$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/146BBB242D194BB38E4863F248016CC51755565D.cer File: 146BBB242D194BB38E4863F248016CC51755565D.cer (raw, json) Hash identifier: Bkd7iVc6ad2xco02DMxLtcrj5VLINla6IkpIHTmSvkk= Subject key identifier: 14:6B:BB:24:2D:19:4B:B3:8E:48:63:F2:48:01:6C:C5:17:55:56:5D Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 71639466B1D737E2D692ABCC714F2E9509747839 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/MAIFOOD/0/146BBB242D194BB38E4863F248016CC51755565D.mft caRepository: rsync://rpkica.twnic.tw/rpki/MAIFOOD/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:19 +0000 Certificate not after: Mon 10 May 2027 15:53:19 +0000 Subordinate resources: IP: 103.190.168.0/23 IP: 2400:91e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:63:94:66:b1:d7:37:e2:d6:92:ab:cc:71:4f:2e:95:09:74:78:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:19 2026 GMT Not After : May 10 15:53:19 2027 GMT Subject: CN=146BBB242D194BB38E4863F248016CC51755565D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:75:76:3e:8f:74:06:9c:e8:37:79:ea:7a: f5:7b:54:59:de:96:86:f2:31:e9:69:af:5e:c6:e1: fb:20:2f:fd:b7:49:f3:c8:75:ac:27:93:b3:4f:6f: b8:b7:0e:d7:0f:65:0d:50:36:fe:06:78:9d:53:a9: 80:ab:b5:58:73:b0:20:92:4e:8e:0b:88:c4:a0:35: 44:a5:c0:21:fd:a9:db:e6:57:02:a1:61:7a:a9:01: 99:fe:47:b1:e6:ff:1d:05:66:a3:a3:0b:fa:18:86: e3:00:6c:50:d5:4d:9c:56:9e:2e:36:2b:3e:5f:a7: 9d:69:8a:8f:54:49:29:32:39:84:c5:56:2f:1d:ba: f4:de:54:bc:e1:6a:43:91:00:2e:ce:98:c6:34:fe: 5f:1d:61:d3:b7:3f:dc:8e:85:a7:e7:64:6d:54:14: 1d:c2:62:c5:d5:6c:69:59:a7:fc:50:0a:6d:0a:53: 29:49:58:9f:35:09:db:51:c9:da:58:ba:b9:7f:2f: 20:59:78:78:b2:c7:59:bb:f8:92:f3:c3:45:a1:02: b4:69:50:3e:7f:3c:1a:46:cb:74:f9:89:c3:5a:f2: 70:fd:b5:51:9b:df:30:fc:fd:56:e4:12:01:42:84: 68:87:8a:fa:6f:21:92:52:1e:4b:3b:91:1b:d8:ef: 0d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 14:6B:BB:24:2D:19:4B:B3:8E:48:63:F2:48:01:6C:C5:17:55:56:5D X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/MAIFOOD/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/MAIFOOD/0/146BBB242D194BB38E4863F248016CC51755565D.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.168.0/23 IPv6: 2400:91e0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:f1:45:55:8f:a1:51:64:1a:d3:f9:88:9f:ec:13:7c:e9:8c: c8:68:b3:4e:8d:6b:c3:eb:d5:7d:41:8f:ec:27:a1:f5:8a:4f: f8:a5:f7:8b:b6:b4:f9:1e:3b:a8:c3:c3:d2:59:bd:09:3d:27: 1b:30:d6:de:d2:55:98:02:b3:90:16:0a:15:6f:af:e0:bc:2e: a6:a3:19:ea:18:3f:de:df:32:95:18:fd:1b:06:d3:37:9c:b0: 4e:06:90:7f:4a:2e:b6:72:be:7a:30:07:1d:d2:50:17:0b:4b: 8c:1f:87:3d:9a:f9:c1:ca:fe:aa:43:4d:ab:42:bb:1e:c2:af: c8:c1:42:e0:c8:43:1b:42:4b:c7:be:47:c9:7c:6f:d1:71:c7: ea:01:e6:91:dc:3b:2f:1c:c1:ec:85:4b:97:6e:ea:22:80:55: 9e:d8:8c:1b:12:f0:6f:46:44:5f:1e:6f:a3:10:ca:1e:da:8d: 1a:1a:55:ce:39:05:8a:38:60:3a:00:d4:27:ac:ce:e4:02:ec: 36:f4:5b:f7:58:38:93:d4:0d:65:2d:c8:91:7f:ea:8a:26:c5: d5:f0:fb:e5:ce:e1:26:f0:f7:52:1c:9c:55:7e:0d:1c:17:45: b6:8a:f9:12:ba:6f:ac:88:e8:61:94:03:a9:40:86:f3:ee:a3: 6a:52:43:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUcWOUZrHXN+LWkqvMcU8ulQl0eDkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDgxOVoX DTI3MDUxMDE1NTMxOVowMzExMC8GA1UEAxMoMTQ2QkJCMjQyRDE5NEJCMzhFNDg2 M0YyNDgwMTZDQzUxNzU1NTY1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANhgdXY+j3QGnOg3eep69XtUWd6WhvIx6WmvXsbh+yAv/bdJ88h1rCeTs09v uLcO1w9lDVA2/gZ4nVOpgKu1WHOwIJJOjguIxKA1RKXAIf2p2+ZXAqFheqkBmf5H seb/HQVmo6ML+hiG4wBsUNVNnFaeLjYrPl+nnWmKj1RJKTI5hMVWLx269N5UvOFq Q5EALs6YxjT+Xx1h07c/3I6Fp+dkbVQUHcJixdVsaVmn/FAKbQpTKUlYnzUJ21HJ 2li6uX8vIFl4eLLHWbv4kvPDRaECtGlQPn88GkbLdPmJw1rycP21UZvfMPz9VuQS AUKEaIeK+m8hklIeSzuRG9jvDRcCAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBRruyQtGUuzjkhj8kgBbMUXVVZdMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NQUlGT09ELzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL01BSUZP T0QvMC8xNDZCQkIyNDJEMTk0QkIzOEU0ODYzRjI0ODAxNkNDNTE3NTU1NjVELm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ76oMA0EAgACMAcDBQAkAJHgMA0GCSqGSIb3DQEB CwUAA4IBAQAP8UVVj6FRZBrT+Yif7BN86YzIaLNOjWvD69V9QY/sJ6H1ik/4pfeL trT5Hjuow8PSWb0JPScbMNbe0lWYArOQFgoVb6/gvC6moxnqGD/e3zKVGP0bBtM3 nLBOBpB/Si62cr56MAcd0lAXC0uMH4c9mvnByv6qQ02rQrsewq/IwULgyEMbQkvH vkfJfG/RccfqAeaR3DsvHMHshUuXbuoigFWe2IwbEvBvRkRfHm+jEMoe2o0aGlXO OQWKOGA6ANQnrM7kAuw29Fv3WDiT1A1lLciRf+qKJsXV8PvlzuEm8PdSHJxVfg0c F0W2ivkSum+siOhhlAOpQIbz7qNqUkPk -----END CERTIFICATE-----Generated at Wed May 13 08:28:26 2026 by rpki-client