:f6:49:f1:ab:d5:32:6a:dc:dc:cd:32:41: 85:ce:5b:6c:ce:b9:cc:8f:12:4f:1f:61:6b:e1:d0:7d:22:c4: 5f:f1:7b:c4:cd:26:d7:87:06:c2:1c:1d:f2:16:4a:b2:dc:15: d4:f0:22:b4:21:b0:e0:a6:57:dd:e5:8b:bf:1f:ec:a5:bd:a6: 98:e5:9c:6f:a6:66:7a:7f:2a:71:e7:0e:de:c1:17:a6:4e:8c: c0:1c:71:cd:b2:f0:4e:02:09:71:bc:cd:b9:85:ee:ea:8b:bd: 99:89:46:ce:63:c1:f5:0d:76:97:99:37:a1:37:08:d6:10:24: 1d:73:c6:f9:92:d2:4d:58:27:4a:3e:1d:4c:a0:9c:19:e0:f2: 62:1f:fc:af:cd:21:57:b4:4f:f6:5f:37:5a:96:03:33:5e:36: c8:9a:10:43:10:14:ec:b5:c0:1d:96:34:00:b1:be:66:22:93: 2a:f2:56:be:35:a2:b3:1f:7c:81:b6:23:32:bb:98:57:89:6a: cd:4b:19:9f:04:0c:d4:ba:1e:70:91:1e:97:cc:b4:87:b6:cd: 1a:c1:97:db -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIUVZr5iWRhZF1TQm0UHLOX+dNDNucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDgwOFoX DTI3MDUxMDE1NTMwOFowMzExMC8GA1UEAxMoMDM0QjQxQTEzQUJCMEQ2MUExNTRB QjMxODlDOUJGRDJEQUVENERFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJVqCurTJYVtR9aCpXeUTK2iqmJrwEli9Q6hzokxbL1gcdsLSvfBbqYOJWmN gGp0umRXIlkwvu6+Sw8dWUx4ZxZM+TVplEK7Y+Pl+QgcbBYDh/72ldYEhXecmezR 6t49IHYatODEyz6MhS6GFIGNCs7Zvq53CqnXiFP5MYCieEvTSM8/IV3GPMzDMsOK gN7xCAeX2aiMD6ZHlmVMjLWmhd/JsHv0rHBtLgjWMyH3R9qnmK5UEdW9jGsd86Rb DDO6aYIx5DT4blS/nH5FDjPBGTAEmLjOGQdnuhJUyyycQIyvp5T3Zr2215qCXTFb YknLiUHPv2vvLz7xyDN6iBqrmqUCAwEAAaOCAnMwggJvMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFANLQaE6uw1hoVSrMYnJv9La7U3qMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MVU9TSS8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MVU9TSS8w LzAzNEI0MUExM0FCQjBENjFBMTU0QUIzMTg5QzlCRkQyREFFRDRERUEubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsDIwDQQCAAIwBwMFACQAMKAwDQYJKoZIhvcNAQELBQAD ggEBAE2nrM8CKyOkhuLQNzr9I86uOXCSCcKXr0plYB/vUdaaEwht2jrSEM2PhfZJ 8avVMmrc3M0yQYXOW2zOucyPEk8fYWvh0H0ixF/xe8TNJteHBsIcHfIWSrLcFdTw IrQhsOCmV93li78f7KW9ppjlnG+mZnp/KnHnDt7BF6ZOjMAccc2y8E4CCXG8zbmF 7uqLvZmJRs5jwfUNdpeZN6E3CNYQJB1zxvmS0k1YJ0o+HUygnBng8mIf/K/NIVe0 T/ZfN1qWAzNeNsiaEEMQFOy1wB2WNACxvmYikyryVr41orMffIG2IzK7mFeJas1L GZ8EDNS6HnCRHpfMtIe2zRrBl9s= -----END CERTIFICATE-----Generated at Tue May 12 22:02:54 2026 by rpki-client