$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2586043D180B153CEF366A422232C20D63D92FB2.cer File: 2586043D180B153CEF366A422232C20D63D92FB2.cer (raw, json) Hash identifier: KfD/16EjaHxnQGgyHbBLqooNVFhfWTzCcEsi1HOGoHA= Subject key identifier: 25:86:04:3D:18:0B:15:3C:EF:36:6A:42:22:32:C2:0D:63:D9:2F:B2 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 56B397BF35EFED63FB6A07F29A92AB4139CA0E31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/2586043D180B153CEF366A422232C20D63D92FB2.mft caRepository: rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:58 +0000 Certificate not after: Mon 10 May 2027 16:02:58 +0000 Subordinate resources: AS: 7534 IP: 202.160.64.0/19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b3:97:bf:35:ef:ed:63:fb:6a:07:f2:9a:92:ab:41:39:ca:0e:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:58 2026 GMT Not After : May 10 16:02:58 2027 GMT Subject: CN=2586043D180B153CEF366A422232C20D63D92FB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:4c:93:f6:ef:d6:5b:a8:18:b9:aa:97:08: ca:ec:22:dc:cb:52:50:ab:56:19:67:01:8e:ee:d3: dd:50:f5:3e:f6:e6:29:f8:e9:55:e7:9b:b4:5c:79: 5a:59:64:bb:99:e4:55:0e:95:6d:dd:c8:58:2d:f4: ce:43:d2:8e:05:64:fc:07:ae:b9:bc:2c:ee:ae:e8: a0:c1:c4:a7:19:1e:90:74:82:ab:0a:c8:ef:c7:b3: b8:26:2a:ee:41:20:9d:33:98:1d:f0:4b:31:3d:27: 96:9b:23:b3:b9:51:7a:3a:70:92:83:18:5e:97:12: 8d:3f:23:c7:2e:05:14:42:de:e3:d3:3c:71:b5:97: 17:a7:73:15:f5:bf:30:42:40:42:bf:4c:24:41:73: 8e:84:cc:eb:35:4e:82:cf:0d:43:ac:34:99:90:25: 5a:57:30:70:6d:a7:c6:ea:c9:ac:ca:30:2a:89:d7: 29:e3:1d:76:6e:83:32:9e:a0:14:56:11:9d:2a:82: ef:20:7a:f0:9d:bd:e2:0f:74:d0:c7:c8:db:94:e9: 1c:64:dc:97:56:4e:b6:4b:2f:15:c4:bf:5f:19:66: 49:e0:2a:b1:a9:14:30:13:c2:18:70:cd:b0:24:46: 7a:66:2e:38:24:0b:29:ea:8c:bb:0c:2c:42:0f:45: c6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:86:04:3D:18:0B:15:3C:EF:36:6A:42:22:32:C2:0D:63:D9:2F:B2 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/2586043D180B153CEF366A422232C20D63D92FB2.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.160.64.0/19 sbgp-autonomousSysNum: critical Autonomous System Numbers: 7534 Signature Algorithm: sha256WithRSAEncryption 5c:ce:b4:c5:16:4d:fb:67:f7:86:02:cf:61:56:21:bf:7d:35: 95:58:db:12:43:8c:f1:1e:37:97:02:2d:7e:ce:65:b2:84:73: 81:80:48:97:ff:2a:47:c1:bb:38:89:b1:11:59:c2:51:a1:e4: 8c:12:f4:40:d5:fc:70:3f:54:44:44:02:98:fb:13:0d:61:3b: 8c:a9:9d:13:d2:56:3e:a8:cf:51:d0:8b:70:16:e1:1f:63:c7: f3:8d:85:9e:12:d4:a3:48:cb:73:60:c3:5b:6b:64:85:7d:7e: f8:d6:5d:5b:2a:d1:4e:f1:e6:00:c3:98:f5:ba:c5:3d:1a:9b: 60:ea:7c:f0:86:be:68:86:30:5c:83:fe:9c:0a:ca:08:7d:ed: a0:03:e7:d6:29:19:eb:4d:38:76:7a:43:ba:b8:7b:61:ea:d9: f2:82:c2:fc:64:d7:08:bc:2a:f4:f7:d6:1f:df:b6:19:d5:60: 1d:70:f4:32:03:e6:0d:38:13:8b:81:dc:6a:f2:3a:29:ed:1f: b1:9f:31:71:21:02:81:52:bb:d1:6a:35:2c:bd:cb:a5:12:b4: 14:37:c0:49:d1:eb:aa:28:94:cb:4a:2f:f5:a4:00:24:be:50: 27:f6:cc:8e:d1:41:c2:87:26:a0:83:21:a8:87:82:65:f5:1b: ec:bc:7b:4d -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIUVrOXvzXv7WP7agfympKrQTnKDjEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTc1OFoX DTI3MDUxMDE2MDI1OFowMzExMC8GA1UEAxMoMjU4NjA0M0QxODBCMTUzQ0VGMzY2 QTQyMjIzMkMyMEQ2M0Q5MkZCMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLmTJP279ZbqBi5qpcIyuwi3MtSUKtWGWcBju7T3VD1PvbmKfjpVeebtFx5 Wllku5nkVQ6Vbd3IWC30zkPSjgVk/Aeuubws7q7ooMHEpxkekHSCqwrI78ezuCYq 7kEgnTOYHfBLMT0nlpsjs7lRejpwkoMYXpcSjT8jxy4FFELe49M8cbWXF6dzFfW/ MEJAQr9MJEFzjoTM6zVOgs8NQ6w0mZAlWlcwcG2nxurJrMowKonXKeMddm6DMp6g FFYRnSqC7yB68J294g900MfI25TpHGTcl1ZOtksvFcS/XxlmSeAqsakUMBPCGHDN sCRGemYuOCQLKeqMuwwsQg9Fxh8CAwEAAaOCAocwggKDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCWGBD0YCxU87zZqQiIywg1j2S+yMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UUFNJTEtFUkEv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFBT SUxLRVJBLzAvMjU4NjA0M0QxODBCMTUzQ0VGMzY2QTQyMjIzMkMyMEQ2M0Q5MkZC Mi5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEBcqgQDAZBggrBgEFBQcBCAEB/wQKMAigBjAE AgIdbjANBgkqhkiG9w0BAQsFAAOCAQEAXM60xRZN+2f3hgLPYVYhv301lVjbEkOM 8R43lwItfs5lsoRzgYBIl/8qR8G7OImxEVnCUaHkjBL0QNX8cD9UREQCmPsTDWE7 jKmdE9JWPqjPUdCLcBbhH2PH842FnhLUo0jLc2DDW2tkhX1++NZdWyrRTvHmAMOY 9brFPRqbYOp88Ia+aIYwXIP+nArKCH3toAPn1ikZ6004dnpDurh7YerZ8oLC/GTX CLwq9PfWH9+2GdVgHXD0MgPmDTgTi4HcavI6Ke0fsZ8xcSECgVK70Wo1LL3LpRK0 FDfASdHrqiiUy0ov9aQAJL5QJ/bMjtFBwocmoIMhqIeCZfUb7Lx7TQ== -----END CERTIFICATE-----Generated at Tue May 12 22:16:26 2026 by rpki-client