$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/1D963FA6AA9567D65CC0F02634BA04F35A360003.cer File: 1D963FA6AA9567D65CC0F02634BA04F35A360003.cer (raw, json) Hash identifier: RRLmxwdt4G/qmXEDh+IJBYqjFFllAkWVTE7enZ3LULY= Subject key identifier: 1D:96:3F:A6:AA:95:67:D6:5C:C0:F0:26:34:BA:04:F3:5A:36:00:03 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 6C4E7EDA34197F3EA4D325E20766FD3F1BA755E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/RUIKE/0/1D963FA6AA9567D65CC0F02634BA04F35A360003.mft caRepository: rsync://rpkica.twnic.tw/rpki/RUIKE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:14 +0000 Certificate not after: Mon 10 May 2027 16:01:14 +0000 Subordinate resources: AS: 63892 IP: 2402:13a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:4e:7e:da:34:19:7f:3e:a4:d3:25:e2:07:66:fd:3f:1b:a7:55:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:14 2026 GMT Not After : May 10 16:01:14 2027 GMT Subject: CN=1D963FA6AA9567D65CC0F02634BA04F35A360003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:01:50:57:15:b3:8b:40:ff:46:f7:11:46:a0: 21:bb:a9:03:3e:47:54:c2:5e:b7:20:ef:89:7b:99: 28:b5:d3:6f:69:25:dc:d4:a0:ab:d9:c6:df:70:13: dc:64:ae:35:22:91:2d:f8:9c:da:b6:fe:2f:34:83: 01:63:fd:c2:03:93:87:57:39:f0:d8:d9:03:8f:a2: 13:5a:c1:4b:40:82:4e:14:07:18:b6:e4:ed:4f:4f: 6e:8a:75:8d:6a:89:54:d6:6b:6e:b0:84:ed:fa:03: 84:2b:04:bb:61:ec:d6:12:9b:36:99:ce:b3:5b:b8: 9f:cd:aa:ce:2e:6c:4c:c7:95:fb:6b:84:d2:ae:a0: 43:c2:f8:85:99:fb:3d:ca:2f:6e:27:cb:4f:27:a0: d6:9e:42:23:80:3d:da:8b:c6:31:c1:3c:3d:e0:0c: f5:2e:3e:05:c1:fe:b3:0a:4d:a9:85:ac:e6:8b:24: 4e:bf:60:57:36:6e:30:14:4c:f2:ff:59:52:b5:39: f4:6a:b8:53:d0:17:28:fa:c8:8c:9e:e4:a2:5f:1d: 2d:13:45:2f:84:51:bc:8e:ed:2d:15:c7:f4:87:76: 48:f4:9d:68:e3:b1:9d:27:31:2f:73:bc:9c:21:5f: 8c:fd:04:d8:84:31:d0:4b:66:e8:94:fb:2d:f1:15: e5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1D:96:3F:A6:AA:95:67:D6:5C:C0:F0:26:34:BA:04:F3:5A:36:00:03 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/RUIKE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/RUIKE/0/1D963FA6AA9567D65CC0F02634BA04F35A360003.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:13a0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 63892 Signature Algorithm: sha256WithRSAEncryption 86:1f:13:55:fc:b7:2c:bc:a7:39:fe:40:1f:df:7b:7b:fa:74: a8:f6:9a:6b:a8:ee:18:f6:c2:e5:1c:65:df:d0:54:69:ed:c8: e0:b5:b9:bb:aa:43:bf:05:54:61:e2:ed:4e:45:8b:48:47:62: c0:dc:02:ee:0c:d2:c6:fd:ab:25:74:93:26:f9:d0:02:1e:8b: 8a:bb:ad:cd:58:1f:02:6f:2e:43:4d:0e:55:2d:1f:77:37:f8: 57:ac:5f:62:1c:73:02:51:8d:dc:e2:86:69:54:77:ea:66:a7: bb:c3:83:92:d8:04:de:3f:44:63:8e:6c:b6:45:23:e1:18:84: ef:04:00:f2:01:59:d9:0f:c7:8e:a1:a9:c8:5b:ce:06:07:7b: e2:7d:28:84:2c:51:44:69:c5:6e:f4:d1:85:3b:70:9f:5d:8b: 4b:4d:4d:72:d5:89:be:6c:35:e4:dd:93:b4:09:2d:8b:f4:c7: 8f:59:2b:f6:d8:98:e6:f8:1c:d0:79:b3:d5:60:8f:6f:e7:68: ab:b7:bd:39:ac:06:2b:0e:3e:2b:ad:5a:0e:14:62:55:8a:70: 5b:4f:c6:33:c0:f8:44:ae:74:37:23:19:65:31:35:b2:f0:4a: 6f:75:b1:61:20:b8:fa:64:fa:c5:50:cd:af:ae:2e:72:c4:df: 0b:18:3e:0e -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIUbE5+2jQZfz6k0yXiB2b9PxunVekwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYxNFoX DTI3MDUxMDE2MDExNFowMzExMC8GA1UEAxMoMUQ5NjNGQTZBQTk1NjdENjVDQzBG MDI2MzRCQTA0RjM1QTM2MDAwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYBUFcVs4tA/0b3EUagIbupAz5HVMJetyDviXuZKLXTb2kl3NSgq9nG33AT 3GSuNSKRLfic2rb+LzSDAWP9wgOTh1c58NjZA4+iE1rBS0CCThQHGLbk7U9Pbop1 jWqJVNZrbrCE7foDhCsEu2Hs1hKbNpnOs1u4n82qzi5sTMeV+2uE0q6gQ8L4hZn7 PcovbifLTyeg1p5CI4A92ovGMcE8PeAM9S4+BcH+swpNqYWs5oskTr9gVzZuMBRM 8v9ZUrU59Gq4U9AXKPrIjJ7kol8dLRNFL4RRvI7tLRXH9Id2SPSdaOOxnScxL3O8 nCFfjP0E2IQx0Etm6JT7LfEV5ZsCAwEAAaOCAoEwggJ9MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB2WP6aqlWfWXMDwJjS6BPNaNgADMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9SVUlLRS8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9SVUlLRS8w LzFEOTYzRkE2QUE5NTY3RDY1Q0MwRjAyNjM0QkEwNEYzNUEzNjAwMDMubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAhOgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwD5lDAN BgkqhkiG9w0BAQsFAAOCAQEAhh8TVfy3LLynOf5AH997e/p0qPaaa6juGPbC5Rxl 39BUae3I4LW5u6pDvwVUYeLtTkWLSEdiwNwC7gzSxv2rJXSTJvnQAh6LirutzVgf Am8uQ00OVS0fdzf4V6xfYhxzAlGN3OKGaVR36manu8ODktgE3j9EY45stkUj4RiE 7wQA8gFZ2Q/HjqGpyFvOBgd74n0ohCxRRGnFbvTRhTtwn12LS01NctWJvmw15N2T tAkti/THj1kr9tiY5vgc0Hmz1WCPb+doq7e9OawGKw4+K61aDhRiVYpwW0/GM8D4 RK50NyMZZTE1svBKb3WxYSC4+mT6xVDNr64ucsTfCxg+Dg== -----END CERTIFICATE-----Generated at Tue May 12 22:16:06 2026 by rpki-client