$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/164EB710D7AA83CB67EE2E709B4F195437239363.cer File: 164EB710D7AA83CB67EE2E709B4F195437239363.cer (raw, json) Hash identifier: jgA1t2aLSlYdUcxDW/f0lIPsG3iqMutVlTPWtnEiF+o= Subject key identifier: 16:4E:B7:10:D7:AA:83:CB:67:EE:2E:70:9B:4F:19:54:37:23:93:63 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 5718A29186A9BB12D7D680F3CF4665FE2594F14E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SPUSER/0/164EB710D7AA83CB67EE2E709B4F195437239363.mft caRepository: rsync://rpkica.twnic.tw/rpki/SPUSER/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:08 +0000 Certificate not after: Mon 10 May 2027 16:02:08 +0000 Subordinate resources: IP: 2406:300::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:18:a2:91:86:a9:bb:12:d7:d6:80:f3:cf:46:65:fe:25:94:f1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:08 2026 GMT Not After : May 10 16:02:08 2027 GMT Subject: CN=164EB710D7AA83CB67EE2E709B4F195437239363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:aa:82:8b:c5:53:35:16:9d:0a:07:3a:0f:ea: f5:f1:ad:b0:4a:c5:9f:fd:82:1c:47:fe:9f:03:14: a3:46:cc:cd:50:1e:21:14:db:22:a1:cd:6c:2d:1f: 9d:d3:29:5f:20:a6:7b:71:35:8e:32:d2:23:17:a5: b2:80:84:04:e9:9d:b8:66:8c:c0:ae:6a:f0:db:e8: 93:51:39:ff:ca:7f:1c:ca:c9:5b:70:7d:7d:57:ba: 19:03:b4:5f:8e:21:e7:2d:2d:09:10:71:cb:91:a5: d5:61:ff:61:65:52:c9:e4:a3:d5:38:04:98:eb:3d: ba:0d:a8:8b:42:2d:67:fc:01:f4:d0:34:c1:81:9e: b5:75:ad:0d:66:99:33:2c:1f:56:0f:9f:20:1f:cc: 02:09:42:a5:de:69:65:39:f9:53:2d:f0:6b:13:6a: f5:dd:04:a8:4b:ee:14:56:56:26:03:9b:5f:77:e0: d5:4d:d0:12:e9:24:b9:22:60:c3:a8:ed:26:80:dc: 5a:49:cc:99:90:24:91:18:6c:0e:19:ba:b9:84:ff: e3:98:2a:65:6e:1c:41:4c:9a:c5:f8:00:6e:a8:d6: c9:f3:c0:12:63:5b:ab:2f:17:a7:31:d0:03:63:81: 70:19:39:3e:95:40:7e:27:23:d2:ef:a5:87:04:e1: 5e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 16:4E:B7:10:D7:AA:83:CB:67:EE:2E:70:9B:4F:19:54:37:23:93:63 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SPUSER/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SPUSER/0/164EB710D7AA83CB67EE2E709B4F195437239363.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:300::/32 Signature Algorithm: sha256WithRSAEncryption a5:41:91:45:d9:69:3c:19:df:51:28:22:40:51:a0:06:d9:21: ac:a9:3c:17:3a:0a:00:31:5e:53:b7:87:66:40:77:f6:8c:f9: ff:b9:39:ad:7e:22:83:3d:8f:89:24:1e:9a:38:c9:dd:07:1f: 06:65:3d:94:eb:23:b3:56:f0:33:df:37:dd:fb:4c:92:b9:b5: 72:95:5d:00:46:ac:9a:ca:c0:ba:5c:46:c5:82:d8:f5:da:17: 51:ea:5e:a1:b6:cc:28:6e:07:f4:f2:5f:be:ba:81:3d:bb:97: ac:ac:be:04:a4:80:e9:52:da:0f:ed:1b:7e:3a:72:4e:77:d7: aa:ef:2e:bb:9a:a6:fd:e4:6e:7b:9f:6e:46:0f:72:fa:e6:07: 4e:31:a8:15:ff:60:9f:9a:57:93:96:62:5e:c1:48:51:88:8b: 34:c4:cd:24:55:19:98:88:04:71:b5:e5:3e:5f:ae:0b:34:2e: 8f:01:88:dc:44:2b:82:3c:aa:a9:e7:54:38:5a:fb:ea:e6:19: 2c:24:21:3a:54:ec:e9:e8:f2:ba:43:72:45:bc:2c:e9:d2:df: 54:d6:48:e7:c0:ab:34:6a:da:8e:ce:af:9e:b2:c3:8c:ea:4a: 10:4c:b7:e0:44:0b:5e:89:26:d7:c8:67:7b:f4:04:87:89:29: 46:3b:86:fe -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIUVxiikYapuxLX1oDzz0Zl/iWU8U4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTcwOFoX DTI3MDUxMDE2MDIwOFowMzExMC8GA1UEAxMoMTY0RUI3MTBEN0FBODNDQjY3RUUy RTcwOUI0RjE5NTQzNzIzOTM2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJaqgovFUzUWnQoHOg/q9fGtsErFn/2CHEf+nwMUo0bMzVAeIRTbIqHNbC0f ndMpXyCme3E1jjLSIxelsoCEBOmduGaMwK5q8Nvok1E5/8p/HMrJW3B9fVe6GQO0 X44h5y0tCRBxy5Gl1WH/YWVSyeSj1TgEmOs9ug2oi0ItZ/wB9NA0wYGetXWtDWaZ MywfVg+fIB/MAglCpd5pZTn5Uy3waxNq9d0EqEvuFFZWJgObX3fg1U3QEukkuSJg w6jtJoDcWknMmZAkkRhsDhm6uYT/45gqZW4cQUyaxfgAbqjWyfPAEmNbqy8XpzHQ A2OBcBk5PpVAficj0u+lhwThXpUCAwEAAaOCAmcwggJjMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBZOtxDXqoPLZ+4ucJtPGVQ3I5NjMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TUFVTRVIvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU1BVU0VS LzAvMTY0RUI3MTBEN0FBODNDQjY3RUUyRTcwOUI0RjE5NTQzNzIzOTM2My5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQGAwAwDQYJKoZIhvcNAQELBQADggEBAKVBkUXZaTwZ 31EoIkBRoAbZIaypPBc6CgAxXlO3h2ZAd/aM+f+5Oa1+IoM9j4kkHpo4yd0HHwZl PZTrI7NW8DPfN937TJK5tXKVXQBGrJrKwLpcRsWC2PXaF1HqXqG2zChuB/TyX766 gT27l6ysvgSkgOlS2g/tG346ck5316rvLruapv3kbnufbkYPcvrmB04xqBX/YJ+a V5OWYl7BSFGIizTEzSRVGZiIBHG15T5frgs0Lo8BiNxEK4I8qqnnVDha++rmGSwk ITpU7Ono8rpDckW8LOnS31TWSOfAqzRq2o7Or56yw4zqShBMt+BEC16JJtfIZ3v0 BIeJKUY7hv4= -----END CERTIFICATE-----Generated at Tue May 12 22:03:21 2026 by rpki-client