$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/295FAD27AFED0134764CB0F6CA702AF930C0AC18.cer File: 295FAD27AFED0134764CB0F6CA702AF930C0AC18.cer (raw, json) Hash identifier: cEHlz+GYBl1LLu5Ad/ulvSGvP+TP865/9bTXRdjIWQ8= Subject key identifier: 29:5F:AD:27:AF:ED:01:34:76:4C:B0:F6:CA:70:2A:F9:30:C0:AC:18 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0C2FC8C567782AE33F5CC086C9FA5EF1F6C82475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CHUANGLI/0/295FAD27AFED0134764CB0F6CA702AF930C0AC18.mft caRepository: rsync://rpkica.twnic.tw/rpki/CHUANGLI/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:11 +0000 Certificate not after: Mon 10 May 2027 15:49:11 +0000 Subordinate resources: IP: 43.241.32.0/22 IP: 103.37.36.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:2f:c8:c5:67:78:2a:e3:3f:5c:c0:86:c9:fa:5e:f1:f6:c8:24:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:11 2026 GMT Not After : May 10 15:49:11 2027 GMT Subject: CN=295FAD27AFED0134764CB0F6CA702AF930C0AC18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:23:15:2f:4c:9e:f2:56:0b:37:59:0c:37:4a: 00:f9:14:ba:79:40:46:00:5a:e4:07:fa:39:9c:ce: 0e:b7:ab:23:8f:ad:4f:20:5d:ec:27:6f:96:f9:62: 4c:e7:43:81:fa:b4:33:36:19:2a:7a:59:ca:0e:87: 5f:05:12:ef:b5:96:6b:aa:fe:b0:3c:79:5d:6d:e4: b2:d1:ab:77:68:7b:21:5d:ca:92:36:2e:51:80:13: 8f:3c:4d:f4:52:6a:d6:fd:fa:22:d0:5b:37:e4:4a: c8:9d:a2:59:1c:6d:52:72:d6:94:8f:50:28:25:6c: a7:17:ef:7b:5e:c9:4e:1e:06:b3:d2:82:33:41:5e: 90:e4:f8:12:b9:e5:b8:ca:a1:76:dd:5e:85:82:ae: 73:93:15:17:04:7a:60:af:c9:6e:a5:a1:6b:8e:d7: 2f:47:70:cf:1e:f1:da:99:53:16:87:28:5d:d9:1a: 98:68:30:5f:09:fb:3c:d2:5a:30:bf:bc:a0:93:8a: 77:05:91:66:27:d3:5e:50:f4:18:d5:d4:66:67:5f: 88:d0:ce:43:bd:95:6c:11:d3:9c:74:fd:a2:34:c2: d8:7c:27:4d:eb:06:fb:71:39:94:10:7f:59:e4:44: 8d:eb:94:67:0a:ba:04:b5:9e:ee:11:7d:63:0f:af: 18:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 29:5F:AD:27:AF:ED:01:34:76:4C:B0:F6:CA:70:2A:F9:30:C0:AC:18 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CHUANGLI/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CHUANGLI/0/295FAD27AFED0134764CB0F6CA702AF930C0AC18.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.32.0/22 103.37.36.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:d5:10:6b:5f:c9:10:20:e1:39:2d:ce:ef:52:dd:69:cf:c1: 34:99:49:e2:48:01:c6:56:b0:9d:ee:a8:01:80:3f:0c:34:10: 2a:d5:a1:52:85:c9:91:12:58:85:5d:bd:08:6b:43:8a:bd:3a: 8f:21:b7:1a:6a:47:2d:5b:c0:6a:39:af:07:bf:8d:df:fc:af: 8f:d9:be:b5:6a:e4:83:36:c9:c1:3f:2f:f7:bc:13:40:c4:6d: e0:d1:85:8c:21:bb:0b:ac:ad:7d:43:ba:03:ce:f7:72:99:a5: a1:22:d5:2f:b6:2b:ac:b2:82:c6:fd:af:6b:0f:31:ea:48:fa: f5:73:73:7a:49:a4:4f:75:e8:ea:ee:11:71:35:af:a9:87:14: 68:62:25:88:2d:d4:02:70:24:8d:a4:f4:66:8f:cd:00:d4:d4: 90:d7:3c:57:af:f6:73:59:e2:03:3d:e5:22:86:a1:a2:5c:8e: 04:fa:0c:7e:1b:bf:45:88:12:ce:1a:52:8f:ef:0d:4c:64:34: 9c:9f:39:5d:d8:7d:4d:00:1d:be:3f:d2:d3:90:cc:88:39:34: e0:c7:95:69:c6:d9:1b:66:6f:7a:e6:27:7a:60:c0:26:84:26: ef:f6:9e:39:70:a5:8e:f9:7a:b3:33:91:33:a9:6f:8e:64:e1: 2c:73:14:34 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUDC/IxWd4KuM/XMCGyfpe8fbIJHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQxMVoX DTI3MDUxMDE1NDkxMVowMzExMC8GA1UEAxMoMjk1RkFEMjdBRkVEMDEzNDc2NENC MEY2Q0E3MDJBRjkzMEMwQUMxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI4jFS9MnvJWCzdZDDdKAPkUunlARgBa5Af6OZzODrerI4+tTyBd7Cdvlvli TOdDgfq0MzYZKnpZyg6HXwUS77WWa6r+sDx5XW3kstGrd2h7IV3KkjYuUYATjzxN 9FJq1v36ItBbN+RKyJ2iWRxtUnLWlI9QKCVspxfve17JTh4Gs9KCM0FekOT4Ernl uMqhdt1ehYKuc5MVFwR6YK/JbqWha47XL0dwzx7x2plTFocoXdkamGgwXwn7PNJa ML+8oJOKdwWRZifTXlD0GNXUZmdfiNDOQ72VbBHTnHT9ojTC2HwnTesG+3E5lBB/ WeREjeuUZwq6BLWe7hF9Yw+vGLcCAwEAAaOCAnAwggJsMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFClfrSev7QE0dkyw9spwKvkwwKwYMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSFVBTkdMSS8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSFVB TkdMSS8wLzI5NUZBRDI3QUZFRDAxMzQ3NjRDQjBGNkNBNzAyQUY5MzBDMEFDMTgu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUH AQcBAf8EFjAUMBIEAgABMAwDBAIr8SADBAJnJSQwDQYJKoZIhvcNAQELBQADggEB AE7VEGtfyRAg4Tktzu9S3WnPwTSZSeJIAcZWsJ3uqAGAPww0ECrVoVKFyZESWIVd vQhrQ4q9Oo8htxpqRy1bwGo5rwe/jd/8r4/ZvrVq5IM2ycE/L/e8E0DEbeDRhYwh uwusrX1DugPO93KZpaEi1S+2K6yygsb9r2sPMepI+vVzc3pJpE916OruEXE1r6mH FGhiJYgt1AJwJI2k9GaPzQDU1JDXPFev9nNZ4gM95SKGoaJcjgT6DH4bv0WIEs4a Uo/vDUxkNJyfOV3YfU0AHb4/0tOQzIg5NODHlWnG2Rtmb3rmJ3pgwCaEJu/2njlw pY75erMzkTOpb45k4SxzFDQ= -----END CERTIFICATE-----Generated at Tue May 12 22:45:47 2026 by rpki-client