$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/1C557B3C7ECE722D00777E0164C48CBF2364F729.cer File: 1C557B3C7ECE722D00777E0164C48CBF2364F729.cer (raw, json) Hash identifier: Bc8Xb4qt/LOliUF5d9aDZSoJu9A1rQ8xxhDOKsMwgmY= Subject key identifier: 1C:55:7B:3C:7E:CE:72:2D:00:77:7E:01:64:C4:8C:BF:23:64:F7:29 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 597E0404EA49D483B1FD0A8CA140B500AD846A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CYCORE/0/1C557B3C7ECE722D00777E0164C48CBF2364F729.mft caRepository: rsync://rpkica.twnic.tw/rpki/CYCORE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:49 +0000 Certificate not after: Mon 10 May 2027 15:49:49 +0000 Subordinate resources: AS: 63901 IP: 103.28.18.0/23 IP: 2400:bb20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:7e:04:04:ea:49:d4:83:b1:fd:0a:8c:a1:40:b5:00:ad:84:6a:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:49 2026 GMT Not After : May 10 15:49:49 2027 GMT Subject: CN=1C557B3C7ECE722D00777E0164C48CBF2364F729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:63:9d:da:32:82:67:f9:0a:af:be:b9:8e: 76:22:f0:dc:71:94:2c:8d:61:9b:b5:06:23:6d:a0: fd:cc:8d:98:cc:de:ca:9d:c7:45:c7:84:01:71:4b: fd:3b:d8:6d:1f:21:e3:e6:e8:59:7d:85:bb:c8:fa: 73:c7:a0:f1:b2:29:7a:31:a8:dd:a3:c4:ea:54:d0: aa:52:de:cc:d1:d5:e3:5f:f2:cc:a6:4f:c8:c5:31: 36:6f:ed:af:eb:6c:1d:c3:c6:85:67:9c:40:bf:5a: 15:ed:3b:92:73:67:63:f1:46:ce:68:cd:19:e9:fa: 89:bd:be:83:e6:ec:6d:58:1e:eb:dd:6d:a8:d3:d9: 03:f8:9d:09:3c:41:6c:c0:76:90:7f:7b:a3:a9:a2: 7c:f7:c1:92:5b:c8:a1:36:c8:85:5f:71:b0:31:ae: 45:39:bb:db:d8:81:00:30:01:81:73:18:3f:e7:2f: fa:17:29:ee:61:91:56:ea:a1:8c:35:a4:14:aa:92: 09:ec:ab:38:44:23:e1:75:80:81:76:b3:8d:8b:49: 91:b6:c9:cb:ea:c9:51:fd:ba:5f:2b:e5:88:b1:30: 6c:97:2c:fe:36:48:b5:37:35:80:02:1c:cc:6f:13: e1:7c:d5:4f:06:81:85:e7:3c:ef:b3:e8:42:05:c0: 78:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1C:55:7B:3C:7E:CE:72:2D:00:77:7E:01:64:C4:8C:BF:23:64:F7:29 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CYCORE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CYCORE/0/1C557B3C7ECE722D00777E0164C48CBF2364F729.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.18.0/23 IPv6: 2400:bb20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 63901 Signature Algorithm: sha256WithRSAEncryption 6b:f7:f6:28:a2:fb:1d:da:78:9c:9c:2c:ff:ae:b6:f2:05:3b: a5:06:9c:db:e4:1c:49:c2:58:7f:b6:b0:76:50:ff:21:ca:5f: d1:ff:dc:8e:53:77:dc:ed:78:5c:ff:16:e7:70:2b:96:06:36: ff:07:4e:a8:2a:5b:3f:49:06:c6:8d:c4:45:76:3b:2e:93:3f: 10:42:66:d6:a9:5f:b2:a1:0e:49:6f:3f:8b:7b:10:f8:22:94: ed:37:ca:52:94:90:d3:5b:06:d5:0f:69:23:f3:69:a6:eb:5b: 9c:eb:a6:1a:0b:8a:b8:5b:e4:08:48:7c:73:fb:0e:e9:6b:a6: 73:83:02:7d:22:24:b3:b3:5f:01:4c:fa:2f:00:ff:c5:30:cc: 9a:1f:e4:56:07:e1:28:1d:6b:e2:6b:28:b0:07:39:57:a3:dc: 5d:82:71:74:02:92:30:95:c8:a1:95:ee:69:b3:85:be:a6:ff: c9:02:c9:75:4a:1c:ec:06:9c:ca:c7:98:8e:d3:95:75:96:f0: 75:cd:a9:26:f4:f0:bb:11:b4:9b:ff:3f:94:a1:a4:e0:b4:52: 30:82:46:4a:df:6b:14:48:8c:6f:94:80:0b:05:d1:c8:01:dc: 63:5f:d8:b3:ea:f8:11:53:4b:eb:0a:38:7e:da:cc:50:10:f2: e1:4a:b8:1c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWX4EBOpJ1IOx/QqMoUC1AK2EaigwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQ0OVoX DTI3MDUxMDE1NDk0OVowMzExMC8GA1UEAxMoMUM1NTdCM0M3RUNFNzIyRDAwNzc3 RTAxNjRDNDhDQkYyMzY0RjcyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcLY53aMoJn+QqvvrmOdiLw3HGULI1hm7UGI22g/cyNmMzeyp3HRceEAXFL /TvYbR8h4+boWX2Fu8j6c8eg8bIpejGo3aPE6lTQqlLezNHV41/yzKZPyMUxNm/t r+tsHcPGhWecQL9aFe07knNnY/FGzmjNGen6ib2+g+bsbVge691tqNPZA/idCTxB bMB2kH97o6mifPfBklvIoTbIhV9xsDGuRTm729iBADABgXMYP+cv+hcp7mGRVuqh jDWkFKqSCeyrOEQj4XWAgXazjYtJkbbJy+rJUf26XyvliLEwbJcs/jZItTc1gAIc zG8T4XzVTwaBhec877PoQgXAeNcCAwEAAaOCApEwggKNMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBxVezx+znItAHd+AWTEjL8jZPcpMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DWUNPUkUvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ1lDT1JF LzAvMUM1NTdCM0M3RUNFNzIyRDAwNzc3RTAxNjRDNDhDQkYyMzY0RjcyOS5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB /wQfMB0wDAQCAAEwBgMEAWccEjANBAIAAjAHAwUAJAC7IDAaBggrBgEFBQcBCAEB /wQLMAmgBzAFAgMA+Z0wDQYJKoZIhvcNAQELBQADggEBAGv39iii+x3aeJycLP+u tvIFO6UGnNvkHEnCWH+2sHZQ/yHKX9H/3I5Td9zteFz/FudwK5YGNv8HTqgqWz9J BsaNxEV2Oy6TPxBCZtapX7KhDklvP4t7EPgilO03ylKUkNNbBtUPaSPzaabrW5zr phoLirhb5AhIfHP7DulrpnODAn0iJLOzXwFM+i8A/8UwzJof5FYH4Sgda+JrKLAH OVej3F2CcXQCkjCVyKGV7mmzhb6m/8kCyXVKHOwGnMrHmI7TlXWW8HXNqSb08LsR tJv/P5ShpOC0UjCCRkrfaxRIjG+UgAsF0cgB3GNf2LPq+BFTS+sKOH7azFAQ8uFK uBw= -----END CERTIFICATE-----Generated at Tue May 12 22:32:55 2026 by rpki-client