$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.cer File: 084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.cer (raw, json) Hash identifier: bQT6F3GuP3DMTpi1/DB5JF11qurK5gm66KcFNFmcaCw= Subject key identifier: 08:4F:CA:ED:B5:0B:B0:39:5F:4B:B9:1B:91:C0:F2:E4:E8:4C:B7:BD Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 217D840970B1D08C7E2C0C171165A2E910944A0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/KAIWEI/0/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.mft caRepository: rsync://rpkica.twnic.tw/rpki/KAIWEI/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:47:21 +0000 Certificate not after: Mon 10 May 2027 15:52:21 +0000 Subordinate resources: IP: 202.47.172.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:7d:84:09:70:b1:d0:8c:7e:2c:0c:17:11:65:a2:e9:10:94:4a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:47:21 2026 GMT Not After : May 10 15:52:21 2027 GMT Subject: CN=084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:25:3b:a7:b5:5e:37:d8:7b:ab:77:14:a1: 5c:89:d2:ac:cd:7b:14:5f:a9:2a:71:7f:cb:7f:ec: 86:6c:e5:3a:22:00:f4:5d:5b:1f:8c:d7:67:1b:6e: 3e:ca:45:ea:b2:31:80:88:54:c0:e4:ef:1b:7d:85: 2d:a6:b9:e1:40:19:ce:64:bd:fe:45:52:0e:02:9a: cb:55:57:ca:c3:03:01:5f:56:31:df:b0:b3:0e:be: d0:df:9c:59:34:15:81:1b:21:95:fe:a2:0c:a2:e7: e9:4b:cf:98:57:b8:2a:d4:80:3f:50:98:26:b1:72: 87:36:66:e0:12:ee:8c:da:0e:b1:7b:b8:af:e7:cb: dc:37:29:0c:e6:ae:4a:28:10:f2:51:76:ce:66:84: 0b:3d:3f:1c:e4:da:00:d9:b8:74:e9:8c:da:37:63: 4e:51:54:6e:ca:16:3e:22:ae:39:5f:bc:a0:6d:6c: db:16:42:52:8a:5e:0b:e1:fd:af:45:83:32:01:de: fa:ef:47:2f:5e:18:08:7a:2a:81:73:94:c1:f5:b8: 7f:91:eb:ed:9b:e7:38:b6:58:2d:63:8e:fe:b8:eb: aa:b9:33:17:76:b5:a7:6e:a4:9f:f4:aa:ae:29:81: 62:72:2a:eb:a4:f4:53:e0:06:5f:a1:1a:3f:a0:70: b7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 08:4F:CA:ED:B5:0B:B0:39:5F:4B:B9:1B:91:C0:F2:E4:E8:4C:B7:BD X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/KAIWEI/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/KAIWEI/0/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.172.0/23 Signature Algorithm: sha256WithRSAEncryption a0:d7:e3:7d:bc:f8:ba:0d:66:b0:bc:84:3b:ee:32:e4:8e:40: be:21:b1:79:7e:51:b4:ee:e6:85:e6:4c:8d:47:f6:dc:24:34: 13:b8:f2:da:27:1c:be:98:c8:cf:0c:56:2d:e6:b2:23:69:ae: 03:87:ab:bc:f7:33:27:01:e2:52:f0:6d:09:7c:d2:48:d6:7e: 93:b0:d2:a8:34:9c:39:d3:15:df:79:f6:b1:9a:e5:11:44:ed: a1:35:f5:87:24:3d:09:2f:1c:a5:47:62:bd:33:7a:6d:ac:9f: 13:40:55:ab:23:e8:d4:5e:7a:39:55:44:84:26:fb:f0:c2:6b: e5:b2:37:99:f7:ca:eb:52:8a:7f:48:f1:38:28:79:77:41:dd: 73:5a:c1:30:cd:c5:af:e6:eb:5f:52:91:e5:a2:fd:d7:2e:81: cc:6d:92:2c:cd:e2:60:49:18:38:83:41:f7:b4:f6:10:3b:eb: 92:b1:17:6d:5c:c6:5d:cb:68:7a:7a:79:8d:b2:b2:dc:f9:ec: 47:a1:39:70:9d:84:55:78:90:01:8d:61:e3:47:55:cd:ac:5b: 43:f1:3d:30:f6:95:8e:07:51:a6:ac:18:13:17:8a:f9:68:e9: 2a:7a:7b:a3:00:7b:4c:ca:73:ce:df:7f:b7:36:40:87:f2:59: 29:22:36:46 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIUIX2ECXCx0Ix+LAwXEWWi6RCUSgwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDcyMVoX DTI3MDUxMDE1NTIyMVowMzExMC8GA1UEAxMoMDg0RkNBRURCNTBCQjAzOTVGNEJC OTFCOTFDMEYyRTRFODRDQjdCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM70JTuntV432HurdxShXInSrM17FF+pKnF/y3/shmzlOiIA9F1bH4zXZxtu PspF6rIxgIhUwOTvG32FLaa54UAZzmS9/kVSDgKay1VXysMDAV9WMd+wsw6+0N+c WTQVgRshlf6iDKLn6UvPmFe4KtSAP1CYJrFyhzZm4BLujNoOsXu4r+fL3DcpDOau SigQ8lF2zmaECz0/HOTaANm4dOmM2jdjTlFUbsoWPiKuOV+8oG1s2xZCUopeC+H9 r0WDMgHe+u9HL14YCHoqgXOUwfW4f5Hr7ZvnOLZYLWOO/rjrqrkzF3a1p26kn/Sq rimBYnIq66T0U+AGX6EaP6BwtxkCAwEAAaOCAmYwggJiMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAhPyu21C7A5X0u5G5HA8uToTLe9MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9LQUlXRUkvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0FJV0VJ LzAvMDg0RkNBRURCNTBCQjAzOTVGNEJCOTFCOTFDMEYyRTRFODRDQjdCRC5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAcovrDANBgkqhkiG9w0BAQsFAAOCAQEAoNfjfbz4ug1m sLyEO+4y5I5AviGxeX5RtO7mheZMjUf23CQ0E7jy2iccvpjIzwxWLeayI2muA4er vPczJwHiUvBtCXzSSNZ+k7DSqDScOdMV33n2sZrlEUTtoTX1hyQ9CS8cpUdivTN6 bayfE0BVqyPo1F56OVVEhCb78MJr5bI3mffK61KKf0jxOCh5d0Hdc1rBMM3Fr+br X1KR5aL91y6BzG2SLM3iYEkYOINB97T2EDvrkrEXbVzGXctoenp5jbKy3PnsR6E5 cJ2EVXiQAY1h40dVzaxbQ/E9MPaVjgdRpqwYExeK+WjpKnp7owB7TMpzzt9/tzZA h/JZKSI2Rg== -----END CERTIFICATE-----Generated at Wed May 13 02:27:38 2026 by rpki-client