$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2963CB623A578334B7033062B58BFED2DC07BB04.cer File: 2963CB623A578334B7033062B58BFED2DC07BB04.cer (raw, json) Hash identifier: T2pnPuCcAs41aULsU09FEeh9HQlGczSueBZ3Afh+QRc= Subject key identifier: 29:63:CB:62:3A:57:83:34:B7:03:30:62:B5:8B:FE:D2:DC:07:BB:04 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 7B3B1344059A217E299CFA7690E87F718595C42A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/STW/0/2963CB623A578334B7033062B58BFED2DC07BB04.mft caRepository: rsync://rpkica.twnic.tw/rpki/STW/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:10 +0000 Certificate not after: Mon 10 May 2027 16:02:10 +0000 Subordinate resources: IP: 2401:e8a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3b:13:44:05:9a:21:7e:29:9c:fa:76:90:e8:7f:71:85:95:c4:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:10 2026 GMT Not After : May 10 16:02:10 2027 GMT Subject: CN=2963CB623A578334B7033062B58BFED2DC07BB04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:65:a1:94:79:27:ef:11:ef:97:e9:8a:0e:bd: 90:bb:04:06:c9:9b:3b:70:e9:07:56:4a:17:df:f5: 74:6b:8c:8c:70:44:fc:01:bc:5b:05:46:15:2c:6c: 2d:0b:ad:60:60:50:de:55:58:92:2c:0c:38:65:35: 3c:c1:dc:bf:36:44:ac:82:f5:ef:e2:3f:8a:ef:7c: 5d:4e:31:6e:3f:4a:22:46:44:02:25:96:52:46:19: e4:6c:b7:bd:09:f1:44:67:ed:27:a7:1d:61:bd:79: 09:2f:66:9c:ef:5f:b0:8b:44:b6:3e:32:b7:87:bf: 22:0e:e8:99:b4:d9:87:d2:76:90:d1:b0:dc:a9:3b: 5a:98:f6:bf:ed:a5:3c:90:cd:eb:e5:56:df:f4:d5: 17:78:6b:9e:11:ff:11:35:f7:8d:38:1c:71:6b:a7: 7b:19:86:90:11:b0:ea:89:5d:d5:9a:b8:2d:04:98: b0:97:68:27:32:67:91:de:08:74:26:6e:80:c6:18: 54:58:e9:cd:9a:46:f5:f1:bd:a6:76:6f:cc:cc:68: 76:b5:a2:36:c0:b0:b2:6c:f0:57:5c:48:6f:c0:aa: 61:82:f8:90:8b:7d:b1:b5:48:5d:22:c6:21:a0:0e: 03:4a:f0:9b:89:80:be:d5:2c:69:c3:5b:3b:ef:74: 8a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 29:63:CB:62:3A:57:83:34:B7:03:30:62:B5:8B:FE:D2:DC:07:BB:04 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/STW/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/STW/0/2963CB623A578334B7033062B58BFED2DC07BB04.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:e8a0::/32 Signature Algorithm: sha256WithRSAEncryption 90:79:60:40:42:b8:03:a7:21:98:f5:6a:8b:3b:93:c1:18:eb: 3f:59:05:3f:a7:c2:9a:89:07:d5:e5:be:87:61:1e:88:0e:39: 7d:1e:01:52:aa:13:8b:cc:92:55:27:ff:df:03:c3:f0:32:cd: b7:78:28:95:25:bd:c0:84:60:5e:7e:2c:e4:c2:8f:78:80:f9: f6:0b:67:23:8b:8e:b1:f9:8d:cf:99:d1:a7:ed:79:8e:38:ae: b2:fc:56:61:60:76:3f:4a:20:6c:81:a0:6f:6f:b2:c5:e4:7f: 3a:f5:76:33:32:f4:04:18:8b:ae:a1:6d:ce:26:85:34:cb:1b: 3c:82:3e:b7:7b:91:97:f9:c0:91:0c:27:8f:e1:a2:c1:19:2c: 89:97:b6:98:87:b2:87:78:5e:64:59:96:91:16:18:a9:80:9f: 4c:00:68:63:8c:b5:2f:ac:ca:28:d8:22:4d:19:41:e8:30:2f: 66:67:5d:d5:de:2e:3f:a5:58:f7:0f:11:84:f9:28:0f:88:46: d3:3d:44:25:6e:d3:5d:a9:3c:54:c7:25:97:c6:15:1c:7d:b4: 34:d4:96:55:c5:3e:59:16:fc:df:34:22:46:e8:19:ac:7b:15: fb:16:c8:9e:ee:b3:4f:69:b0:d0:c8:03:00:c6:b9:40:ad:9b: f9:b9:9d:37 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUezsTRAWaIX4pnPp2kOh/cYWVxCowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTcxMFoX DTI3MDUxMDE2MDIxMFowMzExMC8GA1UEAxMoMjk2M0NCNjIzQTU3ODMzNEI3MDMz MDYyQjU4QkZFRDJEQzA3QkIwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVloZR5J+8R75fpig69kLsEBsmbO3DpB1ZKF9/1dGuMjHBE/AG8WwVGFSxs LQutYGBQ3lVYkiwMOGU1PMHcvzZErIL17+I/iu98XU4xbj9KIkZEAiWWUkYZ5Gy3 vQnxRGftJ6cdYb15CS9mnO9fsItEtj4yt4e/Ig7ombTZh9J2kNGw3Kk7Wpj2v+2l PJDN6+VW3/TVF3hrnhH/ETX3jTgccWunexmGkBGw6old1Zq4LQSYsJdoJzJnkd4I dCZugMYYVFjpzZpG9fG9pnZvzMxodrWiNsCwsmzwV1xIb8CqYYL4kIt9sbVIXSLG IaAOA0rwm4mAvtUsacNbO+90iksCAwEAAaOCAmEwggJdMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCljy2I6V4M0twMwYrWL/tLcB7sEMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TVFcvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU1RXLzAvMjk2 M0NCNjIzQTU3ODMzNEI3MDMzMDYyQjU4QkZFRDJEQzA3QkIwNC5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQB6KAwDQYJKoZIhvcNAQELBQADggEBAJB5YEBCuAOnIZj1aos7 k8EY6z9ZBT+nwpqJB9XlvodhHogOOX0eAVKqE4vMklUn/98Dw/Ayzbd4KJUlvcCE YF5+LOTCj3iA+fYLZyOLjrH5jc+Z0afteY44rrL8VmFgdj9KIGyBoG9vssXkfzr1 djMy9AQYi66hbc4mhTTLGzyCPrd7kZf5wJEMJ4/hosEZLImXtpiHsod4XmRZlpEW GKmAn0wAaGOMtS+syijYIk0ZQegwL2ZnXdXeLj+lWPcPEYT5KA+IRtM9RCVu012p PFTHJZfGFRx9tDTUllXFPlkW/N80IkboGax7FfsWyJ7us09psNDIAwDGuUCtm/m5 nTc= -----END CERTIFICATE-----Generated at Wed May 13 02:12:40 2026 by rpki-client