$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer File: 21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer (raw, json) Hash identifier: avsf/ZlpoxvD/UGPpMyH1vsom1szUGd5UTKWuSKb8fg= Subject key identifier: 21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 56E3F698CFA1C757EE635440FCE78A612876A5A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft caRepository: rsync://rpkica.twnic.tw/rpki/MFE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:26 +0000 Certificate not after: Mon 10 May 2027 15:53:26 +0000 Subordinate resources: IP: 103.117.132.0/23 IP: 2401:3b60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:e3:f6:98:cf:a1:c7:57:ee:63:54:40:fc:e7:8a:61:28:76:a5:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:26 2026 GMT Not After : May 10 15:53:26 2027 GMT Subject: CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ca:ac:02:fc:4a:5d:8b:13:60:90:5e:c6:30: 12:b6:eb:bf:d9:ad:80:ca:4a:e3:01:69:f4:6f:38: 67:b4:cf:02:04:c2:4a:55:74:67:66:3a:03:d9:32: 7d:08:7a:49:2e:31:43:4d:a6:2f:d6:71:2d:b9:72: df:e9:cc:dd:8d:7e:25:24:fb:2c:0b:73:48:fb:84: da:71:fd:65:ab:3e:88:71:e9:71:cb:3b:83:47:1b: dc:80:b8:31:37:bc:09:fa:be:33:c9:e3:9e:de:7b: 34:e1:23:4a:ec:75:d5:01:43:bb:92:63:c2:cc:ef: 74:93:b4:57:87:9a:43:8b:ea:bc:fa:94:da:57:de: 44:39:8a:0f:f1:4c:59:d2:48:f4:3f:64:61:d1:31: e5:1c:50:15:73:59:15:9d:b1:73:5f:6a:db:e1:24: 68:d1:7e:df:b5:d7:3e:23:a2:61:17:5b:87:c4:6d: c9:70:51:7d:3d:64:07:3c:32:47:86:26:cf:35:56: 7a:cb:78:d9:e4:2f:11:aa:fb:47:37:84:6f:f1:a6: 77:6b:39:0f:b3:a3:de:ee:56:89:f0:ff:3d:11:a8: 6f:f8:91:c6:3d:2f:f3:73:b5:85:92:5e:03:07:e7: 50:c8:85:bc:63:29:5e:70:38:5c:79:58:46:85:8c: 43:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/MFE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.132.0/23 IPv6: 2401:3b60::/32 Signature Algorithm: sha256WithRSAEncryption 94:b5:22:e7:0c:fa:bb:00:fb:d6:d5:0d:99:62:2f:64:91:16: ad:2c:86:7b:14:8d:c9:c6:93:27:eb:01:9a:6a:ac:8e:63:17: 27:4f:1e:ad:7b:7a:68:30:fb:fb:34:b5:e4:d5:ea:4e:c9:85: f7:90:90:46:ee:c3:7f:9b:32:53:af:ba:5d:5c:fb:4b:62:6a: 34:0b:ce:32:25:69:3f:56:6e:28:05:18:40:59:49:38:23:b1: 27:97:4f:f6:ec:63:1a:cb:a7:54:30:3d:0d:93:35:8e:32:71: 1d:b3:89:33:f3:e3:cd:78:ab:ec:b5:cd:bd:13:9a:67:8d:f5: bd:f9:69:80:c1:f4:10:e5:af:75:b0:f6:71:dc:67:08:af:b3: 8b:97:21:fe:2a:2f:f2:3b:7c:26:c1:13:86:c3:0a:bd:61:21: ae:e9:87:80:31:0c:81:96:31:5c:20:d7:2a:df:3d:c2:7d:4c: 8f:ba:ea:b5:25:aa:e4:6a:07:b7:0f:e2:2a:eb:46:e0:c6:75: 1f:19:ab:0f:8c:cc:e8:bd:49:6e:f4:37:21:54:62:7b:04:72: f7:b6:d8:f6:f4:a1:42:a1:5d:a1:15:1e:c6:5d:64:7b:a1:36: 12:29:bd:14:61:c8:c9:bd:92:fa:55:c1:73:84:27:76:96:de: 33:89:a2:b1 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUVuP2mM+hx1fuY1RA/OeKYSh2paAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDgyNloX DTI3MDUxMDE1NTMyNlowMzExMC8GA1UEAxMoMjFCNjJENjBFMUFCNTM4MDNCMjI5 Q0NGODNDMTc5RkQzRkNGQjVCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPKrAL8Sl2LE2CQXsYwErbrv9mtgMpK4wFp9G84Z7TPAgTCSlV0Z2Y6A9ky fQh6SS4xQ02mL9ZxLbly3+nM3Y1+JST7LAtzSPuE2nH9Zas+iHHpccs7g0cb3IC4 MTe8Cfq+M8njnt57NOEjSux11QFDu5JjwszvdJO0V4eaQ4vqvPqU2lfeRDmKD/FM WdJI9D9kYdEx5RxQFXNZFZ2xc19q2+EkaNF+37XXPiOiYRdbh8RtyXBRfT1kBzwy R4YmzzVWest42eQvEar7RzeEb/Gmd2s5D7Oj3u5WifD/PRGob/iRxj0v83O1hZJe AwfnUMiFvGMpXnA4XHlYRoWMQ18CAwEAAaOCAm8wggJrMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCG2LWDhq1OAOyKcz4PBef0/z7WzMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NRkUvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTUZFLzAvMjFC NjJENjBFMUFCNTM4MDNCMjI5Q0NGODNDMTc5RkQzRkNGQjVCMy5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWd1hDANBAIAAjAHAwUAJAE7YDANBgkqhkiG9w0BAQsFAAOCAQEA lLUi5wz6uwD71tUNmWIvZJEWrSyGexSNycaTJ+sBmmqsjmMXJ08erXt6aDD7+zS1 5NXqTsmF95CQRu7Df5syU6+6XVz7S2JqNAvOMiVpP1ZuKAUYQFlJOCOxJ5dP9uxj GsunVDA9DZM1jjJxHbOJM/PjzXir7LXNvROaZ431vflpgMH0EOWvdbD2cdxnCK+z i5ch/iov8jt8JsEThsMKvWEhrumHgDEMgZYxXCDXKt89wn1Mj7rqtSWq5GoHtw/i KutG4MZ1HxmrD4zM6L1JbvQ3IVRiewRy97bY9vShQqFdoRUexl1ke6E2Eim9FGHI yb2S+lXBc4QndpbeM4misQ== -----END CERTIFICATE-----Generated at Tue May 12 22:02:35 2026 by rpki-client